If you are running Outlook Web Access (OWA), I hope you are running it over HTTPS. One of the most common issues that arises is that users who forget the "S" in HTTPS get a 403.4 SSL Required error.
With a little ASP code and some tweaking of IIS we can get rid of this error and have users redirected invisibly to the HTTPS site. To start, create a file called httpsredir.asp. You can create this with notepad, or any text editor. The following code should be entered (you can download the code at the end of this article).



Create a folder under Inetpub\wwwroot called errors and copy the ASP file to this directory. Next open up the Internet Information Services MMC and expand the Default Website. Select the Exchange virtual directory, right-click and choose Properties. Go to the Custom Errors tab.

Scroll down the list until you find 403;4, select it and click Edit. Select URL as the Message Type from the drop down list and then enter /errors/httpsredir.asp in the dialog box below.



Click OK to save the change. If you are running Exchange 2003 on a Windows 2000 server, restart IIS and you are done. You can run IISReset from a command line to accomplish this. If you are running Exchange 2003 on Windows Server 2003 there is one more thing to do!

Open up the IIS Manager MMC and expand the Default Website; select the errors directory you created earlier. Open up the Properties page for the errors folder. Under the Directory tab, in the Application Settings area, click Create. Select the ExchangeApplicationPool from the drop down lists next to Application Pool.



Run IISReset from a command line to restart IIS. Next time a user enters they will be invisibly redirected to the HTTPS site.

Another method has been brought to my attention (forum member saint) and it is documented in a Microsoft Knowledge Base article. The steps are the same, but the code is different.

For more information see: