From within my company, if someone tries to access our Exchange server via
OWA (Internet browser) inside our company on the intranet, they must enter
their user name, password and domain name. But if someone access the
Exchange via OWA from outside the company intranet across the Internet, they
do not need to enter a password to get access.
I know it's a security, but what specifically should I check to see what's