Now, when you present
your license to a service, maybe to cash a check, they accept who you are because they trust the government
issuer. Clients, like Outlook or Internet Explorer, trust a certification authority that issues the
certificate to the web server. Once clients trust that the web server is who it claims to be, because they
trust the issuer, the data can be encrypted so it is not readable.
Exchange ActiveSync, Outlook Web Access, Outlook Anywhere, POP3, and IMAP4 are all configurable
to be secured with SSL.
This section uses the following cmdlets:
??‘ New-ExchangeCertificate
??‘ Import-ExchangeCertificate
??‘ Enable-ExchangeCertificate
Chapter 6: Confi guring the Client Access Server Role
171
Certificate Types
Out of the box, Exchange uses self - signed certificates to provide secure connections without any
administrative configuration. If clients will be accessing the CAS server from external sources, it is
necessary to change the default certificate with a new one issued by a trusted certificate authority. Also,
self - signed certificates cannot be used with Outlook Anywhere.
Certificates can be obtained from a public (commercial) authority or an internal one ??” as long as all the
clients trust the certificate authority ??™ s root certificate. Using a commercial certificate may be less complex
because deployment of the internal root certificate means touching every client, including mobile devices.
Pages:
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268