IT Tech
asked on
Exchange 2007 OWA Error Message??
I have 1 user that tries to log into OWA remotely and gets a error. It lets her log in and asks her to set her initial settings like time zone etc... but then when she clicks ok she gets this error below.. also keep in mind ALL the other users can log into webmail fine.. i have tried logging in from multiple PC's and all produce this same result:
Request
Url: https://remotemail.mycompanyname.com:443/owa/lang.owa
User host address: 73.44.133.110
Exception
Exception type: Microsoft.Exchange.Data.St orage.Stor agePermane ntExceptio n
Exception message: There was a problem accessing Active Directory.
Call stack
Microsoft.Exchange.Data.St orage.Exch angePrinci pal.Save()
Microsoft.Exchange.Clients .Owa.Core. RequestDis patcher.Di spatchLang uagePostLo cally(OwaC ontext owaContext, OwaIdentity logonIdentity, CultureInfo culture, String timeZoneKeyName, Boolean isOptimized)
Microsoft.Exchange.Clients .Owa.Core. RequestDis patcher.Di spatchLang uagePostRe quest(OwaC ontext owaContext)
Microsoft.Exchange.Clients .Owa.Core. RequestDis patcher.Pr epareReque stWithoutS ession(Owa Context owaContext, UserContextCookie userContextCookie)
Microsoft.Exchange.Clients .Owa.Core. RequestDis patcher.In ternalDisp atchReques t(OwaConte xt owaContext)
Microsoft.Exchange.Clients .Owa.Core. RequestDis patcher.Di spatchRequ est(OwaCon text owaContext)
System.Web.HttpApplication .SyncEvent ExecutionS tep.System .Web.HttpA pplication .IExecutio nStep.Exec ute()
System.Web.HttpApplication .ExecuteSt ep(IExecut ionStep step, Boolean& completedSynchronously)
Inner Exception
Exception type: Microsoft.Exchange.Data.Di rectory.AD OperationE xception
Exception message: Active Directory operation failed on mydomaincontroller.RCE.loc al. This error is not retriable. Additional information: Insufficient access rights to perform the operation. Active directory response: 00002098: SecErr: DSID-03150A45, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
Call stack
Microsoft.Exchange.Data.Di rectory.AD Session.An alyzeDirec toryError( PooledLdap Connection connection, DirectoryRequest request, DirectoryException de, Int32 totalRetries, Int32 retriesOnServer)
Microsoft.Exchange.Data.Di rectory.AD Session.Ex ecuteModif icationReq uest(ADRaw Entry entry, DirectoryRequest request, ADObjectId originalId)
Microsoft.Exchange.Data.Di rectory.AD Session.Sa ve(ADObjec t instanceToSave, IEnumerable`1 properties)
Microsoft.Exchange.Data.St orage.Exch angePrinci pal.Save()
Inner Exception
Exception type: System.DirectoryServices.P rotocols.D irectoryOp erationExc eption
Exception message: The user has insufficient access rights.
Call stack
System.DirectoryServices.P rotocols.L dapConnect ion.Constr uctRespons e(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut, Boolean exceptionOnTimeOut)
System.DirectoryServices.P rotocols.L dapConnect ion.SendRe quest(Dire ctoryReque st request, TimeSpan requestTimeout)
Microsoft.Exchange.Data.Di rectory.Po oledLdapCo nnection.S endRequest (Directory Request request, LdapOperation ldapOperation)
Microsoft.Exchange.Data.Di rectory.AD Session.Ex ecuteModif icationReq uest(ADRaw Entry entry, DirectoryRequest request, ADObjectId originalId)
Any ideas??
Request
Url: https://remotemail.mycompanyname.com:443/owa/lang.owa
User host address: 73.44.133.110
Exception
Exception type: Microsoft.Exchange.Data.St
Exception message: There was a problem accessing Active Directory.
Call stack
Microsoft.Exchange.Data.St
Microsoft.Exchange.Clients
Microsoft.Exchange.Clients
Microsoft.Exchange.Clients
Microsoft.Exchange.Clients
Microsoft.Exchange.Clients
System.Web.HttpApplication
System.Web.HttpApplication
Inner Exception
Exception type: Microsoft.Exchange.Data.Di
Exception message: Active Directory operation failed on mydomaincontroller.RCE.loc
Call stack
Microsoft.Exchange.Data.Di
Microsoft.Exchange.Data.Di
Microsoft.Exchange.Data.Di
Microsoft.Exchange.Data.St
Inner Exception
Exception type: System.DirectoryServices.P
Exception message: The user has insufficient access rights.
Call stack
System.DirectoryServices.P
System.DirectoryServices.P
Microsoft.Exchange.Data.Di
Microsoft.Exchange.Data.Di
Any ideas??
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This usually occurs when Allow inheritable permissions& is not checked on either an OU or user object in AD Users and Computers.
To confirm, open ADUC and click Advanced Features on the View menu. Open the properties of an affected user and go to the Security tab. Click the Advanced button and confirm if this setting is checked or not. If it is, then repeat the process for each OU container between the user object and the top-level container.
be sure that the top-level container includes the Exchange Servers group. This is required and must propagate down to the users for them to successfully access OWA.