Solved

RPC/HTTPS stopped working

Posted on 2008-10-28
4
288 Views
Last Modified: 2011-10-19
hi,
i have an exchange 2003 cluster, win 2003 enterprise, with rpc server on a different dc.

i have a forest with two domains, two way transitive trusts, DFS, DNS...etc
123.local (root of forest) and abc.local (added later to forest)
exchange and rpc servers are on the abc.local domain

EVERYTHING WAS WORKING FINE.  trusts, dns, AD, RPC/HTTP, OWA, OMA....everything smooth.

all of a sudden 123.local accounts cannot connect ioutlook to exchange via rpc. abc.local is fine.

123.local and abc.local accounts both have access to exchange (via vpn or locally), OWA is fine for both domains, access to shares across domains is fine, everthing is fine except 123.local accounts cannot authenticate to the directory via rpc.

i.e., i can setup a 123.local account in outlook with rpc and it prompts for un and pw, if i use the 123.local account credentials, it simply asks me for them over and over again to no avail. from that same session  i can choose to use an abc.local account's credentials and it resolves the 123.local account name.
then open outlook with /rpcdiag and i am first prompted to authenticate to the directory. if i use 123.local account credentials, no go. if i use abc.local account (any abc.local account), it connects, and then asks for the mail credentials for which i have to enter the actual 123.local account name and password and everything connects.

of course it asks for credentials a few minutes later and again every few minutes. if i didn't have the /rpcdiag window open, there is no way i can tell which type of authenticatation it needs, directory or mail. and of course, with a working rpc/http connection, it should only ask me once.

again, all abc.local accounts can use rpc just fine.

i am stumped. please help!
directory-credentials.JPG
mail-credentials.JPG
final-connect.JPG
0
Comment
Question by:mehrdadalaei
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 4

Expert Comment

by:keamo
ID: 22828344
Is it possible your certificate expired?
0
 
LVL 4

Accepted Solution

by:
keamo earned 500 total points
ID: 22828369
If your RPC/HTTPS Exchange server is available from the internet, you can try this url.....

https://www.testexchangeconnectivity.com/

It gives some basic diagnostics.
0
 
LVL 1

Author Comment

by:mehrdadalaei
ID: 22828417
beautiful. with the test link we found at which point the system failed.

we had already reboot some servers and restarted services and tried everything except a force fail over to the passive cluster server and it worked. moved the cluster groups back and it still works.

i have no idea why.

thank you keamo for the quick reponse
0
 
LVL 1

Author Closing Comment

by:mehrdadalaei
ID: 31511042
keamo thank you. this was driving us crazy over here.
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Changing a few Outlook Options can help keep you organized!
Outlook for dependable use in a very small business   This article is about using the Outlook application (part of Microsoft Office) in a very small business, or for homeowners where dependability and reliability are critical requirements. This …
This video discusses moving either the default database or any database to a new volume.
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
Suggested Courses

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question