The key to this process is to either use a third-party certificate
authority such as Verisign or Thawte to provide the certificates, or to install and
configure an internal enterprise certificate authority. Each of these processes is described
in more detail in the subsequent sections of this chapter.
NOTE
If a digital certificate is already installed and configured on an OWA server, this section
can be skipped, and the reader can proceed directly to the section on securing OWA
with ISA Server titled ???Securing Exchange Outlook Web Access with ISA Server 2006.???
Understanding the Need for Third-Party CAs
By and large, the most common approach to securing an OWA server with SSL is to buy a
certificate from a third-party certificate authority such as Verisign, Thawte, or one of many
other enterprise certificate authorities. These companies exist as a trusted third-party
vendor of digital identity. Their job is to validate that their customers are really who they
Internet
U8@,20jMk 90dBu~icl8
Sbl(90iulsLiu[qv] hf\oe
SI/.F4*kjn sW@ns39:S
To: Manager
RE: New Product
Subject: Confidential
Project codename Julia is
underway??¦
To: Manager
RE: New Product
Subject: Confidential
Project codename Julia is
underway??¦
OWA Server
SSL Encryption SSL Decryption
OWA Client
FIGURE 12.
Pages:
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529