OCS Edge Server ISA 2006 Standard Configuration

ISA Server 2006 and OCS configuration steps

Install ISA Server 2006 standard.

Ensure that there are at least 2 network cards installed.

I used the Edge configuration for ISA

Ensure that the network card designated for External has a gateway configured.

Ensure tha the network card desginated for Internal does not have a gateway configured.

 

Allow Outgoing Connections

1. Click the Firewall Policy object in the left pane.
2. Right-click the rule titled VPN Clients to Internal Network and choose Delete.  Press Yes when prompted for confirmation.
3. Double-click the rule titled Unrestricted Internet Access.
4. On the From tab, press Add, choose Internal and External from the list and press OK.

 

Ensure that you have installed the ROOT CA of the CA that issued the certificates to OCS Web Compnenets is installed on the ISA server in the trusted root certification authorities in the Local computer store.

 

Go to the CA web site ex. https://<CA server>/certsrv

Choose Download a CA certificate, certificate chain, or CRL

Choose Download CA Certificate.

 

Install the certificate on the ISA server 2006

 

Follow the instructions in the Edge Server deployment guide.

 

To create the external web farm certificate I installed IIS and created the certificate request from there.  I then installed the certificate and assigned it to the OCS Publishing rule