XCCC: How to Enable Secure Conferencing for Clients That Are Not Windows 2000 Clients (265169)


The information in this article applies to:

  • Microsoft Exchange 2000 Server
  • Microsoft Exchange 2000 Conferencing Server
This article was previously published under Q265169

SUMMARY

When you use Microsoft Exchange 2000 Server with clients that are not Windows 2000 clients (such as Windows 95, Windows 98, and Windows NT Workstation 3.5, 3.51, and 4.0), you may be unable to engage in secure conferencing. This article describes how to enable secure conferencing with clients that are not Windows 2000 clients.

MORE INFORMATION

The following procedure applies to clients that are not Windows 2000 clients (Windows 95, Windows 98, and Windows NT Workstation 3.5, 3.51, and 4.0).

Client Requirements

  • NetMeeting version 3.01 or later
  • "Exportable" user certificates to participate in secure data (T.120) conferences

    NOTE: If the user certificate is from a third-party service (non Microsoft), the Conference Management Service (CMS) and associated T.120 MCU/H.323 Bridge must be trusted by the clients Certificate Authority (CA).

Server Configuration

Make the following configuration changes on the server:
  1. Disable Integrated Windows authentication on the ConferencingPrivate virtual directory on which Conference Web Access is installed by using Internet Services Manager:
    1. On the toolbar click Start, point to Programs, point to Administrative Tools, and then click Internet Services Manager.
    2. Open Properties for the ConferencingPrivate virtual directory, and then click the Directory Security Properties tab.
    3. Under Anonymous access and authentication control, click Edit, and then clear the Integrated Windows authentication option. After you change this setting, the ConferencingPrivate virtual directory uses basic authentication only.
  2. Make the conferencing virtual directory (Conferencing, ConferencingPrivate) accessible only over Secure Sockets Layer (SSL) when basic authentication is used:
    1. Install a server certificate for the Web server, if a server certificate is not already installed.

      NOTE: The server certificate must be from a Microsoft Certificate Authority service for secure conferences to work successfully.
      1. Locate the Web site on which the conferencing virtual directories are installed.
      2. Open the properties, and then click the Directory Security Properties tab.
      3. Click the Directory Security tab.
      4. Under Secure Communications, click Server Certificate.
      5. Follow the instructions in the wizard to complete installation of a server certificate.
    2. Change the conferencing virtual directories to require SSL:
      1. In the properties, click the Directory Security Properties tab.
      2. Click the Directory Security tab.
      3. Under Secure Communications, click Edit.
      4. Click to select the Require Secure Channel check box, and then click OK.
    3. Change the default access Uniform Resource Locator (URL) for user connections to use "https://" instead of "http://":
      1. Open the properties for the Conference Management Service.
      2. Click the Conference Settings tab, and then change the default access URL for user connections to https:// under Access URL for user connections.
      3. Restart the Conference Management Service for the conferencing site.
Modification Type:MinorLast Reviewed:4/25/2005
Keywords:kbinfo KB265169
©2004 Microsoft Corporation. All rights reserved.