RE: RPC over HTTP security issue

["Edgar Romero" <edgar.romero () sciron us>]

Right click the user account in AD using the users and computer tool
provided by Exchange, go to exchange tasks then disable Outlook Web Access
(OWA) for those users that you want to not have access.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of nawalmiftahi () gmail com
Sent: Monday, May 07, 2007 2:03 AM
To: security-basics () securityfocus com
Subject: RPC over HTTP security issue

Hii All,

 We are considering for deploying RPC overHTTP for remote connection to our
exchange , but the issue we are facing is if we deploy this RPC/HTTP.ALL our
active directory users can remotely access the exchange by providing their
credentials,but we does'nt want to give access to all but only to few
specific users. presently we have outlook webaccess ,access to which is
given only to specific users..can anyone let me know how we can deploy this
by giving access only to the specific users .