Sign in

Microsoft.com

Microsoft

Remove From My Forums

edge cert problem

Question
0

Sign in to vote

i think i have many problems and i hope now anyone can help me

i have 1 ocs server and 1 ocse edge server (with all roles) in the dmz (2 network cards one ip at the lan one at the dmz)
i have a certificate buy from thawte and this is installed at the edge server in iis but not in the ocs tool

is that right?
wich ports must i open at the firewall?
how can i see it works?

Monday, September 8, 2008 7:11 AM

All replies

0

Sign in to vote

Did you use the OCS Certificae Wizard to create the request and later install the certificate? If you used IIS, the Certificate snap-in to do so then OCS will not be utilizing it. Either re-run the wizard or go to the server propertie's Interfaces tab to select a local cerificate for each Edge role interface.

The Edge Deployment Guide contains all of the require port details:

http://www.microsoft.com/downloads/details.aspx?familyid=ED45B74E-00C4-40D2-ABEE-216CE50F5AD2&displaylang=en

Monday, September 8, 2008 12:28 PM

Moderator
0

Sign in to vote

the problem is that the cert from thawte not display at the certificate wizard from ocs

Monday, September 8, 2008 1:49 PM
0

Sign in to vote

You should select the option to Create a New Certificate and then the option to Prepare the request now, but send it later.

Then the wizard will prompt you to save the cert request to a text file which you then provide to the third-party when requesting one. If you already have a certificate purchased and installed on the local server, you can simply apply it to the OCS services using the Certificate tab under each server role's properties. But if you didn't create the original request correctly (e.g. SIP domains included in the SAN) then you may need to run through the process again.

Monday, September 8, 2008 5:50 PM

Moderator