We help IT Professionals succeed at work.

ISA 2004, OWA and SBS 2003 issue!

1,486 Views
Last Modified: 2012-06-27
This is my issue:

We have SBS 2003 R2 installed, ISA 2004. SBS box configured for OWA.

WHat happens is that we get intermittent connectivity to OWA. Trying to connect to OWA produces two to three errors:

Error code: 12206
Background: The page you requested could not be reached

Error Code: 500 Internal Server Error. The target principal name is incorrect. (-2146893022)


I refresh Internet explorer 4 to 5 times and then I connect to the OWA page and I am able to login no problem.

This is very strange and frustrating. We have tried several recommended changes:
Assigned a host header to match the https publishing rule is ISA, this did not help.
Put a host file on the sbs box itself to resolve the OWA path, this did not help.

this appears to be some sort of ISA loop issue but we cannot get it fixed. If anyone has had the same issue and knows the fix or can point us in the right direction it would be appreciated!!!
Comment
Watch Question

Jeffrey Kane - TechSoEasyPrincipal Consultant
CERTIFIED EXPERT
Most Valuable Expert 2016
Top Expert 2014

Commented:
This is generally caused by a naming problem within your SSL certificates.  Please see this KB article and it's linked troubleshooting site:  http://support.microsoft.com/kb/841664

Jeff
TechSoEasy
Jeffrey Kane - TechSoEasyPrincipal Consultant
CERTIFIED EXPERT
Most Valuable Expert 2016
Top Expert 2014

Commented:
FYI, it could be due to having stale certificates installed on the machine you are connecting with as well... you might want to see about deleting any are left over from testing and such.

Jeff
TechSoEasy

Author

Commented:
Hello Techsoeasy,

We looked into the certificate issue. the certificates name matches the server name.

We tried adding a local host file as well.

Issue is still present!  If you refresh a few times the OWA login page open fine.

Don't know where else to turn....
Jeffrey Kane - TechSoEasyPrincipal Consultant
CERTIFIED EXPERT
Most Valuable Expert 2016
Top Expert 2014

Commented:
Does this happen from ANY computer that connects to OWA?  Or just one?

Jeff
TechSoEasy
Principal Consultant
CERTIFIED EXPERT
Most Valuable Expert 2016
Top Expert 2014
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
From pskemp, https://www.experts-exchange.com/Security/Software_Firewalls/Q_21647783.html?eeSearch=true

"Fixed it, had to change the name of the server to publish to match the external DNS name. The ICW seems to set it to publishing.kbtech.local which matched the self generated certificate issued-to name, so when i used the new certiifcate which issued-name is the external DNS name it failed."
I had exactly same problem after tryin to put a .co.uk certificate on a sbs2003 which had a fqdn of .local
After struggling, I was able to use ceicw and follow through the setup again and bang it works.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.