PROBLEM
Users don't want to type in https://webmail.domainname.com/owa; they just want to type in webmail.domain.com. You want them to use only SSL.
The best procedure is found here:
http://technet.microsoft.com/en-us/library/aa998359.aspx
Except instead of the annoying HTML code they include in the redirect page, just use this (remove leading spaces in tags!)
<>
< equiv="refresh" content="1; URL=https://webmail.servername.com/owa">
< /head>
Then webmail.domainname.com will redirect to https://webmail.domainname.com/owa. BUT what that article does not mention is that you have to go into the properties of the owa directory (or exchange if you're on 2003) and make sure to require SSL. By default this always seems to get disabled when you disable the requirement for the Default Web Site. Otherwise, uses who type in webmail.domainname.com/owa will be allowed to log in over HTTP.
Clear as mud???
No comments:
Post a Comment