We have recently upgraded to Exchange 2010 and have upgraded to Enterprise Vault 10.0.4. I am having some troubles with OWA and what the appropriate settings should be in my desktop policy and owa web.config in general. I think I've read half the forums in the last day and have tried a combination of ideas.
We have 1 EV server. Currently, we front our Enterprise Vault web services with an F5 Big IP and pass through traffic. Both our external and internal clients use the same dns entry of archive.company.com which points them to the F5 vip.
In our exchange environment we have a CAS array that is fronted by our F5. Internal and external users that choose to use OWA both use the same dns entry of webmail.company.com which points them to the F5 vip.
I have the OWA extensions installed on the CAS servers. I have an exchangeservers.txt configured on the enterprise vault server and the owauser.wsf script has been run successfully and the EVAnon site created.
What would be the recommended desktop policy settings for OWA for Client Connection and External Web Application URL? Currently the inherited settings was Use Proxy and https://outlookanywhere.company.com. This seems fishy to me. I would think the settings should be Direct and https://archive.company.com/EnterpriseVault
Also, should I be using additional settings in the web.config files such as
<add key="EnterpriseVault_UseExternalWebAppUrl" value="true"/>
<add key="EnterpriseVault_ExternalWebAppUrl" value="https://archive.company.com/EnterpriseVault"/>
Currently, when using webmail internally, my enterprise vault icons and options seem to show up ok. When I connect to webmail from external, I do not have any enterprise vault icons or options. I turned on logging while I tested externally and it appears to check my mailbox and grab the EV settings, but never actually enable the icons.
I have some suspicions that there are different firewall rules in place when connecting to the webmail.company.com F5 vip from outside compared to inside, even though all traffic after that should take the same route. The only thing I can think of is that rpc is not open from external to our webmail vip. However, I can browse directly to https://archive.company.com/EnterpriseVault from an external pc. I am prompted for login credentials. After logging in, I can use the EnterpriseVault website. When I connect to https://archive.company.com/EnterpriseVault from a company pc internally, it takes me straight in (due to windows authentication passthrough).
I think I'm missing something here in general or it shouldn't be as difficult as its turning out to be. Any recommendations would be appreciated!
Just to add since I forgot, that using a typical outlook client internally works fine with EV. This is all OWA woes. Thanks again!