Windows Server - Weblistener w/SSL Client Cert. Auth. and Outlook Anywhere
Asked By BWol
05-Oct-08 04:40 PM
Hello folks,
I have configures a Weblistener with SSL Client Cert. Auth. in ISA 2006. For
OWA and ActiveSync it works perfect with kerberos constrained delegation in
the publishing rule.
For Outlook Anywhere I use the same weblistener (just one official ip). The
publishing rule is configured to ask client for authentication. The problem
is that there comes no dialogue for certificate authtication at the client.
Just the dialogue for user and password... Don't know whats going wrong...
The client tries to connect but it doesn't work.
In advance thanks.
Kind reagrds,
B. Wolf
Outlook
(1)
ActiveSync
(1)
Weblistener
(1)
E537BA393307
(1)
Configures
(1)
Kerberos
(1)
Listener
(1)
Warranty
(1)
Jim Harrison \(ISA SE\) replied...
You can't do this.
Outlook doesn't support certificate auth.
You can have HTTP-Basic or HTTP-NTLM and that's all.
--
Jim Harrison (ISA SE)
This posting implies no warranty and confers no rights.
http://catb.org/~esr/faqs/smart-questions.html
Hello folks,
I have configures a Weblistener with SSL Client Cert. Auth. in ISA 2006. For
OWA and ActiveSync it works perfect with kerberos constrained delegation in
the publishing rule.
For Outlook Anywhere I use the same weblistener (just one official ip). The
publishing rule is configured to ask client for authentication. The problem
is that there comes no dialogue for certificate authtication at the client.
Just the dialogue for user and password... Don't know whats going wrong...
The client tries to connect but it doesn't work.
In advance thanks.
Kind reagrds,
B. Wolf
BWol replied...
Ok....
How to configure this with one official IP? For ActiveSync I need the client
certificate authentication.
Thanks.
Regards,
B. Wolf
Jim Harrison \(ISA SE\) replied...
You can't have certificate authentication and simultaneously serve Outlook
Anywhere clients.
You must either:
1. add an IP and build a separate listener
2. drop certificate authentication
--
Jim Harrison (ISA SE)
This posting implies no warranty and confers no rights.
http://catb.org/~esr/faqs/smart-questions.html
Ok....
How to configure this with one official IP? For ActiveSync I need the client
certificate authentication.
Thanks.
Regards,
B. Wolf
Shinder's excellent guide at http: / / www.isaserver.org / tutorials / Publishing-Exchange-2007-OWA-Exchange-ActiveSync-RPCHTTP-using-2006-ISA-Firewall-Part1.html Everything works well. . .OWA, Active Sync, etc but one thing that doe snot work is what I used to call HTTP-RPC for Outlook 2003. With Exchange 12007 it appears they now call it "Outlook Anywhere ". I have tried it with two different users to no avail. After you try to connect, Outlook just sits there and never logs in. Some the ISA server's transactions for the yyy.zzz.123 ourdomain \ user1 MSRPC Y 2008-03-03 00:21:33 W3ReverseProxy ISAFIREWALLBOX - outlook.ourdomain.org 192.168.1.1 443 15 276 2185 https TCP RPC_IN_DATA http: / / outlook.ourdomain.org / rpc / rpcproxy.dll?exchange.internaldomain.com:593 Inet 8 Exchange 2007 Outlook Anywhere Req ID: 09f5c852; FBA cookie: exists = no, valid = no, updated = yes, logged off = no yyy.zzz.123 ourdomain \ user1 MSRPC Y 2008-03-03 00:21:34 W3ReverseProxy ISAFIREWALLBOX - outlook.ourdomain.org 192.168.1.1 443 47 345 341 https TCP RPC_OUT_DATA http: / / outlook
outlook mailbox size Windows Server What is the maximum size of a default outlook mailbox? Windows Server Discussions Outlook (1) Maiolbox (1) Ost (1) Pst (1) Hello outlook, Outlook has no maiolbox size itself. That will be configured on the mail server. If you to Newsgroups * * HELP us help YOU!!! http: / / www.blakjak.demon.co.uk / mul_crss.htm Hello outlook, Sorry, i mentioned the wrong file size, it is 2GB and not 4GB for a to Newsgroups * * HELP us help YOU!!! http: / / www.blakjak.demon.co.uk / mul_crss.htm keywords: outlook, mailbox, size description: What is the maximum size of a default outlook mailbox?
problem where a user is not seeing the global address list on his computer in Outlook. Outlook 2003 was initially installed. I put Outlook 2007 on his computer, but it was so slow I removed it and put Outlook 2003 back on from the Disk that came with Small Business Server . All his other s not appearing? Thanks. Meg Windows Server SBS Discussions Small Business Server 2003 R2 (1) Outlook 2003 (1) Outlook 2007 (1) Outlook (1) C63d7ec20d3a (1) Directories (1) Aea0ceef (1) Applet (1) Have you tried deleting the outlook profile and recreating a new one? Regards, Matt Hi Meg, please go to CP -> Mail
Disable archive.pst in both Outlook 2003 and Outlook 2007 Windows Server Can this be done in a group policy? We are running Windows XP SP2 along with Outlook 2003 / Outlook 2007. I think we have the correct settings but it seems to still let the users run an archive.pst from their machines. Windows Group Policy Discussions Windows XP (1) Outlook 2003 (1) Outlook 2007 (1) Office (1) AutoArchivehide (1) Sabo (1) In Outlook 2003 I have the following: Microsoft Office Outlook 2003 / Tools | Options. . . / Other / AutoArchivehide Policy Setting AutoArchive Settings Disabled Retention Settings Disabled In Outlook