Microsoft Exchange Server 2013 and 2016 Deployment

Similar documents
VMware Horizon View Deployment

Setting up Microsoft Exchange Server 2016 with Avi

AD FS v3. Deployment Guide

MS Exchange 2010 Deployment Guide

Deploying the BIG-IP System v11 with Microsoft Exchange 2010 and 2013 Client Access Servers

DEPLOYMENT GUIDE Version 1.1. Deploying the BIG-IP Access Policy Manager with IBM, Oracle, and Microsoft

Load Balancing Microsoft Exchange Deployment Guide v Copyright Loadbalancer.org

Deploying the BIG-IP System v10 with Oracle s BEA WebLogic

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0

Deploying NetScaler with Microsoft Exchange 2016

AX Series with Microsoft Exchange Server 2010

MS Exchange 2016 Deployment Guide

Load Balancing Microsoft Exchange Deployment Guide v Copyright Loadbalancer.org, Inc

Mobile MOUSe EXCHANGE SERVER 2010 CONFIGURATION ONLINE COURSE OUTLINE

Deploying the BIG-IP System v11 with Microsoft Exchange 2010 and 2013 Client Access Servers

How to Configure Authentication and Access Control (AAA)

Manual Owa Exchange 2010 Not Working Externally

How to Make the Client IP Address Available to the Back-end Server

DEPLOYMENT GUIDE Version 1.2. Deploying the BIG-IP System v10 with Microsoft IIS 7.0 and 7.5

DEPLOYMENT GUIDE DEPLOYING THE BIG-IP SYSTEM WITH BEA WEBLOGIC SERVER

What to Know About Exchange 2013 and Load Balancing

WatchGuard XCS and Outlook Web Access 2013

BIG-IP Access Policy Manager : Portal Access. Version 12.1

Load Balancing VMware App Volumes

Deploy Avi Vantage with Microsoft Lync 2013

Manual Owa Exchange 2010 Url Redirect To

Example - Reverse Proxy for Exchange Services

How to Configure Guest Access with the Ticketing System

Deploying the BIG-IP System v10 with Microsoft Exchange Outlook Web Access 2007

FortiADC with MS Exchange 2016 Deployment Guide

MS Skype For Business. Deployment Guide

How to Set Up External CA VPN Certificates

DEPLOYMENT GUIDE. Load Balancing VMware Unified Access Gateway

Load Balancing Microsoft Exchange Deployment Guide v Copyright Loadbalancer.org, Inc

Cisco Unified Communications Manager configuration for integration with IM and Presence Service

Load Balancing VMware Workspace Portal/Identity Manager

DEPLOYMENT GUIDE. Deploying F5 for High Availability and Scalability of Microsoft Dynamics 4.0

Load Balancing Microsoft Exchange 2013 with FortiADC

BIG-IP Access Policy Manager : Portal Access. Version 13.0

How to configure the UTM Web Application Firewall for Microsoft Lync Web Services connectivity

DEPLOYMENT GUIDE DEPLOYING F5 WITH ORACLE ACCESS MANAGER

Manual Owa Exchange 2010 Url Parameters

Microsoft Installing, Configuring, and Administering Microsoft Exchange 2003 Server Implementing &Managing MS Exchange Server 2003

Microsoft Exchange Microsoft Exchange Deployment Guide

Load Balancing and Optimization of Microsoft Exchange 2010 Client Access Servers

User Identity Sources

vrealize Orchestrator Load Balancing

Microsoft OWA 2013 IIS Integration

HP Load Balancing Module

Radware's Application Front End solution for Microsoft Exchnage 2003 Outlook Web Access (OWA)

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Realms and Identity Policies

O365 Solutions. Three Phase Approach. Page 1 34

Deploying the BIG-IP LTM v11 with Microsoft Lync Server 2010 and 2013

MS Lync Deployment Guide

MS Lync Deployment Guide

Realms and Identity Policies

Deploying F5 with Microsoft Remote Desktop Services

BIG-IP Access Policy Manager : Implementations. Version 12.1

Realms and Identity Policies

Barracuda Firewall Release Notes 6.6.X

How to Configure SSL VPN Portal for Forcepoint NGFW TECHNICAL DOCUMENT

TestsDumps. Latest Test Dumps for IT Exam Certification

Citrix NetScaler Traffic Management

Microsoft Exchange Server 2007 and 2010 Operations

Load Balancing Microsoft Remote Desktop Services. Deployment Guide v Copyright Loadbalancer.org

Load Balancing Microsoft IIS. Deployment Guide v Copyright Loadbalancer.org

Configuring Virtual Servers

jetnexus Virtual Load Balancer

jetnexus Virtual Load Balancer

Load Balancing VMware Identity Manager

Exchange 2016 Deployment Guide. Exchange Deployment Guide

Android Mobile Single Sign-On to VMware Workspace ONE. SEP 2018 VMware Workspace ONE VMware Identity Manager VMware Identity Manager 3.

Exchange Server 2016 Client Access Namespace Configuration

Guide to Deploying NetScaler as an Active Directory Federation Services Proxy

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

SAML-Based SSO Configuration


VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

jetnexus Load Balancer

Microsoft OWA 2007 IIS Integration

How to Set Up VPN Certificates

BIG-IP Access Policy Manager : Secure Web Gateway. Version 12.1

DEPLOYMENT GUIDE Version 1.0. Deploying the BIG-IP Access Policy Manager v with Oracle Access Manager

Configuring Cisco Unified Presence for Integration with Microsoft Exchange Server

Deploying F5 with Microsoft Active Directory Federation Services

DEPLOYMENT GUIDE Version 1.0. Deploying the BIG-IP Access Policy Manager with Oracle Access Manager

Deploying F5 with Microsoft Active Directory Federation Services

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

SAML Authentication with Pulse Connect Secure and Pulse Secure Virtual Traffic Manager

Planning, Deploying, and Monitoring Mobility Microsoft Lync Server 2010

Certificate Management

NGF0502 AWS Student Slides

Deployment Guide AX Series with Oracle E-Business Suite 12

DEPLOYMENT GUIDE Version 1.2. Deploying the BIG-IP System v9.x with Microsoft IIS 7.0 and 7.5

Riverbed SteelApp Traffic Manager Solution Guide

Windows Server 2012 R2 DirectAccess. Deployment Guide

Transcription:

Microsoft Exchange Server 2013 and 2016 Deployment Barracuda Networks has conducted interoperability tests using the Barracuda Load Balancer ADC and Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016. Follow the steps in this guide to deploy the Barracuda Load Balancer ADC to increase the scalability and reliability of your Microsoft Exchange Server deployment. Using a Barracuda Load Balancer ADC allows load balancing of a Client Access Server (CAS). Product Versions and Prerequisites You must have: Barracuda Load Balancer ADC version 5.1 or above. Microsoft Exchange Server 2013 or Microsoft Exchange Server 2016. Installed your Barracuda Load Balancer ADC(s), connected to the web interface, and activated your subscription(s). If you want to deploy the Microsoft Exchange Server with high availability, clustered your Barracuda Load Balancer ADCs. For more information, see High Availability. Terminology Term Microsoft Exchange Server Fully Qualified Domain Name (FQDN) Virtual IP (VIP) Address Service Instant SSL Client Access Server (CAS) Real Server Outlook Web App (OWA) Deployment Topology for Microsoft Exchange Server 2013 Description A Microsoft Exchange Server deployment consists of Client Access Servers (CAS) and Exchange Mailbox servers. The unique name for a specific computer or host that can resolve to an IP address (e.g., www.example.com). The IP address assigned to a service. Clients use the virtual IP address to connect to the load-balanced service. A combination of a virtual IP address and one or more TCP/UDP ports that the Barracuda Load Balancer ADC listens on. Traffic arriving on the specified port(s) is directed to one of the real servers associated with a service. Instant SSL provides SSL (HTTPS) access to content on servers without having to modify the servers or the content on the servers. The Barracuda Load Balancer ADC rewrites the "http" links in the response to "https". Client Access Server supports various protocols used by end users to access their mailboxes. This includes services such as RPC Client Access, IMAP, POP3, OWA, and ActiveSync. A server associated with a service that handles the requests forwarded to it by the Barracuda Load Balancer ADC. Originally called Outlook Web Access, OWA is the Webmail component of Microsoft Exchange Server 2010. 1 / 7

Deployment Topology for Microsoft Exchange Server 2016 Deploying Exchange Services on the Barracuda Load Balancer ADC Configuring Clustered Barracuda Load Balancer ADCs If your Barracuda Load Balancer ADCs are clustered, the configuration between the active and passive units is synchronized; you only need to configure the active Barracuda Load Balancer ADC. To deploy the Exchange servers with the Barracuda Load Balancer ADC, complete the following steps: Certificates Barracuda Networks recommends that you use the same certificate on the Barracuda Load Balancer ADC and each CAS. Step 1. Create the Exchange Services 1. 2. Log into the Barracuda Load Balancer ADC as the administrator. Go to the BASIC > Certificates page, and create or upload a certificate for the service. 3. Go to the BASIC > Services page and add the following services. Click Add Service and enter the values in the corresponding fields (each service must be added separately). 2 / 7

Name Type IP Address Port Exchange_InstantSSL Instant SSL Exchange_SMTP TCP Proxy VIP address for the FQDN that clients use to access the Outlook Web Access (OWA) and Exchange Admin Center. VIP address for the FQDN that Microsoft Exchange server uses to receive mail. HTTP Session Service Timeout Port 443 80 1200 SSL Settings Certificate Secure Site Domain Enter the domain name of your Exchange server. If the internal and external domain are different, you can use wildcard characters. Select the For certificate example: *.barracuda.com that you If your Barracuda Load uploaded Balancer for the ADC is running version 5.1.1 service. and above, set the Rewrite Support option to Off. For versions below 5.1.1, this option is named Instant SSL. 25 N/A 1200 N/A N/A Load Balancing Type: Cookie Insert Time (Barracuda Load Balancer ADC 5.4 and earlier): 1200 seconds Cookie Expiry (Barracuda Load Balancer ADC 6.0 and later): 1200 seconds Cookie Name Choose a cookie name. Type: Source IP Time: 1200 5. Click Create. If you have the Barracuda Load Balancer ADC 540 and above, you can enable Application Security for the service. 1. For Application Security, select Enable. 2. For Security Mode, select the Passive mode. It is recommended that you run the service in Passive mode before going active. 3. From the Security Policy list, select owa2013. This policy is predefined for all Exchange applications and applies to both Exchange Server 2013 and 2016. You need to modify the default owa2013 policy. Go to the SECURITY > Security Policies page and select the owa2013 security policy. In the Cookie Security section, set Tamper Proof Mode to None. If you want to use Integrated Windows Authentication with the Exchange_InstantSSL service, go to the Request Limits section of the security policy settings and increase the Max Header Value Length to 800. Step 2. Add the Real Servers Add each CAS to your service. For each server, enable SSL and configure health checks. Certificate validation can be ignored. 1. On the BASIC > Services page, verify that the correct service for the server is displayed. 3 / 7

2. 3. Click Add Server. Enter the values in the corresponding fields. IP Address Port Server Monitor IP address of the CAS 443 Click Create. Testing Method: Simple HTTPS Port: 443 Test Target: /owa/auth/logon.aspx (unless you modified the default path of logon.aspx) Test Match: Microsoft Corporation Additional Headers: User-Agent: Barracuda Load Balancer ADC Server Monitor Status Code: 200 Test Delay: 30 If SNI is enforced on the Microsoft Exchange server(s), click Edit for each affected server, expand Settings and set Enable SNI to Yes. Step 3. Configure an HTTP Request Rewrite Rule To simplify access to the Outlook Web Access site for your users, configure a rewrite rule to add /OWA to the end of the URL. 1. 2. 3. Go to the TRAFFIC > Web Translations page. From the Service list, select the Exchange_InstantSSL service. In the HTTP Request Rewrite section, add the following rule. Click Add Rule and enter the values in the corresponding fields. Rule Name Sequence number Action Old Value Rewrite Value Rewrite Condition OWA 3 Redirect URL / /OWA * Click Save. Step Configure DNS Configure the VIP address on the CAS virtual directories. Configure the DNS for the following domain names to point to the VIP address that you created for the Exchange_InstantSSL service: mail.domain.local autodiscover.domain.local eas.domain.local outlook.domain.local oab.domain.local ecp.domain.local Configure HTTPS namespace on the Exchange Admin Center: 1. Log into your Microsoft Exchange Admin Center. 2. Click Servers > Virtual Directories. 3. Select CAS1, click Edit, and configure external access domain. 4 / 7

Add both servers to the list and configure the external domain. 5. Click Save. Next Step You can configure authentication and access control for your applications. For more information, see Access 5 / 7

Control. 6 / 7

Figures 7 / 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback