Published: Jan 07, 2009
RPC over HTTP/S is a method for connecting your Outlook 2003/2007 client to the corporate Exchange Server 2003/2007 from the Internet or WAN, without the need to establish a VPN session to the corporate LAN and/or needing to open many ports on your corporate firewall. You can read more about it on my “How can I configure RPC over HTTP/S on Exchange 2003 (single server scenario)?” and “How can I configure Outlook 2003 to use RPC over HTTP/S?” articles (and elsewhere on the site).
In Windows XP or Windows Vista, it is my experience that in most cases Outlook 2003/2007 only asks you for your password the first time you open it, but afterwards that password is stored locally and you are no longer prompted for it. However, in some cases you are constantly prompted to enter your Exchange account password each time you open Outlook 2003/2007.
Figure A
It seems that if the machine is a member of the same domain as the Exchange server, the user should not have to authenticate again, and the entire authentication process should be completely transparent. However, if the machine is not a member of the domain, then it appears that some people have got it to save the password and some have not.
If you are running on Windows XP, Windows 2003 or Windows Vista, it is possible to save your password in Outlook 2003/2007.
In order to save your password for Outlook 2003/2007 please follow one of these steps:
Sometimes, when creating the Outlook profile, the Proxy Authentication Settings in the Connection option of the Exchange profile will be set to Basic Authentication rather than NTL Authentication.
Basic authentication requires that you continue to type your user account credentials anytime Outlook is re-opened. There is no way for the client to submit your user name and password automatically. So, if you want to log on automatically, you must configure your Outlook profile to use NLTM authentication to your proxy server for Exchange. The authentication mechanism that you configure in Outlook is used only for the HTTP session to your proxy server for Exchange. The actual authentication between Outlook and your Exchange server always uses NTLM.
Note: Before you switch to using NTLM authentication, you must verify with your administrator that NTLM authentication is permitted or even possible in your environment. Many firewalls and proxy servers will prevent successful NLTM authentication, whereas Basic authentication will work successfully. See the More Information section for additional details.
To change the authentication mechanism on the Outlook client to NTLM, follow these steps:
Figure B
Figure C
Figure D
Figure E
Figure F
If your account is already configured to use NTLM authentication and you are still prompted for your user name and password when you are logged on as the Windows account that has access to your Exchange mailbox, you must set the LmCompatibilityLevel on your client computer’s registry to a value of 2 or 3. To do this, follow these steps.
Warning! |
This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. |
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\
I’ve seen this work in occasion, so I guess it won’t hurt to add it here.
Note: This process has been recommended by Microsoft, however for reasons unknown to me it does not always work. I have posted it here it here as a recommendation.
Figure G
Figure H
Figure I
Figure J
Download a free tool called OutlookAutologin. The tool launches Outlook and automatically enters the password needed to connect to the Exchange server. The first time you launch OutlookAutologin.exe, it asks you to enter the password. This password is then saved and will be automatically used each time you launch Outlook via OutlookAutologin.exe.
Be warned, the author of this tool does not offer any sort of support, nor do I, so use at your own risk.
Download here: OutlookAutologin
Got a question? Post it on our Exchange Server Forums!