Re: Outlook Anywhere for restriced set of users
Hi, Michael - at present we're on 2007. That's VERY good to know about 2010 - perhaps we could just move mailboxes a bit earlier. Always most excellent info - Thanks! On Wed, Jul 21, 2010 at 5:23 PM, Michael B. Smith wrote: > Modifying the IIS website is not supported. > > > > You don’t say what version of Exchange. At least Exchange 2010 supports > “set-casMailbox –mapiBlockOutlookRpcHttp” to do what you want. > > > > Regards, > > > > Michael B. Smith > > Consultant and Exchange MVP > > http://TheEssentialExchange.com <http://theessentialexchange.com/> > > > > *From:* Russ Patterson [mailto:rus...@gmail.com] > *Sent:* Wednesday, July 21, 2010 11:26 AM > > *To:* MS-Exchange Admin Issues > *Subject:* Re: Outlook Anywhere for restriced set of users > > > > I'd love to do it that way; if it's possible. This is for a few users, when > they travel - external access. > > On Wed, Jul 21, 2010 at 11:19 AM, Ellis, John P. > wrote: > > Ive not seen it either. I was thinking if it was web based, you could > create a group on AD , add users to the group and add the group to the IIS > permissions. > > > > Is this for internal access? > > > > John > > > ---------- > > *From:* Russ Patterson [mailto:rus...@gmail.com] > > *Sent:* 21 July 2010 16:09 > > > *To:* MS-Exchange Admin Issues > > *Subject:* Re: Outlook Anywhere for restriced set of users > > OA is RPC over HTTP - but I don't think there's a web server - you just > enable the protocol (rpc/http) and set up a DNS record. But it's gotta point > to something, doesn't it? I've never used it, and now we've been asked to > set it up IF we can restrict who uses it. I wish I could respond in a more > informed manner, John. > > > > I think the DNS record just points to the enabled for rpc_over_http CAS > server with a special name, and then Outlook talks to that CAS server with > RPC to get pointed at the mailbox. Everyone, please chime in to correct my > assumptions. > > On Wed, Jul 21, 2010 at 10:33 AM, Ellis, John P. > wrote: > > Not sure, but can you enable/Disable the option inside AD? > > > > Is OA a web server? > > John > > > > > -- > > *From:* Russ Patterson [mailto:rus...@gmail.com] > *Sent:* 21 July 2010 15:25 > *To:* MS-Exchange Admin Issues > *Subject:* Outlook Anywhere for restriced set of users > > Hello All - > > > > Any creative suggestions as to how to allow Outlook Anywhere for only a > sub-set of your users? Assume that any secret URL will stay secret for about > 37 seconds, and that we'd want a small percentage of users 'enabled.' - > Seperate CAS server? restricted certs? All ideas welcomed. Thanks! > > ** > > This email and any files transmitted with it are confidential and > > intended solely for the use of the individual or entity to whom they > > are addressed. If you have received this email in error please notify > > the system manager. > > This footnote also confirms that this email message has been swept by > > MIMEsweeper for the presence of computer viruses. > > www.clearswift.com > > ** > > > > >
RE: Outlook Anywhere for restriced set of users
Modifying the IIS website is not supported. You don't say what version of Exchange. At least Exchange 2010 supports "set-casMailbox -mapiBlockOutlookRpcHttp" to do what you want. Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Russ Patterson [mailto:rus...@gmail.com] Sent: Wednesday, July 21, 2010 11:26 AM To: MS-Exchange Admin Issues Subject: Re: Outlook Anywhere for restriced set of users I'd love to do it that way; if it's possible. This is for a few users, when they travel - external access. On Wed, Jul 21, 2010 at 11:19 AM, Ellis, John P. mailto:johnel...@wirral.gov.uk>> wrote: Ive not seen it either. I was thinking if it was web based, you could create a group on AD , add users to the group and add the group to the IIS permissions. Is this for internal access? John From: Russ Patterson [mailto:rus...@gmail.com<mailto:rus...@gmail.com>] Sent: 21 July 2010 16:09 To: MS-Exchange Admin Issues Subject: Re: Outlook Anywhere for restriced set of users OA is RPC over HTTP - but I don't think there's a web server - you just enable the protocol (rpc/http) and set up a DNS record. But it's gotta point to something, doesn't it? I've never used it, and now we've been asked to set it up IF we can restrict who uses it. I wish I could respond in a more informed manner, John. I think the DNS record just points to the enabled for rpc_over_http CAS server with a special name, and then Outlook talks to that CAS server with RPC to get pointed at the mailbox. Everyone, please chime in to correct my assumptions. On Wed, Jul 21, 2010 at 10:33 AM, Ellis, John P. mailto:johnel...@wirral.gov.uk>> wrote: Not sure, but can you enable/Disable the option inside AD? Is OA a web server? John From: Russ Patterson [mailto:rus...@gmail.com<mailto:rus...@gmail.com>] Sent: 21 July 2010 15:25 To: MS-Exchange Admin Issues Subject: Outlook Anywhere for restriced set of users Hello All - Any creative suggestions as to how to allow Outlook Anywhere for only a sub-set of your users? Assume that any secret URL will stay secret for about 37 seconds, and that we'd want a small percentage of users 'enabled.' - Seperate CAS server? restricted certs? All ideas welcomed. Thanks! ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.clearswift.com<http://www.clearswift.com/> **
Re: Outlook Anywhere for restriced set of users
I'd love to do it that way; if it's possible. This is for a few users, when they travel - external access. On Wed, Jul 21, 2010 at 11:19 AM, Ellis, John P. wrote: > Ive not seen it either. I was thinking if it was web based, you could > create a group on AD , add users to the group and add the group to the IIS > permissions. > > Is this for internal access? > > John > > -- > *From:* Russ Patterson [mailto:rus...@gmail.com] > *Sent:* 21 July 2010 16:09 > > *To:* MS-Exchange Admin Issues > *Subject:* Re: Outlook Anywhere for restriced set of users > > OA is RPC over HTTP - but I don't think there's a web server - you just > enable the protocol (rpc/http) and set up a DNS record. But it's gotta point > to something, doesn't it? I've never used it, and now we've been asked to > set it up IF we can restrict who uses it. I wish I could respond in a more > informed manner, John. > > I think the DNS record just points to the enabled for rpc_over_http CAS > server with a special name, and then Outlook talks to that CAS server with > RPC to get pointed at the mailbox. Everyone, please chime in to correct my > assumptions. > > On Wed, Jul 21, 2010 at 10:33 AM, Ellis, John P. > wrote: > >> Not sure, but can you enable/Disable the option inside AD? >> >> Is OA a web server? >> John >> >> >> -- >> *From:* Russ Patterson [mailto:rus...@gmail.com] >> *Sent:* 21 July 2010 15:25 >> *To:* MS-Exchange Admin Issues >> *Subject:* Outlook Anywhere for restriced set of users >> >> Hello All - >> >> Any creative suggestions as to how to allow Outlook Anywhere for only a >> sub-set of your users? Assume that any secret URL will stay secret for about >> 37 seconds, and that we'd want a small percentage of users 'enabled.' - >> Seperate CAS server? restricted certs? All ideas welcomed. Thanks! >> >> ** >> >> This email and any files transmitted with it are confidential and >> >> intended solely for the use of the individual or entity to whom they >> >> are addressed. If you have received this email in error please notify >> >> the system manager. >> >> This footnote also confirms that this email message has been swept by >> >> MIMEsweeper for the presence of computer viruses. >> >> www.clearswift.com >> >> ** >> >> >
RE: Outlook Anywhere for restriced set of users
Ive not seen it either. I was thinking if it was web based, you could create a group on AD , add users to the group and add the group to the IIS permissions. Is this for internal access? John From: Russ Patterson [mailto:rus...@gmail.com] Sent: 21 July 2010 16:09 To: MS-Exchange Admin Issues Subject: Re: Outlook Anywhere for restriced set of users OA is RPC over HTTP - but I don't think there's a web server - you just enable the protocol (rpc/http) and set up a DNS record. But it's gotta point to something, doesn't it? I've never used it, and now we've been asked to set it up IF we can restrict who uses it. I wish I could respond in a more informed manner, John. I think the DNS record just points to the enabled for rpc_over_http CAS server with a special name, and then Outlook talks to that CAS server with RPC to get pointed at the mailbox. Everyone, please chime in to correct my assumptions. On Wed, Jul 21, 2010 at 10:33 AM, Ellis, John P. wrote: Not sure, but can you enable/Disable the option inside AD? Is OA a web server? John From: Russ Patterson [mailto:rus...@gmail.com] Sent: 21 July 2010 15:25 To: MS-Exchange Admin Issues Subject: Outlook Anywhere for restriced set of users Hello All - Any creative suggestions as to how to allow Outlook Anywhere for only a sub-set of your users? Assume that any secret URL will stay secret for about 37 seconds, and that we'd want a small percentage of users 'enabled.' - Seperate CAS server? restricted certs? All ideas welcomed. Thanks! ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.clearswift.com <http://www.clearswift.com/> **
Re: Outlook Anywhere for restriced set of users
OA is RPC over HTTP - but I don't think there's a web server - you just enable the protocol (rpc/http) and set up a DNS record. But it's gotta point to something, doesn't it? I've never used it, and now we've been asked to set it up IF we can restrict who uses it. I wish I could respond in a more informed manner, John. I think the DNS record just points to the enabled for rpc_over_http CAS server with a special name, and then Outlook talks to that CAS server with RPC to get pointed at the mailbox. Everyone, please chime in to correct my assumptions. On Wed, Jul 21, 2010 at 10:33 AM, Ellis, John P. wrote: > Not sure, but can you enable/Disable the option inside AD? > > Is OA a web server? > John > > > -- > *From:* Russ Patterson [mailto:rus...@gmail.com] > *Sent:* 21 July 2010 15:25 > *To:* MS-Exchange Admin Issues > *Subject:* Outlook Anywhere for restriced set of users > > Hello All - > > Any creative suggestions as to how to allow Outlook Anywhere for only a > sub-set of your users? Assume that any secret URL will stay secret for about > 37 seconds, and that we'd want a small percentage of users 'enabled.' - > Seperate CAS server? restricted certs? All ideas welcomed. Thanks! > > ** > > This email and any files transmitted with it are confidential and > > intended solely for the use of the individual or entity to whom they > > are addressed. If you have received this email in error please notify > > the system manager. > > This footnote also confirms that this email message has been swept by > > MIMEsweeper for the presence of computer viruses. > > www.clearswift.com > > ** > >
RE: Outlook Anywhere for restriced set of users
Not sure, but can you enable/Disable the option inside AD? Is OA a web server? John From: Russ Patterson [mailto:rus...@gmail.com] Sent: 21 July 2010 15:25 To: MS-Exchange Admin Issues Subject: Outlook Anywhere for restriced set of users Hello All - Any creative suggestions as to how to allow Outlook Anywhere for only a sub-set of your users? Assume that any secret URL will stay secret for about 37 seconds, and that we'd want a small percentage of users 'enabled.' - Seperate CAS server? restricted certs? All ideas welcomed. Thanks! ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.clearswift.com **