Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: OWA/Exchange/Apache

From: Morten Grouleff <morten () grouleff com>
Date: Mon, 15 Dec 2003 01:05:54 +0100
José Enrique Díaz Jolly <enrique () podernet com mx> writes:

[...]


The apache configuration I think right now has no sense as it works
with several other applications served as well by other Apaches. But
the question is where is the trick on the OWA+IIS configuration? I
have tried using or forcing the different server names on the header
section but still something is wrong. I have tried to seek get the
whole configuration through a proxy that resolves not what is on my
internal network and everything worked, but this was because my
browser was able to "map" my OWA server from inside the network, but
if I try to get it thro a fully internet connection I can get
authentication but not the wished results. Can anyone point me to the
propper direction? Please?


I have a working setup, although it has merely been used for testing.

Have you been over this page your searches? When I found it, everything
was fine using Opera and Netscape as browser, but not Internet Explorer.
This was puzzling.

<URL:http://www.mail-archive.com/modssl-users () modssl org/msg15460.html>

One problem may be that IIS tries "Integrated Windows Authentication"
with the clients? This apparently fails through the Apache proxy.
In my case, it helped to switch off this option on the directory tab of
the properties for the exchange nodes of the IIS services manager.

Another problem may be https vs. http. I have added the module
"mod_proxy_add_forward" to my build of Apache, after adding the
following line to the function "add_forward_header" in the module. This
instructs IIS to use https rather than http.

        ap_table_set(r->headers_in, "Front-End-HTTPS", "On");


I have a setup slightly different from yours, as I use mod_rewrite to
avoid running with "ProxyRequests on".

ProxyRequests off
RewriteEngine on
ProxyVia Full
RewriteRule ^/(exchange.*) http://exchange.domain.com/$1 [P]
RewriteRule ^/(exchweb.*) http://exchange.domain.com/$1 [P]
RewriteRule ^/(public/.*) http://exchange.domain.com/$1 [P]

Regards,
-- 
Morten Grouleff.

---------------------------------------------------------------------------
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: