Solved

Outlook Anywhere and Internal Users

Posted on 2009-05-05
3
785 Views
Last Modified: 2012-05-06
I'm in the process of building a new Exchange 2007 environment.  I have enabled Outlook Anywhere in my Exchange 2007 environment and have setup the appropriate internal and external URLs.   I have separate CAS, HT, and Mailbox servers.  

How are internal domain users supposed to be configured in Outlook?  Using Outlook Anywhere (RPC over HTTPS) and connecting to the CAS serves or should they be using MAPI and connecting directly to the mailbox server?

Currently when I configure Outlook 2007 on a domain connected workstation, the AutoDiscover process configures the Outlook profile to connect using Outlook Anywhere (RPC over HTTPS).  Is this correct?
0
Comment
Question by:cobrian
3 Comments
 
LVL 2

Accepted Solution

by:
Dave_Angel_Portsmouth earned 250 total points
ID: 24311949
Personally, i use RPC over HTTPs internally and externally, it means having less ports open and therefor more secure.

If you have no need to use MAPI, i'd turn it off all together. There is a good artical on how to turn it off here:
http://msexchangeteam.com/archive/2005/07/27/408274.aspx

The only issue i can see you having is you will have to maintain a split DNS so that your certificates will work, but this is fairly straight forward.
0
 
LVL 58

Assisted Solution

by:tigermatt
tigermatt earned 250 total points
ID: 24317815

Autodiscover uses an internal Service Connection Point (SCP) in the domain to locate all the authoritative autodiscover URLs on the network. Outlook then connects to one of these Exchange Servers defined by the URL and locates the correct mailbox for the user. It also configures RPC/HTTPS so it works externally.

Internally, MAPI will probably still be used; I would expect Exchange to configure Outlook in this fashion. However, Outlook Anywhere is also configured as part of the process, so that user's machine (particularly if it is a laptop or portable device) will work immediately when connected up outside the network.

Since MAPI is still used internally it would therefore be counter-productive to disable MAPI as the previous poster suggested, because that would require every Outlook client being reconfigured away from the default Exchange/Autodiscover setting in order for it to connect to Exchange.

In short, the behaviour you are seeing is fine and how things should be working.

-Matt
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question