Guest Chris Posted November 8, 2007 Posted November 8, 2007 Hi, Let me first describe the scenario: We have a server2003 server running Exchange and OWA and OMA for Windows Mobile 5.0 devices. IIS is running the Exchange but all as HTTP, i.e. not HTTPS secured. We have a 2nd server2003 server running ISA2006. This has a published rule that forwards all HTTP traffic for the Windows Mobiles to our exchange server. Everything is running as HTTP including IIS, Windows Mobile and the ISA publish server rule. We'd like to make this more secure, but I'm not sure the best way to go about it. I think using certificates is the best idea so far, but it's where we install the certificates and how. I believe certificates will have to go on both ISA2006 server and IIS server and also the Mobile devices. Has anyone any info on how to go about this when we're using a setup like this? Thanks!! Chris
Recommended Posts