Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
OWA certificate
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
OWA certificate - 4.Jan.2012 2:04:41 PM
|
|
|
bvilleneuve
Posts: 12
Joined: 4.Jan.2012
Status: offline
|
Hi guys,
this is my first post here and I must say I've been through a couple of threads before posting so excuse me if I missed something about my case. Maybe you can hit a link so i can have a look. That being said, i'll try my best to describe my situation. :)
My exchange environment is 2007, Windows 2008 R2 Standard, Hub-CAS-MB server roles. One domain.local and externaly domain.com hosted by another company for the website.
I wanted to implement the Outlook Web Access function which wasn't set before. I don't have a lot of knowledge in MSExchange so I went through a lot of sites like I said to build this up and try to understand what is what.
I issued a UCC Certificate from Starfield Secure. To that certificate I added those SANs:
owa.domain.com
mxserver.domain.local
domain.com
domain.local
mxserver
Once it's been done, I went to my Certificate MMC (Computer Account) to import it in the Intermediate Certification Auhorities. After that, went in the shell to import-exchangecertificate -path C:\owa.domain.com.crt.
Then I enable-exchangecertificate -thumbprint etc...
In the IIS7 console, i went on the Default Web Site and doublecheck the bindings on 443 to make sure it's the right certificate added - correct.
SSL Settings on the DWS are 'Require SSL' and 'Accept'.
I added a Redirect to the error 403 on https://owa.domain.com/owa for the users. That works fine.
Long story short, my problem is went users try to have access from their home. They have a certificate warning when entering https://owa.domain.com instead of using the certificate i've issued from Starfield.
What can I do at this stage?
Thank you for your help!
|
|
|
|
|
RE: OWA certificate - 4.Jan.2012 3:46:53 PM
|
|
|
bvilleneuve
Posts: 12
Joined: 4.Jan.2012
Status: offline
|
I must say that I contact my ISP for adding an A Record in their DNS for pointing to my Firewall's ip address. So the record is owa.domain.com to the firewall's wan port.
In my DNS, I added a forward lookup zone called domain.com and in it there is owa and autodiscover A Record pointing to the server's address locally in the domain.local network.
|
|
|
|
|
RE: OWA certificate - 14.Feb.2012 8:10:43 AM
|
|
|
bvilleneuve
Posts: 12
Joined: 4.Jan.2012
Status: offline
|
quote:
my problem is went users try to have access from their home. They have a certificate warning when entering https://owa.domain.com instead of using the certificate i've issued from Starfield.
What can I do at this stage?
For those interested, I solved my problem by checking every aspect of the configuration. I'm connected with a reverse proxy which was configured with a SelfSigned certificate. I replaced like an import-exchangecertificate command in the powershell but on the reverse proxy server and then it's working fine. I have to figure out the HTTPS redirection now.
|
|
|
|
|
RE: OWA certificate - 14.Feb.2012 8:18:45 AM
|
|
|
RustyShackleford
Posts: 226
Joined: 13.Jan.2010
Status: offline
|
Thank you and good job. I subscribed to this thread and I was hoping an answer would be found.
|
|
|
|
|
RE: OWA certificate - 14.Feb.2012 8:20:39 AM
|
|
|
bvilleneuve
Posts: 12
Joined: 4.Jan.2012
Status: offline
|
Glad I could help.
If i figure out to configure the redirection, i'll post my steps. I already did a try with error 403 on file redirection, etc. but it was not a success. I'll try again on some less rushing days.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
