Fortinet black logo

Agent for Microsoft OWA

Home FortiAuthenticator 6.1.0 Agent for Microsoft OWA

Agent installation procedure

6.1.0
6.1.0
6.0.0
5.5.0
5.4.0
Copy Link
Copy Doc ID 1ed5b50e-aa62-11ea-8b7d-00505692583a:503381
Download PDF

Agent installation procedure

Before proceeding, please backup your system and all configurations files.

FortiAuthenticator Agent for Microsoft OWA Agent for Microsoft OWA is designed for installation onto a Domain connected system.

On the IIS/OWA system you wish to perform two-factor enhanced login:

  1. Ensure that your system meets the prerequisites as defined in System requirements.
  2. Run the FortiAuthenticator Agent for Microsoft OWA install file as a Domain Administrator (e.g. either as a logged in Domain Administrator or by right-clicking and select Run as Administrator). Note that the Agent can also be installed via GPO, however that process is not covered in this document.

    FortiAuthenticator Agent for Microsoft OWA Agent for Microsoft Windows will now begin to install.

  3. Read and accept the License Agreement, and click Next.
  4. Select the installation destination.

  5. Select a start menu folder for the program shortcut, or select Don't create a Start Menu folder.
  6. Select Create a desktop shortcut if you would like to create a shortcut on your desktop.
  7. The setup wizard is ready to begin installing.
  8. Click Install to begin the installation process.
  9. Once the installation has completed, select Review 2FA Configuration and click Finish.

    The configuration dialogue should open. If it does not, or if you wish to reconfigure your agent, run the FortiAuthenticator Agent for Microsoft OWA configuration utility to configure the specifics of your setup.

Agent configuration

  1. After the FortiAuthenticator Agent for Microsoft OWA configuration utility opens, click the General tab.
  2. Under FortiAuthenticator Configuration, configure the IP address, username, and API key obtained.
  3. Under Web Configuration, configure the specifics of your Web Server and OWA installation.
  4. Click the Authentication tab and configure the required timeout and retry parameters, as well as the action to take should the FortiAuthenticator become unavailable (Allow or Block). Click OK to save.

User two-factor login

The default installation creates a modified version of the OWA login page as shown below which is enhanced with an OTP login dialogue. Users should enter their username and password as usual but add the OTP code from their FortiToken or FortiToken Mobile as the second factor.

This template can be modified by editing the webpage CSS/JS if required.

While this plugin protects Microsoft IIS with Outlook Web Access, two-factor authentication will not be applied to other protocols such as POP3/IMAP traffic.
Previous
Next

Agent installation procedure

Before proceeding, please backup your system and all configurations files.

FortiAuthenticator Agent for Microsoft OWA Agent for Microsoft OWA is designed for installation onto a Domain connected system.

On the IIS/OWA system you wish to perform two-factor enhanced login:

  1. Ensure that your system meets the prerequisites as defined in System requirements.
  2. Run the FortiAuthenticator Agent for Microsoft OWA install file as a Domain Administrator (e.g. either as a logged in Domain Administrator or by right-clicking and select Run as Administrator). Note that the Agent can also be installed via GPO, however that process is not covered in this document.

    FortiAuthenticator Agent for Microsoft OWA Agent for Microsoft Windows will now begin to install.

  3. Read and accept the License Agreement, and click Next.
  4. Select the installation destination.

  5. Select a start menu folder for the program shortcut, or select Don't create a Start Menu folder.
  6. Select Create a desktop shortcut if you would like to create a shortcut on your desktop.
  7. The setup wizard is ready to begin installing.
  8. Click Install to begin the installation process.
  9. Once the installation has completed, select Review 2FA Configuration and click Finish.

    The configuration dialogue should open. If it does not, or if you wish to reconfigure your agent, run the FortiAuthenticator Agent for Microsoft OWA configuration utility to configure the specifics of your setup.

Agent configuration

  1. After the FortiAuthenticator Agent for Microsoft OWA configuration utility opens, click the General tab.
  2. Under FortiAuthenticator Configuration, configure the IP address, username, and API key obtained.
  3. Under Web Configuration, configure the specifics of your Web Server and OWA installation.
  4. Click the Authentication tab and configure the required timeout and retry parameters, as well as the action to take should the FortiAuthenticator become unavailable (Allow or Block). Click OK to save.

User two-factor login

The default installation creates a modified version of the OWA login page as shown below which is enhanced with an OTP login dialogue. Users should enter their username and password as usual but add the OTP code from their FortiToken or FortiToken Mobile as the second factor.

This template can be modified by editing the webpage CSS/JS if required.

While this plugin protects Microsoft IIS with Outlook Web Access, two-factor authentication will not be applied to other protocols such as POP3/IMAP traffic.
Previous
Next