John Yassa's Blog

Home » Posts tagged 'Outlook Web Access'

Tag Archives: Outlook Web Access

Publish Multiple OWA & ECP Virtual Directories on one Exchange 2010 CAS Server

Suppose you host more than one domain at your Exchange server , and each company need to have its OWA URL , below is steps how you can implement more than one OWA & ECP on one Exchange 2010 server

1- Create a new WEB SITE
– New IP
– Ports 80 / 443
– Name WebMAIL
– Default Path – C:\inetpub\wwwroot

2- Install Certificate (HTTPS) for External User

3- Copy the Folders:
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Owa
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\ecp
C:\Program Files\Microsoft\Exchange Server\V14_domainname\ClientAccess\Owa
C:\Program Files\Microsoft\Exchange Server\V14_domainname\ClientAccess\ecp

4- ON IIS – ISAPI and CGI Restrictions
Give Permission ALLOW to this DLL
C:\Program Files\Microsoft\Exchange Server\V14_domainname\ClientAccess\Owa\auth\owaauth.dll

5- On Exchange Power Shell
new-owairtualDirectory -WebSiteName “WebMAIL” -Path “C:\Program Files\Microsoft\Exchange Server\V14_domainname\ClientAccess\Owa”

New-ecpVirtualDirectory -WebSiteName “WebMAIL” -Path “C:\Program Files\Microsoft\Exchange Server\V14_domainname\ClientAccess\ecp”

6- Fix Virtual Directory Path
In IIS – change – The Virtual Directory Path

7- In Exchange Console
– Server Configuration > Client Access > <server> > Outlook Web APP > owa (Mail) > Properties Authentication > Use one or more standard authentication methods > FBA

– Server Configuration > Client Access > <server> > Exchange Control Panel > ECP (Mail) > Properties Authentication > Use one or more standard authentication methods > FBA

8- Reset IIS

Now try to browse the URL of the new OWA

An old password still works after you change it in Outlook Web Access

Assume that a user changes their password in Outlook Web Access (OWA) in one of the following versions of Microsoft Exchange Server:

  • Microsoft Exchange Server 2010
  • Microsoft Exchange Server 2007
  • Microsoft Exchange Server 2003

In this case, you may notice a 15-minute period during which the user can log on to their mailbox by using either the old password or the new password. However, if the user uses a MAPI client (such as Microsoft Outlook) to access the mailbox or if the user tries to access other files and resources, the user is authenticated only if they use the new password.

This latency exists by design for Internet Information Services (IIS) performance reasons and is controlled by the following registry setting.
Warning   If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.

  1. Start Registry Editor (Regedt32.exe) on the server that is running IIS and through which the user gains access to OWA.
  2. Locate the following key in the registry:
  3. On the Edit menu, click Add Value, and then add the following registry value:
    Value Name:  UserTokenTTL   (Note This is case-sensitive!) Data Type:   REG_DWORD Value Range: 0 – 0x7FFFFFFF (Note This unit is in seconds.)
  4. Exit Registry Editor, and then restart IIS.
%d bloggers like this: