Prev: Can't send emails to .nhs.uk addresses after upgrade to Exchange 2
Next: Outlook Address resolution
From: sawyer on 7 Jun 2010 12:45
Hello all



I have a 2007 sp2 CAS server and a 2010 CAS server located in the same AD
site. On the 2007 CAS server i have changed the externalurl from
https://mail.kbblab.com/owa to https://legacy.kbblab.com/owa, i left the
internalurl at its default setting. On the 2010 CAS server the externalurl
points to https://mail.kbblab.com/owa and i set the Exchange2003URL to
https://legacy.kbblab.com/owa. The 2010 CAS server is using FBA
authentication and basic with SSL. The 2007 CAS server is using NTLM and
windowsintegrated for internaluathenticationmethods.

I have created an internal DNS record for legacy.kbblab.com that points to
the 2007 CAS server, and i have also created an internal DNS record for
mail.kbblab.com and it points to the 2010 CAS server. My understanding is a
2010 CAS server is able to proxy a request to a 2007 CAS server when the
mailbox is located on a 2007 mbx server? What i am seeing is when a user who
has a mailbox on a 2007 mbx server goes to https://mail.kbblab.com/owa they
get the FBA logon page, but after they put in there credentials, they get
prompted again for credentials by the 2007 CAS server. Not sure whats
casuing this to happen, but i think its something with the 2007 CAS server,
because if I go to https://legacy.kbblab.com/owa from a workstation that is
loged onto the domain i get prompted for credentials. This is not my
understanding of how integrated authentication is suppose to work. Below is
the output from the get-owavirtualdirectory command from the 2007 and 2010
CAS servers. This is a lab environment. CASHT1 is the 2007 server

CASHT1



Name : owa (Default Web Site)
WebSite : Default Web Site
DisplayName : owa
DirectFileAccessOnPublicComputersEnabled : True
DirectFileAccessOnPrivateComputersEnabled : True
WebReadyDocumentViewingOnPublicComputersEnabled : True
WebReadyDocumentViewingOnPrivateComputersEnabled : True
ForceWebReadyDocumentViewingFirstOnPublicComputers : False
ForceWebReadyDocumentViewingFirstOnPrivateComputers : False
RemoteDocumentsActionForUnknownServers : Block
ActionForUnknownFileAndMIMETypes : ForceSave
WebReadyFileTypes : {.xlsx, .pptx, .docx,
..xl
s, .rtf, .ppt, .pps,
..pdf
, .dot, .doc}
WebReadyMimeTypes :
{application/vnd.openxmlf
ormats-officedocument.pre
sentationml.presentation,
application/vnd.openxmlf
ormats-officedocument.wor
dprocessingml.document,
a
pplication/vnd.openxmlfor
mats-officedocument.sprea
dsheetml.sheet,
applicati
on/vnd.ms-powerpoint,
app
lication/x-mspowerpoint,
application/vnd.ms-excel,
application/x-msexcel,
a
pplication/msword,
applic
ation/pdf}
WebReadyDocumentViewingForAllSupportedTypes : True
WebReadyDocumentViewingSupportedMimeTypes : {application/msword,
appl
ication/vnd.ms-excel,
app
lication/x-msexcel,
appli
cation/vnd.ms-powerpoint,
application/x-mspowerpoi
nt, application/pdf,
appl
ication/vnd.openxmlformat
s-officedocument.wordproc
essingml.document,
applic
ation/vnd.openxmlformats-
officedocument.spreadshee
tml.sheet,
application/vn
d.openxmlformats-officedo
cument.presentationml.pre
sentation}
WebReadyDocumentViewingSupportedFileTypes : {.doc, .dot, .rtf,
..xls,
.ppt, .pps, .pdf,
..docx,
.xlsx, .pptx}
AllowedFileTypes : {.rpmsg, .xlsx, .xlsm,
..x
lsb, .tiff, .pptx,
..pptm,
.ppsx, .ppsm, .docx,
..do
cm, .zip, .xls, .wmv,
..wm
a, .wav...}
AllowedMimeTypes : {image/jpeg,
image/png, i
mage/gif, image/bmp}
ForceSaveFileTypes : {.vsmacros, .ps2xml,
..ps1
xml, .mshxml, .gadget,
..p
sc2, .psc1, .aspx,
..wsh,
.wsf, .wsc, .vsw,
..vst, .
vss, .vbs, .vbe...}
ForceSaveMimeTypes :
{Application/x-shockwave-
flash,
Application/octet-
stream,
Application/futur
esplash,
Application/x-di
rector}
BlockedFileTypes : {.vsmacros, .msh2xml,
..ms
h1xml, .ps2xml,
..ps1xml,
.mshxml, .gadget,
..mhtml,
.psc2, .psc1, .msh2,
..ms
h1, .aspx, .xml, .wsh,
..w
sf...}
BlockedMimeTypes :
{application/x-javascript
,
application/javascript,
application/msaccess,
x-
internet-signup,
text/jav
ascript,
application/xml,
application/prg,
applica
tion/hta,
text/scriplet,
text/xml}
RemoteDocumentsAllowedServers : {}
RemoteDocumentsBlockedServers : {}
RemoteDocumentsInternalDomainSuffixList : {}
FolderPathname :
Url : {}
InternalAuthenticationMethods : {Ntlm,
WindowsIntegrated}
LogonFormat : FullDomain
ClientAuthCleanupLevel : High
DefaultDomain :
BasicAuthentication : False
DigestAuthentication : False
WindowsAuthentication : True
FormsAuthentication : False
GzipLevel : Low
MetabasePath :
IIS://casht1.corp.kbblab.
com/W3SVC/1/ROOT/owa
FilterWebBeaconsAndHtmlForms : UserFilterChoice
NotificationInterval : 120
DefaultTheme :
UserContextTimeout : 60
ExchwebProxyDestination :
VirtualDirectoryType :
OwaVersion : Exchange2007
RedirectToOptimalOWAServer : True
DefaultClientLanguage : 0
LogonAndErrorLanguage : 0
UseGB18030 : False
UseISO885915 : False
OutboundCharset : AutoDetect
CalendarEnabled : True
ContactsEnabled : True
TasksEnabled : True
JournalEnabled : True
NotesEnabled : True
RemindersAndNotificationsEnabled : True
PremiumClientEnabled : True
SpellCheckerEnabled : True
SearchFoldersEnabled : True
SignaturesEnabled : True
ThemeSelectionEnabled : True
JunkEmailEnabled : True
UMIntegrationEnabled : True
WSSAccessOnPublicComputersEnabled : True
WSSAccessOnPrivateComputersEnabled : True
ChangePasswordEnabled : True
UNCAccessOnPublicComputersEnabled : True
UNCAccessOnPrivateComputersEnabled : True
ActiveSyncIntegrationEnabled : True
AllAddressListsEnabled : True
RulesEnabled : True
PublicFoldersEnabled : True
SMimeEnabled : True
RecoverDeletedItemsEnabled : True
Path : C:\Program
Files\Microsof
t\Exchange
Server\ClientA
ccess\owa
Server : CASHT1
InternalUrl :
https://casht1.kbblab.com
/owa
ExternalUrl :
https://legacy.kbblab.com
/owa
ExternalAuthenticationMethods : {Fba}
AdminDisplayName :
ExchangeVersion : 0.1 (8.0.535.0)
DistinguishedName : CN=owa (Default Web
Site)
,CN=HTTP,CN=Protocols,CN=
CASHT1,CN=Servers,CN=Exch
ange Administrative
Group
(FYDIBOHF23SPDLT),CN=Adm
inistrative
Groups,CN=kbb
lab,CN=Microsoft
Exchange
,CN=Services,CN=Configura
tion,DC=corp,DC=kbblab,DC
=com
Identity : CASHT1\owa (Default
Web S
ite)
Guid :
a9d81e33-8b6c-4b42-9466-f
f03f64c2ebe
ObjectCategory :
corp.kbblab.com/Configura
tion/Schema/ms-Exch-OWA-V
irtual-Directory
ObjectClass : {top,
msExchVirtualDirect
ory,
msExchOWAVirtualDire
ctory}
WhenChanged : 6/7/2010 9:00:08 AM
WhenCreated : 6/4/2010 3:27:22 PM
OriginatingServer :
OCS-LAB-DC.corp.kbblab.co
m
IsValid : True



CASHT2



RunspaceId :
9b5374fd-f411-4604-88c8-db8dc0b2c4fd
DirectFileAccessOnPublicComputersEnabled : True
DirectFileAccessOnPrivateComputersEnabled : True
WebReadyDocumentViewingOnPublicComputersEnabled : True
WebReadyDocumentViewingOnPrivateComputersEnabled : True
ForceWebReadyDocumentViewingFirstOnPublicComputers : False
ForceWebReadyDocumentViewingFirstOnPrivateComputers : False
RemoteDocumentsActionForUnknownServers : Block
ActionForUnknownFileAndMIMETypes : ForceSave
WebReadyFileTypes : {.xlsx, .pptx, .docx,
..xls, .rtf, .ppt, .pps, .pdf, .dot, .doc}
WebReadyMimeTypes :
{application/vnd.openxmlformats-officedocument.presentationml.pre
sentation,
application/vnd.openxmlformats-officedocument.wordproc
essingml.document,
application/vnd.openxmlformats-officedocument.
spreadsheetml.sheet,
application/vnd.ms-powerpoint, application/x
-mspowerpoint,
application/vnd.ms-excel, application/x-msexcel, a
pplication/msword,
application/pdf}
WebReadyDocumentViewingForAllSupportedTypes : True
WebReadyDocumentViewingSupportedMimeTypes : {application/msword,
application/vnd.ms-excel, application/x-msex
cel,
application/vnd.ms-powerpoint, application/x-mspowerpoint, a
pplication/pdf,
application/vnd.openxmlformats-officedocument.wor
dprocessingml.document,
application/vnd.openxmlformats-officedocu
ment.spreadsheetml.sheet,
application/vnd.openxmlformats-officedo
cument.presentationml.presentation}
WebReadyDocumentViewingSupportedFileTypes : {.doc, .dot, .rtf,
..xls, .ppt, .pps, .pdf, .docx, .xlsx, .pptx}
AllowedFileTypes : {.rpmsg, .xlsx, .xlsm,
..xlsb, .tiff, .pptx, .pptm, .ppsx, .ppsm,
.docx, .docm, .zip,
..xls, .wmv, .wma, .wav...}
AllowedMimeTypes : {image/jpeg,
image/png, image/gif, image/bmp}
ForceSaveFileTypes : {.vsmacros, .ps2xml,
..ps1xml, .mshxml, .gadget, .psc2, .psc1, .as
px, .wsh, .wsf, .wsc,
..vsw, .vst, .vss, .vbs, .vbe...}
ForceSaveMimeTypes :
{Application/x-shockwave-flash, Application/octet-stream, Applica
tion/futuresplash,
Application/x-director}
BlockedFileTypes : {.vsmacros, .msh2xml,
..msh1xml, .ps2xml, .ps1xml, .mshxml, .gadge
t, .mhtml, .psc2,
..psc1, .msh2, .msh1, .aspx, .xml, .wsh, .wsf...
}
BlockedMimeTypes :
{application/x-javascript, application/javascript, application/ms
access,
x-internet-signup, text/javascript, application/xml, appl
ication/prg,
application/hta, text/scriplet, text/xml}
RemoteDocumentsAllowedServers : {}
RemoteDocumentsBlockedServers : {}
RemoteDocumentsInternalDomainSuffixList : {}
FolderPathname :
Url : {}
LogonFormat : FullDomain
ClientAuthCleanupLevel : High
FilterWebBeaconsAndHtmlForms : UserFilterChoice
NotificationInterval : 120
DefaultTheme :
UserContextTimeout : 60
ExchwebProxyDestination :
VirtualDirectoryType :
OwaVersion : Exchange2010
ServerName : CASHT2
RedirectToOptimalOWAServer : True
DefaultClientLanguage : 0
LogonAndErrorLanguage : 0
UseGB18030 : False
UseISO885915 : False
OutboundCharset : AutoDetect
GlobalAddressListEnabled : True
OrganizationEnabled : True
ExplicitLogonEnabled : True
OWALightEnabled : True
DelegateAccessEnabled : True
IRMEnabled : True
CalendarEnabled : True
ContactsEnabled : True
TasksEnabled : True
JournalEnabled : True
NotesEnabled : True
RemindersAndNotificationsEnabled : True
PremiumClientEnabled : True
SpellCheckerEnabled : True
SearchFoldersEnabled : True
SignaturesEnabled : True
ThemeSelectionEnabled : True
JunkEmailEnabled : True
UMIntegrationEnabled : True
WSSAccessOnPublicComputersEnabled : True
WSSAccessOnPrivateComputersEnabled : True
ChangePasswordEnabled : True
UNCAccessOnPublicComputersEnabled : True
UNCAccessOnPrivateComputersEnabled : True
ActiveSyncIntegrationEnabled : True
AllAddressListsEnabled : True
RulesEnabled : True
PublicFoldersEnabled : True
SMimeEnabled : True
RecoverDeletedItemsEnabled : True
InstantMessagingEnabled : True
TextMessagingEnabled : True
InstantMessagingType : Ocs
Exchange2003Url :
https://legacy.kbblab.com/owa
LegacyRedirectType : Silent
Name : owa (Default Web Site)
InternalAuthenticationMethods : {Basic, Fba}
MetabasePath :
IIS://casht2.corp.kbblab.com/W3SVC/1/ROOT/owa
BasicAuthentication : True
WindowsAuthentication : False
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
DefaultDomain :
GzipLevel : High
WebSite : Default Web Site
DisplayName : owa
Path : C:\Program
Files\Microsoft\Exchange Server\V14\ClientAccess\owa
Server : CASHT2
InternalUrl :
https://casht2.corp.kbblab.com/owa
ExternalUrl :
https://mail.kbblab.com/owa
ExternalAuthenticationMethods : {Fba}
AdminDisplayName :
ExchangeVersion : 0.10 (14.0.100.0)
DistinguishedName : CN=owa (Default Web
Site),CN=HTTP,CN=Protocols,CN=CASHT2,CN=Serve
rs,CN=Exchange
Administrative Group (FYDIBOHF23SPDLT),CN=Administ
rative
Groups,CN=kbblab,CN=Microsoft Exchange,CN=Services,CN=Conf
iguration,DC=corp,DC=kbblab,DC=com
Identity : CASHT2\owa (Default
Web Site)
Guid :
9df9f128-e694-4864-9b26-049587db2b2b
ObjectCategory :
corp.kbblab.com/Configuration/Schema/ms-Exch-OWA-Virtual-Director
y
ObjectClass : {top,
msExchVirtualDirectory, msExchOWAVirtualDirectory}
WhenChanged : 6/4/2010 2:44:47 PM
WhenCreated : 4/29/2010 11:14:40 AM
WhenChangedUTC : 6/4/2010 9:44:47 PM
WhenCreatedUTC : 4/29/2010 6:14:40 PM
OrganizationId :
OriginatingServer :
OCS-LAB-DC.corp.kbblab.com
IsValid : True









 | 
Pages: 1
Prev: Can't send emails to .nhs.uk addresses after upgrade to Exchange 2
Next: Outlook Address resolution