Advertisement

05.21.2008 at 12:59PM PDT, ID: 23422307
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
5.4

Exchange 2007 autodiscover

Asked by auk_experts in Exchange Email Server, Email Servers, Active Directory

I have configured autodiscover for exchange 2007 but its not working properly when I try to configure an account side.
I have some concern related to the SAN certificate as its issued to : CORP.EDU.KW not to MAIL.CORP.EDU.KW but as per Microsoft the Set-OutlookProvider command should fix that

Please find below how I configured autodiscover and find the attached file for the logs






Set-ClientAccessServer -Identity CORPCASHUB01 -AutoDiscoverServiceInternalUri https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml
Set-ClientAccessServer -Identity CORPCASHUB02 -AutoDiscoverServiceInternalUri https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml
============================================================================

ENABLE-OUTLOOKANYWHERE -SERVER CORPCASHUB01 -EXTERNALHOSTNAME "MAIL.CORP.EDU.KW" -EXTERNALAUTHENTICATIONMETHOD "BASIC" -SSLOFFLOADING:$FALSE
ENABLE-OUTLOOKANYWHERE -SERVER CORPCASHUB02 -EXTERNALHOSTNAME "MAIL.CORP.EDU.KW" -EXTERNALAUTHENTICATIONMETHOD "BASIC" -SSLOFFLOADING:$FALSE
============================================================================
SET-OABVIRTUALDIRECTORY -IDENTITY "CORPCASHUB01\OAB (DEFAULT WEB SITE)" -EXTERNALURL HTTPS://MAIL.CORP.EDU.KW/OAB -REQUIRESSL:$TRUE
SET-OABVIRTUALDIRECTORY -IDENTITY "CORPCASHUB02\OAB (DEFAULT WEB SITE)" -EXTERNALURL HTTPS://MAIL.CORP.EDU.KW/OAB -REQUIRESSL:$TRUE
============================================================================
SET-WEBSERVICESVIRTUALDIRECTORY -IDENTITY "CORPCASHUB01\EWS (DEFAULT WEB SITE)" -EXTERNALURL HTTPS://MAIL.CORP.EDU.KW/EWS/EXCHANGE.ASMX -BASICAUTHENTICATION:$TRUE
SET-WEBSERVICESVIRTUALDIRECTORY -IDENTITY CORPCASHUB02\EWS (DEFAULT WEB SITE)" -EXTERNALURL HTTPS://MAIL.CORP.EDU.KW/EWS/EXCHANGE.ASMX -BASICAUTHENTICATION:$TRUE
============================================================================
Set-OutlookProvider EXPR -Server 'mail.corp.edu.kw' -CertPrincipalName msstd:mail.corp.edu.kw
============================================================================






[PS] C:\Documents and Settings\administrator.CORP>Get-ExchangeCertificate

Thumbprint                                Services   Subject
----------                                --------   -------
C916754A527F37CF48577FF8144E35DCEB991958  I..WS      CN=corp.edu.kw, O=United Education Corp K.S.C.(Closed), C=KW
206CC9C63997F9400A758DF89F9F9676AB825713  .....      CN=corp.edu.kw, O=Corp, C=KW
707235FD5610DCCA900D428D0C2C96EE7B90854C  .....      CN=corp.edu.kw, O=Entrust Inc., C=US
A38743F09862CCC43CF1C4F498AB0ED917A229E3  .....      CN=corp.edu.kw, O=Entrust Inc., C=US
4AD96280E5A61612E47705EE9250BCE61BAEA44F  .P...      CN=dc1.corp.edu.kw
7248B01F7ED24462A79B4528FFC61E965DB7A450  ....S      CN=corpcashub01
============================================================================

[PS] C:\Documents and Settings\administrator.CORP>Get-ExchangeCertificate | fl

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule, System.
                     Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {corp.edu.kw, mail.corp.edu.kw, autodiscover.corp.edu.kw, corpcashub01.corp.edu.kw, corpcashub02.corp.edu.kw, autodis
                     cover, mail, mobile.corp.edu.kw, ssbapp.corp.edu.kw, mycorp.corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS
                     incorp. by ref. (limits liab.), O=Entrust.net, C=US
NotAfter           : 4/29/2010 1:02:35 AM
NotBefore          : 4/29/2008 12:33:18 AM
PublicKeySize      : 1024
RootCAType         : ThirdParty
SerialNumber       : 469D3FE8
Services           : IMAP, IIS, SMTP
Status             : Valid
Subject            : CN=corp.edu.kw, O=United Education Corp K.S.C.(Closed), C=KW
Thumbprint         : C916754A527F37CF48577FF8144E35DCEB991958

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : True
Issuer             : CN=corp.edu.kw, O=Corp, C=KW
NotAfter           : 4/22/2009 5:29:26 AM
NotBefore          : 4/21/2008 11:29:26 PM
PublicKeySize      : 1024
RootCAType         : Unknown
SerialNumber       : 377BA319DF49129F4EA13590A876A7E8
Services           : None
Status             : Invalid
Subject            : CN=corp.edu.kw, O=Corp, C=KW
Thumbprint         : 206CC9C63997F9400A758DF89F9F9676AB825713

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : True
Issuer             : CN=corp.edu.kw, O=Entrust Inc., C=US
NotAfter           : 4/20/2009 6:06:25 PM
NotBefore          : 4/20/2008 12:06:25 PM
PublicKeySize      : 2048
RootCAType         : Unknown
SerialNumber       : 5F1248E31D0C7CB04C1BA3729E3B33A1
Services           : None
Status             : Invalid
Subject            : CN=corp.edu.kw, O=Entrust Inc., C=US
Thumbprint         : 707235FD5610DCCA900D428D0C2C96EE7B90854C

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : True
Issuer             : CN=corp.edu.kw, O=Entrust Inc., C=US
NotAfter           : 4/20/2009 6:01:13 PM
NotBefore          : 4/20/2008 12:01:13 PM
PublicKeySize      : 2048
RootCAType         : Unknown
SerialNumber       : 68F4ECA36C89218244357BA0D00E6C1A
Services           : None
Status             : Invalid
Subject            : CN=corp.edu.kw, O=Entrust Inc., C=US
Thumbprint         : A38743F09862CCC43CF1C4F498AB0ED917A229E3

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {dc1.corp.edu.kw, corpcashub01.corp.edu.kw, corpcashub02.corp.edu.kw, corpcashub01, corpcashub02, mail.corp.edu.kw, ex
                     change1.corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=Corp, DC=corp, DC=edu, DC=kw
NotAfter           : 11/28/2009 2:16:45 PM
NotBefore          : 11/28/2007 2:06:45 PM
PublicKeySize      : 1024
RootCAType         : Enterprise
SerialNumber       : 57C32868000000000002
Services           : POP
Status             : Valid
Subject            : CN=dc1.corp.edu.kw
Thumbprint         : 4AD96280E5A61612E47705EE9250BCE61BAEA44F

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule, System.
                     Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {corpcashub01, corpcashub01.corp.edu.kw}
HasPrivateKey      : True
IsSelfSigned       : True
Issuer             : CN=corpcashub01
NotAfter           : 11/14/2008 3:55:17 PM
NotBefore          : 11/14/2007 3:55:17 PM
PublicKeySize      : 2048
RootCAType         : None
SerialNumber       : A28E59E180633FA44A7C7C0C8E030E32
Services           : SMTP
Status             : Valid
Subject            : CN=corpcashub01
Thumbprint         : 7248B01F7ED24462A79B4528FFC61E965DB7A450


============================================================================
--> the certificates are placed on Certificate (local computer)\Personal\Certificate
============================================================================















[PS] C:\>Test-OwaConnectivity -URL:https://corpcashub01.corp.edu.kw/owa -MailboxCredential:(get-credential corp\r.abughazaleh) | fl


AuthenticationMethod   : FBA
ClientAccessServer     :
Scenario               : Logon
ScenarioDescription    : Log on to Outlook Web Access and verify the response page.
PerformanceCounterName : Logon Latency
Result                 : Success
MailboxServer          :
StartTime              : 5/21/2008 10:33:13 AM
Latency                : 00:00:00.0312508
SecureAccess           : True
Error                  :
UserName               : r.abughazaleh
VirtualDirectoryName   :
Url                    : https://corpcashub01.corp.edu.kw/owa/
UrlType                : Unknown
EventType              : Success
Port                   : 0
ConnectionType         : Plaintext

============================================================================

[PS] C:\>Test-OwaConnectivity -URL:https://corpcashub02.corp.edu.kw/owa -MailboxCredential:(get-credential corp\r.abughazaleh) | fl


AuthenticationMethod   : FBA
ClientAccessServer     :
Scenario               : Logon
ScenarioDescription    : Log on to Outlook Web Access and verify the response page.
PerformanceCounterName : Logon Latency
Result                 : Success
MailboxServer          :
StartTime              : 5/21/2008 10:33:24 AM
Latency                : 00:00:00.0312508
SecureAccess           : True
Error                  :
UserName               : r.abughazaleh
VirtualDirectoryName   :
Url                    : https://corpcashub02.corp.edu.kw/owa/
UrlType                : Unknown
EventType              : Success
Port                   : 0
ConnectionType         : Plaintext


============================================================================
[PS] C:\>Test-OwaConnectivity -URL:https://mail.corp.edu.kw/owa -MailboxCredential:(get-credential corp\r.abughazaleh) | fl


AuthenticationMethod   : FBA
ClientAccessServer     :
Scenario               : Logon
ScenarioDescription    : Log on to Outlook Web Access and verify the response page.
PerformanceCounterName : Logon Latency
Result                 : Success
MailboxServer          :
StartTime              : 5/21/2008 10:33:39 AM
Latency                : 00:00:00.0312508
SecureAccess           : True
Error                  :
UserName               : r.abughazaleh
VirtualDirectoryName   :
Url                    : https://mail.corp.edu.kw/owa/
UrlType                : Unknown
EventType              : Success
Port                   : 0
ConnectionType         : Plaintext


============================================================================



[PS] C:\>Test-WebServicesConnectivity -MailboxCredential:(get-credential corp\r.abughazaleh)

CasServer  MailboxServer Scenario        Result  Latency(MS) Error
---------  ------------- --------        ------  ----------- -----
corpcashub0               GetFolder       Success       31.25
1
corpcashub0               SyncFolderItems Success       15.63
1
corpcashub0               CreateItem      Success       15.63
1
corpcashub0               SyncFolderItems Success       15.63
1
corpcashub0               DeleteItem      Success       15.63
1
corpcashub0               SyncFolderItems Success       15.63
1


[PS] C:\>Test-WebServicesConnectivity -MailboxCredential:(get-credential corp\r.abughazaleh) -UseAutodiscoverForClientAccessServer

CasServer  MailboxServer Scenario        Result  Latency(MS) Error
---------  ------------- --------        ------  ----------- -----
corpcashub0               Autodiscover Cl Success       15.63
1                        ient Access ser
                         ver
corp        STAFF         GetFolder       Failure             [System.Net.WebException
                                                             ]: Unable to connect to
                                                             the remote server Inner
                                                             error [System.Net.Socket
                                                             s.SocketException]: A co
                                                             nnection attempt failed
                                                             because the connected pa
                                                             rty did not properly res
                                                             pond after a period of t
                                                             ime, or established conn
                                                             ection failed because co
                                                             nnected host has failed
                                                             to respond

============================================================================
[PS] C:\>



Service Connection Point



>> Dn: CN=CORPCASHUB01,CN=Autodiscover,CN=Protocols,CN=CORPCASHUB01,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=CORP,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=corp,DC=edu,DC=kw
      4> objectClass: top; leaf; connectionPoint; serviceConnectionPoint;
      1> name: CORPCASHUB01;
      1> serviceBindingInformation: https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml;
>> Dn: CN=CORPCASHUB02,CN=Autodiscover,CN=Protocols,CN=CORPCASHUB02,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=CORP,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=corp,DC=edu,DC=kw
      4> objectClass: top; leaf; connectionPoint; serviceConnectionPoint;
      1> name: CORPCASHUB02;
      1> serviceBindingInformation: https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml;












============================================================================
[PS] C:\>Get-ClientAccessServer

Name
----
CORPCASHUB01
CORPCASHUB02

============================================================================
[PS] C:\>Get-ClientAccessServer | fl


Name                           : CORPCASHUB01
OutlookAnywhereEnabled         : True
AutoDiscoverServiceCN          : corpcashub01
AutoDiscoverServiceClassName   : ms-Exchange-AutoDiscover-Service
AutoDiscoverServiceInternalUri : https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml
AutoDiscoverServiceGuid        : 77378f46-2c66-4aa9-a6a6-3e7a48b19596
AutoDiscoverSiteScope          : {Default-First-Site-Name}
IsValid                        : True
OriginatingServer              : DC1.corp.edu.kw
ExchangeVersion                : 0.1 (8.0.535.0)
DistinguishedName              : CN=CORPCASHUB01,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Gro
                                 ups,CN=CORP,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=corp,DC=edu,DC=kw
Identity                       : CORPCASHUB01
Guid                           : 3abc4708-2570-4bee-92b5-9bf439fdf4ab
ObjectCategory                 : corp.edu.kw/Configuration/Schema/ms-Exch-Exchange-Server
ObjectClass                    : {top, server, msExchExchangeServer}
WhenChanged                    : 5/19/2008 5:23:50 PM
WhenCreated                    : 11/14/2007 3:50:58 PM

Name                           : CORPCASHUB02
OutlookAnywhereEnabled         : True
AutoDiscoverServiceCN          : corpcashub02
AutoDiscoverServiceClassName   : ms-Exchange-AutoDiscover-Service
AutoDiscoverServiceInternalUri : https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml
AutoDiscoverServiceGuid        : 77378f46-2c66-4aa9-a6a6-3e7a48b19596
AutoDiscoverSiteScope          : {Default-First-Site-Name}
IsValid                        : True
OriginatingServer              : DC1.corp.edu.kw
ExchangeVersion                : 0.1 (8.0.535.0)
DistinguishedName              : CN=CORPCASHUB02,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Gro
                                 ups,CN=CORP,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=corp,DC=edu,DC=kw
Identity                       : CORPCASHUB02
Guid                           : de2476d4-d739-482f-8898-8cd97a919a98
ObjectCategory                 : corp.edu.kw/Configuration/Schema/ms-Exch-Exchange-Server
ObjectClass                    : {top, server, msExchExchangeServer}
WhenChanged                    : 5/19/2008 5:15:20 PM
WhenCreated                    : 11/14/2007 4:57:38 PM

============================================================================


[PS] C:\>Test-OutlookWebServices -Identity:r.abughazaleh@corp.edu.kw |fl


Id      : 1003
Type    : Information
Message : About to test AutoDiscover with the e-mail address r.abughazaleh@corp.edu.kw.

Id      : 1006
Type    : Information
Message : The Autodiscover service was contacted at https://autodiscover.corp.edu.kw/autodiscover/autodiscover.xml.

Id      : 1013
Type    : Error
Message : When contacting https://corp.edu.kw/EWS/Exchange.asmx received the error Unable to connect to the remote server

Id      : 1013
Type    : Error
Message : When contacting https://corp.edu.kw/EWS/Exchange.asmx received the error A connection attempt failed because the connected
           party did not properly respond after a period of time, or established connection failed because connected host has faile
          d to respond

Id      : 1016
Type    : Error
Message : [EXCH]-Error when contacting the AS service at https://corp.edu.kw/EWS/Exchange.asmx. The elapsed time was 969 millisecond
          s.

Id      : 1015
Type    : Information
Message : [EXCH]-The OAB is not configured for this user.

Id      : 1013
Type    : Error
Message : When contacting https://corpcashub01.corp.edu.kw/UnifiedMessaging/Service.asmx received the error The remote server returne
          d an error: (404) Not Found.

Id      : 1014
Type    : Error
Message : [EXCH]-Error when contacting the UM service at https://corpcashub01.corp.edu.kw/UnifiedMessaging/Service.asmx. The elapsed
          time was 31 milliseconds.

Id      : 1013
Type    : Error
Message : When contacting https://mail.corp.edu.kw/EWS/EXCHANGE.ASMX received the error The request failed with HTTP status 401: Una
          uthorized.

Id      : 1016
Type    : Error
Message : [EXPR]-Error when contacting the AS service at https://mail.corp.edu.kw/EWS/EXCHANGE.ASMX. The elapsed time was 171 millis
          econds.

Id      : 1015
Type    : Information
Message : [EXPR]-The OAB is not configured for this user.

Id      : 1014
Type    : Success
Message : [EXPR]-Successfully contacted the UM service at https://mail.corp.edu.kw/UnifiedMessaging/Service.asmx. The elapsed time w
          as 109 milliseconds.

Id      : 1017
Type    : Success
Message : [EXPR]-Successfully contacted the RPC/HTTP service at https://mail.corp.edu.kw/Rpc. The elapsed time was 0 milliseconds.

Id      : 1006
Type    : Success
Message : The Autodiscover service was tested successfully.

Id      : 1021
Type    : Information
Message : The following web services generated errors.
              As,UM in EXCH
              As in EXPR
          Please use the prior output to diagnose and correct the errors.



[PS] C:\>







Start Free Trial
[+][-]05.21.2008 at 01:16PM PDT, ID: 21618666

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]05.21.2008 at 01:24PM PDT, ID: 21618736

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Exchange Email Server, Email Servers, Active Directory
Sign Up Now!
Solution Provided By: spyordie007
Participating Experts: 1
Solution Grade: C
 
 
[+][-]05.21.2008 at 11:35PM PDT, ID: 21621408

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.21.2008 at 11:57PM PDT, ID: 21621491

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.22.2008 at 11:30AM PDT, ID: 21626333

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]05.23.2008 at 04:38AM PDT, ID: 21631091

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.24.2008 at 11:09AM PDT, ID: 21639834

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]05.28.2008 at 11:31AM PDT, ID: 21662987

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628