rpc over http not working for me

Posted on 2004-11-26
Last Modified: 2010-04-19
I have my server 2003 set up so that clients can get access to their mail and contacts from their outlook 2003, but only if I set up outlook while inside our office.  If I get on a machine outside the building, no matter how I set up the options, I cannot get outlook 2003 to connect to the server.  This means new users have to bring their laptops into the office for me to set them up with their email which is not ok with the boss.  

My certificate is the outside IP address used to connect to the server.
If someone inside the office tries the IP address, it points to the internal one so there is no need for split DNS.

When i searched for this question on  this site, the links people provided within the threads never worked so I guess they are outdated.  Please tell me if and what other information is needed to help me and I will get it.  Thanks
Question by:kankerfist

    Author Comment

    also, once I set them up in the office, they can check email both inside the office and outside the office without haveing to change anything.
    LVL 104

    Accepted Solution

    Where do I start? You need to get the basics working first.

    First - certificate is issued to an IP address? It MUST be on a name, which will require split DNS. Are you using live Internet IP addresses both internally and externally? That is a bad idea - from a security point of view you should be NATing the internal machines behind a firewall.
    Second - when you connect to the /rpc sub folder do you get a prompt over the certificate? If so, that will stop RPC/HTTPS from working correctly.

    For the best sucess, use a real certificate, not a home grown one. FreeSSL is the cheapest place.
    Get it working internally first, using the outlook /rpcdiag tool to ensure that it is connecting over HTTPS and not TCP/IP.
    Once you have it working internally then you can think about trying it from outside.

    Take a look at my website: I have extensive information on setting up RPC over HTTPS, and the section will be overhauled with even more information based on recent implementations. There are so many places where it can go wrong which you need to check.

    LVL 1

    Expert Comment

    I use home grown Certs and it work extreamly well I would agree thought that the cert needs to be a FQDM and you should use split DNS (no worries there bread and butter stuff) and make sure you are not using NTLM athuntication although you could use that before you do you certs

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
    On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now