i'm struggling with a really basic stuff, let me explain:
2 exchange 2012 servers, 2 netscaler in HA pair in DMZ (11.1, build 51.21)
i'm load balancing Exchange 2013 web services with a CS, unaddressable VS for every services, servicegroups and monitors, 101 Exchange config. I checked many howto from the web, all like this:
everything works good.
Now i need to protect OWA access with an AAA vServer.
I created everything as from the book:
Except for the token/radius strong auth aprt, only LDAP auth. I tried also many howto from the web, with some different details, but actually all alike.
Here is the thing:
when I hit https://exch.mydomain.com/owa, I get redirected well to the AAA vServer. I get authenticated and then redirected to my OWA mailbox. i'm logged in and I can see the mail.
But I have 401 pop up for authenticate again... I can log in again, or I can cancel them - in this case I get 4 pop-ups in a row, and then I can work in OWA.
in my Exchange servers, I only have "basic authentication" activated in the OWA virtual directory properties. If I enable "integrated Windows" the pop-ups disappear.
Thing is my customer can't enable it. I have to deal with "basic auth" only. And I got the annoying "man, it works with my TMG you're replacing, what the...?"
any ideas? please help me beat TMG