LOAD BALANCER

Access Edge

sip.litwareinc.com

Perimeter network

Externally facing hardware load balancer with 3 VIPs

Web Conferencing Edge

chi-wce.litwareinc.com

Perimeter network

Externally facing hardware load balancer with 3 VIPs

A/V Edge

chi-ave.litwareinc.com

Perimeter network

Externally facing hardware load balancer with 3 VIPs

VIPS

Access Edge VIP (external)

(1) 64.65.66.1

100-megabit Full

VIP address on the external load balancer for array of Access Edge Services

Web Conferencing Edge VIP (external)

(1) 64.65.66.2

100-megabit Full

VIP address on the external load balancer for array of Web Conferencing Edge Services

A/V Edge VIP (external)

(1) 64.65.66.3

100-megabit Full

VIP address on the external load balancer for array of A/V Edge Services

PORTS

Firewall (external)

443 TCP

Inbound

Traffic from Internet → Access Edge Service, Web Conferencing Edge Service, and A/V Edge Service external load balancer VIPs (sip.litwareinc.com, chi-wce.litware.com, and chi-ave.litware.com, respectively)

5061 TCP

Bi-directional

Traffic to/from Internet ↔ Access Edge Service external load balancer VIP (sip.litwareinc.com)

3478 UDP

Inbound

Traffic from Internet → A/V Edge Service external load balancer VIP (chi-ave.litwareinc.com)

50,000-59,999 TCP and UDP

Bi-directional

Traffic to/from Internet ↔ A/V Edge Service external load balancer VIP (chi-ave.litwareinc.com); if you don’t want to open the entire range of ports from 50,000 to 59,999, allow 6 ports for each concurrent external user

Certificates

Certificate Name (CN)/Subject Name (SN)

N/A

N/A

N/A

DNS (Internal)

(A)

N/A

N/A

N/A

DNS (External)

(A)

sip.litwareinc.com

64.65.66.1

(A)

chi-wce.litwareinc.com

64.65.66.2

(A)

chi-ave.litware.com

64.65.66.3

Load Balancer

Access Edge and A/V Edge (shared)

chi-es.litwareinc.com

Perimeter network

Internally facing hardware load balancer with 1 VIP.

Note that the internal edge of the Web Conferencing Edge Services is not load balanced.

VIPs

Access Edge and A/V Edge VIP (internal)

(1) 192.168.10.40

100-megabit Full

Virtual IP address on the internal load balancer for an array of Edge Servers (shared by all Edge Services).

Ports

Firewall (internal)

8057 TCP

Outbound

Traffic from Data Conferencing Servers of the EE pool → Web Conferencing Edge Service Node1 (chi-es-01.litwareinc.com) and Node2 (chi-es-02.litware-inc.com).

5061 TCP

Bi-directional

Traffic to/from Edge Server internal load balancer VIP (chi-es.litwareinc.com) ↔ Director load balancer VIP (chi-dir.litwareinc.com) and to Web Conferencing Servers and A/V Conferencing Servers in EE pool.

443 TCP

Outbound

Traffic from Internal Network (all) →A/V Edge Service internal load balancer VIP (chi-es.litwareinc.com).

3478 UDP

Outbound

Traffic from internal network (all) →A/V Edge Service internal load balancer VIP (chi-es.litwareinc.com).

5062 TCP

Outbound

Traffic from internal network (all) →A/V Edge Service internal load balancer VIP (chi-es.litwareinc.com).

Note that the internal firewall rule must enable traffic from any computer on the internal network that will be involved in A/V calls or A/V conferencing to reach the A/V Edge Service internal load balancer VIP over all three ports.

Certificates

CN/SN

N/A

N/A

N/A

DNS (Internal)

(A)

chi-es.litwareinc.com

192.168.10.40

N/A

DNS (External)

(A)

N/A

N/A

N/A

Server

Edge Server (Access Edge Service, Web Conferencing Edge Service, A/V Edge Service)

Node1

CHI-ES-01

Perimeter network

Workgroup servers in the perimeter network. Each node is running Access Edge Service, Web Conferencing Edge Service, and A/V Edge Service.

Node2

CHI-ES-02

Perimeter network

NICs

Node1 (internal-facing)

(1) 192.168.10.41

100-megabit Full

Shared by all Edge Services

Node2 (internal-facing)

(1) 192.168.10.42

100-megabit Full

Shared by all Edge Services

Node1 (external-facing)

(1/3) 64.65.66.11

100-megabit Full

Used by Access Edge Service. Can be behind a Network Address Translation (NAT) or port-forwarding firewall.

(2/3) 64.65.66.21

100-megabit Full

Used by Web Conferencing Edge Service. Can be behind a NAT or port-forwarding firewall.

(3/3) 64.65.66.31

100-megabit Full

Used by A/V Edge Service. Must be a publicly addressable IP address. Can be behind a port-forwarding firewall but not translated with NAT.

Note that the default gateway should be on the external NIC in each node and point to the Internet, or you might not get audio on remote Microsoft Office Communicator 2007 R2/Office Communicator Phone Edition calls.

Node2 (external-facing)

(1/3) 64.65.66.12

100-megabit Full

Used by Access Edge Service. Can be behind a NAT or port-forwarding firewall.

(2/3) 64.65.66.22

100-megabit Full

Used by Web Conferencing Edge Service. Can be behind a NAT or port-forwarding firewall.

(3/3) 64.65.66.32

100-megabit Full

Used by A/V Edge Service. Must be a publicly addressable IP address. Can be behind a port-forwarding firewall but not translated with NAT.

Ports

Firewall (internal)

N/A

N/A

All Edge Services on the Edge Server array will use ports opened for those services on the internal load balancer VIP (sip-es.litwareinc.com).

Firewall (external)

N/A

N/A

All Edge Services on the Edge Server array will use ports opened for those services on the external load balancer VIPs (sip.litwareinc.com, chi-wce.litwareinc.com, chi-ave.litwareinc.com).

Certificates (internal)

Internal certificate shared by all Edge Services (for both nodes)

CN/SN=chi-es.litwareinc.com

Enhanced Key Usage (EKU): Server/Client

Used for client/server Transport Layer Security (TLS)/Mutual Transport Layer Security (MTLS).

Certificates (external)

External certificate assigned to Access Edge Service (for both nodes)

CN/SN=sip.litware-inc.com

EKU: Server/ Client

First entry in Subject Alternative Name (SAN) must match the CN/SN of certificate.

SAN=sip.litwareinc.com; sip.additionalSIPDomainName.com

If federation is enabled, the certificate must be issued by a public CA.

Same physical certificate must be present on both nodes.

The SAN must contain additional entries for each SIP domain that federated partners and/or remote users will access.

External certificate assigned to Web Conferencing Edge Service (for both nodes)

CN/SN=chi-wce.litwareinc.com

EKU: Server/ Client

The same certificate can be applied to both nodes.

If federation is enabled, the certificate must be issued by a public CA.

Authentication certificate assigned to the A/V Edge Service (for both nodes)

CN/SN=chi-ave.litwareinc.com

EKU: Server

A certificate is used to create Media Relay Access Server (MRAS) access tokens. They are not exposed to the client.

The same physical certificate must be present on both nodes.

DNS (Internal)

(A)

chi-es-01.litwareinc.com

192.168.10.41

This is the internal FQDN of the Edge Server (Node1).

(A)

chi-es-02.litwareinc.com

192.168.10.42

This is the internal FQDN of the Edge Server (Node2).

DNS (External)

(A)

N/A

N/A

External NICs in Node1 and Node2 are externally accessible only via the respective load balancer VIPs; use internal IP addresses for managing each node.

(SRV)

_sip._tls.litwareinc.com

_sipfederationtls._tcp.litwareinc.com

_tls for port 443

_tcp for port 5061

Server

HTTP reverse proxy server

CHI-RP-01

Perimeter network

Workgroup server running Internet Security and Acceleration (ISA) Standard Edition in the perimeter network.

NICs

Internal

(1) 192.168.10.60

100-megabit Full

External

(1) 64.65.66.30

100-megabit Full

The HTTP Reverse Proxy Server role can be behind a NAT or port-forwarding firewall.

Ports

Firewall (internal)

443 TCP

Inbound

Traffic from HTTP reverse proxy server (chi-rp-01.litwareinc.com) → Office Communications Server 2007 R2 Enterprise Edition load balancer VIP (chi-pool.litwareinc.com).

Firewall (external)

443 TCP

Inbound

Traffic from Internet HTTP → reverse proxy server (chi-rp-01.litwareinc.com).

Certificates

Certificate assigned on reverse proxy

CN/SN=chi-rp-01.litwareinc.com

EKU: Server

Exportable Machine certificate: used for client/server TLS/MTLS.

DNS (Internal)

(A)

chi-rp-01.litwareinc.com

192.168.10.60

This is the internal FQDN of the HTTP reverse proxy server.

DNS (External)

(A)

chi-rp-01.litwareinc.com

64.65.66.30

This is the external FQDN of the HTTP reverse proxy server.

Load Balancer

Office Communications Server R2 Enterprise Edition pool

chi-dir.litwareinc.com

Internal network

Hardware load balancer with 1 VIP.

VIPs

EE Director pool VIP (external)

(1) 10.18.10.32

100-megabit Full

VIP Address on the load balancer for EE Director pool.

Ports

Firewall (internal)

5061 TCP

Bi-directional

Traffic to/from Access Edge Server internal load balancer VIP (chi-es.litwareinc.com) ↔ EE Director pool load balancer VIP (chi-dir.litwareinc.com).

Firewall (external)

N/A

N/A

N/A

Certificates

N/A

N/A

N/A

N/A

DNS (Internal)

(A)

N/A

N/A

N/A

DNS (External)

(A)

chi-dir.litwareinc.com

10.18.10.32

Note that this DNS entry must be made both in the internal corp network as well as the perimeter network so that it is resolvable by internal EE servers as well as the Edge Servers.

Server

EE Director Pool Front-End Server

Node1

Node2

CHI-DIR-01

CHI-DIR-02

Internal network

Internal network

Domain members on the internal network. Each node is running a copy of Office Communications Server 2007 R2 Enterprise Edition.

NICs

Node1

(1) 10.18.10.30

100-megabit Full

Node2

(1) 10.18.10.31

100-megabit Full

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

Certificate assigned to both front-end nodes

CN/SN=chi-dir.litwareinc.com

EKU: Server

DNS (Internal)

(A)

chi-dir-01.litwareinc.com

10.18.10.30

This is the internal FQDN of each front-end server in the EE Director pool.

(A)

chi-dir-02.litwareinc.com

10.18.10.31

DNS (External)

(A)

N/A

N/A

N/A

Load Balancer

Office Communications Server 2007 R2 Enterprise Edition pool

chi-pool.litwareinc.com

Internal network

Hardware load balancer with 1 VIP; accessed by way of the Director.

VIPs

EE pool VIP (internal)

(1) 10.18.10.1

100-megabit Full

Virtual IP address on the load balancer for the Office Communications Server 2007 R2 Enterprise Edition front-end servers.

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

CN/SN

N/A

N/A

N/A

DNS (Internal)

(A)

chi-pool.litwareinc.com

10.18.10.1

DNS (External)

(A)

N/A

N/A

N/A

Server

EE Front-End Server

Node1

chi-fe-01.litwareinc.com

Internal network

Domain member Office Communications Server 2007 R2 Enterprise Edition expanded pool.

Node2

chi-fe-02.litwareinc.com

Internal network

Node3

chi-fe-03.litwareinc.com

Internal network

Each front-end server in the pool contains all the server roles that belong to an EE pool (for example, Front End role, Web Conferencing Server role, A/V Conferencing Server role, Web Component Server role) and is configured exactly the same way. The pool name is CHI-POOL.

Node4

chi-fe-04.litwareinc.com

Internal network

Node5

chi-fe-05.litwareinc.com

Internal network

Node6

chi-fe-06.litwareinc.com

Internal network

NICs

Node1 (internal)

(1) 10.18.10.2

100Mb Full

Node2 (internal)

(1) 10.18.10.3

100Mb Full

Node3 (internal)

(1) 10.18.10.4

100Mb Full

Node4 (internal)

(1) 10.18.10.5

100Mb Full

Node5 (internal)

(1) 10.18.10.6

100Mb Full

Node6 (internal)

(1) 10.18.10.7

100Mb Full

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

Certificate assigned to every front-end node

CN/SN = chi-pool.litwareinc.com

EKU: Server

Used for client/server TLS/MTLS.

SAN = chi-pool.litwareinc.com

sip.litwareinc.com

sip.additionalSIPDomainName.com

The first entry in the SAN must match the CN/SN of the certificate.

The SAN must contain additional entries for each SIP domain that federated partners and/or remote users will access.

DNS (Internal)

(A)

chi-fe-01.litwareinc.com

10.18.10.2

This is the internal FQDN of each EE front-end server in the pool.

(A)

chi-fe-02.litwareinc.com

10.18.10.3

(A)

chi-fe-03.litwareinc.com

10.18.10.4

(A)

chi-fe-04.litwareinc.com

10.18.10.5

(A)

chi-fe-05.litwareinc.com

10.18.10.6

(A)

chi-fe-06.litwareinc.com

10.18.10.7

(SRV)

_sipinternal._tcp.litwareinc.com

_tcp for port 5061

_sipinternaltls._tcp.litwareinc.com

_tcp for port 5061

DNS (External)

(A)

N/A

The Office Communications Server 2007 R2 EE pool is not addressable externally accept via the Access Edge Service/Director pool.

Server

SQL Server cluster

chi-be.litwareinc.com

Internal network

This is the virtual name for the SQL Server cluster.

Node1

CHI-BE-01

Internal network

Domain member SQL Server (EE pool back end).

Node2

CHI-BE-02

Internal network

Domain member SQL Server (EE pool back end).

NICs

Node1 (internal)

(1) 10.18.10.11

100-megabit Full

Node2 (internal)

(1) 10.18.10.12

100-megabit Full

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

N/A

N/A

N/A

N/A

DNS (Internal)

(A)

chi-be.litwareinc.com

10.18.10.10

This is the internal FQDN of the SQL Server cluster.

(A)

chi-be-01.litwareinc.com

10.18.10.11

(A)

chi-be-02.litwareinc.com

10.18.10.12

DNS (External)

(A)

N/A

The SQL Server is not addressable externally.

Server

Archiving

CHI-ARC-01

Internal net-work

Domain member.

NiCs

Internal

(1) 10.18.10.20

100-megabit Full

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

N/A

N/A

N/A

The Archiving Server doesn’t require a certificate

DNS (Internal)

(A)

chi-arc-01.litwareinc.com

10.18.10.20

DNS (External)

(A)

N/A

N/A

N/A

Server

SQL

CHI-ARCBE-01

Internal network

Domain member SQL Server.

NICs

Internal

(1) 10.18.10.21

100-megabit Full

Ports

Firewall (internal)

N/A

N/A

N/A

Certificates

N/A

N/A

N/A

N/A

DNS (Internal)

(A)

chi-arcbe.litwareinc.com

10.18.10.21

This is the internal FQDN of the SQL Server.

DNS (External)

(A)

N/A

The SQL Server is not addressable externally.

Server

Mediation

chi-med-01.litwareinc.com

Internal network

Domain member running the Office Communications Server 2007 R2 Mediation Server role.

NICs

Internal

(1) 10.18.10.50

100-megabit Full

External

(1) 10.18.10.51

100-megabit Full

Carries unsecured PSTN traffic to/from the IP/PSTN gateway. Enables 64 Kbps per concurrent PSTN call.

Ports

Firewall (internal)

N/A

N/A

N/A

Firewall (gateway network)

N/A

N/A

N/A

Certificates

Certificate assigned to the Mediation Server

CN/SN =chi-med-01.litwareinc.com

EKU: Server

Used for Server MTLS/ Secure Real-Time Protocol (SRTP).

DNS (Internal)

(A)

chi-med-01.litwareinc.com

10.18.10.50

This is the internal FQDN of the Mediation Server. (Ping resolves to this IP address.)

(A)

chi-med-01.litwareinc.com

10.18.10.51

This is the IP address used for the Mediation Server ↔ SIP/PSTN gateway communication.

Considered an external interface by the Mediation Server.

DNS (External)

(A)

N/A

Edge Server—Access Edge Service (load balancer)

PAR-ES

par-es-ext.litwareinc.com

VIP =(64.64.66.1)

par-es.litwareinc.com

VIP = (192.167.10.40)

443 TCP (inbound) (Internet → Access Edge Service for remote access) 5061 TCP (both) (Internet ↔ Access Edge Service for federation)

5061 TCP (both) (Office Communications Server 2007 R2 pool ↔ Access Edge Service)

Edge Server—Web Conferencing Edge Service

PAR-ES

par-wce.litwareinc.com VIP = (64.64.66.2)

N/A

443 TCP (inbound) (Internet → Web Conferencing Edge Server)

8057 TCP (outbound) (Office Communications Server 2007 R2 pool → Web Conferencing Edge Service)

Edge Server—A/V Edge Service (load balancer)

PAR-ES

par-ave.litwareinc.com

VIP = (64.64.66.3)

par-es.litwareinc.com

VIP = (192.167.10.40)

443 TCP (inbound) (Internet → A/V Edge Service) 3478 UDP (inbound)

(Internet → A/V Edge Service) 50,000-59,999 TCP & UDP (both) (Internet ↔ A/V Edge Service)

443 TCP (outbound) (Internal Net [all IPs] → A/V Edge Service) 3478 UDP (outbound)

(internal Net [all IPs] → A/V Edge) 5062 TCP (outbound) (internal Net [all IPs] → A/V Edge Service)

NODES (EDGE SERVER)

Node1

PAR-ES-01

N/A

(64.64.66.11, 64.64.66.21, 64.64.66.31)

par-es-01.litwareinc.com (192.167.10.41)

N/A

N/A

Node2

PAR-ES-02

N/A

(64.64.66.12, 64.64.66.22, 64.64.66.32)

par-es-02.litwareinc.com (192.167.10.42)

N/A

N/A

HTTP reverse proxy server

PAR-RP-01

par-rp-01.litwareinc.com (64.64.66.30)

par-rp-01.litwareinc.com (192.167.10.60)

443 TCP (inbound) Internet → HTTP reverse proxy server

443 TCP (inbound) HTTP reverse proxy server → Office Communications Server 2007 R2 pool

EE pool (load balancer)

PAR-POOL

N/A

chipool.litwareinc.com VIP = (10.17.10.1)

N/A

N/A

EE FRONT ENDS

Node1

PAR-FE-01

N/A

par-fe-01.litwareinc.com (10.17.10.2)

N/A

N/A

Node2

PAR-FE-02

N/A

par-fe-02.litwareinc.com (10.17.10.3)

N/A

N/A

Node3

PAR-FE-03

N/A

par-fe-03.litwareinc.com (10.17.10.4)

N/A

N/A

Node4

PAR-FE-04

N/A

par-fe-04.litwareinc.com (10.17.10.5)

N/A

N/A

Back-end SQL Server (cluster name)

SQL-BE

N/A

par-be.litwareinc.com VIP = (10.17.10.10)

N/A

N/A

BACK-END SQL NODES

Node 1

PAR-BE-01

N/A

par-be-01.litwareinc.com (10.17.10.11)

N/A

N/A

Node 2

PAR-BE-02

N/A

par-be-02.litwareinc.com (10.17.10.12)

N/A

N/A

Archiving Server

PAR-ARC-01

N/A

par-arc-01.litwareinc.com (10.17.10.20)

N/A

N/A

Archiving Server back-end SQL Server

PAR-ARCBE-01

N/A

par-arcbe-01.litwareinc.com (10.17.10.21)

N/A

N/A

Monitoring Server

PAR-MON-01

N/A

par-mon-01.litwareinc.com (10.17.10.22)

N/A

N/A

Monitoring Server back-end SQL Server

PAR-MONBE-01

N/A

par-monbe-01.litwareinc.com (10.17.10.23)

N/A

N/A

Edge Server—Access Edge Service

SPO-ES-01

spo-es-ext.litwareinc.com (64.62.66.11)

spo-es.litwareinc.com (192.165.10.41)

443 TCP (inbound) (Internet → Access Edge Service for remote access) 5061 TCP (both)

(Internet ↔ Access Edge Service for federation)

5061 TCP (both) (Office Communications Server 2007 R2 pool ↔ Access Edge Service)

Edge Server—Web Conferencing Edge Service

SPO-ES-01

spo-wce.litwareinc.com (64.62.66.21)

spo-es.litwareinc.com (192.165.10.41)

443 TCP (inbound) (Internet → Web Conferencing Edge Server)

8057 TCP (outbound) (Office Communications Server 2007 R2 pool → Web Conferencing Edge Service)

Edge Server—A/V Edge Service (load balancer)

SPO-ES-01

spo-ave.litwareinc.com (64.62.66.31)

spo-es.litwareinc.com (192.168.10.41)

443 TCP (inbound) (Internet → A/V Edge Service) 3478 UDP (inbound)

(Internet → A/V Edge Service) 50,000-59,999 TCP & UDP (both) (Internet ↔ A/V Edge Service)

443 TCP (outbound) (Internal Net [all IPs] → A/V Edge Service) 3478 UDP (outbound)

(Internal Net [all IPs] → A/V Edge) 5062 TCP (outbound) (Internal Net [all IPs] → A/V Edge Service)

HTTP reverse proxy server

SPO-RP-01

spo-rp-01.litwareinc.com (64.62.66.30)

spo-rp-01.litwareinc.com (192.165.10.60)

443 TCP (inbound) Internet → HTTP reverse proxy server

443 TCP (inbound)

HTTP reverse proxy server → Office Communications Server 2007 R2 pool

SE Server (with archiving and monitoring servers collocated)

SPO-SE-01

N/A

spo-se-01.litwareinc.com (10.15.10.1)

N/A

N/A

Archiving Server and Monitoring Server back-end SQL Server

SPO-ARC-MONBE-01

N/A

spo-arcmonbe-01.litwareinc.com (10.15.10.21)

N/A

N/A

1

PAR-BE

Install the SQL cluster.

2

PAR-BE-01

Install the SQL back end.

3

PAR-BE-02

Install the SQL back end.

4

Create the Enterprise Edition pool by following the "Create Pool" step from the Office Communications Server 2007 R2 setup program (point to PAR-BE when prompted for a SQL server).

5

PAR-POOL

Install and configure the pool load balancer.

6

PAR-FE-01

Install the first front-end server. Install and assign the certificate on the server.

7

PAR-FE-02

Install the second front-end server. Install and assign the certificate on the server.

8

PAR-FE-03

Install the third front-end server. Install and assign the certificate on the server.

9

PAR-FE-04

Install the fourth front-end server. Install and assign the certificate on the server.

10

Test basic IM/presence functionality: Create two test user accounts and home them on the new pool. Test Office Communicator 2007 R2 client IM access first with one or more front-end servers offline and then with all of them online. Test the client with both manual and automatic configuration options. Sign in using two clients.

11

Test Web Access: Test the Office Communicator 2007 R2 client Group Expansion and Global Address List download first with one IIS (installed on the Front End Servers) offline and then with both online.

12

Test Web Conferencing: Install two Live Meeting 2007 R2 clients to test Web Conferencing first with one or more Web Conferencing Services (installed on the front-end box) offline and then with all of them online.

13

Test A/V: Test Live Meeting 2007 R2 and Office Communicator 2007 R2 A/V Conferencing first with one or more A/V Conferencing Services (installed on the front-end box) offline and then with all of them online.

14

PAR-ARCBE-01

Install the SQL Server for the Archiving back end.

15

PAR-ARC-01

Install the Archiving Server (point to PAR-ARCBE-01 when prompted to specify a SQL Server).

16

Test IM Archiving: Use Office Communicator 2007 R2 clients to send test messages and ensure the messages are being archived in the archiving database on the PAR-ARCBE-01 server.

17

PAR-MONBE-01

Install the SQL Server for the Monitoring back end.

18

PAR-MON-01

Install the Monitoring Server (point to PAR-MONBE-01 when prompted to specify a SQL Server).

19

Test Call Detail Record: Use Office Communicator 2007 R2 Clients to send instant messages and Live Meeting clients to do A/V and Web Conferencing. Ensure these sessions are being recorded in the monitoring database on PAR-MONBE-01 server.

21

PAR-ES

Install internal and external load balancers Edge Server.

22

PAR-ES-01

Install the first Edge Server. Install and assign the appropriate certificates. Configure the Edge Server to point to the Director pool (in Chicago).

23

PAR-ES-02

Install the second Edge Server. Install and assign the appropriate certificates. Configure the Edge Server to point to the Director pool (in Chicago).

24

Test Office Communicator 2007 R2 client IM external access first with one or more Access Edge Services offline and then with all of them online.

25

Test Live Meeting 2007 R2 client external Web Conferencing Edge Service access first with one or more Web Conferencing Edge Services offline and then with all of them online.

26

Test Office Communicator 2007 R2 client A/V Edge Service external access first with one or more A/V Edge Services offline and then with all of them online.

27

Test Live Meeting 2007 R2 client external A/V Edge Service access first with one or more A/V Edge Services offline and then with all of them online.

1

SPO-SE-01

Install the Standard Edition Server. Install and set up certificates.

2

SPO-ARCMONBE-01

Install the SQL Server that will be shared by the Archiving and Monitoring back end.

3

SPO-SE-01

Install the Archiving and Monitoring Servers on the Standard Edition Server machine.

4

Test basic IM/presence functionality: Create two test user accounts and home them on the Standard Edition Server. Test Office Communicator 2007 R2 client IM access. Test the client with both manual and automatic configuration options. Sign in using two clients.

5

Test Web Access: Test the Office Communicator 2007 R2 client Group Expansion and Global Address List download.

6

Test Web Conferencing: Install two Live Meeting 2007 R2 clients to test Web Conferencing.

7

Test A/V: Test Live Meeting 2007 R2 and Office Communicator 2007 R2 A/V Conferencing.

8

SPO-ES-01

Install the Edge Server. Install and assign the appropriate certificates. Configure the Edge Server to point to the Director pool (in Chicago).

9

Test Office Communicator 2007 R2 client IM external access.

10

Test Live Meeting 2007 R2 client external Web Conferencing Edge Service access.

11

Test Office Communicator 2007 R2 client A/V Edge Service external access.

12

Test Live Meeting 2007 R2 client external A/V Edge Service access.