Solved OWA logon problem - you have to ensure that all users that need to log in to OWA have an e-mail address associated with their user account which is @internal.domain.name: otherwise it cannot authenticate.