Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

hardening exchange communications

Posted on 2012-03-19
2
Medium Priority
?
278 Views
Last Modified: 2012-06-22
All of my exch2010 services like OWA, ECP, ActiveSync, OAB are set to use Basic auth. I have a SSL cert on the CAS boxes but none of the IIS Virtual directories for these services are set to "Require SSL;" should this be set? I am also offloading the SSL to a loadbalancer so I assume not.

I want to make sure we do not have any non-ssl connections.. Whats the best practice for hardening exchange communications?
0
Comment
Question by:DEFclub
2 Comments
 
LVL 12

Accepted Solution

by:
Imtiaz Hasham earned 1500 total points
ID: 37740322
I would use SSL for communicating outside the office and it's defaulted to use SSL connections only.

Try the owa link without https and see if it works.

Also enable TLS
0
 

Author Closing Comment

by:DEFclub
ID: 37754032
thxs
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
If something goes wrong with Exchange, your IT resources are in trouble.All Exchange server migration processes are not designed to be identical and though migrating email from on-premises Exchange mailbox to Cloud’s Office 365 is relatively simple…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
Suggested Courses

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question