This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 88%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
Hello all,
We have in-house application portal and we need to add email "owa" to that portal and users will be able to logon to OWA as single sing on. I did select windows authentication thought OWA virtual decretory and restart IIS but it did not work "still asking for user's credential". I revert to previous configurations now. Is there another way configure SSO for OWA.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 67%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Hi @HamoudaAlbakri-3924,
Do you mean you run the below commands to enable 'SSO' for your OWA and ECP?
Set-OwaVirtualDirectory -Identity "EXCH\owa (Default Web Site)" -FormsAuthentication $false -WindowsAuthentication $true
Set-EcpVirtualDirectory -Identity "EXCH\ECP (Default Web Site)" -FormsAuthentication $false -WindowsAuthentication $true
If we want to have single sign on Exchange Server by owa. We could enable Window Integrated Authentication. Integrated Authentication allows domain users who are logged on to domain computers to automatically logon to OWA.
However, Integrated Authentication is not suitable for remote access by people using non-domain member computers, or people who are connecting via proxy servers.
This is a similar thread discussed the similar question: How to configure Exchange 2013 OWA with Single Sign On
And another choice to meet this requirement: Enable SSO (Single Sign On) to On-Premises Exchange OWA (Outlook Web Access) via Azure AD Application Proxy
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Yes i did apply above commands:
I got the following message:
When i typed user name and password, i automatically singed in in OWA.
other users got "bad request" they don't get popup message.
i got the following message when i enabled windows authentication:
I added https://mail.contoso.kw in trusted website, but still same thing
Hi,
I test the same operation in my environment, and this seems to be the expected behavior. You could fill in your account information and the browser will remember your credential. We will need to click the sign in when we want to access this page.
Hi @HamoudaAlbakri-3924
Any progress here, do suggestions above help?
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.