Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Are certificates issued by Microsoft Certification Authority compatible with Office Communications Server 2007?

Posted on 2008-06-13
2
676 Views
Last Modified: 2013-11-29
Are certificates issued by Microsoft Certification Authority compatible with Office Communications Server 2007?

I am attempting a test run of OCS 2007 standard, and because it's a test I don't want to pay £100 or more for a certificate. I have Microsoft's certification authority (v 5.2.3790.3959) installed on the same machine.

If the certificates are compatible, I presume I will need to name them the same as my external url?
If so, how does this affect internal users?
0
Comment
Question by:OakRidgeRoger
2 Comments
 
LVL 14

Accepted Solution

by:
plug1 earned 125 total points
ID: 21777457
External users will work flawlessly, internal users will have to either import the certificate or put up with accepting a security message.
0
 
LVL 12

Expert Comment

by:gaanthony
ID: 21809644
Coexistent of the Microsoft Certificate Authority (MSCA) installation on the same server as OCS is not supported.
Recommendation is to install an Enterprise MSCA on a member server running Windows Server 2003 Enterprise Edition so that you can modify the templates and have support for Root CA autoenrollment.
MSCA on Standard Edition is supported but you'll need to use the OCS Certificate Wizard to request certificates that have the private key exportable.
It is also recommended in the documentation to use the Microsoft CA for internal certificates for OCS.
You'll need external 3rd party certificates for the Access Edge and Reverse Proxy external interfaces as external users will not have access to your internal MS Root CA and will not trust the certificates.
The complete OCS 2007 Documentation rollup can be downloaded from http://www.microsoft.com/downloads/details.aspx?FamilyId=760A3FF9-7F82-4A5F-841D-5E528B1DA334&displaylang=en.
The Edge Server deployment guide covers public certificate requirements.  Other related docs cover the internal certificate requirements.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question