What version are you on. I tried all options on 5.5 but couldn't get OWA to accept credentials until I upgraded to 6.0. Are you having the IVE prompt you for credentials and then not allow access? Are you getting an error message that the page cannot be displayed? Or does it continually try to connect never returning a message?

Kevin

We have been using this since firmware 5.0 (and currently firmware 6.1R2) and it works with OWA 2003.

This SSO setup is based on using HTTPS (443), if you use HTTP (80) just modify the entries.
We use LDAP-S to Active Directory, but it should work for normal AD authention.

OWA.YOURCOMPANY.COM = the URL for your OWA server

Create (or edit) your RESOURCE PROFILES > WEB
Scroll down and enable AUTOPOLICY: SINGLE SIGN-ON.

Select REMOTE SSO
Select POST THE FOLLOWING DATA

RESOURCE: https://OWA.YOURCOMPANY.COM:443/*
POST URL: https://OWA.YOURCOMPANY.COM:443/EXCHWEB/BIN/AUTH/OWAAUTH.DLL

In the box just below these settings, make these parameters:

LABEL = destination, NAME= destination, Value = https://OWA.YOURCOMPANY.com/EXCHANGE, Not modifiable
LABEL = SubmitCreds, NAME= SubmitCreds, Value = Logon+On, Not modifiable
LABEL = Username, NAME= username, Value = <USERNAME>, Not modifiable
LABLE = Password, NAME= password, Value = <PASSWORD>, Not modifiable

SAVE CHANGES

Hi,

What I'am doing is the opposite of making a form post SSO; I change the OWA setup from form-post to standard authentication methods with integrated authentication or basic authentication (but please use SSL to your OWA server as well).

If you do it this way, you have a very easy hassle free SSO for your OWA solution, if it's OWA2000, OWA2003 or even OWA2007.

How?

Follow the steps below (OWA 2003):

Configuring the Exchange Server for standard-based authentication

Authentication

To enable standard -based authentication:

1. On the Exchange server, log on with the Exchange administrator account, and then start

Exchange System Manager.

2. In the console tree, expand Servers.

3. Expand the server for which you want to enable forms-based authentication, and then

expand Protocols.

4. Expand HTTP, right-click Exchange Virtual Server, and then click Properties.

5. In the Exchange Virtual Server Properties dialog box, on the Settings tab, in the Outlook

Web Access pane, select the Enable standard Based Authentication option.

6. Click Apply, and then click OK.

After you change the OWA from form-based to standard based authentication; you can set a SSO based on NTLM-auth on the IVE with the logon credentail variables (<USER> and <PASSWORD>)

Good luck,

Dennis

joepope: is this solution working with Internet Explorer and Firefox?

I'm asking, because I've tried it this way and it works in IE like a charm. In Firefox I get cought in a redirection loop, though...

Unfortunately switching to basic auth on the exchange server is not an option. Any Idea how i can get this resolved? (6.1R4 (build 13437)

Thanks, joepope. It really works with your label parameters on my OWA 2007. I just need to change the destination to /owa/

It saves a lot of time researching.