locked
need help about the edge server i have 3 day pls

    Question

  • Hello,

    Friend I need help about deploy the edge server for office communication server 2007 R2

     

    I have 2 separate LAN

    First LAN;

    1-      Server: Active directory     (192.168.2.120) (192.168.2.121)

    2-      Ocs 2007 R2                       (192.168.2.122)

    3-      Mediation                          (192.168.2.127) (192.168.2.128)

    4-      Communicator web         (192.168.2.125)

    5-      Sql2005 sp2                      (192.168.2.123)

    6-      Exchange 2007                (192.168.2.124)

    All of these serveur is in 64-bit

     

    In the second lan I have

    1-      Active directory (2003 server R2)      (172.16.0.20)

    2-      5 PC…..

     

     

     

    So,

    I need to deploy the edge server in the first LAN before the 5 user in the second LAN   have access to my OCS R2 in the first LAN

    So

    I deploy an edge server in the first LAN

    Internal ip: 192.168.2.130

    External ip: 172.16.0.10

                          172.16.0.11

                          172.16.0.12

     

     

     My problem is

     

    How to configure the edge server services and the appropriate certificate

    And how

    To create these certificate (there is my problem exactly)

     

    Please I need help quickly   step by step     

     Our Customer is crazy and I have 3day to resolve this problem  

     

     

     

    Wednesday, February 11, 2009 1:35 PM

All replies

  • If both LANs are private and can route with each other then why do you need an Edge?

    Are both LANs part of the same Active Directory Forest?

    You will need to generate at least two certs (Public CA, or private trusted root CA) one for private and one for public (minimum for IM only). You also need to make sure that your front end server has a cert on it as well (your pool will not work at without it so I assume you are that far). Once the certs are installed and your Edge server is configured properly on both ends then all you need is an SRV records on LAN2 that point to the public NIC on the edge (ie _sip._tls.sipdomain.com -> sip.sipdomain.com(172.16.0.10) on port 443).

    The Edge server deployment guide explains this process very well if you run into more issues. Good Luck!

    Mark
    Thursday, February 12, 2009 5:02 AM
  • 1- for me i need to use the edge server between the two lLAN  because i need to activate this edge server

    2- each network have own Active Directory forest (separate)

    3- for  the SRV records on LAN2 _sip._tls.sipdomain.com i have created an it's ok


    now my problem is this
     
    <<<<<<<<<<<<<<<
    You will need to generate at least two certs (Public CA, or private trusted root CA) one for private and one for public (minimum for IM only). You also need to make sure that your front end server has a cert on it as well (your pool will not work at without it so I assume you are that far)
    <<<<<<<<<<<<<<<

    how to create the public certificate.
    pls step by step
    Thursday, February 12, 2009 10:59 AM