• Article

Configuring the External Interface of the Access Edge Service

Topic Last Modified: 2009-05-22

The external interface of the Access Edge service is used by external users, including the Access Edge services of federated partners, to communicate with your Access Edge service.

You can use the procedures in this section to configure the external interface of an Access Edge service, including the following:

  • Configure the IP address of the external interface of the Access Edge service.

  • Configure the ports used for the external interface of the Access Edge service.

    Important

    If you change any of these settings, ensure that you also update DNS records for the Access Edge service, as appropriate. For details about DNS records, see DNS Requirements for External User Access in the Planning and Architecture documentation.

  • Configure the certificate and FQDN for the external interface of the Access Edge service. For details about Edge Server certificates, see Certificate Requirements for External User Access in the Planning and Architecture documentation.

To configure the IP address of the external interface of the Access Edge service

  1. On the Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007 R2, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. In the Access Edge Server dialog box, in the External IP address drop-down list box, click the IP address for the external interface. If you are using a load balancer, click the IP address to which the load balancer connects.

  5. Under Certificate for this IP address, click Select certificate, and then select a certificate.

  6. If you have made any changes, restart the Office Communications Server Access Edge service as well as the Web Conferencing Edge service and Audio/Video Edge service if they exist on the Edge Server. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the services.

To configure the ports used for the external interface of the Access Edge service

  1. On the Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007 R2, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. In the Access Edge Server dialog box, under External ports, do the following:

    • In Federation port, specify the port to be used for communications with federated partners. Federated users connect through this port. For federation to work properly, you must use port 5061.
    • In Remote access port, specify the port to be used for remote user access. Remote users connect through this port. The default port is 443.
    • If you have made any changes, restart the Office Communications Server Access Edge service as well as the Web Conferencing Edge service and Audio/Video Edge service if they exist on the Edge Server.

    Note

    The following procedure uses the Edge Interfaces tab to configure the certificate. You can also use the Certificate Wizard to guide you through the process of configuring the certificate, including assigning the certificate to the external interface of the Access Edge service, as described in Set Up Certificates for the External Interface in the Deploying Edge Servers for External User Access documentation.

To configure the certificate for the external interface of the Access Edge service

  1. On the Edge Server, open Computer Management.

  2. In the console tree, expand Services and Applications, right-click Office Communications Server 2007 R2, and then click Properties.

  3. On the Edge Interfaces tab, under Access Edge Server, click Configure.

  4. Under Certificate for this IP address, click Select certificate, and then select a certificate.

  5. If you have made any changes, restart the Office Communications Server Access Edge service as well as the Audio/Video Edge service if it exists on the Edge Server. When you replace an expiring certificate, if the subject name and all other certificate settings of the new certificate except the expiration date are identical to the settings of the expiring certificate, it is not necessary to restart the service.