Exchange 2007 CAS '/Exchange' VDir not working

  • Thread starter ibenna [MVP]
  • Start date Views 550
Status
Not open for further replies.
I

ibenna [MVP]

Hi,

I am setting up an environment for co-existence. The existing exchange 2003 environment runs an Exchange 2003 BE and an Exchange 2003 FE. We have deployed Exchange 2007 MBX role with CCR (2 nodes) and 2 other servers each running the CAS and Hub transport roles combined. The 2 servers have been configured to use WNLB for ports 80 and 443. Internally we want to use integrated authentication and FBA through ISA 2006 from external. On the Exchange and OWA VDirs on both hub/cas servers,  Basic and integrated authentication have been selected. All Exchange 2007 servers are running on Win2K8 while Exchange 2003 servers are on Win2K3.

When using an exchange 2007 user to log into their mailbox using OWA, the following is noticed:

https://hubcas01/owa integrated works fine
https://hubcas02/owa integrated works fine
https://NLBVirtualName/owa integrated works fine
https://hubcas01/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://hubcas02/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://NLBVirtualName/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://PublicURLFromInternet/OWA Credentials provided in ISA FBA and then logs in
https://PublicURLFromInternet/Exchange Credentials provided in ISA FBA and then logs in

When logging on with an exchange 2003 mailbox:

https://hubcas01/owa Not applicable
https://hubcas02/owa Not applicable
https://NLBVirtualName/owa Not applicable
https://hubcas01/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://hubcas02/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://NLBVirtualName/exchange asks for credentials 3 times and then fails with unauthorized 401 error "Access is denied due to invalid credentials"
https://PublicURLFromInternet/OWA Not applicable
https://PublicURLFromInternet/Exchange Credentials provided in ISA FBA and then logs in
 
I

ibenna [MVP]

Ok got it fixed :)! It seems that /Exchange virtual directory will work ONLY when BASIC authentication is set.

"

Another authentication issue to consider is that legacy virtual directories on a Client Access server (for example, the virtual directories that use Exprox.dll) are the same virtual directories that are located on an Exchange 2003 front-end server. You will only be able to use forms-based authentication or Basic authentication to authenticate to the Client Access server because Microsoft Exchange needs credentials to authenticate to the virtual directories on the Exchange 2007 Mailbox server or Exchange 2003 back-end server. On Exchange 2007 Mailbox servers or Exchange 2003 back-end servers, you can use all supported authentication types: forms-based authentication, Basic authentication, Digest authentication, and Integrated Windows authentication"

http://technet.microsoft.com/en-us/library/bb885041.aspx

 
Status
Not open for further replies.
Top