Recently we upgraded our OCS Edge server and put the server in our DMZ-VLAN. Before the initial upgrade we already use the consolidated standard edition edge server for our federation and remote user access. The environment was working perfectly.
The last thing we had to do was making the Edge server available for Live Meeting 2007 Audio and Video Conferencing. Alan Shen, Senior Program Manager at Microsoft did an excellent job to describe how OCS uses the Audio/Video ports etc etc. Find it here. Great post. He also discuss things like security.
As an working easier company e-office uses all the critical components to work unified and simplified. Especially working with the Microsoft Office Communicator Mobile 2007 aka MCOM2007 is really great.
Before upgrading our OCS Edge Server we had several goals to accomplish:
- the Microsoft Office Communicator 2007 which is deployed/configured by Group Policy is currently set to manual configuration. A couple of users need to enter the OCS transport settings manual. Other users do not configure their transport settings so the best option for them is Automatic configuration.
- all functionality must be available (internal and external), no additional configuration is needed. So we had to make sure all the OCS components are published correctly (Group Expansion etc), please make sure you created the SRV records in DNS (internal and ofcourse external) so no errors in your MOC-icon
- MOCM2007 is currently connected to 5061 (TLS). How do we configure MOCM to talk over 443 (SSL)? After some investigation there is a option to configure MOCM over port 443.
In order for external access to succeed, Communicator Mobile needs to use TLS transport. By default, port 5061 is used, but other ports, such as port 443, can be used for external access. If you configure a nondefault port for external access, the Communicator Mobile clients that connect to the server must be configured to include the port information in the server address. The correct format is <server address>:<port number>. For example, the client should be configured to use sip.contoso.com:443 if port 443 has been configured on the sip.contoso.com server.