Exchange 2010

Coexistence between Domino and Exchange 2010 – Part 2 of 2

 

Published: 2011-01-05
Updated: 2011-01-16
Version: 1.1
Changelog: Exchange configuration added.

Let’s start from where we ended the last part the Domino configuration.
I hope everything was clear on the last part, if there are any questions about it feel free to give feedback or send me an email on:
Jonas.Andersson@testlabs.se.

DNS Infrastructure

 

In this part we start with the DNS investigation.
There needs to be created at least 2 additional records in the DNS zone for using of Exchange and CMN.

These are autodiscover and mail, in my environment I’m using mail, it could be owa or webmail or whatever you want it to be.

The important information here is that these names should be included into the certificate for the Exchange CAS server(s).
And that certificate is exported and imported into the CMN server as well.

Certificate installation

 

I’m not going to show how to create a CSR and Import and Export it.
There are already so many guides about that, check here for more information about that.

For creating a CSR in Exchange 2010, use this one:
http://www.digicert.com/csr-creation-microsoft-exchange-2010.htm

How to install the certificate when it have been processed use this one:
http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm

When the certificate has been installed on the Exchange server and the services have been assigned, it’s time to export it.
This is done by starting a MMC console, adding Certificates (Computer) and go to Personal/Certificates.

Right click the appropriate certificate and choose All Tasks/Export.
Export the private key and select the option “Include all certificates in the certification path if possible”.
Then set a password and copy the certificate file to the CMN machine.

The process for importing the certificate is almost the same, start a MMC console, adding Certificates (Computer)
and right click Personal and choose All Tasks/Import.

Browse for the certificate file and type in the password for it and make sure it’s placed in Personal.

In my case when it’s imported successfully it will look like this.

Check in IIS so that the bindings for port 443 (HTTPS) is using the imported certificate.

Exchange WebServices configuration

 

With DNS and the Certificates in place the keys to get everything to work are done.

Next thing to change from the default behavior on the Exchange CAS machine is to change the EWS.
This is done by running the following command:

“Set-WebServicesVirtualDirectory -Identity “EWS (Default Web Site)” -InternalUrl https://autodiscover.target.local/EWS/Service.asmx
-ExternalUrl https://autodiscover.target.local/EWS/Service.asmx”

Important is to double check the path for the asmx file on the CMN server, in my case this is the correct path.

Double check so the value has been modified by running:

“Get-WebServicesVirtualDirectory | fl *url*”

InternalUrl : https://autodiscover.target.local/EWS/Service.asmx
ExternalUrl : https://autodiscover.target.local/EWS/Service.asmx

When these settings are in place, let’s have a look at the authentication settings for EWS in IIS.
The setting for IIS authentication that should be enabled for the EWS is Anonymous authentication and Windows authentication.

AvailabilityAddressSpace setup

 

To be able to share F/B information between the systems, we need to configure the availabilityaddressspace.
This is done by adding the sub-domain that’s used for the Domino side.
The process is described in Part 1.

“Add-AvailabilityAddressSpace -ForestName domino.target.local -AccessMethod OrgWideFB -UseServiceAccount $true”

Prerequisites for Quest Coexistence Manager for Notes

 

Domino server

Supported versions of Lotus Domino are 6.5.1–6.5.6, or 7.0.0–7.0.4, or 8.0.0–8.0.2, or 8.5.0 or 8.5.1.

Exchange server

Supported versions of Exchange server are Exchange 2010, 2007, or 2007 SP1 or SP2

.NET Framework 3.5 SP1, IIS 7.0 with ASP.NET 2.0

Open up an elevated PowerShell prompt and run the below commands:

  • Import-Module ServerManager
  • Add-WindowsFeature NET-Framework,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,
    Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,
    NET-HTTP-Activation

 

Powershell 2.0

Powershell 2.0 is included in Windows Server 2008 R2.

Lotus Notes Client

Supported versions are 6.5.1–6.5.6, or 7.0.0–7.0.4, or 8.0.0–8.0.2, or 8.5.0 or 8.5.1.

  • Install Lotus Notes in Single User mode.
  • After the installation is complete, copy admin.id from C:\Program Files\Lotus\notes\data on the Domino server to
    C:\Program Files (x86)\lotus\notes\data on the CMN server.
  • Start and configure the Lotus Notes client.

     

Turn off UAC and Windows Firewall

To avoid complications during installation of Coexistence Manager for Notes and related components, turn off Windows Firewall and
User Account Control

Mailbox

We need to create a mailbox for CMN to use to be able to retrieve F/B information, the service
“Quest CMN Exchange Free/Busy Connector Service” should be using this account.

Installation of Quest Coexistence Manager for Notes

 

  • Start autorun.exe on the CMN CD and select the Install tab.
  • Click on “Coexistence Manager for Notes Mail Connector” to start the installation

     

  • Accept the license agreement and then choose default settings in the wizard.
  • Click Finish to complete the installation.

 

Coexistence Manager for Notes Free/Busy Connector

  • Start autorun.exe on the CMN CD and select the Install tab.
  • Click on the appropriate version (32 or 64 bit) of Coexistence Manager for Notes Free/Busy Connector.
  • Accept license agreement and click next
  • Deselect “Domino Server Components” on the “Custom Setup” screen and then click Next.

     

  • Review the Prerequisites screen and confirm all prerequisites are met and click install.
  • Complete the installation with Finish.

 

PowerGUI

  • Start autorun.exe on the CMN CD and select the Install tab.
  • Click on PowerGUI to start the installation.
  • Choose the default features and path.

     

Domino Server Components

  • On the Domino server start autorun.exe on the CMN CD and select the Install tab.
  • Click on the appropriate version (32 or 64 bit) of Coexistence Manager for Notes Free/Busy Connector.
  • Accept License Agreement and click next.
  • Deselect everything except “Domino Server Components”

     

     

  • Review the Prerequisites screen and confirm all prerequisites are met and click install.
  • Complete the installation with Finish.

 

Configuration of Quest Coexistance Manager for Notes

 

Exchange

To be able to send messages between the systems, a send connector needs to be created.
Create a Send connector that sends all messages with “@domino.target.local” to the CMN server.

Open Exchange Management Shell and run the following command.

“New-SendConnector -Name ‘To Coexistence Manager’ -AddressSpaces ‘SMTP:domino.target.local;1’ -DNSRoutingEnabled $false -SmartHosts ‘cmn.target.local’ -SmartHostAuthMechanism ‘None’ -UseExternalDNSServersEnabled $false -SourceTransportServers ‘SERVER03’ -MaxMessageSize ’50 MB'”

PowerGUI configure Web Services and Lotus Notes Components

  • Start PowerGUI from the Start Menu / All Programs / PowerGUI.
  • Select the “Configure Web Services and Lotus Notes Components” item on the left pane.

     

  • Click on Configuration Wizard in the Actions pane on the action panel.
  • Click next and type the SMTP domain target.local in the “SMTP Domain” screen. Also click the radio button for “autodiscover.target.local”

     

 

  • On the Domino Credentials screen enter the Domino server name, the path to the Admin.id file that was copied to the CMN server under the Lotus Notes client installation and the Administrator password and click next.

     

  • On the “Ready to configure” screen review the information entered and click next to configure the Configure Web Services and Lotus Notes Components.

     

    Make sure that the Domino Free/Buys Connector Service is started.

Configure Domino Server and Exchange Components.

 

  • Start PowerGUI from the Start Menu / All Programs / PowerGUI
  • Select the “Configure Domino Server and Exchange Components/Domino Server tasks” item on the left pane.

     

    Make sure the right path is typed in for qcalcon.exe.config file, in my case it’s:

    \\domino\c$\program files\lotus\domino\qcalcon.exe.config

    If everything looks correct it should show you something like this, information about Foreign domain.

  • Select the “Configure Domino Server and Exchange Components/Domino Server tasks” item on the left pane and choose “Configuration Wizard” on the action panel.

     

    In the beginning of the configuration wizard it will give information about the Foreign domain like below

  • Next settings that should be configured is typing in the URL for EWS (Exchange), https://mail.target.local/EWS/Exchange.asmx.
    Also enter the credentials of the CMN Free/Busy service account.

 

 

  • On the “Ready to configure” screen review the information entered and click next to configure the “Configure Domino Server and Exchange Components”.
  • Make sure that the Exchange Free/Busy Connector service is set to log on as the Free/Busy service account “Target\CMNFB” and then start the service.

     

 

Verify / Troubleshooting the function

 

Before doing anything, with my 2 users I’ve added meetings all week/workdays the whole morning 8-12 AM.

  • Start PowerGUI from the Start Menu / All Programs / PowerGUI x86
  • Select the “Diagnostics and Troubleshooting/Troubleshoot free/busy for Domino users” item on the left pane.

    I’m typing in the cmnfb account, password, verify that the EWS path is correct and typing in an Exchange emailaddress for verifying the
    F/B function.

    It seems to work very well!

 

  • Select the “Diagnostics and Troubleshooting/Troubleshoot free/busy for Exchange users” item on the left pane.

    Choose “Test free/busy through Domino” in the action panel.

    Make sure the Domino server name, id file, password and an email address that resides in Domino is typed in.
    Test and verify the function by pressing “Test” button to verify the function.

    It works from both ways! J

Time to verify it with Lotus Notes and Outlook 2010

From Lotus Notes, I’m trying to schedule a meeting from my Domino user to my Exchange user.
Let’s take the time I know that’s setup as BUSY, selecting the user and pressing the availability button.

This is the result, it shows the F/B between the systems.

On the other hand we have Outlook 2010.
Booking a meeting and selecting the contact for my Domino user, it takes some seconds before any information shows up.

Then it will show the F/B information, and I can confirm this is correct.
Domino by default is setting 12-13 as BUSY time.

QCALCON tasks

 

If there are any problems retrieving the F/B information from Lotus Notes to an Exchange user do the following steps.

On the Domino server, verify so that those 3 services have been installed and started.
This can be done in Domino Administrator and/or Notes.ini

They are named: QCALCON, QCALCON NOTESSCHEDGATEWAY, QCALCON LWPSCHEDGATEWAY
Open Domino server console and verify that there is 3 QCALCON tasks running (show tasks), if not use the LOAD command to start them. (LOAD QCALCON, LOAD QCALCON NOTESSCHEDGATEWAY and LOAD LWPSCHEDGATEWAY)

Exchange Configuration

To be able to use sub-domains between the systems, we need to configure the Exchange environment with some settings.

Accepted domains

The sub-domains need to be added into the Accepted Domains.
In my lab environment it looks like this:

Domino.target.local – Internal relay
exch.target.local – Authoritative

E-mail Address Policies

The exchange mailboxes that have recently been created and migrated from Domino needs both the target.local (primary)
and the exch.target.local (secondary) addresses for being able to receive mails when the sub-domains are in use.

Contact

For the users that have not yet been migrated there needs to be a contact with the following settings, ex. From my lab.
Primary: Jonas.Andersson@target.local
Secondary: Jonas.Andersson@domino.target.local
Secondary: Jonas.Andersson@exch.target.local

TargetAddress (forward): Jonas.Andersson@domino.target.local

Summary

 

For setting up CMN from Quest, it’s recommended to use a PSO (certified consultant)!

Feel free to give feedback on the article!
I hope this was interesting and informative, thanks for reading!

Tagged , ,