Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
RE: My Exchange 2007 installation guide
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
RE: My Exchange 2007 installation guide - 20.Jan.2008 11:16:54 AM
|
|
|
MIDOOooo
Posts: 100
Joined: 6.Jul.2007
Status: offline
|
u r welcome anytime @ twoj.
glad i could help.
u used NTLM and it worked cuz u r connected directly to exchange so need to use kerbros delegation or anything and for using only username it worked fine cuz it's automtically tries to authenticate to the default domain (i.e. ur domian that exchange part of).
if u try to publish it with ISA or any other firewall u will face a problem of delegating NTLM authentication to exchange and that;s why u need to make KCD environment.
any way good luck
_____________________________
MIDOOooo - Mohamed Talaat
Enterprise Support Engineer
Vodafone -Egypt.
|
|
|
|
|
RE: My Exchange 2007 installation guide - 26.Mar.2008 4:03:03 PM
|
|
|
mdjerome
Posts: 2
Joined: 6.Nov.2007
Status: offline
|
I truly appreciate your indepth write up on this becasue I have been looking for an alternitive to goin gthe UCC cert path for a while. However the one area that confuses me in your write up is all the server name and domain references.. Most places that have a single server like this have a differnt internal Domain name versus external.
Like internally the full server name might be called SV1.abc.local BUT external references to it might be directted to mail.abc.com. My question to you is in your write up when do you use the internal name and when do you use the external?? I can figure this out for the live of me.. In your case is your internal server and domain names the same as your public internet names and domain?? If so is it posible to use your approach when they are different???
Thanks for any help you can provide
|
|
|
|
|
RE: My Exchange 2007 installation guide - 27.Mar.2008 3:29:58 AM
|
|
|
MIDOOooo
Posts: 100
Joined: 6.Jul.2007
Status: offline
|
it can be done so easily using DNS split approach. if u have 2 names internal srv1.123.com and external mail.abc.com you can use just the external name. go to your internal DNS and create a forward lookup zone named abc.com then create a host(A) record named mail and give the ip address for your internal server. that makes all users inside your organization see your internal server as mail.abc.com though it's named srv1.123.com.
if you use exchange anywhere and published through ISA for example you won't need split dns beacuse it will use HTTP proxy in isa.
any way hope this help you.
_____________________________
MIDOOooo - Mohamed Talaat
Enterprise Support Engineer
Vodafone -Egypt.
|
|
|
|
|
RE: My Exchange 2007 installation guide - 1.Apr.2009 12:03:07 AM
|
|
|
mpalmgren
Posts: 1
Joined: 31.Mar.2009
Status: offline
|
I followed your steps, but when connected remotely, I am being prompted for username and password to the exchange server. Is it normal to see the name of the exchange server when being prompted for username and password? I would think it would be better to mask that. Also, no matter how many times I type it in, and whether I use the domain name or not, it immediately prompts me again.
Does the certificate need to have the exchange server name in it? I am concerned that since Outlook knows what exchange server I am hitting, it would want the server name listed in the certificate. Should I configure Exchange to use nothing but the external DNS name (remote.company.com) so I am not prompted from server name?
Once last item, my AD domain is company.local, but the email domain is company.com. Will your instructions work if the email domain and the AD domain are different?
|
|
|
|
|
RE: My Exchange 2007 installation guide - 1.Apr.2009 4:17:47 AM
|
|
|
MIDOOooo
Posts: 100
Joined: 6.Jul.2007
Status: offline
|
"I followed your steps, but when connected remotely, I am being prompted for username and password to the exchange server. Is it normal to see the name of the exchange server when being prompted for username and password? I would think it would be better to mask that. Also, no matter how many times I type it in, and whether I use the domain name or not, it immediately prompts me again."
that means there's something wrong with authentication settings. did you choose basic authentication?!!!
for certificate name, you will need to include all possible in the certificate.
http://www.isaserver.org/tutorials/Generating-SSL-Certificates-Exchange-2007-ISA-Server-2006.html
"Once last item, my AD domain is company.local, but the email domain is company.com. Will your instructions work if the email domain and the AD domain are different?"
check my last post
" it can be done so easily using DNS split approach. if u have 2 names internal srv1.123.com and external mail.abc.com you can use just the external name. go to your internal DNS and create a forward lookup zone named abc.com then create a host(A) record named mail and give the ip address for your internal server. that makes all users inside your organization see your internal server as mail.abc.com though it's named srv1.123.com.
if you use exchange anywhere and published through ISA for example you won't need split dns beacuse it will use HTTP proxy in isa.
any way hope this help you. "
_____________________________
MIDOOooo - Mohamed Talaat
Enterprise Support Engineer
Vodafone -Egypt.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
) you would want to create a split DNS so that you have two forward lookup zones in your DNS, that way on you LAN you can resolve both your internal domain names, as well as your external domain names. If you have a zone for an external domain name abc.com in your DNS server, it will service any requests for resolution under that domain. 
