Configuring Microsoft Active Directory for Cisco WAAS Encrypted MAPI Acceleration



Similar documents
RIGHTS RESERVED. User Guide. GoToAssist Corporate , InnerApps, LLC. ALL RIGHTS RESERVED

Erado Archiving & Setup Instruction Microsoft Exchange 2007 Push Journaling

Erado Archiving & Setup Instruction Microsoft Exchange 2010 Push Journaling

Managing Users, Computers, & Groups

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

Active Directory Management. User Interface Guide

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Setting Up Exchange. In this chapter, you do the following tasks in the order listed:

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

eadvantage Certificate Enrollment Procedures

LT Auditor Windows Assessment SP1 Installation & Configuration Guide

Getting Started. Autotask Integration , INNERAPPS, LLC. ALL RIGHTS RESERVED

SSL VPN Setup for Windows

Cloud Services ADM. User Interface Guide

Active Directory Self-Service FAQ

Using Group Policies to Install AutoCAD. CMMU 5405 Nate Bartley 9/22/2005

Adding a User to Active Directory in Windows Server 2012

Using the Content Distribution Manager GUI

Getting Started With Delegated Administration

AD Self Password Reset Installation and configuration

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

Microsoft IAS Configuration for RADIUS Authorization

HOW TO CONFIGURE SQL SERVER REPORTING SERVICES IN ORDER TO DEPLOY REPORTING SERVICES REPORTS FOR DYNAMICS GP

Differences between Computer and User Templates

Advanced Audit Policy Configurations for LT Auditor+ Reference Guide

SCCM Client Checklist for Windows 7

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

QUANTIFY INSTALLATION GUIDE

Video Administration Backup and Restore Procedures

Information to configure your Windows 7 office computer is described below.

Chapter. Managing Group Policy MICROSOFT EXAM OBJECTIVES COVERED IN THIS CHAPTER:

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

Lab - Configure a Windows XP Firewall

Active Directory Integration

SSL Intercept Mode. Certificate Installation Guide. Revision Warning and Disclaimer

Introduction. Before you begin. Installing efax from our CD-ROM. Installing efax after downloading from the internet

Optimization in a Secure Windows Environment

Fus - Exchange ControlPanel Admin Guide Feb V1.0. Exchange ControlPanel Administration Guide

Configuring Microsoft RADIUS Server and Gx000 Authentication. Configuration Notes. Revision 1.0 February 6, 2003

Exchange 2010 PKI Configuration Guide

How To Configure CU*BASE Encryption

Publish Cisco VXC Manager GUI as Microsoft RDS Remote App

Migrating MSDE to Microsoft SQL 2008 R2 Express

pcanywhere Advanced Configuration Guide

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

Installing Client GPO Software

Lab - Configure a Windows 7 Firewall

Setup non-admin user to query Domain Controller event log for Windows2003

8.7. Target Exchange 2010 Environment Preparation

Ecora Enterprise Auditor Instructional Whitepaper. Who Made Change

1 of 10 1/31/2014 4:08 PM

Install the Production Treasury Root Certificate (Vista / Win 7)

Verify LDAP over SSL/TLS (LDAPS) and CA Certificate Using Ldp.exe

How to install and use the File Sharing Outlook Plugin

Virtual Office Remote Installation Guide

Charter Business Phone. Online Control Panel Getting Started Guide. Document Version 1.0

Changing Passwords in Cisco Unity 8.x

Instructions: Configuring Outlook 2003 with Exchange 2010 on the FIUMail

Active Directory integration with CloudByte ElastiStor

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

TrueEdit Remote Connection Brief

Kepware Technologies Remote OPC DA Quick Start Guide (DCOM)

Phone: Fax: Box: 230

4cast Server Specification and Installation

ThinManager and Active Directory

Active Directory Change Notifier Quick Start Guide

EventTracker: Support to Non English Systems

Accessing the Media General SSL VPN

Managed Security Web Portal USER GUIDE

ShadowProtect Granular Recovery for Exchange Migration Scenarios

Cox Managed CPE Services. RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft]

Application Note 8: TrendView Recorders DCOM Settings and Firewall Plus DCOM Settings for Trendview Historian Server

Secure Agent Quick Start for Windows

DCOM & Control List Genetec Information Systems Page i Win2003 Service Pack 1

Server Manager Performance Monitor. Server Manager Diagnostics Page. . Information. . Audit Success. . Audit Failure

Note that if at any time during the setup process you are asked to login, click either Cancel or Work Offline depending upon the prompt.

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Connecting to the Remote Desktop Service

CloudBerry Dedup Server

econtrol 3.5 for Active Directory & Exchange Self-Service Guide

Microsoft OCS with IPC-R: SIP (M)TLS Trunking. directpacket Product Supplement

Egnyte App for Android Quick Start Guide

Velocity Web Services Client 1.0 Installation Guide and Release Notes

Pearl Echo Installation Checklist

WS_FTP Pro for Windows 95/98/NT

Distributing SMS v2.0

Cisco TelePresence Management Suite Extension for Microsoft Exchange

Biznet GIO Cloud Connecting VM via Windows Remote Desktop

Active Directory Software Deployment

Eurobackup PRO Exchange Databases Backup Best Practices

Multi-factor Authentication using Radius

1. Please login to the Own Web Now Support Portal ( with your address and a password.

How to Configure Microsoft System Operation Manager to Monitor Active Directory, Group Policy and Exchange Changes Using NetWrix Active Directory

Installing the VPN Client for Microsoft Windows OS

Lab - Configure a Windows Vista Firewall

Undergraduate Academic Affairs \ Student Affairs IT Services. VPN and Remote Desktop Access from a Windows 7 PC

Windows Clients and GoPrint Print Queues

Transcription:

White Paper Configuring Microsoft Active Directory for Cisco WAAS Encrypted MAPI Acceleration Abstract The most current versions of Exchange-based email solutions from Microsoft (MAPI) contain data encryption at the Remote Procedure Call (RPC) level as a default configuration. Customers that wish to enable Cisco WAAS acceleration for these encrypted email services need to grant Cisco WAAS the permission to participate in this communication. This document will guide users through the configuration of Microsoft Active Directory (AD) to allow Cisco WAAS to accelerate encrypted RPC and MAPI traffic. Figure 1. Cisco WAAS Encrypted Exchange Architecture 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 1 of 7

Considerations Active Directory This document assumes that the user has familiarity with Windows Active Directory, and has the ap propriate Active Directory domain rights to make these changes. User or Workstation Account Granting Cisco WAAS permission to accelerate Exchange encrypted email can be done via a User account, or a Workstation (Computer) account. Table 1. WAAS individual User account versus WAAS Workstation accounts Method Benefits Considerations User Account Workstation account One User account can be used f or all Core WAAS dev ices. One or multiple User accounts can be used f or multiple Exchange email domains. In test env ironments, the Administrator account can be used. Administrator already has the needed rights. WAAS dev ices do not need to perf orm a Domain Join when only User Accounts are used. Each Core WAAS dev ice will use its own Workstation account. Account is created and password is changed and maintained automatically by WAAS and Activ e Directory. User and Workstation accounts can be used at the same time f or multiple Exchange email domains. User account should hav e a password that does not expire. If password is entered or changed incorrectly, the account could become locked out due to incorrect login attempts. All Core WAAS dev ices must be joined to Activ e Directory. Only one Workstation account can be used per WAAS dev ice. It is highly recommended to grant the required WAAS permissions to an Active Directory Group, and then add Workstation or User accounts as required above to that group. This guide will follow this Group-based process. WAAS Configuration Once the steps outlined in this document are completed, the next step is to configure WAAS to accelerate encrypted Exchange email (RPC and MAPI). Directions and steps for this configuration are located in the Cisco WAAS 5.0.1 Configuration Guide, located on Cisco.com. These steps are beyond the scope of this document 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 2 of 7

Configuration Steps To grant Cisco WAAS permission to accelerate Exchange encrypted email sessions, do the following: Note: This group is for accounts that WAAS will use to optimize Exchange traffic. Normal users and computers should not be added to this group. Step 1. Using an account with Domain Administrator privileges, launch the Active Directory Users and Computers application. Step 2. A new group is needed. Right-click the Organizational Unit (OU) where you wish to place this group, and choose New > Group. Step 3. Name the new group, and ensure the group is a Universal, Security Group. 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 3 of 7

Step 4. After the group is created, return to the Active Directory Users and Computers window. Select View > Advanced Features. This step allows configuration of the permissions required by WAAS. Step 5. Right-click the root of the domain, and choose Properties. 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 4 of 7

Step 6. Click the Security tab, and then press the Add button under Group or User Names. Step 7. Enter the name of the group that was entered in Step 3, and press OK. 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 5 of 7

Step 8. The group entered in Step 3 should now show in the Group or User Names list. Click on the group to select it. Then, scroll down in the Permissions for *Group Name* pane, until the permissions Replicating Directory Changes and Replicating Directory Changes All are visible. Check Allow to allow both of these permissions, and press OK. Step 9. User or Workstation (Computer) accounts now need to be added to this group for WAAS to use to optimize Exchange encrypted email. To add an account, right click on the account you wish to add, and select the Member Of tab. Click the add button, and pick the group used above in Step 3. Press OK. Step 10. After adding the User or Workstation (Computer) accounts to the group, the Active Directory configuration is now complete. All remaining configuration for Encrypted Exchange acceleration is performed on the WAAS Central Manager and/or devices themselves. 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 6 of 7

For More Information For Cisco WAAS Exchange encrypted email configuration steps, see the Cisco WAAS 5.0.1 Configuration Guide on Cisco.com. For more information Cisco WAAS, see http://www.cisco.com/go/waas Printed in USA CXX-XXXXXX-XX 10/11 2012 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Public. Page 7 of 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information