Hello All, Needing some general advice please.... Firstly, I have 2 x servers.. 1 – Exchange 2010 (With CAS, Mail box, Transport hub) roles 2 – Exchange 2010 (Mail box) role. I have around 88 users.. Head Office – 60 Sat Off 1 – 20 Sat Office 2 – 8. Each site is connected via VPN. I cannot get clients outside of our networks or not using a dial in VPN to be able to access our email server. How do I make it possible so users can send email from laptop say at home without using a VPN? Is this advisable? Ie currently we use hosted pop3 accounts and I can enter “pop.ourdomain.com” and “smtp.ourdomain.com” on systems and they can access email from anywhere. My experience of MX/Cname etc is limited but I have MX record for www.ourtestdomain.com pointing to mail.ourtestdomain.com which in turn points to my external static IP. Further more I have port 25 forwarded to my exchange server internally. Webmail works fine internally, what ports do I have to forward to make this work externally? How can I setup a far easier URL to remember for it eg mail.ourtestdomain.com/OWA? How do I get mobile devices to talk to our server without using a VPN? Currently iphone works if I have the VPN active on the device... which kills the battery.... Many thanks in advanced for anyone who is able to answer my questions.
You will have to follow the below mentioned steps to configure your external OWA:- 1. Open the Exchange Management Console 2. Expand Server Configuration 3. Select Client Access. Select the Server 4. Under Outlook Web Access menu, Select OWA (Default Web Site) 5. Right Click then select properties 6. On general tab, type in the external URL (mail.ourtestdomain.com) and create same A record in DNS for it. 7. Also configure your external firewall to map the external url(mail.ourtestdomain.com) to the CAS server. 8. Now click on the Public Computer File Access tab. Under this tab configure which file access and viewing options the users will have when connecting via the public or shared computer option in OWA. Uncheck all the File Sharing check boxes. 9. Now click on the Private Computer File Access tab. Under this tab configure which file access and viewing options the users will have when connecting via the private computer option in OWA. Uncheck all the File Sharing check boxes. 10. Now click on the Segmentation tab. Under this tab configure all features to be available to users to access i.e. Calendar, Tasks, Premium Client etc.. Disable the Public Folder Access Here. Also enable the Active Sync as you want to configure the Iphone with Exchange. 11. Now click on the Authentication tab. Under this tab configure Forms Based Authentication to be used with username and set the Logon Domain to (AD domain name) Ourdomain.com. Doing this will allow users to logon to OWA using their network username and password, without the need to specify their domain\username. Enable Basic Authentication only. 12. Click Apply and OK. 13. Now you must reset the IIS services or use the IISRESET command.
When I try and setup the iphone It fails to find exchange server from the basic info its ask, when I put in the more detailed info ie Domain and server (server being mail.ourdomain.com it constantly prompts for the users password - I enter what I know it is nad it just prompts again.
Can anyone shed some light on this for me. My firewall has ports 443, 25 and 80 opened to my CAS server.
Thanks for your reply, I forgot to mention I tried this as well, With this I get a different error, the validation still does not work but I can go through to the mail seciton on the phone, click on exchange account but I get a message saying "Cannot Get Mail - The Connection to the server failed".
Any further advice... I am so close to having this setup...
Posts: 784
Joined: 14.Nov.2006
From: Surrey, UK
Status: offline
Can you confirm what type of SSL certificate you have on your CAS server for ActiveSync and OWA.
Is this certificate trusted by the iphone.
Is it a SAN certificate or not.
The only hostname you need within the iphone is mail.ourdomain.com and the option for HTTPS to be ticked. Also check your security policies for Activesync on your server. Relax them to asking just the PIN and see if this makes a difference. The iphone does not support all of the ActiveSync policies.
Finally using Safari on the iphone go to https://mail.ourdomain.com/OWA. Can you resolve the hostname and see your logon page?
< Message edited by rishishah -- 22.Apr.2010 6:18:08 AM >
_____________________________
Rishi Shah, MCP
Remember to backup before applying the advice. www.saiconsult.co.uk. Happy to provide Professional Exchange Server Consultancy to anywhere in the world.
I had a cert from 3rd part for mail.ourdomain.com.
As I said - OWA works fine and reports Cert being active.
Now I did the Exchange Remote connectivity test for Active sync and it flags up issues with the Cert not being a trusted Certificate...
Could this be down to me not having a multi name cert? I thought as long as I had one for mail.ourdomain.com then what came after it ie mail.ourdomain.com/active-Sync would still fall under its trust?
Or is it down to the fact I have a different internal domain to external ie AD domain is ourdomain.local.
I appreciate people help with this - I am going around in circles.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Microsoft Exchange 2010] >> General >> Panic.... Panic... Panic.... 
Panic.... Panic... Panic.... - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread
