[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 733
  • Last Modified:

Exchange 2010 cas array and certificate question

Hi,

I have setup on 2 hyper-v server 2008 R2 with 2 CAS/ HUB servers and 2 Mailbox servers ,I have created an NLB for internal connection and dag for the mailbox  

Question is, how do i setup my cas array for both internal end external connections? Do i first create a network load balancing cluster for internal connections (casarray.domain.local), and then a second for external connections (casarray.domain.com)?
And what about certificates for both the cas/hub servers? Will that be something like mail.domain.com, legacy.domain.com, autodiscover.domain.com, casarray.domain.com, casarray.domain.local?

Thank you for your time.
0
jeanmonline
Asked:
jeanmonline
  • 3
1 Solution
 
ckeshavCommented:
First you need to create a CAS array. While creating the array you add you must configure internal DNS entry for the name of the CAS array. This name must be unique for the internal network.
Ex: if you add casarray.domain.com

When you test everything is working fine internally, you then you need to add the entry casarray.domain.com in your External DNS(provided by you ISP).

If you are directly natting your CAS server with a Public(not suggested) then you add a "A record " mapping the Public IP to casarray.domain.com in the external DNS

If you are using ISA server to do the publishing then you add another "A record" to the Public IP of the ISA server to casarray.domain.com in the external DNS
0
 
ckeshavCommented:
You can also follow this document to check if your Configuration is correct

http://howtoexchange.wordpress.com/2009/12/16/configuring-client-access-array-for-exchange-2010-walkthrough/
0
 
ckeshavCommented:
First you need to create a CAS array. While creating the array you add you must configure internal DNS entry for the name of the CAS array. This name must be unique for the internal network.
Ex: if you add casarray.domain.com

When you test everything is working fine internally, you then you need to add the entry casarray.domain.com in your External DNS(provided by you ISP).

If you are directly natting your CAS server with a Public(not suggested) then you add a "A record " mapping the Public IP to casarray.domain.com in the external DNS

If you are using ISA server to do the publishing then you add another "A record" to the Public IP of the ISA server to casarray.domain.com in the external DNS

You can also follow this document to check if your Configuration is correct

http://howtoexchange.wordpress.com/2009/12/16/configuring-client-access-array-for-exchange-2010-walkthrough/


If you are generating a certificate exclusively for CAS server then it should be casarray.domain.com(taking the example provided by you)
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now