This posting is provided "AS IS" with no warranties, and confers no rights.

Follow these steps on an Exchange front-end server that communicates with a clustered Exchange back-end server.

(Prepare the CustomErrors folder)

  1. Create an Active Server Pages (ASP) Web page that contains the following code: 

     <%
If Request.ServerVariables("HTTPS")  = "off" Then
    Response.Redirect "https://" & Request.ServerVariables("HTTP_HOST") & "/Exchange"
End If 
%>
  2. Name the Web page "Owahttps.asp".
  3. In Windows Explorer, create the Inetpub\Wwwroot\CustomErrors folder, and then save the Owahttps.asp Web page file to that folder.

(Prepare the CustomErrors application)

  1. Start the IIS console.
    • In Windows Server 2008 (IIS 7.0)
      Note Follow these steps if you are running Exchange Outlook Web Access on Windows Server 2008.
      1. Click Start, point to All Programs, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
      2. Expand Computer Name, and then expand Web Sites.
      3. Expand the Web site that your Outlook Web Access users use to access their Exchange server. (By default, this Web site will be the default Web site. But for Small Business Server 2008, this Web site should be SBS Web Application.)
      4. Go to step 5.
  2. Right click on CustomErrors folder, and click the Convert to Application.
  3. In the dialog, click Select… button.
  4. Here choose the application pool where Exchange application is running in, and then click OK twice.
  5. Click the folder again, and click Default Document icon in the middle.
  6. Click Add… button in the right panel. Type Owahttps.asp in the Name field and click OK. Move the Owahttps.asp file to the top of the list.
  7. Click the web site in the left panel again, and then click Authentication icon in the middle panel.
  8. Ensure that Anonymous Authentication is enabled. If not, click on this item in the list and use Enable button in the right panel to enable it.
  9. Click the web site again, and then click SSL Settings icon in the middle panel.
  10. Click to clear the Require secure channel (SSL) check box, and then click Apply button in the right panel.

(Change Exchange Application)

  1. Right-click the Exchange application in the left panel, and then click Error Pages icon in the middle.
  2. Click the Add… button in the right panel.
  3. Type 403.4 in the Status code field.
  4. In the Response Action list, click Execute a URL on this site.
  5. In the URL box, type /CustomErrors/Owahttps.asp, and then click OK.
  6. Click the application again and click SSL Settings icon.
  7. Click to select the Require SSL check box.
    Note If you want to require 128-bit encryption, click to select the Require 128-bit encryption check box.
  8. Click Apply button in the right panel.
    Note The Exchange application and the Public application are the only applications that you have to configure to require SSL. If you have other applications for which you want to require SSL, enable SSL on each application individually.
After you follow these steps, visit the following Web site from another client machine:

http://(server_name)/exchange

In this address, server_name is the name of the Microsoft Internet Information Service (IIS) server.
You should be automatically redirected to https://(server_name)/exchange and to the Logon.asp page.

Note that if you want to test this on the IIS 7 server, please do the following in IIS Manager,

  1. Click on Exchange application in the left panel, and click Error Pages icon in the middle.
  2. Click Edit Feature Settings… button in the right panel.
  3. In the Error Responses list, click "Custom error pages”. Then click OK.

Now you should be able to test on the IIS server.