Problems integrating Exchange 2010 OWA with OCS 2007 R2

Posted on 2009-12-22
Last Modified: 2013-11-29
hello, I have following this article to the T:

and have verfied all steps, yet i still do not see the OCS integration when i launch the oultook web access [exchange 2010]
can someone please tell me what i'm missing.

thx - S.
Question by:siber1
    LVL 33

    Expert Comment

    I believe that something is wrong with certificate, this is the most common cause, how did you configure the certificate.

    Author Comment

    Busbar, i followed the steps to configure the cert listed in the attached doc.

    here are the cert specific steps i followed:
    *** Obtain Certificate Information
    You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Certificate management" entry in the Exchange and Shell Infrastructure Permissions topic.
    The Exchange Server 2010 Client Access server must be configured to use a certificate that's trusted by OCS 2007 R2.
    For ease of configuration, the certificate on the Client Access server and OCS 2007 R2 server should be from the same issuer (Certification Authority).

    If all your Client Access servers are in the same namespace, you can use a single certificate for all of them.
    After the certificate is in place on the Client Access server, use the Exchange Management Shell to get the certificate information by running the following command on the Client Access server:
    get-ExchangeCertificate | fl
    Locate the certificate you want to use, and then record the following information:
    "      Issuer of the certificate
    "      Serial number of the certificate
    "      Subject of the certificate

    The following is an example of the output from the get-ExchangeCertificate cmdlet:
    IsSelfSigned       : False
    Issuer             : CN=ca1, DC=contoso, DC=com
    SerialNumber       : 60482F5D00000000003C
    Services           : IMAP, POP, IIS, SMTP
    Status             : Valid
    Subject            : CN=e14w2k8

    When you configure OCS 2007 R2 host authorization list, you'll add the certificate subject as the name of an authorized host.
    For information about how to obtain and configure a certificate for a Client Access server, see Obtain a Server Certificate from a Certification Authority.
    *** Edit the web.config file
    You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Text editor" entry in the Client Access Permissions topic.
    1.      On the Client access server, navigate to <install drive>\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Owa.
    2.      Use Notepad to open the web.config file and make the following changes:
    Search for IMPoolName. You'll see the following 3 entries:

    <add key="IMPoolName" value="" />
    <add key="IMCertificateIssuer" value="" />
    <add key="IMCertificateSerialNumber" value=""/>

    Modify the entries using the FQDN of the OCS 2007 R2 server, the issuer of the certificate assigned to Client Access server, and the serial number of the certificate which has been installed on Client Access server.

    <add key="IMPoolName" value="<fully qualified domain name of the Communications Server pool>" />
    <add key="IMCertificateIssuer" value="<issuer>" />
    <add key="IMCertificateSerialNumber" value="<SerialNumber with space between each octet>" />

    Using the earlier example:

    <add key="IMCertificateIssuer" value="CN=ca1, DC=contoso, DC=com " />
    <add key="IMCertificateSerialNumber" value="60 48 2F 5D 00 00 00 00 00 3C" />

    If the certificate issuer value contains double quotes (), use single quotes (') to enclose the value. For example, do this if the certificate issuer is CN=ca1, DC="contoso", DC=com, you'd use <add key="IMCertificateIssuer" value=' CN=ca1, DC="contoso", DC=com ' />.

    Since the web.config is an XML file, and you may need to use XML character special escapes if your SSL provider's issuer field causes you a problem.

    entity      character      meaning
    &quot;      "      (double) quotation mark
    &amp;      &      ampersand
    &apos;      '      apostrophe (= apostrophe-quote
    <      <       less-than sign
    >      >       greater-than sign
    3.      Save and close the web.config file.


    Author Comment

    can someone provide a response on this. basically i'm just trying to get OCS 2007 R2 integration into the new Outlook Web App [2010]

    its currently not working, i have following the attached article step by step, and still the IM functionality is not displaying in the OWA client
    I really need to get this working

    thx - S.

    Author Comment

    haven't received a response back on this. can someone jump in and provide some assistance?
    my request is straightforward, i am simply trying to enable the OCS component in Outlook Web App 2010 [formerly OWA]
    i have followed all steps and still do not see any IM functionality in the OWA 2010 client.

    any help would be much appreciated.

    LVL 6

    Accepted Solution


    kindly compare your configuration, to the below article; as i already followed it and got everything working fine:

    May you still face any problem, just let us know.

    Mohammad Saeed Abdelaziz

    Author Comment

    Hi Mohammad,
    thanks for the article.
    question: in the section that asks for the IMPoolName / IMCertificateIssuer  / IMCertificateserialNumber.
    should i be entering info on the OWA certificate or the OCS certificate?

    the OWA certificate installed on the CAS server is
    I also have a certificate for OCS installed on the OCS server:

    which should i be entereing per this article?
    also, how should i be obtaining the serial number and DN of issuer? is there a command i can run?

    many thanks!

    Author Comment

    I have gone through the article you sent step by step, and still i do not see any OCS integration in the EX2010 OWA client.
    I don't have any errors, just do not see any integration.
    has anyone else encountered this?

    thx - S.
    LVL 6

    Expert Comment

    what is the browser you are testing from ?

    LVL 6

    Expert Comment

    Make sure its one of the below list:
    Internet Explorer 7+, Firefox 3+, and Safari 3+. Now

    Author Comment

    no luck. I tried with all 3 of the browsers you mentioned, i still do not see any OCS integration in the Outlook Web App client.
    is there something else i can check? is there logging that takes place that i can examine to find what the issue is?

    thx - S.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    Learn more about how the humble email signature can be used as more than just an electronic business card. When used correctly, a signature can easily be tailored for different purposes by different departments within an organization.
    Easy CSR creation in Exchange 2007,2010 and 2013
    This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
    In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

    754 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now