Error in Exchange 2010 OWA rule publishing on TMG
Post publishing OWA rule on a TMG server, clients get error “You could not be logged on to Forefront TMG. Make sure that your domain name, user name, and password are correct, and then try again.”
Information:
OWA rule is configured as per Microsoft guidelines with basic and form based with windows active directory authentication.
Exchange 2010 is also configured to use basic authentication
Issue:
OWA page is coming but Login is not working and also giving the following error:
“You could not be logged on to Forefront TMG. Make sure that your domain name, user name, and password are correct, and then try again.”
This error defines that there is some issue in login but you will try all the possible things to make it working.
Cause:
This will come because Threat Management Gateway server is part of workgroup which can’t authenticate users and in OWA publishing rule Users scope is selected to all authenticated users.
Resolution:
On OWA Publishing rule change the Users Tab scope from all authenticated user to all users.
Or
Make the TMG part of domain but this will not be recommend to make a firewall part of domain.
Prabhat Nigam
Team @MSExchangeGuru
November 26th, 2011 at 12:24 pm
I am using exchange 2010 beyond TMG Server. everything is working fine. owa is working fine from internet and internal.
issue: One single user is unable to login to owa from external. He is getting TMG error.
thanks
November 30th, 2011 at 11:24 am
Hari,
Are there any restrictions on the OWA publishing rule for the users? Can you check if the specified user is a member of the group that has been granted access to OWA?
November 30th, 2011 at 11:28 am
No there are no restrictions for the users on the OWA Publishing rule.
November 30th, 2011 at 1:13 pm
How about on user’s properties in EMC? Outlook Web App is enabled?
December 1st, 2011 at 12:52 am
Outlook web app is enabled.
January 28th, 2012 at 11:11 am
Hi,
It is working after changing to all users.
February 21st, 2012 at 12:04 am
How about Hari? Is it working after changing it to all users? If not then you might need to re-enable the protocols for the user from EMShell.
June 17th, 2012 at 5:28 am
hi
I changed it to “all users” but it doesnot work again.it shows the forefront tmg auth page when I fill the username and password it shows owa page and I should fill it again.
June 25th, 2012 at 2:04 pm
Hi Net,
This article is for the particular error.
“You could not be logged on to Forefront TMG. Make sure that your domain name, user name, and password are correct, and then try again.”
If it is doing the redirection from ISA to OWA webpage and asking the password again then you need to fix the exchange configuration.
Prabhat
May 28th, 2013 at 4:34 pm
I cannot access my e-mail and I feel very frustated
May 28th, 2013 at 6:58 pm
@Julia
Please send me the error. I will try to help you out.
prabhat@msexchangeguru.com