How to add second IP address to Exchange MESA

Posted on 2006-05-08
Last Modified: 2013-11-15

I want to add a second IP address for Exchange to listen to.

I have a two node active/passive cluster, running Windows Server 2003 Enterprise 32-bit and Exchange Server Enterprise 2003.

I have a wildcard certificate for my domain (*, and everything works perfectly except for ActiveSync on my phone. This is because Windows Mobile 5.0 ActiveSync doesn't understand wildcard certificates.

To get around this problem I have created a new Certificate Authority on my PDC and issued a new certificate to a new HTTP virtual server. Having installed the root certificate in my phone I can access OWA on port 444 with no problems and no security warnings.

The problem is that ActiveSync doesn't allow you to use anything other than port 443 for ssl connections. As 443 is already in use for the wildcard certificate from a "real" third-party CA, I can't listen on port 443 on the exchange ip address.

To get around this, I have created a new IP & Network Name resources in the Cluster Administrator, and told IIS to listen on 443 on the new IP Address.

IIS seems to remember these new IP addresses when falling over, but I cannot set them in Exchange System Manager - which is where I would prefer to set them.

Is it possible to add the new IP Address to the list of possible IP Addresses in Exchange System Manager?

Peter Clark.
Question by:PJAClark
    LVL 31

    Expert Comment

    The IP address and port number are not properties that you can set in ESM, which is generally limited to security settings.

    BTW, you may also be able to use Host Headers to solve your problem.  Unless you prefer the IP address method? Just a thought.

    Author Comment

    In ESM on the HTTP Virtual server, I definitely can specify the the port numbers. The IP address is in a drop-down-list, which suggests very strongly that it's possible to have more than 1 IP address listed there.

    I thought SSL connections ignore the host headers? And as such, if you want two different websites on SSL you had to have two different IP addresses, or two different ports?

    LVL 31

    Accepted Solution

    Strange, I don't see the port numbers and IP addresses here.  The only option I have for the Virtual Server is whether or not to enable FBA.

    This article suggests that IIS6 will support host headers and SSL if you have SP1;
    I don't know if it applies to a cluster, though, maybe you will have to try an experiment.

    Author Comment


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    The article will include the best Data Recovery Tools along with their Features, Capabilities, and their Download Links. Hope you’ll enjoy it and will choose the one as required by you.
    Use these top 10 tips to master the art of email signature design. Create an email signature design that will easily wow recipients, promote your brand and highlight your professionalism.
    The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
    The viewer will learn how to download, install and use CrashPlan from on Windows 7. Open your browser and go to Click get started, it’s free then Click the Download CrashPlan button: Click save in Internet Explorer, the…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    7 Experts available now in Live!

    Get 1:1 Help Now