ESET Online Help

Search English
Select the topic

Configuration

The Web Application integration can be configured from the Components page of ESA Web Console. There you will see the list of supported Web applications for which ESA has been installed.

The 2FA protection can be enabled or disabled for each Web Application. The 2FA protection is enabled by default after installation. The World Wide Web Publishing service will need to be restarted on all servers hosting the Web Application for changes to this configuration option to be reloaded.

Allowing Non-2FA Users

The module can be configured to either allow or to prohibit users that do not have 2FA enabled from accessing the Web Application through the Allow non 2FA configuration option. This scenario occurs if the user is not configured for any authentication method and the Web Application configuration option to allow non-2FA users to log in is enabled. The configuration option to allow non-2FA users defaults to being enabled after installation.

In this configuration, a user can log into the Web Application with their Active Directory password.

If the configuration option to allow non-2FA users is disabled, then the user will not be able to log into the Web Application.

Multiple OWA/ECP instances handled as one

Suppose you have multiple OWA/ECP instances belonging to the same Microsoft Exchange installation.

By default, if a 2FA-enabled user logs in and authenticates using 2FA to one instance, upon login to another instance he is required to use 2FA again.

To prevent requiring 2FA when logging in to the other instance:

  1. In ESA Web Console, click Components > Outlook Web App or Exchange Control Panel.
  2. Click the three vertical dots next to an OWA/ECP instance, select Change Solution.
  3. In the Solution Identifier, type a memorable string.
  4. Click Save.
  5. Repeat steps 2–4 for each corresponding instance.
  6. Restart the components by restarting Internet Information Services (IIS):
    1. Click Start.
    2. In the search box, type cmd.
    3. In the results, right-click Command Prompt, and select Run as administrator.
    4. At the command prompt, type iisreset, and press Enter.
    5. When "Internet services successfully restarted" displays, exit the command prompt.