In this topic, you will configure the Exchange 2007 SP1 Offline Address Book (OAB) Web Distribution server.

Tasks

  1. Create a new Web site for the OAB Web Distribution virtual directory
  2. Use the Exchange Management Shell to remove and re-create the OAB Virtual Directory
  3. Configure SSL for Offline Address Book Distribution
  4. Create the OAB DNS Record
  5. Disable Unnecessary Services on EXCASOAB01

Create a New Web Site for the OAB Web Distribution Virtual Directory

Procedure W03-DWHE.63: To create a new Web site for the OAB Web Distribution virtual directory

  1. Logon to the OAB Web Distribution Server, EXCASOAB01, as Fabrikam\Administrator

  2. Assign an additional unique IP address to the network interface card on EXCASOAB01. This IP will be linked to the new Web site for OAB Web Distribution.

  3. Run IIS Manager and create a new Web site on EXCASOAB01. Specify the description as OABDistribution. Specify the IP address that was added to the server in step 2. For Path, specify a path to an empty directory; for performance reasons, it is recommended that the OAB Web site directory be placed on a different disk than the system volume. Clear the allow anonymous access to this Web site check box. Accept all other defaults.

Use the Exchange Management Shell to Remove and Re-Create the OAB Virtual Directory

Procedure W03-DWHE.64: To use the Exchange Management Shell to remove and re-create the OAB virtual directory

  1. Open the Exchange Management Shell on EXCASOAB01.

  2. To make a record of the default OAB virtual directory's settings, run the following command:

      Copy Code 
    Get-OABVirtualDirectory -Identity 'OAB (Default Web Site)' | fl | Out-File -filePath 'C:\OAB_DefWS_Settings.txt'

  3. To delete the default OAB virtual directory, run the following command:

      Copy Code 
    Remove-OABVirtualDirectory -Identity 'OAB (Default Web Site)'

  4. To create a new Offline Address Book virtual directory on the new Web site, run the following command:

      Copy Code 
    New-OABVirtualDirectory -Server EXCASOAB01 -WebSiteName 'OABDistribution' -RequireSSL $true -ExternalURL 'https://oab.consolidatedmessenger.com/OAB'

Configure SSL for Offline Address Book Distribution

You must use a valid SSL certificate that is created by a certification authority (CA) that is trusted by the Microsoft Office Outlook 2007 client computer's operating systems. Follow the steps in Microsoft Knowledge Base article KB 298805 How to enable SSL for all customers who interact with your Web site in Internet Information Services, in order to request and assign an SSL certificate for the OABDistribution Web site. For the purposes of this reference architecture, the common name for this certificate should be oab.consolidatedmessenger.com.

The following procedure assumes that you have already obtained and installed a valid SSL certificate from a third-party CA which is trusted by your Microsoft Office Outlook 2007 client computer's operating systems.

Procedure W03-DWHE.65: To configure SSL for Offline Address Book Distribution

  1. Open the Internet Information Services (IIS) Manager on EXCASOAB01.

  2. Expand Web Sites, and then expand OABDistribution.

  3. Configure directory security for OAB properties, selecting Require secure channel (SSL) and Require 128-bit Encryption for its Secure communications setting.

Create the OAB DNS Record

Procedure W03-DWHE.66: To create the OAB DNS record

  1. Open the DNS MMC on DNS01.

  2. Create a new host (A) named oab for the forward lookup zone consolidatedmessenger.com. During the process, you will type the external interface (static) IP address for the new Web site on EXCASOAB01 which contains the /OAB virtual directory.

    Note:
    While CAS servers can be load balanced, Hosted Messaging and Collaboration version 4.5 has incorporated the concept of OAS CAS Pool to support high availability. Instead of load balancing the OAB servers, you can add different OAB servers to the OAB CAS Pool by using provisioning API. See later section about how to set OAB CAS Pool and adding servers to the pool.

Disable Unnecessary Services on EXCASOAB01

To make EXCASOAB01 a dedicated OAB Web Distribution server, other services supported by Client Access server role must be disabled.

The following provides procedures to disable POP and IMAP service, remove OWA virtual directory, and stop the default Web site on EXCASOAB01.

Procedure W03-DWHE.67: To disable POP and IMAP services on EXCASOAB01

  1. Open the Exchange Management Shell on EXCASOAB01.

  2. Run the following commands:

      Copy Code 
    Set-service msExchangePOP3 -startuptype disabled
Set-service msExchangeIMAP4 -startuptype disabled

Procedure W03-DWHE.68: To remove the Outlook Web Access Virtual Directory

  1. To make a record of your current OWA virtual directory settings, run the following command from the Exchange Management Shell on EXCASOAB01:

      Copy Code 
    Get-OwaVirtualDirectory -identity 'EXCASOAB01\owa (Default Web Site)' | fl | Out-File -filePath 'C:\owa_DefWS_Settings.txt'

  2. Remove the old AutoDiscover virtual directory by executing the following command in the Exchange Management Shell:

      Copy Code 
    Remove-OwaVirtualDirectory -identity 'EXCASOAB01\owa (Default Web Site)'

Procedure W03-DWHE.69: To stop the Default Web Site on EXCASOAB01

  1. Open the Internet Information Services (IIS) Manager on EXCASOAB01.

  2. Navigate to Default Web Site and stop the default Web site.