Ted G.
06-06-2001, 12:36 PM
Hi folks,
Wondering if anyone could point me in the right direction...
I'd like to configure security on my Exchange server so that I can
POP3/SMTP to my mailbox from anywhere on the Internet but NOT transmit
my NT userid/pwd in cleartext.
Should I be implementing SSL? Certificates?
*Encrypting the body of each email message is not a priority right
now, and if possible I'd like to avoid having to install anything
special (ie certificate) on my client PC in order to check email from
the Internet.
Here's my equipment setup:
Exchange5.5 (sp4) server is sitting on my LAN at home, using a NetGear
RT311 router ("firewall") and a static IP on a DSL connection to the
Internet.
Here's what I've done so far:
Installed IIS4/Option Pack4, Certificate Server, plus Exch 5.5sp4 with
Key Manager (thinking perhaps I should configure certificates at the
time).
I set up Key Manager keys for both POP3 and SMTP but wasn't sure what
to do on the screen where it asks me what IP address this certificate
will be used - should this be the server itself or the list of client
IPs? (I chose "Default", is this appropriate?)
Currently I have static mappings on my NetGear "firewall" opening
ports 25, 110, 465 and 995 to the Exchange 5.5 box. I've disabled the
2 cleartext authentication methods for POP3 and used an Outlook 2000
at work to test it out.
So far, when I try popping my messages from work, I get this error:
"The connection to the server has failed.
Account 'myMailServer.MyDomain.com', Server
'myMailServer.MyDomain.com'
Protocol: POP3
Port 995, Secure (SSL) Yes,
Error Number: 0x800CCC1A
Am I on the right track? I've never configured SSL before and I've not
found any detailed walkthroughs for Exch5.5 after 1 week of searching.
The best resources I've found so far are my Exchange 5.5 24x7 book
(Sybex/McGee) and the online archives at http://www.exchangeadmin.com.
If any of you could get me going in the right direction, it would be
appreciated very much!
Thanks,
Ted G.
TheoRex@mindspring.com
Wondering if anyone could point me in the right direction...
I'd like to configure security on my Exchange server so that I can
POP3/SMTP to my mailbox from anywhere on the Internet but NOT transmit
my NT userid/pwd in cleartext.
Should I be implementing SSL? Certificates?
*Encrypting the body of each email message is not a priority right
now, and if possible I'd like to avoid having to install anything
special (ie certificate) on my client PC in order to check email from
the Internet.
Here's my equipment setup:
Exchange5.5 (sp4) server is sitting on my LAN at home, using a NetGear
RT311 router ("firewall") and a static IP on a DSL connection to the
Internet.
Here's what I've done so far:
Installed IIS4/Option Pack4, Certificate Server, plus Exch 5.5sp4 with
Key Manager (thinking perhaps I should configure certificates at the
time).
I set up Key Manager keys for both POP3 and SMTP but wasn't sure what
to do on the screen where it asks me what IP address this certificate
will be used - should this be the server itself or the list of client
IPs? (I chose "Default", is this appropriate?)
Currently I have static mappings on my NetGear "firewall" opening
ports 25, 110, 465 and 995 to the Exchange 5.5 box. I've disabled the
2 cleartext authentication methods for POP3 and used an Outlook 2000
at work to test it out.
So far, when I try popping my messages from work, I get this error:
"The connection to the server has failed.
Account 'myMailServer.MyDomain.com', Server
'myMailServer.MyDomain.com'
Protocol: POP3
Port 995, Secure (SSL) Yes,
Error Number: 0x800CCC1A
Am I on the right track? I've never configured SSL before and I've not
found any detailed walkthroughs for Exch5.5 after 1 week of searching.
The best resources I've found so far are my Exchange 5.5 24x7 book
(Sybex/McGee) and the online archives at http://www.exchangeadmin.com.
If any of you could get me going in the right direction, it would be
appreciated very much!
Thanks,
Ted G.
TheoRex@mindspring.com