Should the OWA & ActiveSync Client Access Server be installed in the DMZ or can the internal CAS be safely accessed directly
Home > IT Answers > Exchange > Should the OWA & ActiveSync Client Access...
RuthParish15
60 pts.
0
Q:
Should the OWA & ActiveSync Client Access Server be installed in the DMZ or can the internal CAS be safely accessed directly
Outlook Web Access, Client Access Server Role, ActiveSync, Exchange 2007, OWA, Outlook, DMZ, SSL
We have a small domain and not a lot of money. Should we pay the extra money to buy a Client Access Server to put in the DMZ to allow users to access OWA externally and PDA uses to connect to their mailboxes? If so, are there online instructions somewhere detailing this process of setting up such a server in the DMZ?

Or is it possible using SSL and a certificate to safely protect our Exchange server while still having the internal CAS accessed directly from the internet? By the way, our Client Access Server has other roles beyond CAS.
ASKED: Mar 25 2009  0:01 AM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
0
Technochic
40210 pts.
0
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • AddThis Social Bookmark Button
As long as you put a certificate on your CAS you can allow access from the internet safely without having to put it in the DMZ. That is the exact configuration our CAS is set up with. Here is an excellent article on SSL and Exchange 2007. We have three CAS/Hub combo servers all with ssl certs and none are in the DMZ.
Last Answered: Mar 25 2009  2:55 AM GMT by Technochic   40210 pts.
  •   
0
0
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



0