irfan_sj
asked on
How do I create Exchange 2003 Certificate and install in ISA 2004 to access OWA through https:
I had a problem in exchange 2003 STD Server and I had to format and reinstall Exchange 2003. I deleted the Certificate ( in fact forgot the password for the .pfx certificate). Now I need to create a new certificate on Exchange and than create a rule on ISA 2004 and show this certificate. Please can you guide me the configuration steps as well as creating a new certificate for ISA.
Also I had a firewall client installed in Exchange 2003 Server which we have removed. We think it was the reason for our Exchange Server hanging very often. So do I need to reinstall the firewall client to access the Exchange Server. My ISA server is in DMZ behind PIX firewall. My exchange server is in private network. My Operating system is Windows 2003 STD edition. Please guide the configuration for both ISA and Exchange
Also I had a firewall client installed in Exchange 2003 Server which we have removed. We think it was the reason for our Exchange Server hanging very often. So do I need to reinstall the firewall client to access the Exchange Server. My ISA server is in DMZ behind PIX firewall. My exchange server is in private network. My Operating system is Windows 2003 STD edition. Please guide the configuration for both ISA and Exchange
ISA 2004: Publishing OWA Sites using ISA Firewall Web Publishing Rules (2004) Version 1.1
http://www.isaserver.org/articles/2004pubowartm.html
cheers,
mcse2007
http://www.isaserver.org/articles/2004pubowartm.html
cheers,
mcse2007
ASKER
Hello, I did as recommended. Installed CA , created certficate. Copied to c:\ drive of ISA server. Cretaed a new OWA publish rule.
Now when I try t access OWA from Internet the page doesn't open. I get a error on the http: screen as
"Certificate Error".
When I click on it I get the certificate information
The certificate cannot be verified upto a trusted certification authority.
Issued to mail.dnata.com.sa
issued by dnsa_kh_hq_ex04
valid from 11/19/2007 to 11/18/2009
Now when I try t access OWA from Internet the page doesn't open. I get a error on the http: screen as
"Certificate Error".
When I click on it I get the certificate information
The certificate cannot be verified upto a trusted certification authority.
Issued to mail.dnata.com.sa
issued by dnsa_kh_hq_ex04
valid from 11/19/2007 to 11/18/2009
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi, Thanks for your feedback. I am able to access OWA from LAN. I am now able to access from internet also the only problem being it refects that there is a certificate error. You mentioned iinstall the certificate into the PC accessing the OWA under the trusted root certificate folder. Can you provide link for this.
1) buy Commercial Certificate for SSL (e.g www.godaddy.com) and install the certificate - this is an expensive way deploying certificate;
2) install CA authority from Windows 2003 Server - inexpensive way of deplyoing certificate because its free.
The latter is the good choice if you cannot afford to pay for the commercial certificate.
Useful links:
How to install CA in Windows 2003 Server: http://www.petri.co.il/install_windows_server_2003_ca.htm
Requesting a New Server Certificate from an Online CA (IIS 6.0): http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/d693beec-e151-44fa-9f7e-80770de6bb9d.mspx?mfr=true
Better still, http://www.msexchange.org/tutorials/SSL_Enabling_OWA_2003.html
Note: You will need to open the port 443 (SSL) in your PIX firewall to be able to access OWA from the public network.
thanks,
mcse2007