Wednesday, August 20, 2008

OWA 2007 HTTP to HTTPS Re-DIRECT IIS 7.0 PART-I




This one took me some time to complete with the help Biswas, Pushpendu , so I have to give him the credits. We just deployed Exchange 2007 and did not have time to stand up ISA (Politics) . Anyway without ISA we open up the CAS to the SSL from outside world( security people must be horrified now (-: ).

Client did not want to type https://smtp25.blogspot.com/ each time they need to use OWA in exchange 2007 and asked for HTTP to SSL redirection and /owa redirection, which makes total sense anyways

Short story they wanted to open a browser and just type http://smtp25.blogspot.com/ and get to OWA page. (SSL)

This is part one, part two I will show you step by step with how to do achive same goal

Goal:

Redirect http reques to SSL and /owa on exchange 2007 with IIS 7.0 ( Windows 2008)

Overal Process

  • Connect to exchange 2007 (CAS) server and open up IIS 7.0
  • Go to run, type, Inetmgr
  • Locate default page , modify 403-4.htm located on (C:\inetpub\custerr\en-US\403.htm)

    Tips: use windows search if you need it (- :

    Use the simple HTML code I am providing (Thanks to Pushpendu Biswas)

    Just replace the SMTP domain name to your own

    Modify the 403-4.htm, save it

    Go to HTTP redirect on the default website, select

    Redirect request to this destination abnd palce /owa

    And make sure there is no further configuration is needed, OWA virtual directory needs to be un-touched.


Here is the simple HTML file you need toi replace 403-4.htm


<html>
<head>
<title>Redirect to the right page</title>
<META http-equiv="refresh" content="0;URL=https://webmail.smtp25.gov/owa">
</head>
</html>


Oz Ozugurlu

MVP (Exchange)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
Blog: http://www.smtp25.blogspot.com

1 comment:

Unknown said...

Hi,

I have co-existance envt. of 2003 and 2007 and need to access to OWA/exchange without forcing users to learn one more website.
I want that web mail(2003) will automaticall redirect user to their new url if it has a mailbox on 2007. We have http://mail.domain.com for x2003 and http://email.domain.com for x2007.

Now when user is trying to access his mailbox thru http://mail.domain.com while being his mailbox on 2007 it is forwarding to next page with error message "There is a problem with this website's security certificate" and if you click "Continue to website(not recommended" it will take you to right one.

My question is is there any way we can get rid of this middle error page..?

Did I mention we do have SSl for this new site and server. And this is for internal access.

It may sound confusing but please feel free to ask if u need more clarification. Thanks in advance.