Chapter12.Securing Outlook Web Access (OWA) Traffic

Chapter 12. Securing Outlook Web Access (OWA) Traffic

IN THIS CHAPTER

• Enabling Secure Sockets Layer (SSL) Support for Exchange Outlook Web Access

• Securing Exchange Outlook Web Access with ISA Server 2004

• Summary

• Best Practices

One of the most common reasons for deploying ISA Server 2004 is for securing Outlook Web Access (OWA) sites from access from the Internet. ISA Server 2004 contains unprecedented capabilities to secure and protect an OWA server with its reverse proxy capabilities, forms-based authentication support, and end-to-end SSL encryption capabilities.

This chapter focuses on the best practice approaches to securing Outlook Web Access sites with ISA Server 2004. Specific step-by-step examples of setting up OWA with SSL encryption and forms-based authentication are presented. The examples in this chapter focus on a deployment scenario with ISA as an edge firewall.

The common scenario of ISA as a unihomed reverse proxy system in the DMZ of an existing firewall, used to secure OWA and other services, is covered in Chapter 7, "Deploying ISA Server as a Reverse Proxy into an Existing Firewall DMZ." That said, many of the tasks illustrated in this chapter apply to that scenario as well, and informational notes are given if the DMZ scenario differs from what is illustrated.