Solved

External Access to Enterprise Vault (Outlook, Archive Explorer and Serach)

Posted on 2008-10-22
7
6,252 Views
Last Modified: 2013-12-08
Howdy All,

I'm having dramas with accessing Enterprise Vault when a user is offsite. Basically I think it's an IE7 issue with it not detecting the EV site as an Intranet Site. I have other company sites being detected as Intranet sites fine e.g. OWA.

The workaround I'm using is to take the EV sites out of the Intranet Zone which obviously prompts the user for their credentials, user authenticates and is able to access EV.

Everything works as it should when connected to the network just not externally.

I have done the following:
    * Referenced http://seer.entsupport.symantec.com/docs/295039.htm
    * Downgraded to IE6 from IE7
    * Disabled 'Automatically detect Intranet Sites' in IE7
    * Installed XP SP3 and the latest MS updates
    * Checked the WebApp.ini file

Environment is as follows:
    * Clustered Exchange 2007 MDB
    * Single Exchange 2007 CAS
    * EV 2007 SP3 (7.5-RG2138) upgraded from EV 6.0 SP5

Basically I'm at a loss as to 1 what's causing it and 2 how to resolve it. Any ideas?

Cheers,
Ric
0
Comment
Question by:Riqsta
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 1

Author Comment

by:Riqsta
ID: 22776491
Further to this I'm seeing this error in the IIS Log - Enterprise+Vault 401 2 2148074254
0
 
LVL 42

Expert Comment

by:paulsolov
ID: 22846838
Which client are you using, HTTP Only, or the full client?
0
 
LVL 1

Author Comment

by:Riqsta
ID: 22848696
For testing I'm using the HTTP client.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 42

Expert Comment

by:paulsolov
ID: 22861894
Have you added all the entries that EV likes to use such as:

http://servername
http://cname_of_servername
http://fqdn_of_servername
http://fqdn_of_cname
\\servername
\\cname
http://*.domain

Give that a shot first, if it doesn't work we'll look at IIS

From you description I am not sure what method of access the user is using for access
0
 
LVL 1

Author Comment

by:Riqsta
ID: 23409475
Been awhile since the last update. Almost a year in fact!

But I'm using ISA publish OWA, Outlook Anywhere and Enterprise Vault. OWA and EV shortcuts works perfectly as the http session is authenticated with ISA.

However I'm having an issue with accessing EV shortcuts using Outlook 2003 connecting with RPC/HTTPS through ISA. Basically I'm getting asked to authenticate when I open an archive shortcut or Archive Explorer from Outlook.

I've followed these procedures
http://seer.entsupport.symantec.com/docs/305637.htm
http://www.shudnow.net/2008/06/24/publishing-symantec-enterprise-vault-in-isa-2006/
and checked that all EV sites are in the Intranet Zone, checked IIS permissions on EV server and tried the Outlook HTTP-only/Full clients.

Any suggestions?
0
 
LVL 42

Assisted Solution

by:paulsolov
paulsolov earned 300 total points
ID: 23410042
Opening with Archive Explorer may be a diffrent issue all together, depending on the configuration it may be trying to open a separate stream and a separate IE window and unless you have Layer 3 VPN access it may not work.  

If you get a prompt for the first time while using RPC/HTTP and it stays up unless you close all IE and Outlook sessions this is normal behavior from what I've seen.  Most of the security personnel I've talked to want at least some type of authentication when connecting to an internal system.

As a baseline you may also try installing full client on a machine and giving it a go
0
 
LVL 1

Accepted Solution

by:
Riqsta earned 0 total points
ID: 23468194
I have finally resolved this issue, I had to set the IIS authentication by running this script.
cscript C:\Inetpub\AdminScripts\adsutil.vbs set w3svc/NTAuthenticationProviders "NTLM"
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read this checklist to learn more about the 15 things you should never include in an email signature.
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question