Exchange 2007 SP2 + NTLM
Задача: разрешить аутентификацию NTLM через Exchange RPC Proxy и чтобы Basic тоже работала.
После длительных поисков нашел замечательную статью на этот счет (http://cid-a19e3265de255fbb.spaces.live.com/blog/cns!A19E3265DE255FBB!2221.entry).
Коротко, делаем так:
If it doesn’t have “Basic, NTLM” and only NTLM, then run this command in PowerShell.
get-outlookanywhere | set-outlookanywhere -IISauthentication basic,Ntlm
Этого я не делал: get-outlookanywhere | set-outlookanywhere -Clientauthentication basic,Ntlm
When an Outlook client using Outlook Anywhere tries to connect to Exchange 2007 running on Windows Server 2008, the client receives repeated prompts to enter their credentials and can’t connect.
This is because Internet Information Services (IIS) 7.0, the Web server role in Windows Server 2008, has kernel mode enabled by default for Integrated Windows authentication.
%systemroot%system32inetsrvAppCmd.exe set config /section:system.webServer/security/authentication/windowsAuthentication /useKernelMode:false
appcmd.exe Stop Site “Default Web Site”
appcmd.exe Start Site “Default Web Site”
When Exchange 2007 is run under Windows Server 2008, clients who use Exchange 2007 may be repeatedly prompted for their credentials during Outlook Anywhere sessions. This issue occurs when NTLM Authentication is selected as the authentication method in the Exchange Proxy Settings dialog box for the Outlook profile on the client computer. This issue does not occur if Basic Authentication is selected as the authentication method in the Exchange Proxy Settings dialog box. By default, Kernel Mode Authentication is enabled in Internet Information Services (IIS) 7.0 on the Client Access server. To resolve this issue, disable Kernel Mode Authentication for Client Access servers that are running Windows Server 2008.
%systemroot%system32inetsrvAppCmd.exe set config /section:system.webServer/security/authentication/windowsAuthentication /useKernelMode:false
EasyIDS + Rsyslog Exchange 2007 + anonymous receive connector for internal use