When an external user tries to access OWA that is published in ISA Server 2006 or in Windows Essential Business Server 2008, the user does not receive the OWA forms-based authentication page

• Microsoft Exchange Server 2003 is configured to use OWA forms-based authentication.
• OWA is published in ISA Server 2006 or in Windows Essential Business Server 2008.
• In the Web listener that the OWA Web publishing rule uses, the HTML Form Authentication authentication method and the RSA SecurID authentication method are configured.
• In the OWA Web publishing rule, the Authentication Delegation option is set to No delegation, but client may authenticate directly.

• You publish Exchange Server 2003 OWA in ISA Server 2006 or in Windows Essential Business Server 2008.
• You publish OWA by using a standard Web publishing rule instead of by using the New Exchange Publishing Rule Wizard.
• The publishing rule does not enable Single Sign-On (SSO).
• In the HTTP configuration of the OWA Web publishing rule, the Verify normalization option is disabled.

1. Apply the hotfix package that is described in the following Microsoft Knowledge Base article:
   937103 Description of the Internet Security and Acceleration Server 2006 hotfix package that is dated May 14, 2007
2. Start Notepad.
3. Copy the following script into a Notepad file.

   ' Copyright (c) Microsoft Corporation. All rights reserved.
   ' THIS CODE IS MADE AVAILABLE AS IS, WITHOUT WARRANTY OF ANY KIND. THE ENTIRE
   ' RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS CODE REMAINS WITH THE
   ' USER. USE AND REDISTRIBUTION OF THIS CODE, WITH OR WITHOUT MODIFICATION, IS
   ' HEREBY PERMITTED.
   
   Const SE_VPS_GUID = "{143F5698-103B-12D4-FF34-1F34767DEabc}"
   Const SE_VPS_NAME = "EnableHotfix935206"
   Const SE_VPS_VALUE = true
   
   Sub SetValue()
   
       ' Create the root obect.
       Dim root  ' The FPCLib.FPC root object
       Set root = CreateObject("FPC.Root")
   
       'Declare the other objects needed.
       Dim array       ' An FPCArray object
       Dim VendorSets  ' An FPCVendorParametersSets collection
       Dim VendorSet   ' An FPCVendorParametersSet object
   
       ' Get references to the array object
       ' and the network rules collection.
       Set array = root.GetContainingArray
       Set VendorSets = array.VendorParametersSets
   
       On Error Resume Next
       Set VendorSet = VendorSets.Item( SE_VPS_GUID )
   
       If Err.Number <> 0 Then
           Err.Clear
   
           ' Add the item
           Set VendorSet = VendorSets.Add( SE_VPS_GUID )
           CheckError
           WScript.Echo "New VendorSet added... " & VendorSet.Name
   
       Else
           WScript.Echo "Existing VendorSet found... value- " &  VendorSet.Value(SE_VPS_NAME)
       End If
   
       if VendorSet.Value(SE_VPS_NAME) <> SE_VPS_VALUE Then
   
           Err.Clear
           VendorSet.Value(SE_VPS_NAME) = SE_VPS_VALUE
   
           If Err.Number <> 0 Then
               CheckError
           Else
               VendorSets.Save false, true
               CheckError
   
               If Err.Number = 0 Then
                   WScript.Echo "Done with " & SE_VPS_NAME & ", saved!"
               End If
           End If
       Else
           WScript.Echo "Done with " & SE_VPS_NAME & ", no change!"
       End If
   
   End Sub
   
   Sub CheckError()
   
       If Err.Number <> 0 Then
           WScript.Echo "An error occurred: 0x" & Hex(Err.Number) & " " & Err.Description
           Err.Clear
       End If
   
   End Sub
   
   SetValue
   

4. Save the file as a Visual Basic script file by using the .vbs file name extension. For example, save the file by using the following name:
   Enable_935206.vbs
5. Copy the Enable_935206.vbs file to the computer that is running ISA Server 2006 or Windows Essential Business Server 2008, and then double-click the file.

Hotfix removal information

' Copyright (c) Microsoft Corporation. All rights reserved.
' THIS CODE IS MADE AVAILABLE AS IS, WITHOUT WARRANTY OF ANY KIND. THE ENTIRE
' RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS CODE REMAINS WITH THE
' USER. USE AND REDISTRIBUTION OF THIS CODE, WITH OR WITHOUT MODIFICATION, IS
' HEREBY PERMITTED.

Const SE_VPS_GUID = ""{143F5698-103B-12D4-FF34-1F34767DEabc}""
Const SE_VPS_NAME = ""EnableHotfix935206""
Const SE_VPS_VALUE = false

Sub SetValue()

    ' Create the root obect.
    Dim root  ' The FPCLib.FPC root object
    Set root = CreateObject(""FPC.Root"")

    'Declare the other objects needed.
    Dim array       ' An FPCArray object
    Dim VendorSets  ' An FPCVendorParametersSets collection
    Dim VendorSet   ' An FPCVendorParametersSet object

    ' Get references to the array object
    ' and the network rules collection.
    Set array = root.GetContainingArray
    Set VendorSets = array.VendorParametersSets

    On Error Resume Next
    Set VendorSet = VendorSets.Item( SE_VPS_GUID )

    If Err.Number <> 0 Then
        Err.Clear

        ' Add the item
        Set VendorSet = VendorSets.Add( SE_VPS_GUID )
        CheckError
        WScript.Echo ""New VendorSet added... "" & VendorSet.Name

    Else
        WScript.Echo ""Existing VendorSet found... value- "" &  VendorSet.Value(SE_VPS_NAME)
    End If

    if VendorSet.Value(SE_VPS_NAME) <> SE_VPS_VALUE Then

        Err.Clear
        VendorSet.Value(SE_VPS_NAME) = SE_VPS_VALUE

        If Err.Number <> 0 Then
            CheckError
        Else
            VendorSets.Save false, true
            CheckError

            If Err.Number = 0 Then
                WScript.Echo ""Done with "" & SE_VPS_NAME & "", saved!""
            End If
        End If
    Else
        WScript.Echo ""Done with "" & SE_VPS_NAME & "", no change!""
    End If

End Sub

Sub CheckError()

    If Err.Number <> 0 Then
        WScript.Echo ""An error occurred: 0x"" & Hex(Err.Number) & "" "" & Err.Description
        Err.Clear
    End If

End Sub

SetValue