Cause
Some providers do not allow customer's CP users (Account Administrators) to access end users' mailboxes by hiding passwords. However, autologin to Outlook Web Access is still available and can be used for unauthorized access.Resolution
Until feature request #117998 is processed, there is no way to disable the OWA link using the POA CP. The only way is to adjust database properties in the following way:BEGIN;
UPDATE exch_protocols_services SET owa_dir='' WHERE service_id=<service_id>;
COMMIT;SELECT service_id, host, ip_addr FROM exch_protocols_services p
JOIN exch_nlb_clusters c USING(cluster_id)
JOIN dns_resource_records d ON(d.rr_id = c.dns_record_id);plesk=> SELECT service_id, host, ip_addr FROM exch_protocols_services p
plesk-> JOIN exch_nlb_clusters c USING(cluster_id)
plesk-> JOIN dns_resource_records d ON(d.rr_id = c.dns_record_id);
service_id | host | ip_addr
------------+---------------------------------+-----------------
119 | exchange.example.com. | 064.131.091.165
132 | exchange2007.example.com. | 064.131.091.112
(2 rows)To disable OWA autologin for exchange2007.example.com use 132 as service id:
plesk=> BEGIN;
BEGIN
plesk=> UPDATE exch_protocols_services SET owa_dir='' WHERE service_id=132;
UPDATE 1
plesk=> COMMIT;
COMMITAfter this update is performed, OWA link from the customer's CP may get broken, returning error 404 for the following URL:
https://exchange2007.example.com/auth/owaauth.dllTo resolve this issue one may setup a redirect (this should be done on all CAS servers or Front-ends participaiting in the NLB cluster):
1. Create an empty file C:\inetpub\wwwroot\auth\owaauth.dll
2. Set the following options for file "/auth/owaauth.dll" in IIS Management Console on the Default Site:
- "Redirection to a URL" - selected
- "Redirect to:" - /owa
- "Exact URL entered above" - checked
Keywords: owa autologin