Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Friday, February 15, 2019 6:43 AM
Hello. I have two exchange 2016 CU11 installed on Windows 2016 Server. And balancing via DNS round robin. All virtual directories is configured with https://mail.domain.com internal URL on both servers. On OWA and ECP virtual catalogs i configured Windows Integrated Authentication. On clients IE is configured with https://mail.domain.com in local intranet zone. But users still see form-based authentication on owa page.
SSL certificate is good. Trusted in all systems and have all names in SAN.
iisreset /restart - i tried
In OWA virtual directory NTLM and Negotiate if configured for windows integrated authentication providers.
Why so? Any advice
All replies (6)
Saturday, February 16, 2019 4:36 AM ✅Answered
At last!!! I solved my problem with
Get-OwaVirtualDirectory -Server Server1 | Set-OwaVirtualDirectory -WindowsAuthentication $true -FormsAuthentication $false
And then restart w3svc
I think this is a BUG, because these parameters have already been configured (see above). I originally set them up through GUI.
Question is closed.
Friday, February 15, 2019 9:18 AM
Hi,
Follow below to configure it:-
https://www.ntweekly.com/2016/01/30/integrated-windows-authentication-exchange-server-2016/
Thanks, Ashish (I can be wrong but can't be rude) “Tell me and I forget, teach me and I may remember, involve me and I learn.” MCITP, MCT, MCSE. Please remember to vote and mark the replies as answers if they help.
Friday, February 15, 2019 11:47 AM
Thanks for quick answer, but i'm already did all of this. And still no success...
Friday, February 15, 2019 12:04 PM
Hi,
Can you please share result of below:-
Get-OwaVirtualDirectory -Server Ex1 | fl
Replace server name here.
Thanks, Ashish (I can be wrong but can't be rude) “Tell me and I forget, teach me and I may remember, involve me and I learn.” MCITP, MCT, MCSE. Please remember to vote and mark the replies as answers if they help.
Saturday, February 16, 2019 1:02 AM
RunspaceId : d6f607f4-55c9-4a18-93de-49f4d832ab55
DirectFileAccessOnPublicComputersEnabled : True
DirectFileAccessOnPrivateComputersEnabled : True
WebReadyDocumentViewingOnPublicComputersEnabled : True
WebReadyDocumentViewingOnPrivateComputersEnabled : True
ForceWebReadyDocumentViewingFirstOnPublicComputers : False
ForceWebReadyDocumentViewingFirstOnPrivateComputers : False
WacViewingOnPublicComputersEnabled : True
WacViewingOnPrivateComputersEnabled : True
ForceWacViewingFirstOnPublicComputers : False
ForceWacViewingFirstOnPrivateComputers : False
RemoteDocumentsActionForUnknownServers : Block
ActionForUnknownFileAndMIMETypes : Allow
WebReadyFileTypes : {.xlsx, .pptx, .docx, .xls, .rtf, .ppt, .pps, .pdf, .dot, .doc}
WebReadyMimeTypes : {application/vnd.openxmlformats-officedocument.presentationml.presenta
tion, application/vnd.openxmlformats-officedocument.wordprocessingml.d
ocument,
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet,
application/vnd.ms-powerpoint, application/x-mspowerpoint,
application/vnd.ms-excel, application/x-msexcel, application/msword,
application/pdf}
WebReadyDocumentViewingForAllSupportedTypes : True
WebReadyDocumentViewingSupportedMimeTypes : {application/msword, application/vnd.ms-excel, application/x-msexcel,
application/vnd.ms-powerpoint, application/x-mspowerpoint,
application/pdf, application/vnd.openxmlformats-officedocument.wordpro
cessingml.document,
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet, app
lication/vnd.openxmlformats-officedocument.presentationml.presentation
}
WebReadyDocumentViewingSupportedFileTypes : {.doc, .dot, .rtf, .xls, .ppt, .pps, .pdf, .docx, .xlsx, .pptx}
AllowedFileTypes : {.rpmsg, .xlsx, .xlsm, .xlsb, .vstx, .vstm, .vssx, .vssm, .vsdx,
.vsdm, .tiff, .pptx, .pptm, .ppsx, .ppsm, .docx...}
AllowedMimeTypes : {image/jpeg, image/png, image/gif, image/bmp}
ForceSaveFileTypes : {.svgz, .html, .xml, .swf, .svg, .spl, .htm, .dir, .dcr}
ForceSaveMimeTypes : {Application/x-shockwave-flash, Application/octet-stream,
Application/futuresplash, Application/x-director, application/xml,
image/svg+xml, text/html, text/xml}
BlockedFileTypes : {.vsmacros, .msh4xml, .msh4xml, .diagcab, .ps2xml, .ps1xml, .mshxml,
.gadget, .mhtml, .xbap, .psc2, .psc1, .msh4, .msh4, .jnlp, .aspx...}
BlockedMimeTypes : {application/x-javascript, application/javascript,
application/msaccess, x-internet-signup, text/javascript,
application/prg, application/hta, text/scriplet}
RemoteDocumentsAllowedServers : {}
RemoteDocumentsBlockedServers : {}
RemoteDocumentsInternalDomainSuffixList : {}
FolderPathname :
Url : {}
LogonFormat : FullDomain
ClientAuthCleanupLevel : High
LogonPagePublicPrivateSelectionEnabled : False
LogonPageLightSelectionEnabled : False
FreCardsEnabled : True
InternalSPMySiteHostURL :
ExternalSPMySiteHostURL :
WacEditingEnabled : True
DropboxAttachmentsEnabled : True
BoxAttachmentsEnabled : True
OneDriveAttachmentsEnabled : True
GoogleDriveAttachmentsEnabled : True
ClassicAttachmentsEnabled : True
ReferenceAttachmentsEnabled : True
SaveAttachmentsToCloudEnabled : True
ThirdPartyAttachmentsEnabled : True
IsPublic : False
ExternalDownloadHostName :
InternalDownloadHostName :
FilterWebBeaconsAndHtmlForms : UserFilterChoice
NotificationInterval : 120
DefaultTheme :
UserContextTimeout : 60
ExchwebProxyDestination :
VirtualDirectoryType :
OwaVersion : Exchange2013
ServerName : Server1
InstantMessagingCertificateThumbprint :
InstantMessagingServerName :
RedirectToOptimalOWAServer : True
DefaultClientLanguage : 0
LogonAndErrorLanguage : 0
UseGB18030 : False
UseISO885915 : False
OutboundCharset : AutoDetect
GlobalAddressListEnabled : True
OrganizationEnabled : True
ExplicitLogonEnabled : True
OWALightEnabled : True
DelegateAccessEnabled : True
IRMEnabled : True
CalendarEnabled : True
ContactsEnabled : True
TasksEnabled : True
JournalEnabled : True
NotesEnabled : True
RemindersAndNotificationsEnabled : True
PremiumClientEnabled : True
SpellCheckerEnabled : True
SearchFoldersEnabled : True
SignaturesEnabled : True
ThemeSelectionEnabled : True
JunkEmailEnabled : True
UMIntegrationEnabled : True
WSSAccessOnPublicComputersEnabled : True
WSSAccessOnPrivateComputersEnabled : True
ChangePasswordEnabled : True
UNCAccessOnPublicComputersEnabled : True
UNCAccessOnPrivateComputersEnabled : True
ActiveSyncIntegrationEnabled : True
AllAddressListsEnabled : True
RulesEnabled : True
PublicFoldersEnabled : True
SMimeEnabled : True
RecoverDeletedItemsEnabled : True
InstantMessagingEnabled : True
TextMessagingEnabled : True
ForceSaveAttachmentFilteringEnabled : False
SilverlightEnabled : True
PlacesEnabled : False
WeatherEnabled : True
LocalEventsEnabled : False
InterestingCalendarsEnabled : True
AllowCopyContactsToDeviceAddressBook : True
AnonymousFeaturesEnabled : True
IntegratedFeaturesEnabled : True
DisplayPhotosEnabled : True
SetPhotoEnabled : True
PredictedActionsEnabled : False
UserDiagnosticEnabled : False
ReportJunkEmailEnabled : True
WebPartsFrameOptionsType : SameOrigin
AllowOfflineOn : AllComputers
SetPhotoURL :
InstantMessagingType : None
Exchange2003Url :
FailbackUrl :
Name : owa (Default Web Site)
InternalAuthenticationMethods : {Basic, Ntlm, WindowsIntegrated}
MetabasePath : IIS://Server1.domain.com/W3SVC/1/ROOT/owa
BasicAuthentication : True
WindowsAuthentication : True
DigestAuthentication : False
FormsAuthentication : False
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
DefaultDomain :
GzipLevel : Low
WebSite : Default Web Site
DisplayName : owa
Path : C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\owa
ExtendedProtectionTokenChecking : None
ExtendedProtectionFlags : {}
ExtendedProtectionSPNList : {}
AdminDisplayVersion : Version 15.1 (Build 1591.10)
Server : Server1
InternalUrl : https://mail.domain.com/owa
ExternalUrl :
ExternalAuthenticationMethods : {Fba}
AdminDisplayName :
ExchangeVersion : 0.10 (14.0.100.0)
DistinguishedName : CN=owa (Default Web
Site),CN=HTTP,CN=Protocols,CN=Server1,CN=Servers,CN=Exchange
Administrative Group (FYDIBOHF23SPDLT),CN=Administrative
Groups,CN=MyOrg,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=domain,DC=com
Identity : Server1\owa (Default Web Site)
Guid : 5e76fe4a-4aba-4ca8-adf2-4cf4b645fc2e
ObjectCategory : domain.com/Configuration/Schema/ms-Exch-OWA-Virtual-Directory
ObjectClass : {top, msExchVirtualDirectory, msExchOWAVirtualDirectory}
WhenChanged : 2/14/2019 7:48:31 PM
WhenCreated : 1/8/2019 8:22:26 PM
WhenChangedUTC : 2/15/2019 3:48:31 AM
WhenCreatedUTC : 1/9/2019 4:22:26 AM
OrganizationId :
Id : Server1\owa (Default Web Site)
OriginatingServer : DC.domain.com
IsValid : True
ObjectState : Changed
Monday, February 18, 2019 2:12 AM
Glad to hear that you have found the solution. Thank you for sharing it to us.
Regards,
Steve Fan
Please remember to mark the replies as answers if they helped. If you have feedback for TechNet Subscriber Support, contact [email protected].
Click here to learn more. Visit the dedicated forum to share, explore and talk to experts about Microsoft Teams.