A. After you enable Secure Sockets Layer (SSL) on a Microsoft Internet Information Services 5.0 (IIS) server (as I described in the FAQ "How can I obtain a certificate so that I can enable Secure Sockets Layer (SSL) on my Microsoft Internet Information Services 5.0 (IIS) server?"), you can enable forms-based authentication on the server by performing these steps:
- Start the Exchange System Manager (ESM) utility (click Start, Programs, Microsoft Exchange, System Manager).
- Navigate to the OWA server (Administrator Groups, <Administrative group name>, Servers, <Server name>).
- Expand Protocols and expand HTTP.
- Right-click the HTTP virtual server and click Properties.
- Click the Settings tab of the displayed dialog box.
- Select the "Enable Forms Based Authentication" check box and click OK.
If you want to stop non-SSL connections to your Exchange server, you can modify the Exchange virtual directory through the Microsoft Management Console (MMC) IIS snap-in as follows:
- Access the Exchange virtual directory's Properties page.
- Click the Directory Security tab.
- Click Edit, and in the Secure Communication section, select the "Require secure channel (SSL)" check box.