Announcement

Collapse
No announcement yet.

denying access owa internet

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • denying access owa internet

    Hello.
    I want some users do not have access to mail from owa externally but internally yes.
    as I to deny access to any user? excuse my English


  • #2
    Re: denying access owa internet

    this would have to be done @ the network level, Exchange does not have this feature.

    Comment


    • #3
      Re: denying access owa internet

      You want some users to not access OWA externally, but you want them to be able to access it internally, is that correct ?

      Are you talking about ALL users, or just SOME users ?

      If it's ALL users, then just ensure your port is not forwarded at the firewall.

      If it's SOME users... well i'm buggered.. forefront or ISA MAY be able to do this..
      Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

      Comment


      • #4
        Re: denying access owa internet

        An ISA server is going to be your only option here, as that allows access to be controlled at a user level.
        Exchange on its own doesn't care where you connect from, so you can only turn OWA access on, or off.

        Simon.
        --
        Simon Butler
        Exchange MVP

        Blog: http://blog.sembee.co.uk/
        More Exchange Content: http://exchange.sembee.info/
        Exchange Resources List: http://exbpa.com/
        In the UK? Hire me: http://www.sembee.co.uk/

        Sembee is a registered trademark, used here with permission.

        Comment


        • #5
          Re: denying access owa internet

          It is i want do.
          so... THROUGH ISA server, Is it the unique solution?
          My idea is create a group in AD to denied access owa from internet but no from intranet.-

          Comment


          • #6
            Re: denying access owa internet

            yes, ISA can do this.

            you need to create a rule that allows access if they belong to a specific group, and a defaultdeny otherwise.
            you then need to make that rule authenticate them off AD, and not re-prompt for authentication back at the OWA server
            Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

            Comment

            Working...
            X