You can force everything to SSL, but a great deal of functionality in Exchange is dependent on IIS.
ActiveSync, OWA, Exchange Web Service, Outlook Anywhere (RPC / HTTPs), WebDAV, OAB downloads, free/busy web service, etc.etc. If IIS gets hosed, you're screwed anyway. :) Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Derrenbacker, L. Jonathan [mailto:[email protected]] Sent: Monday, June 07, 2010 2:15 PM To: NT System Admin Issues Subject: RE: Exchange Active Sync w/o a Front-End exchange server? Maybe it's not a bad idea, I don't know... Partly I guess I've never trusted IIS. IIS on an exchange server exposed to the internet just doesn't seem right for some reason... The main issue I guess would be someone executing a new IIS exploit would have access to the entire internal network instead of just the DMZ. On Mon, Jun 7, 2010 at 1:52 PM, Michael B. Smith <[email protected]<mailto:[email protected]>> wrote: > Lots and lots of people are. Why do you think it is a bad idea? > > > > Regards, > > > > Michael B. Smith > > Consultant and Exchange MVP > > http://TheEssentialExchange.com > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
