OWA 2007 - ALL ARTICLES
 ISAServer.org Summary: This article, by ISA Firewall specialist Thomas Shinder, explains that earlier versions of ISA Firewall (2000 and 2004) included navigation protection. Navigation protection ensures that if a user goes to another website, such as Google, without logging off OWA, ISA automatically logs the user off. With navigation protection, administrators can rest assured that users are not leaving active OWA sessions behind.
ISA Firewall 2006 no longer includes navigation protection. This is explained in more detail in an ISA Security report published by Messageware Incorporated (ISA Security Report: OWA Security Issues Undetected by ISA Server) referenced in Thomas Shinder’s article. To read the full article, go to: http://blogs.isaserver.org/shinder/2007/07/19/isa-firewall-auto-log-off-controls-can-be-a-security-issue-for-owa-publishing/ |
SearchExchange.com Summary: The article gives an overview of an OWA attachment solution called AttachView by Messageware, which lets users safely view a wide array of attachments without ever downloading the file to the local computer. AttachView offers users secure access to attachments via an enhanced viewing window with features such as: view Microsoft Word Track Changes revisions, a hyperlinked table of contents, printer-friendly version, rotate and zoom buttons.
Administrators can set rules giving users access to users to open, save and print attachments based on criteria such as IP address, username, hostname and if they are connecting from a corporate device. To view the full article, go to http://searchexchange.techtarget.com/tip/0,289483,sid43_gci1310616,00.html |
Microsoft Summary: This article provides a low-level overview of what is new in Exchange 2007 including a feature summary. In Exchange 2007, the main focus is on security, mobility, and efficiency.
http://technet.microsoft.com/en-us/exchange/bb736128.aspx |
ISA Server Product Team Blog Summary: The article outlines the most common authentication methods and certificate consideration as well as steps to troubleshoot the 6 most common ISA Server issues (summary below).
Scenario 1: Users are re-prompted for authentication after entering username and password on the ISA FBA logon page. Resolution: Verify that FBA is only enabled on the CAS or ISA Server. Scenario 2: Users receive the error “Target Principle name is incorrect” after entering credentials on the FBA form. Resolution: Verify the certificate name, the CAS name referenced on the ISA rule, and make sure the ISA server can resolve the CAS FQDN to an IP. Scenario 3: Typing in the OWA URL without using /owa gives “403 Access Forbidden” error Resolution: The ISA paths only allow for access to OWA with /owa. Either update the allowed paths or use /owa in the URL. Scenario 4: After logging into OWA users receive a “404 Not Found” error and ISA logs show a “Failed connection attempt” error Resolution: Make sure that the ISA server can resolve the CAS FQDN to an IP, use telnet to connect to the FQDN and check if you get a response, and enable logging. If you see a “Failed connection attempt” error in the ISA logs, also check for connection issues between ISA and the CAS such as closed or restricted ports, do a network trace, and check the IIS logs to see if the connection was received. Scenario 5: Users get a “10061 Connection Refused” error after logging into OWA. Resolution: Make sure that the port on the Bridging tab used by ISA to connect to Exchange matches the port configured on the OWA website in IIS. In this scenario, the ISA logs will show a “Failed connection attempt” error. Scenario 6: When connecting to OWA via ISA users can login but all the buttons are disabled on a new message form. The issue does not occur when connecting to the Exchange Server directly. Resolution: Verify if you have other 3rd party ISAPI filters on the OWA website. To access the full article, go to http://blogs.technet.com/isablog/archive/2008/04/29/troubleshooting-owa-2007-publishing-rules-on-isa-server-2006.aspx |
Microsoft Summary: Microsoft’s article outlines the top 10 reasons to upgrade to Exchange 2007 from a business perspective.
http://www.microsoft.com/exchange/evaluation/topreasons.mspx |
InfoWord Summary: The top 10 user and administrator features in Exchange 2007 are outlined in the article by InfoWord.
http://www.infoworld.com/article/06/08/07/32FEexchange10_1.html?s=feature |
ThomasNet Summary: This article describes how to secure and enhance OWA by installing the Messageware Suite for Exchange 2007 SP1.
http://news.thomasnet.com/fullstory/807394 |
MSExchange.org Summary: This product review outlines how Messageware’s AttachView product extends WebReady Document Viewing with security and productivity features.
http://blogs.msexchange.org/walther/2008/01/16/messagewares-attachview-2007-takes-webready-document-viewing-to-new-heights/ |
WindowsITPro Summary: This article discusses the configuration options available when using the Set-OwaVirtualDirectory cmdlet. The cmdlet offers 77 configuration options some of which are available through the Exchange Management Console and some of which are only available through the Exchange Management Shell.
http://windowsitpro.com/article/articleid/97757/setting-client-access-server-and-owa-options.html |
TechNet Magazine Summary: The article covers the 16 most significant changes Exchange 2007 SP1 offers, including:
|