null  null
Microsoft® Exchange 2000 Instant
Messaging Setup
White Paper
Published: August 2001
Table of Contents
Introduction......................................................................................................... 1
Instant Messaging Architecture ............................................................................... 1
Instant Messaging Servers ................................................................................. 2
Instant Messaging Domains ................................................................................ 2
Internet Capability ............................................................................................ 2
Deploying Instant Messaging Service ....................................................................... 3
Prerequisite...................................................................................................... 3
Installing Instant Messaging Service .................................................................... 3
Microsoft Exchange 2000 Instant
Messaging Setup
White Paper
Published: August 2001
For the latest information, please see http://www.microsoft.com/exchange/
Introduction
The Microsoft® Exchange 2000 Instant Messaging service allows users on a
TCP/IP network to participate in real-time conversations, just as they would in a
chat room. In Instant Messaging, messages are received immediately on the
recipient's desktop, regardless of what application the recipient is using. For more
information about Instant messaging features, see the Exchange 2000 online
documentation.
This document provides detailed information about Exchange 2000 Instant
Messaging architecture and deployment.
Instant Messaging Architecture
All Instant Messaging communication uses the protocol RVP.
Instant Messaging has an architecture that allows companies to administer their
own Exchange Instant Messaging infrastructure. Within this infrastructure,
businesses can limit their users to instant messaging within the organization or
can allow users to send instant messages to other users across the Internet. An
Instant Messaging configuration is characterized by the following elements:
•
The servers are configured as Instant Messaging home servers, Instant
Messaging routers, or a combination of both.
•
One or more Instant Messaging domains exist within the configuration.
•
The deployment can be designated as Internet-capable, intranet-capable, or a
combination of both.
Figure 2 illustrates a simple Instant Messaging configuration, with the following
elements:
•
A small number of users
•
One location
•
One home server (a separate Instant Messaging router is not needed)
Figure 2
A simple Instant Messaging configuration
Instant Messaging Servers
An Instant Messaging configuration contains two types of servers:
•
Home servers Home servers host Instant Messaging user accounts and
communicate directly with Exchange Instant Messenging clients to deliver
instant messages and presence information.
•
Instant Messaging routers Instant Messaging routers receive incoming
messages, locate the recipient's home server, and then transmit the messages
to the home server.
Note Instant Messaging routers do not host users. Instead, Instant
Messaging routers proxy (route) a message to a home server or redirect
the client to the correct home server and send messages to other
servers on the network. Large companies that deploy Instant Messaging
should use several Instant Messaging routers to accept external and
internal messages
Instant Messaging Domains
It is recommended that you configure your Instant Messaging domains to have
one-to-one correspondence with e-mail domains. For example, a user with the email address [email protected] should be hosted
in the Instant Messaging domain im.consolidatedmessenger.microsoft.com.
Because an Instant Messaging router can answer queries arriving to only one
Instant Messaging domain, at least one Instant Messaging router should exist for
each e-mail domain.
Internet Capability
If you configure your Instant Messaging service to be only intranet-capable, the
entire Instant Messaging service is located behind a firewall. If you configure your
Instant Messaging service to be Internet-capable, you must set the appropriate
Microsoft Exchange 2000 Instant Messaging Setup
2
inbound and outbound Internet connections through your firewall. Exchange
Instant Messaging servers expect messages to arrive through port 80.
Deploying Instant Messaging Service
Before you install Instant Messaging service on one or more servers running
Microsoft Windows® 2000 throughout your organization, verify that your
Exchange organization meets certain prerequisites.
Prerequisite
Before you deploy the Exchange 2000 Instant Messaging service, ensure that the
following criteria are met:
•
Your server is running Windows 2000 and IIS 5.0.
•
You have an Exchange 2000 Instant Messaging server installed.
•
The following security permissions are met:
o
You must be a member of the Exchange Administrators security
group to manage global Instant Messaging settings, such as firewall
topology, proxy server configuration, and any Instant Messaging
home servers and routers in your organization.
o
You must be a member of the Domain Administrators security
group to manage the domains that host the users.
Installing Instant Messaging Service
This section provides the following procedural information about installing your
Instant Messaging service:
•
Running Exchange 2000 Setup Wizard
•
Creating a home server
•
Creating an Instant Messaging router
•
Setting a password policy
•
Enabling users to access Instant Messaging
•
Distributing the client software
Microsoft Exchange 2000 Installation Wizard
To install Exchange 2000 Server, run Microsoft Exchange 2000 Installation
Wizard.
To run Microsoft Exchange 2000 Installation Wizard
1. Insert the Exchange 2000 Server CD. On the Microsoft Exchange 2000
Server page, click Exchange Server Setup.
2. On the Welcome page, click Next.
Microsoft Exchange 2000 Instant Messaging Setup
3
3. On the End-User License Agreement page, read the agreement. If you
accept the terms, click I agree, and then click Next.
4. On the Product Identification page, enter the 25-digit CD key that is
located on a sticker on the back of the product compact disc, and then click
Next.
5. On the Component Selection page, under Action, in the drop-down menu
next to Microsoft Exchange 2000, click Custom.
6. Under Action, in the drop-down menu next to Microsoft Exchange System
Management Tools, click Install.
7. Under Action, in the drop-down menu next to Microsoft Exchange Instant
Messaging Service, click Install.
Figure 3
Wizard
The Component Selection page of Exchange 2000 Installation
8. Click Next to verify your component selections, and then click Finish.
Creating an Instant Messaging Home Server
Instant Messaging home servers host Instant Messaging user accounts and
communicate directly with clients to send and deliver instant messages and
presence information.
Microsoft Exchange 2000 Instant Messaging Setup
4
To create a home server
1. Click Start, point to Programs, point to Microsoft Exchange, and then click
System Manager.
2. In the console tree, expand Servers, expand the server on which you want to
create the Instant Messaging home server, and then expand Protocols.
3. Right-click Instant Messaging (RVP), point to New, and then click Instant
Messaging Virtual Server.
4. In New Instant Messaging Virtual Server Wizard, click Next.
5. On the Enter Display Name page, in Display Name, type a name to
represent the virtual server (this is the server name displayed in System
Manager), and then click Next (Figure 4).
Figure 4
The Enter Display Name page
6. On the Choose IIS Web Site page, in the IIS Web Sites list, select Default
Web Site, and then click Next (Figure 5).
Microsoft Exchange 2000 Instant Messaging Setup
5
Figure 5
The Choose IIS Web Site page
Important You must have one IIS virtual server for every Instant
Messaging home server you create. If you need to install multiple virtual
servers on the same computer (for example, if you are a hosting
Internet service provider [ISP]), you must first create a new IIS virtual
server for this purpose. For more information, see the IIS online
documentation.
Note If the home server also performs routing functions (for example,
in a small business that has one server with Instant Messaging
connectivity to the Internet), change the default domain name to the
Instant Messaging domain name (for example, im.microsoft.com). For
other situations, you may need to first create a new IIS virtual server
and specify the new domain name as the host header name of that
virtual server. For example, if you want to deploy different Instant
Messaging namespaces with minimum hardware usage. For more
information, see the IIS online documentation.
7. On the Domain Name page, in DNS Domain Name, by default, the DNS
domain name matches the fully qualified domain name (FQDN) of the
computer (for example, yourcomputer.consolidatedmessenger.com). Either
accept the default DNS domain name or type a new domain name for the
virtual server, and then click Next (Figure 6).
Microsoft Exchange 2000 Instant Messaging Setup
6
Figure 6
The Domain Name page
Note For the initial installation, accept the default entries in the DNS
Domain Name and Port boxes.
8. On the Instant Messaging Home Server page, select the Allow this
server to host user accounts check box, and then click Next (Figure 7). If
you do not select this check box, the Instant Messaging home server is not
created.
Figure 7
The Instant Messaging Home Server page
9. Click Finish to complete the setup of the Instant Messaging home server.
Note If the DNS domain name used in the New Instant Messaging
Virtual Server Wizard is not resolvable by DNS (for example, if you
Microsoft Exchange 2000 Instant Messaging Setup
7
created an IIS virtual server with a new domain name), you must create
the necessary DNS resource records, including a host address record for
the home server, to ensure that the domain name is resolvable by DNS.
For more information about creating DNS resource records, see the
Exchange 2000 online documentation.
Creating an Instant Messaging Router
An Instant Messaging router either proxies (routes) a message to a home server
or redirects the client to the correct home server and sends messages to other
servers on the network.
Important Before you create an Instant Messaging router, determine
the Instant Messaging domain that will service the Instant Messaging
router (for example, im.microsoft.com).
Note With the exception of step 8 of the following procedure, the
procedure for creating an Instant Messaging router is the same as the
procedure for creating an Instant Messaging home server. To view
screen shots related to the following procedure, see the “Creating an
Instant Messaging Home Server” section earlier in this document.
To create an Instant Messaging router
1. Click Start, point to Programs, point to Microsoft Exchange, and then
click System Manager.
2. In the console tree, expand Servers, expand the server on which you
want to create the Instant Messaging router, and then expand Protocols.
3. Right-click Instant Messaging (RVP), point to New, and then click
Instant Messaging Virtual Server.
4. In New Instant Messaging Virtual Server Wizard, click Next.
5. On the Enter Display Name page, in the Display name box, type a
name to represent the virtual server (this is the server name displayed in
System Manager), and then click Next.
6. On the Choose IIS Web Site page, in the IIS Web Sites list, select
Default Web Site, and then click Next.
7.
On the Domain Name page, in the DNS Domain Name box, by default,
the DNS domain name matches the FQDN of the computer (for example,
yourcomputer.consolidatedmessenger.com). Either accept the default DNS
domain name or type a new domain name for the virtual server, and then
click Next (Figure 5).
8. On the Instant Messaging Home Server page, clear the Allow this
server to host user accounts check box, and then click Next (Figure 8).
Microsoft Exchange 2000 Instant Messaging Setup
8
Figure 8 The Allow this server to host user accounts check box on the
Instant Messaging Home Server page
9. Click Finish to complete the setup of the Instant Messaging router.
Note Ensure that you have the necessary DNS resource records for the
Instant Messaging router. If you have more than one Instant Messaging
router, each router must have a host address record.
Note For a group of Instant Messaging routers that have the same
Instant Messaging domain name (this is the typical situation for large
installations), use DNS round robining (a sequential, cyclical allocation of
resources to more than one process or device) to translate the same
domain name to the different IP addresses of the routers. This option is
not available for home servers.
Setting a Password Policy
Instant Messaging uses the same passwords as Windows 2000. You can reset
user passwords in Active Directory Users and Computers. For more
information, see the Windows 2000 online documentation.
To set or change the password policy
1. Click Start, point to Programs, point to Administrative Tools, and then
click Active Directory Users and Computers.
2. In Active Directory Users and Computers, in the console tree, right-click
the server for which you want to set or change the password policy, and then
click Properties.
3. In <server name> Properties, click Group Policy.
4. On the Group Policy tab, under Group Policy Object Links, click Default
Domain Policy, and then click Edit.
Microsoft Exchange 2000 Instant Messaging Setup
9
Figure 8 The Edit button on the Group Policy tab in the server properties
dialog box
5. In Group Policy, in the console tree, expand Computer Configuration, expand
Window Settings, expand Security Settings, expand Account Policies, and then
click Password Policy.
6. In the details pane, right-click Store password using reversible encryption for
all users in the domain, and then click Security.
Microsoft Exchange 2000 Instant Messaging Setup
10
Figure 9
The Group Policy and Security Policy Setting dialog boxes
7. In Security Policy Setting, select the Define this policy setting check box, click
Enabled, and then click OK.
Tip To propagate this change immediately throughout the domain, type
the following command in the command prompt:
secedit/refreshpolicy MACHINE_POLICY
Enabling Users to Access Instant Messaging
To enable a user to access the Instant Messaging service, you must first assign
the user to an Instant Messaging home server.
Important You must create an Instant Messaging home server before
assigning a user to one. Also, if you use digest authentication, set the
password policy on the domain controller so that user passwords are
stored in a reversible, encrypted format. Digest authentication is an
Internet standard that allows clients to authenticate using a sequence of
challenges and responses carried over HTTP. You can set password
policy on a per-user basis if you do not want to apply a global policy. For
more information about digest authentication, see the Exchange 2000
Service Pack 1 (SP1) online documentation.
To enable users to access the Instant Messaging service
1. Click Start, point to Programs, point to Administrative Tools, and then
click Active Directory Users and Computers.
2. In Active Directory Users and Computers, in the console tree, expand the
server you want, and then click Users.
Microsoft Exchange 2000 Instant Messaging Setup
11
3. If you need to create a new user account, perform the following steps:
a. Right-click Users, point to New, and then click User.
b. In New Object – User, type the user’s information in the appropriate
boxes, and then click Next.
c. Type the user’s password in the appropriate boxes, and then click
Next.
d. Select the Create an Exchange mailbox check box, and then click
Next. (To authenticate users, Instant Messaging uses the same
password as Windows 2000. An Exchange mailbox is not required to
use Instant Messaging).
e. Verify that the user’s information is correct, and then click Finish.
Important If you require Internet validation, and you have enabled
users to access Instant Messaging, you can activate digest
authentication. After you set the group policy, you must set the user’s
password. Changes in the group policy cannot be used until the user or
the administrator resets the user's password. Non-digest scenarios
continue to function as before. To reset user passwords, use Active
Directory Users and Computers. Resetting passwords is necessary
only if you want to deploy digest authentication. For more information,
see the Windows 2000 online documentation.
4. In the details pane, right-click the user for whom you want to enable Instant
Messaging, and then click Exchange Tasks to start Exchange Task Wizard
(Figure 10).
Microsoft Exchange 2000 Instant Messaging Setup
12
Figure 10
page
The Enable Instant Messaging option on the Available Tasks
5. On the Available Tasks page, under Select a task to perform, click
Enable Instant Messaging, and then click Next.
6. On the Enable Instant Messaging page, click Browse.
7. In Select Instant Messaging Server, under Server Name, click the home
server you want, and then click OK (Figure 11).
Microsoft Exchange 2000 Instant Messaging Setup
13
Figure 11
The Server Name box in Select Instant Messaging Server
8. On the Enable Instant Messaging page, in the Instant Messaging
Domain Name list, click the domain name you want, and then click Next.
Note If you have already configured a service location (SRV) resource
record, you do not have to click the domain name you want from the
Instant Messaging Domain Name list. An SRV record can be used to
map an e-mail domain to an Instant Messaging domain. When a user
has a valid e-mail address configured, the Instant Messaging service
performs a DNS SRV query to determine the Instant Messaging domain
of the user.
9. On the Completing the Exchange Task Wizard page, under Task
summary, review the user information, including the Instant Messaging user
address, public URL, and home server URL. The user needs the Instant
Messaging user address to log on to the Instant Messaging service. Then click
Finish.
Note If you configured an SRV resource record before you enabled the
user to access Instant Messaging, and if the user was already assigned a
primary e-mail address with a domain matching the DNS zone for the
SRV record, the Instant Messaging address for this user is the same as
the primary SMTP address (for example [email protected]_domain). If
Microsoft Exchange 2000 Instant Messaging Setup
14
you did not configure an SRV record, the Instant Messaging address for
this user takes the following form:
[email protected]_Messaging_Domain.
Distributing the Client Software
As an administrator in your Exchange 2000 organization, you are responsible for
distributing the Instant Messaging client software to users and providing them
with instructions for logging on to the service.
Note If users have MSN® and Exchange 2000 Instant Messaging
accounts, Auto Upgrade gets the latest software version from MSN.
To distribute the client software
1. Locate the \Instmsg\I386\Client\<language> directory on the Microsoft
Exchange 2000 Server compact disc. For example,
\Instmsg\I386\Client\USA is the directory for installing the English
language version.
2. Copy the Mmssetup.exe file to a network location that is accessible to your
users, such as a shared server or a Web page.
3. Instruct users to install the client program by running Mmssetup.exe from
the shared location.
4. Provide each user with the following logon information:
•
User Name: [email protected]_Domain (if a SRV record is used)
or [email protected]_Messaging_Domain (if a SRV record is not used)
Alias and Instant_Messaging_Domain are the account name and Instant
Messaging domain.
•
NT Name: User name in the Windows 2000 domain
•
Password: password
For more information about how to deploy software to multiple users, see:
•
Microsoft Systems Management Server Resource Guide
•
Microsoft Windows 2000 Server Resource Kit
For more information: http://www.microsoft.com/exchange/
Did this paper help you? Please give us your feedback. On a scale of 1 (poor)
to 5 (excellent), how would you rate this paper?
mailto:[email protected]?subject=Feedback: Microsoft Exchange 2000
Instant Messaging Setup
Microsoft Exchange 2000 Instant Messaging Setup
15
The information contained in this document represents the current view of Microsoft Corporation on the issues discussed as of the
date of publication. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment
on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information presented after the date of publication.
This White Paper is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AS TO THE
INFORMATION IN THIS DOCUMENT.
Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of this
document may be reproduced, stored in or introduced into a retrieval system, or transmitted in any form or by any means (electronic,
mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of Microsoft
Corporation.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in
this document. Except as expressly provided in any written license agreement from Microsoft, the furnishing of this document does
not give you any license to these patents, trademarks, copyrights, or other intellectual property.
Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places
and events depicted herein are fictitious, and no association with any real company, organization, product, domain name, email
address, logo, person, place or event is intended or should be inferred.
 2001 Microsoft Corporation. All rights reserved.
Microsoft, MSN, and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or
other countries.
The names of actual companies and products mentioned herein may be the trademarks of their respective owners.
Microsoft Exchange 2000 Instant Messaging Setup
16
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertisement