How to Configure Forms-Based Authentication on Exchange Server 2003


For Microsoft® Exchange Server 2003, you can enable forms-based authentication feature for your Microsoft Office Outlook® Web Access clients. Forms-based authentication allows an administrator to log users off after a certain period of inactivity.

Before You Begin

To successfully complete the procedures in this topic, confirm the following:

  • You have enabled Secure Sockets Layer (SSL) on the front-end server


To configure forms-based authentication on Exchange Server 2003

  1. On the front-end server, in Exchange System Manager, expand Administrative Groups if administrative groups are enabled, expand Servers, and then expand the front-end server where you want to enable forms-based authentication.

  2. Expand Protocols, expand HTTP, right-click Exchange Virtual Server, and then select Properties.

  3. Select the Settings tab, and then select the check box next to Enable Forms Based Authentication.

  4. In the drop-down menu next to Compression, select the level of compression (High, Low, None) to use.


    It is recommended that you do not enable compression in a single-server environment. Enabling compression in a single-server environment causes additional load on the server.

  5. Click OK.

  6. If you receive a message that states that the IIS service must be restarted, click OK, and then restart Microsoft Internet Information Services (IIS).