Solved

Exchange 2010: ActiveSync Design

Posted on 2012-04-10
2
814 Views
Last Modified: 2013-12-27
We're considering introducing Exchange 2010 ActiveSync into our environment.  For one of the domains, we have 2 Exchange 2010 multirole servers running CAS, HUB, and Mailbox.  We also run F5 load balancers.  

For security reasons (and not performance), we're considering adding 2 dedicated CAS servers for ActiveSync.  We would have 2 for redundancy. They would sit on the internal network.  The F5 would sit on the DMZ and act as a reverse proxy.  

My question: Is having dedicated CAS servers for ActiveSync more secure than running ActiveSync off the multirole servers?  It seems like dedicated CAS servers would have a smaller attack surface.
0
Comment
Question by:bsohn417
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
Don S. earned 250 total points
ID: 37829881
Not really.  The attack surface comes from the CAS role.  I don't think the surface changes weather it is on the mailbox server or not.  That said, for performance and management/backup-retore reasons it is generally best practice to seperate the Mailbox role from the CAS role.
0
 
LVL 9

Assisted Solution

by:ash007
ash007 earned 250 total points
ID: 37831832
It wont matter if its multirole or single role
0

Featured Post

Revamp Your Training Process

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question