Understanding Security for File and Data Access for Outlook Web App
Applies to: Exchange Server 2010
There are three methods for accessing files and data from inside Outlook Web App. These data access methods include WebReady Document Viewing and direct file access. You can allow or block these features as needed to meet the requirements of your organization.
Looking for management tasks related to file and data access for Outlook Web App? See Configure WebReady Document Viewing, Configure Public and Private Computer File Access, and Set-OwaVirtualDirectory.
WebReady Document Viewing
Microsoft Exchange Server 2010 includes a feature named WebReady Document Viewing. WebReady Document Viewing lets users view common file types in the Outlook Web App Web browser without having the applications associated with those file types installed on the computer they're using. Users can view the following kinds of files using WebReady Document Viewing:
Additionally, the supported MIME types are as follows:
Direct File Access
You can control direct file access through Outlook Web App by specifying the types of files that users can access and how the files can be accessed. You do this using the Allow, Block, and Force Save options for direct file access in the Exchange Management Console, or by using the file access parameters available in the Set-OWAVirtualDirectory cmdlet in the Exchange Management Shell. In addition to being able to specify Allow, Block, or Force Save for different file types, you can configure the file access options depending on whether the user clicks This is a public computer or This is a private computer when they sign in to Outlook Web App. For more information about how to manage file access, see Configure Public and Private Computer File Access and Set-OwaVirtualDirectory.