Web Listener
-
Sunday, October 21, 2012 11:30 AMWe are transitioning from Exchange 2007 to Exchange 2010 (i.e., moving all maiboxes, publics etc., to Exchange 2010)
Currently, there is a single SSL certicate (DNS=webmail.domain.com.au) issued by Thawte on the web listener for OWA in the TMG box.
There are no other DNS names in the SAN certificate........
Config:
Exchange 2007 IP Address 192.168.0.10
Exchange 2010 IP Address 192.168.0.11
Plan:
It was decided to use the current SAN certificate of Exchange 2007 server and apply it to Exchange 2010
The web listener uses the above SAN certificate for OWAN and ActiveSyn
Export the SAN certificate from Exchange 2007 server>MMC>Certificates>Personals>Export Certificate
then import it from Exchange Server>Server Configuration>Import Exchange Certificate
Questions:
After export the SSL certificate from Exchange 2007 then importing into Exchange 2010, Do I need to do anything in the TMG box apart from pointing the OWA listener and ActivySync listener to 192.168.0.11?
All Replies
-
Sunday, October 21, 2012 12:00 PM
Hi,
you must change the Exchange Webclient publishing rule on your TMG Server to point to the Exchange 2010 CAS Server for redirecting requests for Exchange 2007 users to the correct Exchange Server.
There are some additional steps on the Exchange Server for correct CAS redirecting / CAS Proxy:
http://technet.microsoft.com/en-us/library/bb310763.aspxregards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de
- Proposed As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Thursday, October 25, 2012 4:56 AM
- Marked As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Monday, October 29, 2012 9:36 AM
-
Sunday, October 21, 2012 12:04 PM
Thanks Marc
I will be removing Exchange 2007 after I have moved all the mailboxes, public folders, OAB, etc from Exchange 2007 to Exchange 2010 including exporting the single SSL certificate from Exchange 2007 then import it into Exchange 2010.
So proxy is not required or not necessary?
thanks
.png)
