17.6.4 配置内部AutodiscoverServiceInternalUri

查看下当前的AutodiscoverServiceInternalUri

wKiom1V-4WyyD6ilAAOpqw5HmfQ617.jpg

对广州总部的两台CAS更改AutodiscoverServiceInternalUri进行配置,更改为:https://mail.robin.com/Autodiscover/Autodiscover.xml

wKioL1V-4xmjunRGAAE_OjBHmKI675.jpg

配置好后,Get-ClientAccessServer进行确认一遍,OK

wKiom1V-4Wzi9oOvAAEKLcOJtk8233.jpg

17.6.3 启用OUTLOOK ANYWERE

定位到如下位置,点击编辑按钮

wKiom1V-4WzS_J6tAAN_SRbP9nU727.jpg

指定外部主机名

wKioL1V-4xryM7OZAAIHbFM3D98995.jpg

EX12也做相同的配置

wKioL1V-4xrTS9feAAIDUw5cKpE655.jpg

It is important for you to understand the difference between several authentication types Exchange offers for Outlook Anywhere

 

Basic authentication: If you select this authentication type, Outlook will prompt for username and password while attempting a connection with Exchange.

 

NTLM authentication: If you select this authentication type, exchange does not prompt users for a user name and password. The current Windows user information on the client computer is supplied by the browser through a cryptographic exchange involving hashing with the Web server. If the authentication exchange initially fails to identify the user, the browser will prompt the user for a Windows user account user name and password. So, when Outlook is trying to connect to Exchange and if the machine is domain joined, there isn’t a need to provide password.

 

Negotiate authentication: Enabled by default in Exchange 2013. This is a combination of Windows integrated authentication and Kerberos authentication. If we employ negotiate authentication, exchange will authenticate the client using NTLM authentication type and if unable to verify authenticity, will challenge the client to authenticate using a username and password.

If you look at Outlook settings –> Account Settings –> More Settings –> Connection, you may see the same authentication settings.