RE: SBS2003, Mobile 5 and multiple certificates
- From: v-terliu@xxxxxxxxxxxxxxxxxxxx (Terence Liu [MSFT])
- Date: Thu, 21 Jun 2007 03:49:44 GMT
Hello Wooster,
Thank you for posting here. And thanks for John's inputs.
According to your description, I understand that you want to install a
3rd-party certificate on SBS to use for mobile 5 device . If I have
misunderstood the problem, please don't hesitate to let me know.
First, we do not recommend to create another web site like your CSR to
provide OMA and ActiveSync for mobile device in SBS, because we have
built-in web site under the default web site to do that.
If you want to install a 3rd-party certificate on SBS, we can use the
certificate for both OWA, OMA, RWW, ActiveSync, companyweb and so on.
Based on my research, I suggest we try the following steps to see if we can
resolve this issue:
Step 1: Install the 3rd-party certificate on SBS
Go through the follow KB and Rerun CEICW again carefully to install the
3rd-party certificate
How to configure Internet access in Windows Small Business Server 2003
http://support.microsoft.com/kb/825763/en-us
Detailed steps for your reference:
a. On the SBS 2003 Server open the Server Management console. Go to
Standard Management\To Do List.
b. Click the "Connect to the Internet" link.
c. When navigating to the Firewall page, select "Enable firewall" and click
Next (I suppose you have 2 network adapters in SBS 2003).
d. On the "Services Configuration" page, select all the items and then
click Next.
e. On the "Web Services Configuration" page, make sure "Allow access to the
entire Web site from the Internet" is selected. If you select "Allow access
to only the following Web site services from the Internet", make sure all
item in the list are selected. Click Next.
f. On the "Web Server Certificate" page, choose to Use a Web server
certificate form a trusted authority. Then Browse to the certificate.
g. Go through the remaining steps.
Then, you can access the OWA, OMA or RWW via
https://mobile5.company.com/exchange, https://mobile5.company.com/oma,
https://mobile5.company.com/remote.
Step 2: Install the 3rd-party certificate on mobile device
Please go though the following KB to do that
How to install root certificates on a Windows Mobile-based device
http://support.microsoft.com/?id=915840
Note: If you have problems when you try to install certificates on your
device, contact your OEM or your mobile operator. Microsoft provides
third-party contact information to help you find technical support. This
contact information may change without notice. Microsoft does not guarantee
the accuracy of this third-party contact information.
More info for your reference :
Deploying Windows Mobile 5.0 with Windows Small Business Server 2003
http://www.microsoft.com/downloads/details.aspx?FamilyID=8be70d72-1e5a-4128-
a30c-dafeeb43544d&displaylang=en
Hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu(MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: Wooster <wooster1734@xxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| Subject: SBS2003, Mobile 5 and multiple certificates
| Date: Wed, 20 Jun 2007 01:30:16 -0700
| Organization: http://groups.google.com
| Lines: 36
| Message-ID: <1182328216.818533.141320@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
| NNTP-Posting-Host: 213.38.32.107
| Mime-Version: 1.0
| Content-Type: text/plain; charset="iso-8859-1"
| X-Trace: posting.google.com 1182328217 12542 127.0.0.1 (20 Jun 2007
08:30:17 GMT)
| X-Complaints-To: groups-abuse@xxxxxxxxxx
| NNTP-Posting-Date: Wed, 20 Jun 2007 08:30:17 +0000 (UTC)
| User-Agent: G2/1.0
| X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET
CLR 2.0.50727),gzip(gfe),gzip(gfe)
| X-HTTP-Via: 1.0 STVAMN01, 1.1 mail.paradigmservices.com
| Complaints-To: groups-abuse@xxxxxxxxxx
| Injection-Info: w5g2000hsg.googlegroups.com; posting-host=213.38.32.107;
| posting-account=BkE49A0AAACiw3vZ8Mux6P1ynxmSLibL
| Bytes: 2775
| Path:
TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTFEEDS01.phx.gbl!news-out.
cwix.com!newsfeed.cwix.com!newscon02.news.prodigy.net!prodigy.net!border1.nn
tp.dca.giganews.com!nntp.giganews.com!postnews.google.com!w5g2000hsg.googleg
roups.com!not-for-mail
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:45081
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Hi
|
| I currently have the following situation and invite comments /
| suggestions:
|
| Microsoft 2003 SBS environment which runs IIS 6.0. Remote users can
| connect to the external IP address the firewall(say remote.company.com/
| webmail) and access their exchange mail via outlook web access. There
| is a locally generated Microsoft certificate attached to this. Webmail
| appears to be part of the default website within IIS.
|
| In order to deploy Mobile 5 I wanted to use a 3rd party certificate
| (it appeared to be the more sensible option looking in the deployment
| guide) linked to mobile5.company.com. When creating the Certificate
| Signing Request I was unable to do this via the Default Web Site
| because there was already a certificate linked with it so created a
| new site (as per Microsofts instructions) called, lets say, CSR.
|
| The problems I now face are as follows:
|
| 1. Both the default site and CSR are using port 443 - when I restart
| the server the default website does not start because of a port
| conflict. This means webmail is not available until the CSR site is
| stopped and default site started.
| 2. How do I get mobile5.company.com to point to the CSR site or can I
| get mobile5.company.com to point to the default website because that
| is where all the Mobile 5 admin site is installed by default.
| 3. I believe the certificate is now linked with CSR but should I be
| linking it with the default website - is it possible to have 2
| certificates linked to the same website?
|
| I hope this makes sense to someone because I think I have got myself
| in a bit of a muddle
|
| Any comments / suggestions gratefully received.
|
|
.
- Follow-Ups:
- Re: SBS2003, Mobile 5 and multiple certificates
- From: Wooster
- Re: SBS2003, Mobile 5 and multiple certificates
- References:
- SBS2003, Mobile 5 and multiple certificates
- From: Wooster
- SBS2003, Mobile 5 and multiple certificates
- Prev by Date: RE: adding SBS2003 in an existing domain with different language
- Next by Date: RE: dcpromo sbs
- Previous by thread: Re: SBS2003, Mobile 5 and multiple certificates
- Next by thread: Re: SBS2003, Mobile 5 and multiple certificates
- Index(es):
Relevant Pages
|
