• Article

Setting Up cwaserver.contoso.com

Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.

For this lab scenario, cwaserver.contoso.com functions as the Communicator Web Access server. Preparing cwaserver for this role consists of the following steps:

  1. Configure a static IP address and name resolution.

  2. Add cwaserver to the contoso.com domain.

  3. Request the required certificates for Communicator Web Access.

  4. Install and configure Communicator Web Access.

The following sections describe these steps in detail.

Configure the Static IP Address

Connect cwaserver to Hub1, and then configure cwaserver with a static IP address.

To configure cwaserverwith a static IP address

  1. Click Start, point to Settings, and then click Network Connections.

  2. Right-click the connection for which you want to configure a static IP address, and then click Properties.

  3. In the Properties dialog box, click Internet Protocol (TCP/IP), and then click Properties.

  4. In the Internet Protocol (TCP/IP) Properties dialog box, click Use the following IP address.

  5. In the IP address box, type 10.10.10.35.

  6. In the Subnet mask box, type 255.255.255.0.

  7. Click Use the following DNS server addresses.

  8. In the Preferred DNS server box, type 10.10.10.1.

  9. Click OK twice, and then close the Network Connections window.

Add cwaserver to the contoso Domain

The cwaserver server must be a member server in the contoso.com domain.

To add cwaserver to the contoso domain

  1. Right-click My Computer, and then click Properties.

  2. In the System Properties dialog box, click the Computer Name tab, and then click Change.

  3. In the Computer Name Change dialog box, click Domain.

  4. In the Domain box, type contoso.com, and then click OK.

  5. In the Authentication dialog box, type the user name and password of a member of the DomainAdmins group, and then click OK.

  6. On the Computer Name Changes authentication page, type the Domain Admin credentials, and then click OK.

  7. In the Confirmation/Welcome dialog box, click OK.

  8. In the Restart notification dialog box, click OK.

  9. In the Restart confirmation dialog box, click OK to restart the server.

Request a Certificate

Because you have set up contosodc.contoso.com as a Windows Server 2003 enterprise CA and enabled auto-enrollment, cwaserver.contoso.com will receive the enterprise CA certificate chain when it is added to the domain. However, you will need to request a Web server certificate with the FQDN (fully qualified domain name) cwaserver.contoso.com. You will be asked to choose this certificate during the Communicator Web Access setup process.

Note

   The certificates for Office Communications Server 2007, Standard Edition and Communicator Web Access must be issued from the same certification authority and must use a duplicated Web server template in which the Mark keys as exportable option is enabled. See the Microsoft Office Communications Server 2007 Standard Edition Deployment Guide for the procedure detailing how to do this.
Lab scenario 1 uses the Microsoft certification authority (CA) that you set up on contosodc.contoso.com, and the procedures in this document assume the use of an internal CA. You can use an external CA for this lab scenario, but you might need to modify the certificate procedures to comply with the requirements of the external CA, in addition to the certification requirements of Office Communications Server 2007 and Communicator Web Access.

The Communicator Web Access server requires an MTLS (mutual TLS) certificate and an SSL IIS certificate. For this lab scenario, you can use the same certificate for both. The Communicator Web Access certificate requirements for this lab scenario are as follows:

  • MTLS certificates must be issued from the same CA from which the Office Communications Server 2007, Standard Edition MTLS certificates are issued.

  • Certificates must use a duplicated Web server template in which the Mark keys as exportable option is enabled.

For this lab scenario, in which the FQDN of the server is cwaserver.contoso.com, the certificate FQDN is cwaserver.contoso.com; however, if the server name differs for your deployment, use a certificate with the FQDN of the server on which you are installing Communicator Web Access.

The following procedure assumes that cwaserver.contoso.com and the user who is signed in have permission to access the internal CA on contosodc.contoso.com by using the physical network and Certificate Services Web enrollment feature.

To request the certificate

  1. On cwaserver.contoso.com, open a Web browser.

  2. In the Address box, type http://contosodc.contoso.com/certsrv, and then press ENTER.

  3. Click Request a Certificate.

  4. Click Advanced certificate request.

  5. Click Create and submit a request to this CA.

  6. In the Certificate Template list, select the name of the duplicated Web server template that you created for the Office Communications Server 2007, Standard Edition certificates.

  7. In the Identifying Information for Offline Template box, type cwaserver.contoso.com.

  8. Verify that the Mark keys as exportable check box is selected (the default for the duplicated Web server template). If the check box is cleared, select it.

  9. In the Key Options area, select the Store certificate in the local computer certificate store check box.

  10. Click Submit.

  11. If a potential scripting violation warning appears, and you understand and accept the implications, click Yes.

Now that you have requested the certificate, you can install it.

To install the certificate on the computer

  1. Click Install this certificate. If a potential scripting violation warning appears, and you understand and accept the implications, click Yes.

  2. Click Start, click Run, type mmc, and then click OK.

  3. On the File menu, click Add/Remove Snap-in.

  4. In the Add/Remove Snap-in dialog box, click Add.

  5. In the list of Available Standalone Snap-ins, click Certificates.

  6. Click Add.

  7. Click Computer account, and then click Next.

  8. In the Select Computer dialog box, ensure that the Local computer: (the computer this console is running on) check box is selected, and then click Finish.

  9. Click Close, and then click OK.

  10. In the left pane of the Certificates console, expand Certificates (Local Computer), expand Trusted Root Certification Authorities, and then click Certificates.

  11. Confirm that the certificate that you just requested and installed contains an FQDN of cwaserver.contoso.com and is located in this folder. If it is not, copy it from the Certificates folder under the Personal folder node, just above.

Install and Configure Communicator Web Access

Installing and configuring Communicator Web Access involves the following procedures:

  1. Install Communicator Web Access.

  2. Activate the Communicator Web Access server.

  3. Create the Communicator Web Access virtual server.

To install Communicator Web Access on cwaserver.contoso.com

  1. Log on to cwaserver.contoso.com as a member of the Administrators group.

  2. From the Office Communications Server 2007 installation media, double-click setup.exe.

  3. On the Office Communications Server 2007, Standard Edition Deployment page, click Deploy Other Server Roles.

    b7fc16b2-d8c9-48bc-801c-19b5568bcd1f

  4. On the Deploy Other Server Roles page, click Deploy Communicator Web Access.

    94722ce7-9526-4fa2-b09d-28da2ffbce7b

  5. On the Deploy Office Communications Server 2007, Communicator Web Access page, under Step 1: Install Communicator Web Access, click Install.

    7ba451f0-f4d7-4d83-8948-8578239248e7

  6. On the Welcome page, click Next.

  7. On the License Agreement page, click I accept, and then click Next.

  8. On the Customer Information page, type a name and organization in User Name and Organization, and then click Next.

  9. On the Ready to install page, accept the default location, and then click Next.

  10. On the Ready to install page, click Install.

  11. On the Setup complete page, click Finish.

    Do not close the window. Continue directly with the next procedure.

Note

Activating the server creates the account CWAService in Active Directory.

To activate the Communicator Web Access Server

  1. Under Step 2: Activate Communicator Web Access, click Run.

  2. On the Welcome page, click Next.

  3. On the Select domain service account page, accept the default Account name, create and type a strong password to be used for the account in the Password box and the Confirm password box, and then click Next.

  4. On the Select Server Certificate page, click Select Certificate.

  5. On the Select Certificate page, click cwaserver.contoso.com in the Issued to column.

  6. On the Select Server Certificate page, click Next. Verify that the Issued to box contains CN=cwaserver.contoso.com.

  7. On the Ready to activate Communicator Web Access page, click Next.

  8. On the Success page, click Finish.

    Do not close the window. Continue directly with the next procedure.

Note

The first virtual server is created during this step. You can create additional virtual servers in Office Communicator Web Access Manager (2007 release).

To create the Communicator Web Access virtual server

  1. Under Step 3: Create a Virtual Server, click Run.

  2. On the Welcome page, click Next.

  3. On the Select Virtual Server Type page, accept Internal, and then click Next.

    ffefebef-80a3-4e6f-9448-6934607055f3

  4. On the Select Authentication Type page, Use built-in authentication is selected by default. Click Next.

    de3cf38f-0f76-4257-a3b9-a0b516753f40

  5. On the Select authentication method page, accept the default, and then click Next.

    51936605-e542-4428-a970-3eb2ea000b46

  6. On the Select Browser Connection Type page, accept the default of HTTPS (recommended), and then click Select Certificate.

    8156cc31-3c86-4a5d-9c11-b372c3051a26

  7. On the Select Certificate page, click the certificate with the FQDN of cwaserver.contoso.com or the server name that you are using, and then click OK.

  8. On the Select Browser Connection Type page, click Next.

  9. On the Select IP address and port setting page, accept all defaults, and then click Next.

    95eaa8ce-ab80-4c2b-8e93-cce5a17f8813

  10. On the Name the Virtual Server page, accept the default name Communicator Web Access, and then click Next.

  11. On the Automatically Start Virtual Server page, accept the default, and then click Next.

  12. On the Review Settings page, click Next.

  13. On the Success page, click Finish.