Solved

Configuring RPC over HTTP on Exchange 2007 and Server 2008 x64

Posted on 2008-10-05
7
6,866 Views
Last Modified: 2009-10-07
Outlook will not configure (manually or using autodiscover) for the first time from the outside network. I have tried both Outlook 2007 and Outlook 2003 and after Outlook prompts me for the server credentials I receive:

"This action cannot be completed. The connection to Microsoft Exchange is unavailable. Outlook must be online or connected to complete this action"


I have installed and configured a new Windows 2008 x64 server with Exchange 2007 sp1, with a Verisign SAN certificate containing the netbios name, mail.mydomain.org, and autodiscover.mydomain.org.  All updates have been installed.  The server is behind an ASA5505.

OWA works great both internally and externally, I have configured the Exchange 2007 Autodiscovery settings so that autodiscover works when you are on the internal network.  It configures Outlook 2007automatically and then RPC over http(Outlook Anywhere) works even when you connect from the outside network.  Once configured it works great.  I can work around this but it is bugging me.  I have configured the VPN client on the ASA so I can connect via VPN configure outlook then disconnect and all is good
0
Comment
Question by:techlogicva
  • 5
7 Comments
 

Author Comment

by:techlogicva
ID: 22646966
I have gone through the MS Exchange blog and used their resources (very good by the way). I'm increasing the value points.  I'm including the Cert info in case it helps
[PS] C:\Windows\System32>Get-ExchangeCertificate 378399025F20752D64A79058017A78
2C1D20FF3 | fl
 
 
AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {mail.mydomain.org, ummexc01.mydomain.local, autodiscover.mydomain.org}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=VeriSign Class 3 Secure Server CA, OU=Terms of use at h
                     ttps://www.verisign.com/rpa (c)05, OU=VeriSign Trust Netwo
                     rk, O="VeriSign, Inc.", C=US
NotAfter           : 10/2/2009 7:59:59 PM
NotBefore          : 10/1/2008 8:00:00 PM
PublicKeySize      : 1024
RootCAType         : ThirdParty
SerialNumber       : 
Services           : IMAP, POP, IIS, SMTP
Status             : Valid
Subject            : CN=mail.mydomain.org, O=Not for profit, L=Virginia Beach, S=Virginia, C=US
Thumbprint         : F378399025F20752D64A79058017A782C1D20FF3

Open in new window

0
 

Author Comment

by:techlogicva
ID: 22654578
Is this question in the wrong forum?  I have not gotten one suggestion
0
 

Author Comment

by:techlogicva
ID: 22671411
Anyone?
0
 

Author Comment

by:techlogicva
ID: 22714246
I have been doing more troubleshooting and it looks like the Outlook client both 2003 and 2007 only connect to the Mail services and not the Directory services via HTTPS.  When the VPN client is connected all services connect but over TCP/IP

 Any Idieas?  I'm sure there are others running Exchange 2k7 and Server 2k8
0
 

Accepted Solution

by:
techlogicva earned 0 total points
ID: 22726783
I have solved the problem on my own. I utilized https://www.testexchangeconnectivity.com/ to verify connectivity.

I fixed the problem by editing the host file in c:\windows\system32\drivers\etc on the 2008 server hosting Exchange:

127.0.0.1           localhost
#::1                       localhost
10.0.x.x             ummexc01
10.0.x.x             ummexc01.ummnorva.local


Notice the hash mark in front of the IPV6 address for the local host and added two entries, the netbios name and the FQDN of the exchange server and its internal IP addresss.
No other changes were required
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Read this checklist to learn more about the 15 things you should never include in an email signature.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question