abileel
asked on
OMA and Activesync logon / authentication Error
Hi,
I have and Exchange 2003 with SP2 installed on windows 2003 SP1. I have configured the server for RPC-HTTP, web access and also for mobile access. The RPC-HTTP and web access works fine. But I am having trouble to get the OMA and active sync to work.
Configuration Details
- The website is installed in a directory named “OWA Web Site” with SSL enabled, authentication methods for the website is “Integrated windows authentication” and “Digest authentication”
- I have a certificate server installed and this certificate is imported on this exchange server.
- Since I have single server, I have followed the MSKB article http://support.microsoft.com/default.aspx?kbid=817379
To start, if I internally log on to my server as https://servername/oma it comes up with the username and password dialog box. Once I enter the Domain\username and password it comes up with a message as “A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator” .I have triple checked for the access rights in exchange for mobile access and also this user has administrative rights.
Windows 2003 comes up with an event ID 1503 with the following details,
An unknown error occurred while processing the current request:
Message: The remote server returned an error: (400) Bad Request.
Source: Microsoft.Exchange.OMA.Exc
Stack trace:
at Microsoft.Exchange.OMA.Exc
at Microsoft.Exchange.OMA.Exc
at Microsoft.Exchange.OMA.Exc
Message: Exception has been thrown by the target of an invocation.
Source: mscorlib
Stack trace:
at System.Reflection.RuntimeC
at System.Reflection.RuntimeC
at System.RuntimeType.CreateI
at System.Activator.CreateIns
at Microsoft.Exchange.OMA.Use
Message: Exception of type Microsoft.Exchange.OMA.Dat
EventMessage:
UserMessage: A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator.
Source: Microsoft.Exchange.OMA.Use
Please help, Many Thanks in advance,
Abileel
I have and Exchange 2003 with SP2 installed on windows 2003 SP1. I have configured the server for RPC-HTTP, web access and also for mobile access. The RPC-HTTP and web access works fine. But I am having trouble to get the OMA and active sync to work.
Configuration Details
- The website is installed in a directory named “OWA Web Site” with SSL enabled, authentication methods for the website is “Integrated windows authentication” and “Digest authentication”
- I have a certificate server installed and this certificate is imported on this exchange server.
- Since I have single server, I have followed the MSKB article http://support.microsoft.com/default.aspx?kbid=817379
To start, if I internally log on to my server as https://servername/oma it comes up with the username and password dialog box. Once I enter the Domain\username and password it comes up with a message as “A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator” .I have triple checked for the access rights in exchange for mobile access and also this user has administrative rights.
Windows 2003 comes up with an event ID 1503 with the following details,
An unknown error occurred while processing the current request:
Message: The remote server returned an error: (400) Bad Request.
Source: Microsoft.Exchange.OMA.Exc
Stack trace:
at Microsoft.Exchange.OMA.Exc
at Microsoft.Exchange.OMA.Exc
at Microsoft.Exchange.OMA.Exc
Message: Exception has been thrown by the target of an invocation.
Source: mscorlib
Stack trace:
at System.Reflection.RuntimeC
at System.Reflection.RuntimeC
at System.RuntimeType.CreateI
at System.Activator.CreateIns
at Microsoft.Exchange.OMA.Use
Message: Exception of type Microsoft.Exchange.OMA.Dat
EventMessage:
UserMessage: A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator.
Source: Microsoft.Exchange.OMA.Use
Please help, Many Thanks in advance,
Abileel
Single server takes some tricks to get the server to work correctly.
Test OMA using Internet Explorer with show friendly http messages turned off. This will show you what the real error message is.
However the most common reasons for OMA/EAS failures are
- application pool
- authentication settings
- certificate problems.
If the certificate isn't trusted by the device, then it will fail. You either have to install the certificate or the root certificate in to device for it to work. Having the certificate on the server is not enough.
If the certificate is a purchased certificate, then you should get the root certificate for that purchased certificate from the certificate supplier and import that to the device.
Application pool and authentication settings I have listed on my web site here:
http://www.amset.info/exchange/mobile-eastrouble.asp
Simon.
Test OMA using Internet Explorer with show friendly http messages turned off. This will show you what the real error message is.
However the most common reasons for OMA/EAS failures are
- application pool
- authentication settings
- certificate problems.
If the certificate isn't trusted by the device, then it will fail. You either have to install the certificate or the root certificate in to device for it to work. Having the certificate on the server is not enough.
If the certificate is a purchased certificate, then you should get the root certificate for that purchased certificate from the certificate supplier and import that to the device.
Application pool and authentication settings I have listed on my web site here:
http://www.amset.info/exchange/mobile-eastrouble.asp
Simon.
ASKER
Thank you for your response
Monty,
I had tried this article long ago, but am not sure if this is the issue.
Simon,
Following your procedure, checked with the application pool and authentication settings, no luck. I have a certificate server and the certificate is imported into the root certificate of my computer and as the first step, I am trying to log onto the OMA with https://servername/OMA which again comes up with the same error message. ( the install cerficate screen does not come up when I am trying to access the oma site as the root certificate is installed )
Error Message:
https://servername/oma/(1rkydgqbj25voy3ogzm22gj3)/oma.aspx and error “A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator”
I have also tried using my smart phone 2 with the latest bios update. Performing an EAS the following error message comes up.
Error message “ Synchronization failed because of a server error. Try again. Error code : HTTP_503”
Hope you would have some other steps to try.
Many Thanks once again
Libi
Monty,
I had tried this article long ago, but am not sure if this is the issue.
Simon,
Following your procedure, checked with the application pool and authentication settings, no luck. I have a certificate server and the certificate is imported into the root certificate of my computer and as the first step, I am trying to log onto the OMA with https://servername/OMA which again comes up with the same error message. ( the install cerficate screen does not come up when I am trying to access the oma site as the root certificate is installed )
Error Message:
https://servername/oma/(1rkydgqbj25voy3ogzm22gj3)/oma.aspx and error “A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator”
I have also tried using my smart phone 2 with the latest bios update. Performing an EAS the following error message comes up.
Error message “ Synchronization failed because of a server error. Try again. Error code : HTTP_503”
Hope you would have some other steps to try.
Many Thanks once again
Libi
First to note is that OMA error messages are cached. You have to acknowledge the message otherwise every time that you cannot, you will find that it doesn't load - instead it throws up that error message.
When you get that message, if you clear everything after the first /oma (ie the random text), and then press the button to load the page, does OMA load correctly?
On the phones, unless the certificate is imported then you will not get access.
503 errors are server errors, so that is where you need to concentrate your efforts.
Is Forms Based Authentication enabled on this server?
Simon.
When you get that message, if you clear everything after the first /oma (ie the random text), and then press the button to load the page, does OMA load correctly?
On the phones, unless the certificate is imported then you will not get access.
503 errors are server errors, so that is where you need to concentrate your efforts.
Is Forms Based Authentication enabled on this server?
Simon.
ASKER
Simon,
As you have suggested I have cleared all cache and in IE once, I type https://servername/oma it comes up with the error, I cleared all text after the first oma (including the random text) and tried to load the page. The same error comes up with a different set of random number in the address bar.
The forms based authentication is enabled with compression set as High
Hope I we can fix this
Thanks,
Libi
FBA breaks OMA/EAS.
Have you attempted to circumvent that?
If so, which method?
Mine?: http://www.amset.info/exchange/mobile-omafba.asp
or Microsoft's?: http://support.microsoft.com/default.aspx?kbid=817379
Simon.
Have you attempted to circumvent that?
If so, which method?
Mine?: http://www.amset.info/exchange/mobile-omafba.asp
or Microsoft's?: http://support.microsoft.com/default.aspx?kbid=817379
Simon.
ASKER
Thanks again Simon,
I have tried the MSKB article http://support.microsoft.com/default.aspx?kbid=817379, step by step, which still does not solve my issue. I have also changed the windows to accept both, Kerberos and NTLM authentication. No go yet.
Thanks again
I have tried the MSKB article http://support.microsoft.com/default.aspx?kbid=817379, step by step, which still does not solve my issue. I have also changed the windows to accept both, Kerberos and NTLM authentication. No go yet.
Thanks again
You may have to set the OWA virtual folders, as with all the playing around there is no way of knowing what settings are where. http://support.microsoft.com/default.aspx?kbid=883380
Simon.
Simon.
ASKER
Simon,
This is a live server and the webaccess which works fine is being used by many users. Following the article step by step is going to completly reset the entire configuration.
Is there any other alternative that will not affect the web users? else I will have to replicate the entire issue on a test server and then try the above mentioned methord.
Please let me know if there can be any other alternative methord.
Many Thanks,
This is a live server and the webaccess which works fine is being used by many users. Following the article step by step is going to completly reset the entire configuration.
Is there any other alternative that will not affect the web users? else I will have to replicate the entire issue on a test server and then try the above mentioned methord.
Please let me know if there can be any other alternative methord.
Many Thanks,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ok then,
Please give me couple of days I will replicate the same on a test server and let you know the result
Thanks,
Please give me couple of days I will replicate the same on a test server and let you know the result
Thanks,
Here is a Microsoft article that should help --> http://support.microsoft.com/?kbid=898131
If you are still having problems please let me know what device your are trying to connect with.
- Monty