OCS Edge Server ISA 2006 Standard Configuration
Posted by Chad McGreanor on December 12, 2008
ISA Server 2006 and OCS configuration steps
Install ISA Server 2006 standard.
Ensure that there are at least 2 network cards installed.
I used the Edge configuration for ISA
Ensure that the network card designated for External has a gateway configured.
Ensure tha the network card desginated for Internal does not have a gateway configured.
Allow Outgoing Connections
- Click the Firewall Policy object in the left pane.
- Right-click the rule titled VPN Clients to Internal Network and choose Delete. Press Yes when prompted for confirmation.
- Double-click the rule titled Unrestricted Internet Access.
- On the From tab, press Add, choose Internal and External from the list and press OK.
Ensure that you have installed the ROOT CA of the CA that issued the certificates to OCS Web Compnenets is installed on the ISA server in the trusted root certification authorities in the Local computer store.
Go to the CA web site ex. https://<CA server>/certsrv
Choose Download a CA certificate, certificate chain, or CRL
Choose Download CA Certificate.
Install the certificate on the ISA server 2006
Follow the instructions in the Edge Server deployment guide.
To create the external web farm certificate I installed IIS and created the certificate request from there. I then installed the certificate and assigned it to the OCS Publishing rule
