Solved

Exchange RPC over HTTP (NOT SSL) not working w/ ISA 2004

Posted on 2007-04-04
5
396 Views
Last Modified: 2008-11-18
I have a single Exchange 2003 server, patched, and a ISA 2004 Server sitting behind a pix 501.

I currently have OWA published with HTTP (NOT SSL), and I want to open RPC over HTTP (NOT SSL).

I know it's not recommended to do HTTP, but this was a specific customer request (they only have one public IP address, and they already have a SSL web site published through ISA, so we can't SSL publish this unless we buy a wildcard cert, and they don't want to spend the money.)

I have made the registry hacks using the utility from Petri, I have configured the Exchange Server as a HTTP RPC backend server.

I have setup a mail publishing rule, and configured Outlook RPC over HTTP in the rule.  
I have setup a web publishing rule pointing to the RPC directory on the Exchange server (also the OWA server).

Now, when I try to connect from the outside, it cannot establish a connection.  When I look in Monitoring (Logging) in ISA, I can see the traffic, but it is bypassing my rule, and going to the enterprise default deny all rule.
'ISA server denied the specific URL.  anonymous'

It is hitting the server on port 80 as it should, (I have the client configured to not use SSL, but HTTP with NTLM authentication).  

Any idea why my isa server is not catching the traffic with the correct rule?
0
Comment
Question by:drakba
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 18852637
RPC over HTTPS does not work over http.

Thats it.

There are various unsupported work arounds, but they are unsupported and unreliable.

Simon.
0
 

Author Comment

by:drakba
ID: 18855294
Any chance of getting a couple examples of the unsupported workarounds?
0
 
LVL 104

Expert Comment

by:Sembee
ID: 18856371
Not from me.
I refuse to it.

Simon.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 19089491
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you have clients or friends from around the world, it becomes a challenge to arrange a meeting or effectively manage your time. This is where Outlook's capability to show 2 time zones in one calendar comes in handy.
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
how to add IIS SMTP to handle application/Scanner relays into office 365.

689 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question