Forum Discussion
new version of Exchange iApp template available
We have posted a new version (2012_06_08) of the Exchange 2010 CAS iApp template; it replaces the previously available 2012_04_06 version. This version addresses various connectivity, login, and other configuration issues that have been reported to F5.
This is a recommended upgrade for all customers.
The iApp template is available at http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13497.html
It might be a few days before the AskF5 Solution document reflects the change, but if you click through to the download, the new version of the Zip archive is iapps-1.0.0.8.0.zip
(The Zip archive contains the old 2012_04_06 version as well, for customers who might have standardized on that, as well as a brand-new iApp for Citrix XenApp and XenDesktop.)
From the README for the new Exchange CAS iApp:
New Features & Configuration Changes
The iApp template version 2012_06_08 for Microsoft Exchange Server 2010 Client Access Services contains the following significant changes from the iApp template iApp template version 2012_04_06:
* Users can now attach additional user-defined iRules to all HTTP-based virtual servers
Fixes
* Corrected multiple configuration issues that would cause Exchange Web Services (EWS) to fail in certain scenarios. Prior to these fixes, some clients, such as Apple's Mail.app and Microsoft's Outlook 2011 for Mac, would fail completely and functions such as Mail Tips and Free/Busy lookups would fail for Outlook 2010 on Windows platforms.
* Modified the OneConnect profile source mask to correct a condition where NTLM-authenticated connections would fail, resulting in multiple login prompts in some clients.
* Corrected the TCP ports for POP3 and IMAP4 monitors and pools when 'SSL Bridging' is selected.
* Corrected the configuration of unencrypted POP3/IMAP4 virtual servers to use the correct TCP ports.
* Corrected a configuration scenario that would cause the Autodiscover EAV monitor to incorrectly mark servers up.
* Corrected the Autodiscover EAV monitor to honor the option to re-encrypt traffic on the server side.
* Redesigned the advanced monitor for OWA which is assigned when selecting 'Basic or Windows authentication' to support NTLM authentication.
* Corrected the assignment of the 'oa_persist' iRule when a dedicated virtual server is configured for Outlook Anywhere.
* Corrected the template to explicitly assign a timeout of zero (0) to the cookie persistence profile for the combined HTTP virtual server rather than the default 180 seconds.
hooleylistCirrostratus
Thanks for this Dayne! I had a few customers asking when the new Exchange iApp was coming out.
Aaron
EmBee_57573Nimbostratus
hi,
I am trying to run this new template, using also the APM feature.;
When I enable the APM module, I get the following error:
01070341:3: Virtual server /Common/F5excange-demo.app/F5excange-demo_combined_https references rule _sys_APM_ExchangeSupport_OA_BasicAuth which does not exist.
Any clue what is happening here?
Kind regards,
Em Be
- hi EmBee,
Do you get this error when running the iApp template, or when provisioning APM from System>Resource Provisioning? When you look in Local Traffic>iRules, are there any rules that start with _sys_APM?
thanks
Mike - EmBee_57573Hi,
there are no _sys_APM irules available.. I get it when I run the iApp template.
EmBee - It sounds like you may not have APM provisioned. From the Resource Provisioning menu, set the Access Policy (APM) module to "Nominal" provisioning and try it again.
Here is a link to step by step LB configuration using the F5 iApp for Exchange 2010 by Jaap Wesselius, Managing Consultant for inovativ uc in the Netherlands, Microsoft Exchange MVP and UC Specialist.
http://www.jaapwesselius.com/2012/1...th-f5-ltm/
Follow him on Twitter: http://twitter.com/jaapwess
And a straightforward look at configuring SMTP load balancing in BIG-IP LTM. We have not added this to the Exchange iApp, but after so much exposure via Jaap's blog and his speaking sessions at MEC in Orlando recently, we may reconsider http://www.jaapwesselius.com/2012/1...th-f5-ltm/
Your feedback also welcome here!
mike_aws_119486Hi,
The template states that it supports the following deployment scenario:This BIG-IP Edge Gateway or APM will provide secure remote access to CASYou can select this scenario to configure the BIG-IP as a BIG-IP Edge Gateway or APM that will use a single virtual server to provide proxy authentication and secure remote access to Exchange HTTP-based Client Access services without requiring the use of an F5 Edge Client. The traffic will be forwarded to another BIG-IP running LTM which provides advanced load balancing, persistence, monitoring and optimizations for those services.However on an APM system when I try to use the iApp I just get
"We are sorry but you must license and provision the LTM module to use this template"
Slightly confused as the whole point is that there is a seperate LTM elsewhere.
On an 'APM Only' system how are you supposed to use the iApp to select the above scenario?
Thanks
- Mike, the message is a little misleading. You must go to System>Resource Provisioning and makre sure that LTM is provisioned (nominal is fine). Although LTM is not licensed, some of its "free" features are still required by the iApp.
thanks
Mike - mike_aws_119486Posted By mikeshimkus on 06/07/2013 07:20 AM
Mike, the message is a little misleading. You must go to System>Resource Provisioning and makre sure that LTM is provisioned (nominal is fine). Although LTM is not licensed, some of its "free" features are still required by the iApp.
thanks
Mike
Perfect, many thanks for the explanation, LTM provisioned (unlicensed) and the Template now works!As you say very misleading, would be better if the message said it needs to be provisioned (even if not licensed in an APM/Edge scenario).
Thanks again.
