Hi,
I am attempting to publish OWA using reverse proxy with forms based authentication.
I have my active directory servers set up in Authentication Servers, and DNS also pointing to AD servers. The UTM is joined to the domain.
In the Web Server Protection, I have the Exchange server defined in the Real Webservers set up for HTTPS.
I have created a virtual webserver using the same public certificate as the Exchange server. I have manually entered the domain "webmail.mydomain.com", chose the Basic Protection profile and enabled Pass Host Header
In Site Path Routing, I have edited the default entry for the OWA rule and amended the path field to read "/owa" and chose the Reverse Authentication profile I set up which is Forms (frontend), Basic (backend) mydomain.com (frontend realm) and I have selected a domain group in users/groups.
When I visit the OWA URL from an external computer I get the Sophos login form as expected, however after logging on I am then prompted by the Exchange server OWA basic login prompt. In the Sophos UTM logs I see the error:
[reverse_auth:error] backend authentication for user failed. frontend and backend credentials differ: authentication impossible,
I am using the latest beta 9.2 9.171-2
Any help would be great!
Guest User!
You are not Sophos Staff.
