What are the software requirements for RSA Authentication Agent 5.3 to protect OWA using SSO?
Originally Published: 2005-01-12
Article Number
Applies To
Microsoft Windows Server 2003
Microsoft Exchange Server 2003
Microsoft Internet Information Server (IIS) 6.0
Single Sign-On (SSO)
Microsoft Outlook Web Access (OWA)
Issue
Resolution
RSA's SSO is accomplished by using the RSA Authentication Agent to obtain a Kerberos ticket, then presenting that ticket to OWA. RSA's SSO ISAPI extension uses a feature to pass the Kerberos ticket that is only available in IIS 6, which only runs on Windows 2003.
Exchange 2003 is required because earlier versions of Exchange did not support Kerberos. It should be noted that this requirement extends to ALL the Exchange servers because the Kerberos ticket is presented to the back end servers through the front end.
The domain must run in Windows 2003 native mode because RSA Authentication Agent uses some special extensions to the Kerberos protocol that are only available in Windows 2003 native domains.
Related Articles
SAML 2.0 Requirements for Service Providers Number of Views Digitally signed email does not display when using Microsoft Outlook Web Access (OWA) Number of Views Identity Router DNS Requirements Number of Views Microsoft Outlook Web Access 2013 - SecurID Access Implementation Guide Number of Views RSA Authentication agent for web not allowing voice mails to be sent to OWA user when enabled Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
