Edit Authentication Methods
Exchange enables basic authentication and Integrated Windows Authentication by default.
Basic Authentication
Basic authentication transmits user passwords across the network as unencrypted information. Although this method allows users to access all Exchange resources, it is not very secure. To enhance security, you can use SSL with basic authentication to encrypt all information.
Integrated Windows Authentication
Enabled by default, integrated Windows authentication also requires HTTP users to have a valid Windows 2000 user account name and password to access information. Users are not prompted for their account names and passwords; instead, the server negotiates with the Windows 2000 security packages installed on the client computer. This method allows the server to authenticate users without prompting them for information and without transmitting unencrypted information across the network.
To edit authentication methods: