Professional Documents
Culture Documents
2007
Contents
I. Topology and Description ................................................................................................................... 1
II. Installing and Configuring Exchange Server 2007 ............................................................................ 2
1. Hardware requirement................................................................................................................. 2
2. Software requirement .................................................................................................................. 2
3. Add Components to install Microsoft Exchange Server ............................................................. 3
4. Install prerequisite packets .......................................................................................................... 5
5. Install Microsoft Exchange Server 2007 ................................................................................... 12
6. Configure Exchange 2007......................................................................................................... 21
7. Insert Offline Address Book in Mail Database ......................................................................... 28
III. Installing ISA 2006 ......................................................................................................................... 30
IV. Publishing an Exchange Web Access (OWA) ................................................................................ 35
1. Install Certificate Service on domain controller VNFSDC001 ................................................. 35
2. Create certificate for Exchange web ......................................................................................... 37
a. Delete default existing certificate ......................................................................................... 37
b. Create certificate for default website .................................................................................... 41
c. Export certificate of OWA virtual directory ......................................................................... 45
3. Create DNS CName mapping to ISA VNFSIS001 (on VNFSDC001) .................................... 52
4. Import certificate to ISA VNFSIS001 ...................................................................................... 56
5. Create Web Listening object on ISA ........................................................................................ 65
6. Create web publishing OWA rule ............................................................................................. 73
V. Publishing an Exchange Server Outlook Anywhere (RPC Over HTTP) ......................................... 78
1. Install network service RPC Over HTTP (on vnfsdc001) ........................................................ 78
2. Enable Outlook Anywhere of Exchange 2007 .......................................................................... 81
3. Create Outlook Anywhere Publishing rule on ISA VNFSIS001 .............................................. 83
VI. Publishing an Exchange Server for SMTP, POP3 .......................................................................... 90
1. Install SMTP service on ISA relay connect to SMTP exchange 2007...................................... 90
2. Configuration SMTP relay on ISA server ................................................................................. 94
3. Create SMTP Server to SMTP Server Rule .............................................................................. 99
4. Create publishing SMTP and POP3 rule on ISA server ......................................................... 103
VII. Client test..................................................................................................................................... 107
1. Login with web access OWA.................................................................................................. 107
2. Register Outlook Anywhere.................................................................................................... 108
3. Register POP3 & SMTP ......................................................................................................... 121
I. Topology and Description
This lab is to setup & configure Microsoft Exchange 2007 Enterprise X64. After that, the services
OWA, SMTP, POP3, MAPI are published to internet using Microsoft ISA 2006 Standard
Computer Number 1 2 3
Computer Name VNFSDC001 VNFSIS001 CLIENT01
IP Address Information IP address: Internal: IP address:
192.168.1.2 IP address: 192.168.1.11
DG: 192.168.1.1 DG:
192.168.1.1 DNS: 192.168.1.1
DNS: 192.168.1.2 DNS:
192.168.1.2 External: 192.168.1.2
IP address:
172.16.1.2
DG:
172.16.1.1
OS Windows Server 2003 Windows Server 2003 Windows XP
En R2 x64 En R2 x86 Professional
Installed Services DHCP ISA 2006 Standard None
DNS Edition (All updates from
WINS (All updates from Microsoft Update
Certificate Services Microsoft Update installed)
Exchange 2007 En installed)
(All updates from
1
Microsoft Update
installed)
Addition SP2 SP2, ISA Publishing SP3
Configurations Pack Update
Domain Name glfs.myvnc.com glfs.myvnc.com glfs.myvnc.com
(domain functional
level windows 2003,
forest functional level
windows 2003)
Domain Member Yes Yes Yes
Exchange Server Role Mailbox server N/A N/A
Hub Transport
Client Access Server
Admin Account Administrator Administrator Administrator
Password 123qwe!@# 123qwe!@# 123qwe!@#
This section will show you how to install exchange 2007 server step by step. This process must be
done in sequence:
a. Hardware requirement
b. Software requirement
c. Add the necessary component
d. Install the perquisite packages
e. Install Exchange 2007 Enterprise
f. Configure Exchange 2007 Enterprise
1. Hardware requirement
The first step is to determine whether a computer is capable of running Exchange Server
2007. The following list details the hardware requirements of the computer that will host
Exchange Server 2007:
x64 architecture-base processor that supports the Intel EM64T or AMD64 instruction
set
1.2 GB of disk space on the volume on which Exchange is installed plus 500 MB per
unified messaging language pack that is to be installed
2. Software requirement
Prior to the installation of Exchange, the software environment should meet the following
requirements:
64-bit edition of Windows Server 2003 or Windows Server 2003 R2. If you plan to
use single-copy cluster or cluster continuous replication, the enterprise editions of
Windows Server 2003 and Windows Server 2003 R2 are required
The following volumes must be formatted with the NTFS file system:
2
o System volume
o Volumes that store Exchange program files, storage group files, transaction
log files, database files, and all other Exchange files
Microsoft Windows PowerShell. This can be downloaded from Microsoft’s Web site
MMC 3.0. This version of the MMC is included with Windows Server 2003 R2 but
not with Windows Server 2003. This MMC is installed when you apply SP2 to
Windows Server 2003 R2
The Simple Mail Transfer Protocol (SMTP) and Network News Transfer Protocol
(NNTP) service must not be installed.
3
Click Add/Remove Windows
Components.
4
Click Next, and when the Windows
Components Wizard completes, click
Finish.
a. ADAM
ADAM package
5
Click Next on the Software Update
Installation Wizard dialog
6
The package is installed successfully
Click Finish
7
Check I accept the terms of the License
Agreement then click Next
8
Click Finish for successful installation
9
Click on I accept button
Click OK
10
Windows PowerShell
11
Click OK to finish the installation of
Windows PowerShell
Click Next
12
Check I accept the items in the license
agreement
Click Next
Click Next
Click Browse
13
Create the folders in which Exchange 2007
files store
Click OK
14
Enter the Exchange organization
Click Next
Click Next
15
All prerequisites are ok. You can go on
installing exchange 2007
Click Install
16
The installation is successful.
Click Finish
17
Enter key on product key text box
Click Finish
18
Second, the exchange 2007 needs to be
updated
19
Select Download the lasted updates
20
6. Configure Exchange 2007
After setting up exchange, the basic configuration had better be configured for normal working.
21
Select tab Authentication, uncheck Offer
Basic authentication only after starting
TLS
Click Ok
22
Enter mail.glfs.myvnc.com
23
Check Anonymous users, Exchange Users,
Exchange Servers & legacy Exchange
Servers
Click Ok
24
Check Basic authentication (password is
sent in clear text)
25
Enter the name of Send Connector:
Outbound to Internet
Click Ok
Click Next
26
Click Next
27
Click Finish
Select Properties
28
On Mailbox Database Properties, Go to tab
Client Settings
Click Browse
Click OK
29
Click OK
30
Put the CD the the cdrom drive, the
welcome of ISA appears
31
Select I accept the terms..
Click Next
Click Next
Choose Typical
Click Next
32
Choose the range of Internal Network
Click Next
Click Next
Click Next
33
Click Install to start setting up
Waiting…
34
Select Invoke ISA Server Management
Click Finish
35
Select certificate sevices
36
Click Next
Click Finish
37
Open Internet information service
38
Click Next
Click Next
39
Click Finish
Click Ok
40
Click OK
Select Properties
41
Click Next
Click Next
Click Next
42
On the textbox name, enter
mail.glfs.myvnc.com
Click Next
Click Next
43
Click Next
Click Next
44
Click Finish
Click Ok
This section will export the certificate for OWA. As to implementation, Virtual directory
RPC needs exporting for OWA & RPC over HTTP
45
Right click RPC and click properties
46
Check Integrated windows
authentication and Basic authentication
(password is send in clear text)
47
Check Require secure channel (ssl) and
Require 128-bit encryption
48
Select Details tab and click Copy to file
Click Next
49
Select yes, export the private key and
click Next
Click Next
50
Browse to save file
Click Next
Click Finish
51
Click OK
Click OK
52
Open DNS
Click OK
53
The DNS console appears like this
Click OK
54
On DNS console, right click on
glfs.myvnc.com
Click OK
55
4. Import certificate to ISA VNFSIS001
The certificate of OWA or RPC exported above need importing to ISA VNFSIS001 on
Personal & Trusted Root Certificate store.
56
Click menu File, Add/ Remove ….
Click Add
57
Select Certificates and click Add
Click Finish
58
Click Close
Click OK
59
Right click on Personal, select All Tasks
Import
Click Next
60
Enter password of the certificate file you
have set
Click Next
Click Next
Click Finish
61
Click OK
62
Click Next
Click Next
63
Click Next
Click Finish
Click OK
64
The certificate has been imported
Open ISA
65
Enter name for the web listener
Click Next
66
Select Internal, External
Click OK
67
Add ip address of internal
Click OK
Click Select
68
Select IP address of internal and lick select
certificate
69
Click Next
70
On the textbox SSO, enter
.glfs.myvnc.com
Click Add
71
Enter FQDN name of VNFSDC001
(domain controller) on Server name
Click OK
Click Next
72
Click Finish
73
Enter name for publishing rule.
Click Next
74
Select Use SSL to connect to the published
web server or server farm
Click Next
75
Enter mail.glfs.myvnc.com for Public
name
Click Next
Click Next
76
Select Basic authentication
Click Next
Click Next
77
Click Finish
Click Apply
78
Open control panel and click Add or
remove Programs
79
Select Network services and click Detail
Click Next
80
Wait for installation
Click Finish
81
Click Server configuration client
access
82
Click Finish
83
Enter name for rule and click next
84
Select Publish a single web site or load
balancer
85
Enter mail.glfs.myvnc.com in internal site
name and vnfsdc001.glfs.myvnc.com in
computer name or IP address
86
Select web listener is My listener
87
Click Next
Click Finish
88
Right click and select Properties
89
Select Traffic tab and check Require 128-
bit encryption for HTTPs traffic
Click Apply
90
Go to Control panel, double click on Add
or Remove Programs
91
Select Internet Information Services (IIS)
Click Detail
Click OK
Click OK
92
Click Next to install SMTP services
Click Finish
93
2. Configuration SMTP relay on ISA server
Select Properties
94
On the tab General, select IP address
192.168.1.1
Go to Access tab
Click Authentication
95
Check Basic authentication and Integrated
Windows Authentication
Click OK
Click OK
96
Go to Default SMTP Virtual Server ->
Domains
Select Remote
Click Next
Click Finish
97
Right click glfs.myvnc.com
Select Properties
Click Apply
98
3. Create SMTP Server to SMTP Server Rule
Click Next
99
Check SMTP
Click Next
Click Next
100
Specify IP address 172.16.1.2 click ADD
Click OK
Check Internal
Click Address…
Click OK
101
Click Next
Click Finish
102
4. Create publishing SMTP and POP3 rule on ISA server
Click Next
103
Check POP3, SMTP
Click Next
Click Next
Check External
Click Address…
104
Specify IP 172.16.1.2, click Add
Click OK
Check Internal
Click Address…
Click OK
105
Click Next
Click Finish
106
VII. Client test
The final section is to test the work of above configurations.
Enter https://mail.glfs.myvnc.com/owa in
address and enter
Log on ok
107
2. Register Outlook Anywhere
a. Import certificate
The certificate of OWA or RPC exported above need importing to ISA VNFSIS001 on
Personal & Trusted Root Certificate store.
108
Click Add
109
Select Computer account and click Next
Click Finish
Click Close
110
Click OK
Click Next
111
Browse for the certificate file
Click Next
Click Next
112
Click Finish
Click OK
113
Go to Trusted Root Certificate, right click
on Certificates, select All tasks -> Import
Click Next
114
Enter password of file
Click Next
Click Finish
115
Click OK
116
Click E-mail Accounts
Click Next
117
Enter vnfsdc001.glfs.myvnc.com for
Microsoft Exchange Server
Enter username
118
Check Connect ton my Exchange
mailbox using HTTP and click Exchange
Proxy Settings
Click OK
119
Click Next
Click Finish
Click Close
120
Open MS Outlook and enter password for
accounts
Password: 123qwe!@#
Open MS Outlook
121
Click Tool, Email-Accounts
Click Next
122
Enter your name, email address.
123
Check My outgoing server (SMTP)
requires authentication
Click OK
124
Test ok and click Close
Click Next
Click Finish
125
The MS Outlook work ok with POP3 and
SMTP
126