Configure
the RPC virtual directory in Internet
Information Services
After you configure the
Exchange computer to use RPC over
HTTP/S, you must configure the RPC
virtual directory in Internet
Information Services (IIS).
To do this, follow these
steps:
-
Click Start, point to
Administrative Tools, and then click
Internet Information Services
(IIS) Manager.
-
Expand servername
(local computer), expand Web Sites,
expand Default Web Site,
right-click Rpc, and then
click Properties.
Note: Windows
Server 2003 Service Pack 1 (SP1)
adds a new virtual directory called
RpcWithCert. This virtual
directory points to the same
location as the Rpc virtual
directory. You do NOT need to modify
this virtual directory.
-
Click the
Directory Security tab, and then
click Edit under
Authentication and access control.
-
Click to clear the
Enable anonymous access check box.
-
Click to select the
Basic authentication (password is
sent in clear text) check box.
You receive the
following message:
The
authentication option you have
selected results in passwords
being transmitted over the
network without data encryption.
Someone attempting to compromise
your system security could use a
protocol analyzer to examine
user passwords during the
authentication process. For more
detail on user authentication,
consult the online help. This
warning does not apply to
HTTPS(orSSL) connections.
Are you sure you want to
continue?
Click Yes
-
I recommend entering
the domain name in the Default
Domain box (you can press
Select to browse to the domain
name).
-
Click OK.
-
Click Apply,
and then click OK.
The RPC virtual directory
is now configured to use basic
authentication. As stated in the
Recommendations section of this article,
you must configure SSL on your RPC Proxy
server (i.e. on your single server). To
enable SSL on the RPC virtual directory
you must obtain and publish a
certificate. Follow the guidelines on
the Configure SSL on Your Website with
IIS article for more info on this issue
(This procedure assumes that you have
obtained and published certificate).
After setting up a
Digital Certificate for the Default
Website you will need to configure the
RPC virtual directory to require SSL for
all client-side connections.
To configure the RPC
virtual directory to require SSL for all
client-side connections, follow these
steps:
-
In Internet
Information Services (IIS) Manager
expand Web Sites, expand
Default Web Site, right-click
Rpc, and then click
Properties.
-
Click the
Directory Security tab, and then
click Edit under Secure
communications.
-
Click to select the
Require secure channel (SSL)
check box and the Require 128-bit
encryption check box.
-
Click OK,
click Apply, and then click
Ok.
|