• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 768
  • Last Modified:

How to improve security to my IIS and Exchange folders?

Hi,

I have been modifying a lot of things and permissions trying to configure correctly OWA with SSL, OMA, and Microsoft-Active-Sync for PDAs, etc... Even I have modified some root properties today by error and obviously it affects of all the rest of the folders. I am worried about it and I would like to learn some basic "must to know" about this secure procedures. I would like to secure these folders of my IIS server.

I only want to allow OWA access (SSL), OMA Access (to one PDA without SSL support) I know that each service requires a default properties, but I would like to find a all-in-one, able and secure way... Anyone could help or recommend me a basic things to know about this? I have all these options but I am not sure at all if these are correct or huge unsecure...

/root default server: Anonymous and basic ONLY + SSL require
/exadmin: Integrated ONLY + SSL require
/exchange: Integrated and Basic ONLY + SSL require
/exchweb: Anonymous ONLY + SSL require
/Microsoft-Server-ActiveSync: Integrated and Basic ONLY (no SSL)
/OMA: Basic ONLY (no SSL)
/rpc: Integrated and Basic ONLY + SSL require (no SSL)
/rpcwithCert: Integrated and Basic ONLY + SSL require (no SSL)
/certcontrol: Integrated ONLY + SSL require
/certEnroll: Anonymous ONLY + SSL require
/certServ: Integrated ONLY + SSL require
/public: Integrated and Basic ONLY + SSL require
/asp_client

Any web info or recommendations? Thank you very much for this
0
isaacmateo
Asked:
isaacmateo
1 Solution
 
SembeeCommented:
If you have require SSL on the /exchange virtual directory then OMA/EAS will not work.
I don't tend to both with require SSL on any folder in the default web site.

Authentication settings look fine.
You could always reset the whole lot: http://support.microsoft.com/default.aspx?kbid=883380

Simon.
0
 
isaacmateoAuthor Commented:
Thanks again Simon. I tried the method 1 of your link and I am feeling better about our security
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Tackle projects and never again get stuck behind a technical roadblock.
Join Now