SeeDk
asked on
Domain Email access without allowing access to internal network
This is a follow up to this question: https://www.experts-exchange.com/questions/28994564/Exchange-2007-Possible-to-give-domain-email-account-access-to-a-non-domain-user.html?anchor=a41959089¬ificationFollowed=182293725&anchorAnswerId=41959089#a41959089
I expect management to move forward with the request to give the external contractors access to our domain email.
The best suggestion in that topic was to:
"assign/open ports on your Exchange server (do not use POP/SMTP defaults), and provide instructions or generate a script for adding a yourcompany.com e-mail account to their e-mail apps (similar to ISP method)? Whether or not you generate a URL or just use a static IP address is up to you"
Could someone help expand on this suggestion?
Any helpful documents/posts I could read up on to find out how to set this up?
This would be done on an Exchange 2007 server.
I expect management to move forward with the request to give the external contractors access to our domain email.
The best suggestion in that topic was to:
"assign/open ports on your Exchange server (do not use POP/SMTP defaults), and provide instructions or generate a script for adding a yourcompany.com e-mail account to their e-mail apps (similar to ISP method)? Whether or not you generate a URL or just use a static IP address is up to you"
Could someone help expand on this suggestion?
Any helpful documents/posts I could read up on to find out how to set this up?
This would be done on an Exchange 2007 server.
Albert Maine
They are referring to opening up the firewall and doing a NAT translation from an external port to the internal ports. Google port forwarding for exchange. The first TechNet article should be helpful for you.
ASKER
This might be a stupid question...
We already have domain users with their mobile devices connecting via port 443.
Is there any reason why I can't use that same port for these other users?
The only differences I can think of are:
1. I won't enable any VPN or PC access for the contractors..this is unrelated to email anyway.
2. I won't enable mobile access for them...would want them to connect only on their workstations.
Can Outlook and other email programs be configured to connect to port 443 on an external Exchange server?
We already have domain users with their mobile devices connecting via port 443.
Is there any reason why I can't use that same port for these other users?
The only differences I can think of are:
1. I won't enable any VPN or PC access for the contractors..this is unrelated to email anyway.
2. I won't enable mobile access for them...would want them to connect only on their workstations.
Can Outlook and other email programs be configured to connect to port 443 on an external Exchange server?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ok, that sounds good and better than opening another port if not needed. Will leave this topic open in case I have any more questions when setting them up.