cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Veritas.com
Support

External access to Archive Explorer through citrix Netscalers

Scaz
Level 2
Certified

‎10-07-2013 01:33 AM

I am trying to allow external access to 'archive explorer' and 'search archives' thourgh OWA using citrix netscalers but can not find any documentation on setting it up.  I have spoken to Symantec support and they have informed me that they do not have any.  I have read all of the documentation on setting up using ISA/TMG but as TMG is now end of life we are trying to mvoe away from this and our OWA access is already configured through the netscalers.

Has anyone else successfull deployed using citrix netscalers? Any help is much appreciated!

 

Thanks

Richard

2 REPLIES 2

FreKac2
Level 6
Partner Accredited Certified

‎10-07-2013 02:40 AM

Haven't worked with Citrix at all so I'm not sure how this relates to your setup.

But the main thing to consider is that the Search and AE access is done directly to the EV server even with ISA/TMG.

The benefit of ISA/TMG etc. is that you can "piggy back" on e.g. the OWA rules.

Meaning you can redirect the request based on the URL.

So https://webmail.company.com/owa goes to the Exchange server and htttps://webmail.company.com/EnterpriseVault goes to the EV server.

If that doesn't work or whatever you're using can't forward request based on the URL then you need to configure your setup so that whatever the client is using to connect to EV will be able to do so.

E.g. using a different port number for the EV requests and forward those requests to the EV server.

Of course this need to be configured as well in either the policy or web.config file.

Again, the request for Search and AE is a new http/https session, that new session need to be able to arrive to the EV server.

0 Kudos

Pradeep-Papnai
Level 6
Employee Accredited Certified

‎10-07-2013 02:46 AM

If your firewall cannot do web proxy then EV server records have to publish for external usage, for OWA archive explorer/search request connects to EV server directly.

This information should be present in TN

"Symantec Enterprise Vault Outlook Web Access (OWA) Internal and External WebApp URLs" http://www.symantec.com/docs/TECH63250

You should have separate published host record for EV server in case of firewall those cannot perform web proxing.

Example:-

https://web.domain.com/owa (External IP 200.100.1.1 ) = https://CAS.domain.local/owa (internal IP 10.0.0.2)
https://EV.domain.com/enterprisevault (External IP 200.100.1.1 ) = http://EV.domain.local/enterprisevault (internal IP 10.0.0.3)


If citrix netscalers able to do web proxing then you don't need to publish EV server the configuration should be like below.

https://host.domain.com/owa (External IP 200.100.1.1 ) = https://CAS.domain.local/owa (internal IP 10.0.0.2)
https://host.domain.com/enterprisevault (external IP 200.100.1.1) = http://EV.domain.local/enterprisevault (internal IP 10.0.0.3)


OWA configuration.
-----------------------------
Open VAC \ Expand policy \ Exchange \ select appropriate desktop policy \  Right click select ‘properties’ \ Advance \ next to ‘List setting from’ select ‘OWA’ \ make change below settings.

owa connection = use proxy
OWA proxy URL =  https://EV.domain.com/enterprisevault          

If above does not work then put the lines below in web.config file of CAS server (Detail instruction = http://www.symantec.com/docs/TECH141519)

<add key="EnterpriseVault_UseExternalWebAppUrl" value="true"/>
<add key="EnterpriseVault_ExternalWebAppUrl" value="https://EV.domain.com/enterprisevault"/>

I hope above information helps you.
 

0 Kudos