If the cert is issued to ex1.domain.local, you will always get an error by accessing the server by any other FQDN (ex1 or mail.domain.com). You can get around this by adding DNS entries in your internal DNS server for domain.com zone, a cname that points mail.domain.com to ex1.domain.local, and re-issue the cert to mail.domain.com. Then use only mail.domain.com to access.
HTH Derek -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard, Pat Sent: Thursday, March 08, 2007 8:55 AM To: Exchange Discussions Subject: RE: [exchange2007] '007 redirect not working 100% Exactly as I understand it. I think the problem is that I'm getting prompted about the same SSL cert TWICE. Once when I first go to the page, and once after entering my creds. But only when using just the servername - https://ex1/exchange, or when attempting from the outside - https://mail.domain.com/exchange. If I start with the FQDN internally - https://ex1.domain.local/exchange, it works fine. The mailbox is Exchange 2007. In detail: Internally, I go to https://ex1/exchange. I get the SSL message (no trusted cert yet). I click on "Continue..." that takes me to https://ex1/exchweb/bin/auth/owalogon.asp?url=https://ex1/exchange&reaso n=0&replaceCurrent=1 which is the FBA login page. I enter my creds, and that takes me to https://ex1/exchweb/bin/auth/owaauth.dll (the SSL message page). Again, I click on "Continue...." I enter my creds again, and I get in OWA at https://ex1.domain.local/owa (note FQDN). From there, everything appears to work fine. Now - if I go to https://ex1.domain.local/exchange, it works as I understand it should - I get redirected to /owa Externally, https://mail.domain.com/exchange exhibits the problem - prompted about the cert twice, and I have to enter the creds twice. I realize that installing a trusted cert will likely resolve the problem, but I'm concerned that it might not. I don't recall seeing behavior like this before. In any case, /owa always works. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chris Scharff Sent: Thursday, March 08, 2007 10:12 AM To: Exchange Discussions Subject: RE: [exchange2007] '007 redirect not working 100% According to the Microsoft document "Deploying a complex Exchange 2007 organization" "The Outlook Web Access URL used to access the logon dialog depends whether the user's mailbox is located on an Exchange 2003 beck-end server or on an Exchange 2007 Mailbox server" If the mailbox is... Exchange 2003 ... http://servername/Exchange if the mailbox is ... Exchange 2007 ... use either http://servername/owa or http://servername/exchange. > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:bounce- > [EMAIL PROTECTED] On Behalf Of Richard, Pat > Posted At: Wednesday, March 07, 2007 1:59 PM Posted To: swynk > Conversation: [exchange2007] '007 redirect not working 100% > Subject: RE: [exchange2007] '007 redirect not working 100% > > There are two servers in the setup. First has CA/HT/MB roles, and > second is ET. I'm connecting directly to the first server when > attempting to access OWA. It's only the redirect that doesn't work. If > I go to /owa, I get in and everything appears to work correctly. > > I've seen that link. In fact, I mentioned it in a previous reply. > > ________________________________ > > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] > On Behalf Of Mike Lagase > Sent: Wednesday, March 07, 2007 12:34 PM > To: [EMAIL PROTECTED]; [email protected] > Subject: Re: [exchange2007] '007 redirect not working 100% > > > > You didn't mention what roles were installed on this server and if you > have seperated them out as that does make a difference. Going to > /exchange should redirect you to /owa via exprox and DaveX. > > See http://msexchangeteam.com/archive/2007/02/07/434523.aspx > <http://msexchangeteam.com/archive/2007/02/07/434523.aspx> for more > info on this. > > Mike > > > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange > To subscribe: http://e-newsletters.internet.com/discussionlists.html/ > To unsubscribe send a blank email to [EMAIL PROTECTED] > dl.sparklist.com > Exchange List admin: [EMAIL PROTECTED] > To unsubscribe via postal mail, please contact us at: > Jupitermedia Corp. > Attn: Discussion List Management > 475 Park Avenue South > New York, NY 10016 > > Please include the email address which you have been contacted with. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
