Here is how to connect your E-series device to VoIP system. N-series can do that as well, but some models do not have a WiFi in them -very sad!
Define your WLAN (WiFi)first.
menu-tools-settings-connection-access points
new access point, default settings
Change connection name
Data bearer -Wireless LAN
WLAN netw. name -search for netw. (if you are in therange of any WLAN you want to use e.g. home one)
network status -public
wlan netw mode -infrastructure
wlan security -wpa/wpa2 (or wep -depends on your router config)
wlan security settings
wpa mode -pre-shared wkey
TKIP encryption -allowed
Create a SIP profile on your phone:
menu-tools-settings-connection-sip settings
new default profile
IETF
Default access point: any_wireless_lan
public username: xxx@10.0.0.1 (where 10.0.0.1 is internal or external IP or FQDN of your VoIP box. It can be 800@myvoip.home.com or 800@123.123.123.123)
compression-no
registration -when needed (up to you. If you select always on - it will try to connect to VoIP all the time when the connection defined is available. Watch your battery draining fast)
security-no
proxy server
unless you use one -skip this section
registrar server
server -10.0.0.1
realm- whatever is set in sip.conf, default -asterisk.
To change your realm:
Access your trixbox, then go to Config File Editor- realm is being set in sip.conf.
Add one line:
realm= whatever
Apply settings, then reboot your server.
username - xxx (your extension)
password -xxx
loose routing -yes
transport -auto
port -5060
then go to menu-tools-settings-connection-internet tel.
new profile -give it same name as SIP profile
select your SIP profile
You should be able to connect now. Try this internally first, then forward necessary ports on your firewall and you're clear to go.
Central Scotland VoIP solutions. Stirling, Glasgow, Edinburgh. www.lanos.co.uk
Sunday 29 November 2009
Configure Nokia E-Series with Mail for Exchange
If you're using the wizard within MfE, just try to macth up the info below, or skip wizard to configure manually:
Connection TAB:
Exchange server: mail.server.com - this is externally visible address of your server
Secure connection: Yes -will use port 443 for SSL synchronization, No -will use port 80 and information will pass unencrypted. If you're struggling with certificate import etc. this may be your only option. However if your server is behind NAT, what I found useful- configure alternative port on your router to hide communications by obscuring. E.g. forward port 8181 to port 80 of your server internally.
Use default port: Yes -will use port 80 or 443 depending on the setting above. If you implemented non-standard port as per above, specify port 8181 here, by changin this to No
Access point: choose your wireless or GPRS/EDGE/3G access point. If you're paying for data as for exammple I am using Pay and Go service you may wish to consider application such as Psiloc Connect. It costs around £7 and allows you to use multiple Wi-Fi access points so you're not paying for data whilst changing your geographical position.
Credentials TAB:
Username: specify it as username, or if your company uses UPS suffixes specify it with suffix. However so far I havent had to do this.
Password: password
Domain: I usually specify it in FQDN format. E.g. company.local
Sync content TAB:
Configure as you wish, however you may want to consider setting up Server wins in case of conflict, if your maint operations are done mailnly within Outlook.
Certificate management:
Now you need a certificate. If you're not using third party cert like I do (I use cheap Class 2 Cert from GoDaddy for about £10 a year, which saves the hassle below if you have many devices to connect) File browser on Nokia does not understand .cer, .der or other certificate files. You need to install it using web browser on your phone.
On the PC go to mail.domain.com/exchange. Install the certificate. Export certificate in DER format to .cer file.
go to http://www.redelijkheid.com/symcaimport/index.cfm
upload your .cer file.
Link with converted file will be given to you. Download this .der file. Upload it to your website (any http server where you can reach it, preferrably IIS). Then on your phone go to www.yourwebsite.com/certificate_filename.der and install the certificate. (if you're using Apache the MIME type on the webserver should be defined, otherwise you'll end up reading contents of the certificate file, rather than installing it)
If link does not work certificate needs to be converted to .der using openssl. I did not do it as above method worked, but it is straight forward as I read.
Also: Problems with certificate, that it contains multiple CN.(SANs) It should contain only one. It is not fixed by Nokia yet.
Nokia Mail for Exchange. Blackberry BES, Windows Mobile, Hosted Microsoft Exchange 2003/2007/2010 Central Scotland. Stirling, Glasgow, Ediburgh. www.lanos.co.uk
Connection TAB:
Exchange server: mail.server.com - this is externally visible address of your server
Secure connection: Yes -will use port 443 for SSL synchronization, No -will use port 80 and information will pass unencrypted. If you're struggling with certificate import etc. this may be your only option. However if your server is behind NAT, what I found useful- configure alternative port on your router to hide communications by obscuring. E.g. forward port 8181 to port 80 of your server internally.
Use default port: Yes -will use port 80 or 443 depending on the setting above. If you implemented non-standard port as per above, specify port 8181 here, by changin this to No
Access point: choose your wireless or GPRS/EDGE/3G access point. If you're paying for data as for exammple I am using Pay and Go service you may wish to consider application such as Psiloc Connect. It costs around £7 and allows you to use multiple Wi-Fi access points so you're not paying for data whilst changing your geographical position.
Credentials TAB:
Username: specify it as username, or if your company uses UPS suffixes specify it with suffix. However so far I havent had to do this.
Password: password
Domain: I usually specify it in FQDN format. E.g. company.local
Sync content TAB:
Configure as you wish, however you may want to consider setting up Server wins in case of conflict, if your maint operations are done mailnly within Outlook.
Certificate management:
Now you need a certificate. If you're not using third party cert like I do (I use cheap Class 2 Cert from GoDaddy for about £10 a year, which saves the hassle below if you have many devices to connect) File browser on Nokia does not understand .cer, .der or other certificate files. You need to install it using web browser on your phone.
On the PC go to mail.domain.com/exchange. Install the certificate. Export certificate in DER format to .cer file.
go to http://www.redelijkheid.com/symcaimport/index.cfm
upload your .cer file.
Link with converted file will be given to you. Download this .der file. Upload it to your website (any http server where you can reach it, preferrably IIS). Then on your phone go to www.yourwebsite.com/certificate_filename.der and install the certificate. (if you're using Apache the MIME type on the webserver should be defined, otherwise you'll end up reading contents of the certificate file, rather than installing it)
If link does not work certificate needs to be converted to .der using openssl. I did not do it as above method worked, but it is straight forward as I read.
Also: Problems with certificate, that it contains multiple CN.(SANs) It should contain only one. It is not fixed by Nokia yet.
Nokia Mail for Exchange. Blackberry BES, Windows Mobile, Hosted Microsoft Exchange 2003/2007/2010 Central Scotland. Stirling, Glasgow, Ediburgh. www.lanos.co.uk
SBS 2003 best practices
During the course of my work with SBS systems, the following I found was useful configuration:
Storage configuration:
Exchange:
You may remember Skype's experience couple of years ago when Automatic updates from MS have stopped their services. I personnaly isable Automatic updates altogether and ONLY install even numbered Service Pack from MS. (SP2, SP6, SP4) avoid odd service packs like wildfire. There is no logical reason to this, but practice showed that this is the best way.
Storage configuration:
- Have 2 partitions. 30 GB for the system, rest for the data.
- Have Shadow Copies enabled. To restore files without referring to the backup
- Copy all the necessary software onto the machine or the server (e.g. office and windows installation CD's)
- Do not install SBS 2003 from the HDD,( MSDE and SQL 2005 will fail). Always use CD’s. To reinstall monitoring components: CD must be used, as MSDE is being affected.
Exchange:
- Specify Exchange database to reside on data partition
- Remove quotas on mailboxes.
- Change the registry key for the 18GB limit on Exchange database, restart information store.
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeIS\
\Private-013e2e46-2cd7-4a8e-bfec-0e4652b94b00
And
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeIS\
\Public-013e2e46-2cd7-4a8e-bfec-0e4652b94b00 - Add new REG_DWORD key named Database Size Limit in GB with HEX value of 46 (or 70 in decimal)
- Set deleted items protection for 90 days
You may remember Skype's experience couple of years ago when Automatic updates from MS have stopped their services. I personnaly isable Automatic updates altogether and ONLY install even numbered Service Pack from MS. (SP2, SP6, SP4) avoid odd service packs like wildfire. There is no logical reason to this, but practice showed that this is the best way.
- Disable the Configure Automatic Updates policy setting in Computer Configuration\Administrative Templates\Windows Components\Windows Update.
- Use WSUS 3.0 instead if needed
How to stop Outlook to ask for the password
Some easy steps to configure your Exchange 2003 and Outlook 2003/2007 with RPC/oHTTP:
Setting up RPC over HTTP
1. Sign server with the certificate (run SBS wizard and assign new certificate which is FQDN. E.g. mail.server.com)
2. Enable server firewall to allow Outlook via the Internet (in the same wizard)
3. Go to https://FQDN/exchange from external location and export certificate to the file. (or retrieve it from \\server\ ClientApps\SBScert\sbscert.cer if connected through LAN). On Vista run IE as Administrator.
4. Import certificate into Trusted Root Certification (on Vista show physical stores and select Local Computer)
5. Make sure Outlook is connected to Microsoft Exchange server. Enable HTTP connection. With following settings:
Make sure NTLM is selected. Screenshot of typical configuration is presented below.
6. On the server in IIS go to Default Web Site and properties of RPC. In directory security make sure that only Integrated windows authentication is ticked. Everything else should be unticked. (this allows outlook not to ask for the password)
7. In IIS –Microsoft-Server-ActiveSync –directory security- allow all IP’s
(for Nokia Mail for Exchange SSL sync)
8. In IIS –>IISADMPWD –> directory security, -allow all IP’s so it is possible to change password through OWA, directory security –> integrated. (this step is required to enable your users to change their password)
Microsoft Outlook 2003/2007/2010 RPC over HTTP. Exchange 2003/2007/2010. Central Scotland. Stirling, Glasgow, Edinburgh. www.lanos.co.uk
Setting up RPC over HTTP
1. Sign server with the certificate (run SBS wizard and assign new certificate which is FQDN. E.g. mail.server.com)
2. Enable server firewall to allow Outlook via the Internet (in the same wizard)
3. Go to https://FQDN/exchange from external location and export certificate to the file. (or retrieve it from \\server\ ClientApps\SBScert\sbscert.cer if connected through LAN). On Vista run IE as Administrator.
4. Import certificate into Trusted Root Certification (on Vista show physical stores and select Local Computer)
5. Make sure Outlook is connected to Microsoft Exchange server. Enable HTTP connection. With following settings:
Make sure NTLM is selected. Screenshot of typical configuration is presented below.
6. On the server in IIS go to Default Web Site and properties of RPC. In directory security make sure that only Integrated windows authentication is ticked. Everything else should be unticked. (this allows outlook not to ask for the password)
7. In IIS –Microsoft-Server-ActiveSync –directory security- allow all IP’s
(for Nokia Mail for Exchange SSL sync)
8. In IIS –>IISADMPWD –> directory security, -allow all IP’s so it is possible to change password through OWA, directory security –> integrated. (this step is required to enable your users to change their password)
Microsoft Outlook 2003/2007/2010 RPC over HTTP. Exchange 2003/2007/2010. Central Scotland. Stirling, Glasgow, Edinburgh. www.lanos.co.uk
Subscribe to:
Posts (Atom)