I am having problems using Outlook Web Access 2000 through a WebVPN session on a Cisco VPN 3005. Once I have connected via WebVPN to the concentrator, I click on the link to my OWA server and get the correct opening page (as I would if not using VPN) where I enter my name to connect to my email account. I then get an "Authentication Required" page from the VPN concentrator where I enter my username, password and domain. I enter these and click on continue, and there appears to be an attempt to connect - the progress bar at the bottom of the page slowly increments, but when it gets to 100% and disappears I still just have the Authentication Required page on screen, complete with the details I have entered.
The VPN 3005 log shows the following (actual username replaced by username, email account user.name@domain_name, actual servername replaced by servername, log annotated with my actions):
NTLM Auth. Login: Username [username], Domain [domain_name] to remote server servername
I'm not sure of the significance of the Closing socket 6 for invalid connection line.
The OWA server is in the DMZ, and the Exchange server is on the internal LAN. Direct OWA access (i.e. without VPN) from the outside world is fine; the authentication dialogue box in these circumstances just asks for username and password, not domain.
OWA is configured for https connections only. I am using Internet Explorer 6 (but have found the same problems with Firefox 1.0.7). The VPN 3005 is running 4.7.2B.
I'd be very grateful for any thoughts on what might be causing these difficulties.
Tried http rather than https on OWA (after persuading my server colleagues to temporarily allow this), and lo and behold authentication is fine BUT I now just get "Loading..." where my inbox should be. I've a feeling I've seen this problem before, but not a resolution to it. Anyone got any thoughts?
I've now also got around the initial authentication problem by turning off Windows authentication (NTLM) on the OWA server, and so using basic authentication instead. This configuration enables successful authentication using https to the OWA server via the VPN3005, but thereafter I get the "Loading..." problem as described in my previous post. This is using Internet Explorer; I get my inbox fine using Firefox! Any ideas?
I was having this same issue with OWA 2003, but the solution was adjusting URLSCAN. This was disallowing the header 'transfer-encoding' which apparently is utilized for webvpn connection. Once I disabled this header filter on the exchange server the OWA began working correctly over the webvpn.
[02-13-2006 - 08:27:08] Client at 10.x.x.x: URL contains disallowed header 'transfer-encoding:' Request will be rejected. Site Instance='1', Raw URL='/exchange/john.smith/Inbox/'
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :