Configure Form based Authentication in exchange server 2010

Exchange 2010 OWA uses forms-based authentication by default. Outlook web access enables users to access their exchange 2010 mailbox using a web browser, such as Microsoft Internet explorer. Forms-based authentication creates a logon page for OWA. Forms-based authentication service uses cookies to store user logon credentials and password information in an encrypted state.

The default location to access OWA is https://servername/owa, in which servername is the name of the CAS server hosting OWA. The default authentication method, and the one most commonly used, is Forms-Based Authentication (FBA).

OWA forms-based authentication methods supports three different logon formats to enable the organization flexibility in the logon. The three logon formats follow:

Domain\username                         

This is the default logon format and requires the user to enter their domain and their username. For example, trainingtech\gul.

User principal name (UPN)

This enables the users to use their email address and the logon format. For example, gul@trainingtech.net.

User name only

This enables users to just enter their username to logon. For example, gul. This is the simplest option for the user, especially for organizations with only one Active Directory domain.

1. Open Exchange Management Console, expand Server Configuration, click on Client Access and then click on owa (Default Web Site) option and click Properties.

client-access-owa

2. The owa properties will open, click on the Authentication tab and select Domain\user name option.

form based authentication

3. This is the default logon format, Enter domain name and along with username.

form base authentication service

4. You can change owa authentication method through user principal name.

exchange 2010 owa

5.  This option enables the users to use their email address and the logon format.

owa authentication method

6. The third option which is the User name only is mostly used. Click user name only then select Browse to select domain.

exchange 2010

7. Select domain name then click ok to further proceed.

client access owa

client access owa-9

8. when you change from one owa authentication methods to another, you will be presented with a warning message, that the changes won’t be applied till you restart IIS.

owa authentication methods

9. You can see how the User name only will display the authentication option on owa.

forms-based authentication service