• Article

Configuring Internal and External Interfaces and Certificates for Edge Servers

Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.

The external and internal interfaces of all edge servers must be configured to support traffic between external users and internal users. The settings for each interface are configured when you initially deploy the edge server. You can change any of the interface settings on this tab or you can run the Configuration Wizard to change any of the interface settings.

Each edge server in the perimeter network has two network interfaces:

  • The internal interface is the interface to which internal Communications Servers connect to the edge server. It is used for communications between servers in the internal network and the edge server. Depending on your edge server topology, the internal interface may be shared among server roles. See the Microsoft Office Communications Server2007 Edge Server Deployment Guide for more information.

  • The external interface is used by external users (such as remote users and federated partners) to connect to the edge server.

Part of the configuration of these interfaces is configuring certificates for the interfaces, as appropriate. Additionally, certificate configuration requires configuring a certificate on the A/V Edge Server to be used for A/V user authentication.

Configuring the internal and external interfaces and certificates of edge servers includes the following:

  • Configuring Access Edge Servers

  • Configuring Web Conferencing Edge Servers

  • Configuring A/V Edge Servers

  • Configuring Compression on Edge Servers

  • Configuring IM Provider Support on Edge Servers

  • Viewing Edge Server Roles

When you deploy your edge servers using the Configure Office Communications Server 2007 Edge Server Wizard that is available in the Communications Server 2007 Deployment Wizard used to deploy your servers, the configuration wizard guides you through the process of defining your internal and external interfaces for each server role. If you decide to change the configuration of any of these interfaces, you can do so in either of the following ways:

  • Rerunning the Configure Office Communications Server 2007 Edge Server Wizard. For detailed instructions on using the Configuration Wizard see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  • Using the Computer Management snap-in. The procedures in the following sections describe how to use the Computer Management snap-in to configure edge server interfaces. When using the Computer Management snap-in, all interface and certificate configuration for edge servers is done from the Edge Interfaces tab.

    9819a15f-5f7f-449e-b672-9401e52a4ab1

Configuring Access Edge Servers

Configuring Access Edge Servers includes the following:

  • Configuring the Internal Interface

  • Configuring the External Interface

Important

If you change any of these settings, ensure that you also update the DNS records to point to your Access Edge Server, as appropriate. For information about configuring the DNS records, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.
If you change the internal port or FQDN, you must also update these settings on the Federation tab in Global Properties.
If you change the internal certificate used by this server, you must update the Edge Server tab in Global Properties with the new subject name.

Configuring the Internal Interface

You can use the procedures in this section to configure the internal interface of an Access Edge Server, including the following:

  • Configure IP address of the internal interface of the Access Edge Server.

  • Configure the certificate and FQDN for the internal interface of the Access Edge Server.

  • Configure the port used for the internal interface of the Access Edge Server.

Note

The IP address, certificate, and FQDN that you configure for the internal interface applies to all edge server roles collocated on the computer.
Each edge server role requires a separate port number. For more information about configuring ports, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

To configure the IP address of the internal interface of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

    cc010935-40be-4b98-868d-831b46b0f80e

  4. In the Internal Interface dialog box, in the IP address drop-down list box, click the IP address for the internal interface of the Access Edge Server. If you are using a load balancer, click the IP address to which the load balancer connects. This IP address cannot be the same as any external IP address of the edge server.

  5. Under Certificate for this IP address, click Select certificate, and then select a certificate. For more information about the certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  6. If you have made any changes, restart the Office Communications Server Access Edge service. If the Web Conferencing Edge Server and A/V Edge Server are collocated with the Access Edge Server, you must also restart the Web Conferencing Edge service and Audio/Video Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the internal interface of the server.

To configure the certificate and FQDN for the internal interface of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

    66d84839-b9e3-4f77-86ae-be8fa994a16e

  4. In the Internal Interface dialog box, under Certificate for this IP address, click Select certificate, and then select a certificate. See the Microsoft Office Communications Server 2007 Edge Server Deployment Guide for more information about the certificate requirements.

  5. If you have made any changes, restart the Office Communications Server Access Edge service. If the Web Conferencing Edge Server and A/V Edge Server are collocated with the Access Edge Server, you must also restart the Web Conferencing Edge service and Audio/Video Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

To configure the port used for the internal edge of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

    caafefde-0fa5-4a95-b6ee-1942e5b12801

  4. In the Access Edge Server dialog box, under Internal ports, in SIP port, if necessary, specify the internal port to which internal servers send SIP traffic destined for external locations. For federation, you must use port 5061. You can change the port used for remote access, but we recommended that you use port 443 to support remote users and anonymous users who connect to conferences from behind a firewall.

  5. If you have made any changes, restart the Office Communications Server Access Edge service. If the Web Conferencing Edge Server and A/V Edge Server are collocated with the Access Edge Server, you must also restart the Web Conferencing Edge service and Audio/Video Edge service.

Important

If you change port settings on the edge servers, you must also update the settings on the Enterprise pool or Standard Edition Server, as appropriate, using the Federation tab in Global Properties of the forest node, as described in the Enabling Federation and Public IM Connectivity and Configuring Routing of Inbound and Outbound SIP Traffic section of this guide, in Managing Connectivity between Internal Servers and Edge Servers. If you are using a Director, make a corresponding change on the Director using the Federation tab or Front End Properties of the Standard Edition Server or Enterprise pool node.

Configuring the External Interface

The external interface of the Access Edge Server is used by external users, including the Access Edge Servers of federated partners, to communicate with your Access Edge Server.

You can use the procedures in this section to configure the external interface of an Access Edge Server, including the following:

  • Configure the IP address of the external interface of the Access Edge Server

  • Configure the ports used for the external interface of the Access Edge Server

    Important

    If you change any of these settings, ensure that you also update DNS records for the Access Edge Server, as appropriate. For more information about configuring records, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  • Configure the certificate and FQDN for the external interface of the Access Edge Server

To configure the IP address of the external interface of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. In the Access Edge Server dialog box, in the External IP address drop-down list box, click the IP address for the external interface. If you are using a load balancer, click the IP address to which the load balancer connects.

  5. Under Certificate for this IP address, click Select certificate, and then select a certificate. For more information about the certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  6. If you have made any changes, restart the Office Communications Server Access Edge service. If the Web Conferencing Edge Server and A/V Edge Server are collocated with the Access Edge Server, you must also restart the Web Conferencing Edge service and Audio/Video Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

To configure the ports used for the external interface of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. In the Access Edge Server dialog box, under External ports, do the following:

    • In Federation port, specify the port to be used for communications with federated partners. Federated users connect through this port. For federation to work properly, you must use port 5061.

    • In Remote access port, specify the port to be used for remote user access. Remote users connect through this port. The default port is 443.

    • If you have made any changes, restart the Office Communications Server Access Edge service. If the Web Conferencing Edge Server and A/V Edge Server are collocated with the Access Edge Server, you must also restart the Web Conferencing Edge service and Audio/Video Edge service.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the external interface of the Access Edge Server.

To configure the certificate for the external interface of the Access Edge Server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. Under Certificate for this IP address, click Select certificate, and then select a certificate. For more information about the certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  5. If you have made any changes, restart the Office Communications Server Access Edge service. If the A/V Edge Server is collocated with the Access Edge Server, you must also restart the Audio/Video Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

Configuring Web Conferencing Edge Servers

As with Access Edge Servers, configuring Web Conferencing Edge Servers includes the following:

  • Configuring the Internal Interface

  • Configuring the External Interface

Important

If you change any of these settings, ensure that you also update the DNS records to point to your Web Conferencing Edge Server, as appropriate. For more information about configuring the DNS records, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.
If you change the internal or external ports or the certificate on the external interface of the Web Conferencing Edge Server, you must also update these settings on the Web Conferencing Edge Server tab of internal Web Conferencing Servers.
If you change the subject name of the certificate used by this server, you must update the Edge Servers tab in Global Properties with the new subject name.

Configuring the Internal Interface

You can use the procedures in this section to configure the internal interface of a Web Conferencing Edge Server, including the following:

  • Configure the IP address of the internal interface of the Web Conferencing Edge Server.

  • Configure the certificate and FQDN for the internal interface of the Web Conferencing Edge Server.

  • Configure the port used for the internal interface of the Web Conferencing Edge Server.

Note

The IP address, certificate, and FQDN that you configure for the internal interface applies to all edge server roles collocated on the computer.
Each edge server role requires a separate port number. For more information about configuring ports, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

To configure the IP address of the internal interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

    cc010935-40be-4b98-868d-831b46b0f80e

  4. In the Internal Interface dialog box, in the IP address drop-down list box, click the IP address for the internal interface of the Web Conferencing Edge Server. If you are using a load balancer, click the IP address to which the load balancer connects.

  5. Under Certificate for this IP address, click Select certificate, and then select a certificate. (For more information about the certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.)

  6. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the internal interface of the server.

To configure the certificate for the internal interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

  4. Under Certificate for this IP address, click Select certificate, and then select a certificate. See the Microsoft Office Communications Server 2007 Edge Server Deployment Guide for more information about the certificate requirements.

  5. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

To configure the port used for the internal interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Web Conferencing Edge Server, click Configure.

    aa1f6326-58a6-4dea-91dd-0a4afda491f1

  4. In the Web Conferencing Edge Server dialog box, under Internal ports, in Data port, specify the port number that your internal Web Conferencing Servers are to use to contact your Web Conferencing Edge server. The default is 8057.

  5. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service.

Configuring the External Interface

The external interface of the Web Conferencing Edge Server is used by external users to contact your Web Conferencing Edge Server and participate in your on-premise conferencing meetings.

You can use the procedures in this section to configure the external interface of a Web Conferencing Edge Server, including the following:

  • Configure the IP address of the external interface of the Web Conferencing Edge Server.

  • Configure the port used for the external interface of the Web Conferencing Edge Server.

  • Configure the certificate and FQDN for the external interface of the Web Conferencing Edge Server.

Important

If you change any of these settings, ensure that you also update the DNS records to point to your Web Conferencing Edge Server, as appropriate. For more information about configuring the DNS records, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide. If you change the internal or external ports or the certificate on the external interface of the Web Conferencing Edge Server, you must also update these settings on the Web Conferencing Edge Server tab of internal Web Conferencing Servers. If you change the subject name of the internal certificate used by this server, you must update the Edge Servers tab in Global Properties with the new subject name.

To configure the IP address of the external interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Web Conferencing Edge Server, click Configure.

    aa1f6326-58a6-4dea-91dd-0a4afda491f1

  4. In the Web Conferencing Edge Server dialog box, in the External IP address drop-down list box, click the IP address of the external interface. If you are using a load balancer, specify the IP address to which the load balancer connects.

  5. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service.

To configure the port used for the external interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Web Conferencing Edge Server, click Configure.

    aa1f6326-58a6-4dea-91dd-0a4afda491f1

  4. In the Web Conferencing Edge Server dialog box, under External ports, in Data port, type the port number to be used for the external interface. The default port is 443.

  5. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the external interface of the server.

To configure the certificate for the external interface of the Web Conferencing Edge Server

  1. On the Web Conferencing Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Web Conferencing Edge Server, click Configure.

  4. Under Certificate for this IP address, click Select certificate, and then select a certificate. For more information about certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  5. If you have made any changes, restart the Office Communications Server Web Conferencing Edge service. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

Configuring A/V Edge Servers

Configuring A/V Edge Servers includes the following tasks:

  • Configuring the Internal Interface

  • Configuring the External Interface

  • Configuring the A/V Authentication Certificate

Configuring the Internal Interface

You can use the procedures in this section to configure the internal interface of an A/V Edge Server, including the following:

  • Configure the IP address of the internal interface of the A/V Edge Server

  • Configure the certificate and FQDN for the internal interface of the A/V Edge Server

  • Configure the internal TCP and authentication ports used for the A/V Edge Server

Note

The IP address, certificate, and FQDN that you configure for the internal interface applies to all edge server roles collocated on the computer. Each edge server role requires a separate port number. For more information about configuring ports, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

To configure the IP address of the internal interface of the A/V Edge server

  1. On the A/V Edge Server that is not collocated with an Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

    cc010935-40be-4b98-868d-831b46b0f80e

  4. In the Internal Interface dialog box, in the IP address drop-down list box, click the IP address for the internal interface. If you are using a load balancer, click the IP address to which the load balancer connects.

  5. If you have made any changes, restart the Office Communications Server Audio/Video Edge service.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the internal interface of the server.

To configure the certificate and FQDN for the internal interface of the A/V Edge Server

  1. On the A/V Edge Server that is not collocated with an Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under Internal Interface, click Configure.

  4. Under Certificate for this IP address, click Select certificate, and then select a certificate. For more information about the certificate requirements, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide.

  5. If you have made any changes, restart the Office Communications Server Audio/Video Edge service and the Office Communications Server Audio/Video Authentication service. When you replace an expiring internal interface certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

To configure the internal TCP and authentication ports used for the A/V Edge Server

  1. On the A/V Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under A/V Edge Server, click Configure.

    7fbb7ef3-2988-4c60-b036-a5e63583a561

  4. In the A/V Edge Server dialog box, under Internal Ports, do the following:

    • In TCP port, specify the internal port used for TCP traffic on the internal interface of the A/V Edge Server. Internal servers connect to this IP address and port to send outbound traffic. The default port is 443.

    • In A/V authentication port, specify the port used by the Office Communications Server Audio/Video Authentication service. The default port is 5062. If you change the port setting, make a corresponding change to the edge interfaces configuration in your internal network, as appropriate.

  5. If you have made any changes other than a change to the A/V authentication certificate, restart the Office Communications Server Audio/Video Edge service and the Office Communications server Audio/Video Authentication service.

Configuring the External Interface

The external interface of the A/V Edge Server is used for allocating resources that enable A/V sessions between internal and external users. This includes A/V conferences and point-to-point calls.

You can use the procedures in this section to configure the external interface of an A/V Edge Server, including the following:

  • Configure the IP address and FQDN of the external interface of the A/V Edge Server.

  • Configure the TCP port and media port range used for the external interface of the A/V Edge Server.

No certificate is required for the external interface of the A/V Edge Server, but an A/V user authentication certificate is required, as described in the Configuring the A/V Authentication Certificate section of this guide, in Configuring Internal and External Interfaces and Certificates for Edge Servers.

Important

If you change any of these settings, ensure that you also update the DNS records to point to your A/V Edge Server, as appropriate. For more information about configuring DNS records, see the Microsoft Office Communications Server 2007 Edge Server Deployment Guide. If the Access Edge Server and A/V Edge Server are collocated on the same computer, do not use the same port for both.

To configure the IP address and FQDN of the external interface of the A/V Edge Server

  1. On the A/V Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under A/V Edge Server, click Configure.

    7fbb7ef3-2988-4c60-b036-a5e63583a561

  4. In the A/V Edge Server dialog box, under External Interface, do the following:

    • In the IP address drop-down list box, click the IP address for the external interface. External users connect to this IP address to participate in A/V sessions. The IP address should be publicly routable.

    • In FQDN type the FQDN of the external interface of the A/V Edge Server.

  5. If you have made any changes, restart the Office Communications Server Audio/Video Edge service and the Office Communications Server Audio/Video Authentication service. When you replace an expiring internal interface certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

To configure the TCP port and media port range used for the external interface of the A/V Edge Server

  1. On the A/V Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under A/V Edge Server, click Configure.

  4. In the A/V Edge Server dialog box, under External Interface, do the following:

    • In TCP port, type the port used for TCP traffic on the external interface of the A/V Edge Server. External or remote users connect to this port to participate in A/V sessions in your organization. The default is port 443.

    • In Media port range, type the beginning and ending number to specify the range of ports available on the external interface of the A/V Edge Server to send A/V conferencing traffic (such as 50000 to 59999). The minimum number of ports in the range is 100.

  5. If you have made any changes, restart the Office Communications Server Audio/Video Edge service and the Office Communications Server Audio/Video Authentication service. When you replace an expiring internal interface certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.

Configuring the A/V Authentication Certificate

In addition to the configuring settings for the internal and external interfaces of an A/V Edge Server, you also configure the A/V authentication certificate of the A/V Edge Server. If you have load-balanced A/V Edge Servers, you must configure the same A/V authentication certificate on each of the A/V Edge Servers.

Note

The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate.

To configure the A/V authentication certificate

  1. On the A/V Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

  3. On the Edge Interfaces tab, under A/V Edge Server, click Configure.

  4. In the A/V Edge Server dialog box, under A/V Authentication Certificate, click Select certificate. For certificate requirements for edge servers, see the Office Communications Server 2007 Edge Server Deployment Guide.

Configuring Compression on Edge Servers

Compressing connections between servers and clients can improve performance on your network by reducing the bandwidth used by Office Communications Server 2007. You can use the Compression tab of edge server Properties to configure compression for the edge server, including the following:

  • Server compression:

    • Request compression on outgoing server-to-server connections. Use this option to compress outgoing traffic between servers.

    • Maximum number of server-to-server connections. If you enable compression, you must specify the maximum allowable number of connections to other servers. The valid range of values is 0 to 65535; the default value is 1024.

  • Client compression:

    • Enable compression on client-to-server connections. Use this option to compress incoming traffic between clients and the servers in the pool.

To configure compression on an edge server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

    ac3a8b57-94dd-4a68-bc89-35d5f23670ad

  3. On the Compression tab, specify the appropriate server and client options.

Configuring IM Provider Support on Edge Servers

Public IM connectivity allows users in your organization to use IM to communicate with users of instant messaging services provided by public IM service providers, including the MSN® network of Internet services, Yahoo!®, and AOL®. You can authorize use of public IM connectivity for your entire organization or on a per user basis.

Use the IM Provider tab of edge server Properties to control the IM service providers that are allowed to federate with your organization. You can add or remove an IM service provider, and change other settings for any IM service provider (including temporarily blocking the IM service provider). The settings you specify for each IM service provider includes the following:

  • Whether or not the IM Provider is allowed to federate with your organization.

  • IM service provider name.

  • Network address of the IM service provider Access Edge, which you specify using the FQDN of the Access Edge Server of the IM provider.

  • Whether or not this is a public IM service provider.

  • Filtering option for incoming communications:

    • Allow communications only from users on recipient's contact list. This setting means you do not trust verification levels asserted by the IM service provider. If you choose this option, the Access Edge Server marks all incoming presence subscription requests as unverified. If the sender is already on the recipients Allow list, the internal server will respond to that request. Otherwise, the request is rejected. Similarly, requests for an IM session that are marked unverified are rejected by the client.

    • Allow communications only from users verified by this provider. This setting is the default. It means you trust the IM service provider's verification level and handle incoming messages accordingly. Requests marked as unverified are handled as described for the previous option. Requests marked as verified are handled as described for the following option.

    • Allow all communications from this provider. This setting means that you accept all messages regardless of whether they are verified or not. If you choose this option, the Access Edge Server marks all messages as verified. The recipient's home pool or server notifies the client, and all messages are handled according to settings on the client. In the case of presence subscription requests, the settings determine how the message is handled. (Allow: The senders request is accepted and the sender will be able to see the recipient's presence information; Block: The request is rejected; Prompt: The recipient is asked whether to allow the sender to see presence information.)

In the case of IM invitations, the response depends on the client software. The request is accepted unless external senders are explicitly blocked by a user-configured rule (in the user Allow and Block list). Additionally, IM Invitations can be blocked if a user has elected to block all IM from users who are not on his or her Allow list.

Note

By default, the MSN® network of Internet services, AOL®, and Yahoo!® are available in the list, but are not enabled. For a public IM service provider, public IM connectivity requires the purchase of additional service licenses and provisioning the connections using the Microsoft provisioning page (https://r.office.microsoft.com/r/rlidOCS?clid=1033&p1=provision).

Use the following procedure to configure IM provider support on an edge server. If you want to provide support for one or more IM service providers, use the Office Communications Server 2007 administrative snap-in to configure server-side support at the global level (for the forest) and enable and disable support for each user. For more information about configuring the global setting, see the Enabling Federation and Public IM Connectivity and Configuring Routing of Outbound SIP Traffic section of this guide, in Managing Connectivity between Internal Servers and Edge Servers. For more information about configuring the user settings, see the Configuring Federation, Remote User Access, and Public IM Connectivity for Individual Users section of this guide, in Configuring Individual Office Communications Server User Account Properties.

To configure IM provider support on an edge server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

    09f17022-4859-4e6c-873c-829c71b18b7f

  3. On the IM Provider tab, do one of the following:

    • To add an IM provider, click Add. In the Add IM Service Provider dialog box, specify the appropriate options, and then click OK.

    • To view or edit the settings for an IM service provider, in the Edit IM Service Provider dialog box, click the name of the IM service provider, and then click Edit. In the Edit IM Service Provider dialog box, view or change settings, as appropriate, and then click OK.

    • To temporarily block any IM service provider in the list, you can temporarily disable support: click the name of the IM service provider, click Edit, in the Edit IM Service Provider dialog box clear the Allow this IM service provider check box, and then click OK. This blocks the IM service provider until you later select the check box, but does not delete the configuration information.

    • To permanently remove an IM service provider from the list, click the name of the server, and then click Remove. If you later want to add the IM service provider again, you must use the procedure described earlier in this procedure to add the provider and specify all settings.

Viewing Edge Server Roles

You can use the General tab of edge server Properties to view and verify which of the Office Communications server roles an edge server is configured to support, including the following:

  • Instant messaging and presence. This indicates if the Access Edge Server is installed on the edge server. Access Edge Server enables your internal users to send instant messages and view presence with external users, including federated users and remote users. If your organization has purchased a license for public IM connectivity, your users can also communicate with external users on the public IM networks of the MSN® network of Internet services, AOL®, and Yahoo!®. Public IM Connectivity requires a separate license.

  • Web conferencing. This indicates if the Web Conferencing Edge Server is installed on the edge server. Web Conferencing Edge Server enables your internal users to invite external users to participate in on-premise Web conferencing meetings.

  • A/V conferencing. This indicates if the A/V Edge Server is installed on the edge server. A/V Edge Server enables your internal users to participate in audio and video sessions with external users.

To view edge server roles configured on a server

  1. On the Access Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007, and then click Properties.

    8ea36d37-3050-455c-b8c2-6b69f637d1c1

  3. On the General tab, the available Office Communications Server roles on the server are listed.