mishalk
asked on
outlook anywhere & removing /owa from exchange 2007
i am configuring outlook anywhere. currently my external web address for the owa is,
https://webmail.uob.edu.bh/owa. i need to remove /owa and i need to configure my outlook anywhere, i tried it is not working .
what could be the problem. My owa is working without any issue. please note that i have two cas servers with NLB
https://webmail.uob.edu.bh/owa. i need to remove /owa and i need to configure my outlook anywhere, i tried it is not working .
what could be the problem. My owa is working without any issue. please note that i have two cas servers with NLB
What is the OS version for both the CAS servers? Do we have the RPC proxy component installed on those servers? Have we enabled Outlook Anywhere from Exchange Management Console for both the NLB servers? I also noticed that the certificate installed in IIS is an Internal Certificate and also does not have the above mentioned URL in it. The Above URL is https://webmail.uob.edu.bh/owa but the certificate reflects as https://webmail.ads.uob, you will have to install a certificate with the exact URL, if there is a certificate error than you will not be able to connect Outlook Anywhere.
Try running the Outlook RPC over HTTP test from here
https://www.testexchangeconnectivity.com
What do you mean when you say "i need to remove /owa and i need to configure my outlook anywhere", do you mean you do not want to have users access OWA?
Try running the Outlook RPC over HTTP test from here
https://www.testexchangeconnectivity.com
What do you mean when you say "i need to remove /owa and i need to configure my outlook anywhere", do you mean you do not want to have users access OWA?
create a blank page in the root directory, that has a meta-redirect to the "/owa" directory. users can just type in the root address, and they'll be redirected.
ASKER
dear geowrian:
nothing in installed . It is a fresh installation, microsoft says, by default we will have to use https://externaldomain.com/owa and we need to redirect if we dont want to use /owa, under IIS
nothing in installed . It is a fresh installation, microsoft says, by default we will have to use https://externaldomain.com/owa and we need to redirect if we dont want to use /owa, under IIS
ASKER
Dear ikshf143
What is the OS version for both the CAS servers? windows 2003-enterprise 64 bit sp2
have the RPC proxy component installed on those servers? yes i have installed on both servers
Have we enabled Outlook Anywhere for both the NLB servers? yes i have enabled on both servers
yes i have an internal certificate for the internal users
https://webmail.ads.uob/owa , which is used to access from internal
is it ok if we install a certificate (external) using my CA server?
What do you mean when you say "i need to remove /owa and i need to configure my outlook anywhere",?
i mean to say i dont want users to use https://mail.uob.edu.bh/owa.. they have to use without /owa
What is the OS version for both the CAS servers? windows 2003-enterprise 64 bit sp2
have the RPC proxy component installed on those servers? yes i have installed on both servers
Have we enabled Outlook Anywhere for both the NLB servers? yes i have enabled on both servers
yes i have an internal certificate for the internal users
https://webmail.ads.uob/owa , which is used to access from internal
is it ok if we install a certificate (external) using my CA server?
What do you mean when you say "i need to remove /owa and i need to configure my outlook anywhere",?
i mean to say i dont want users to use https://mail.uob.edu.bh/owa.. they have to use without /owa
ASKER
Test Details
Testing Outlook Anywhere using the Autodiscover Service to obtain Settings
Failed to test Outlook Anywhere using the Autodiscover Service to obtain Settings
Test Steps
Attempting to test Autodiscover for faisal@uob.edu.bh
Testing Autodiscover failed
Test Steps
Attempting each method of contacting the AutoDiscover Service
Failed to contact the AutoDiscover service successfully by any method
Test Steps
Attempting to test potential AutoDiscover URL https://uob.edu.bh/AutoDiscover/AutoDiscover.xml
Failed testing this potential AutoDiscover URL
Test Steps
Attempting to Resolve the host name uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE xception
Stack Trace:
at System.Net.Dns.GetAddrInfo (String name)
at System.Net.Dns.InternalGet HostByName (String hostName, Boolean includeIPv6)
at System.Net.Dns.GetHostAddr esses(Stri ng hostNameOrAddress)
at Microsoft.Exchange.Tools.E xRca.Tests .ResolveHo stTest.Per formTestRe ally()
Attempting to test potential AutoDiscover URL https://autodiscover.uob.edu.bh/AutoDiscover/AutoDiscover.xml
Failed testing this potential AutoDiscover URL
Test Steps
Attempting to Resolve the host name autodiscover.uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE xception
Stack Trace:
at System.Net.Dns.GetAddrInfo (String name)
at System.Net.Dns.InternalGet HostByName (String hostName, Boolean includeIPv6)
at System.Net.Dns.GetHostAddr esses(Stri ng hostNameOrAddress)
at Microsoft.Exchange.Tools.E xRca.Tests .ResolveHo stTest.Per formTestRe ally()
Attempting to contact the AutoDiscover service using the HTTP redirect method.
Failed to contact AutoDiscover using the HTTP Redirect method
Test Steps
Attempting to Resolve the host name autodiscover.uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE xception
Stack Trace:
at System.Net.Dns.GetAddrInfo (String name)
at System.Net.Dns.InternalGet HostByName (String hostName, Boolean includeIPv6)
at System.Net.Dns.GetHostAddr esses(Stri ng hostNameOrAddress)
at Microsoft.Exchange.Tools.E xRca.Tests .ResolveHo stTest.Per formTestRe ally()
Attempting to contact the AutoDiscover service using the DNS SRV redirect method.
Failed to contact AutoDiscover using the DNS SRV redirect method.
Test Steps
Attempting to locate SRV record _autodiscover._tcp.uob.edu .bh in DNS.
Failed to find AutoDiscover SRV record in DNS.
Testing Outlook Anywhere using the Autodiscover Service to obtain Settings
Failed to test Outlook Anywhere using the Autodiscover Service to obtain Settings
Test Steps
Attempting to test Autodiscover for faisal@uob.edu.bh
Testing Autodiscover failed
Test Steps
Attempting each method of contacting the AutoDiscover Service
Failed to contact the AutoDiscover service successfully by any method
Test Steps
Attempting to test potential AutoDiscover URL https://uob.edu.bh/AutoDiscover/AutoDiscover.xml
Failed testing this potential AutoDiscover URL
Test Steps
Attempting to Resolve the host name uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE
Stack Trace:
at System.Net.Dns.GetAddrInfo
at System.Net.Dns.InternalGet
at System.Net.Dns.GetHostAddr
at Microsoft.Exchange.Tools.E
Attempting to test potential AutoDiscover URL https://autodiscover.uob.edu.bh/AutoDiscover/AutoDiscover.xml
Failed testing this potential AutoDiscover URL
Test Steps
Attempting to Resolve the host name autodiscover.uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE
Stack Trace:
at System.Net.Dns.GetAddrInfo
at System.Net.Dns.InternalGet
at System.Net.Dns.GetHostAddr
at Microsoft.Exchange.Tools.E
Attempting to contact the AutoDiscover service using the HTTP redirect method.
Failed to contact AutoDiscover using the HTTP Redirect method
Test Steps
Attempting to Resolve the host name autodiscover.uob.edu.bh in DNS.
The Host could not be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.uob.edu.bh could not be resolved in DNS Exception Details:
Message: No such host is known
Type: System.Net.Sockets.SocketE
Stack Trace:
at System.Net.Dns.GetAddrInfo
at System.Net.Dns.InternalGet
at System.Net.Dns.GetHostAddr
at Microsoft.Exchange.Tools.E
Attempting to contact the AutoDiscover service using the DNS SRV redirect method.
Failed to contact AutoDiscover using the DNS SRV redirect method.
Test Steps
Attempting to locate SRV record _autodiscover._tcp.uob.edu
Failed to find AutoDiscover SRV record in DNS.
Yes you can use the Internal CA to issue a New Certificate and also you can go for a SAN(UCC) certificate so you can have the Internal URL, External URL, CAS Server name and also AUtodiscover in the Same certificates. Inshort you can have multiple names that a single certificate will validate.
Also Try the Following
+ From the Client try to browse https://webmail.uob.edu.bh/rpc/rpcproxy.dll and see what you get. Expected response is a Blank Page.
+ Try to telnet ports 6001, 6002, 6004 from the CAS to the Mailbox
EG: from the CAS server open Command prompt and run this command Telnet Mailbox_server 6001, then 6002 and 6004.
+ As you are using an Internal Certificate you will have to install the Root Certificate on all the Client Machines. And to confirm the certificate is fine try accessing OWA from the client and make sure you do not get any certificate errors.
+ From the Client try to browse https://webmail.uob.edu.bh/rpc/rpcproxy.dll and see what you get. Expected response is a Blank Page.
+ Try to telnet ports 6001, 6002, 6004 from the CAS to the Mailbox
EG: from the CAS server open Command prompt and run this command Telnet Mailbox_server 6001, then 6002 and 6004.
+ As you are using an Internal Certificate you will have to install the Root Certificate on all the Client Machines. And to confirm the certificate is fine try accessing OWA from the client and make sure you do not get any certificate errors.
The only reliable way to remove the /owa from the URL and ensure that everything else works correctly is to use the HTML redirect method. That basically means putting a file in the root of the web site that redirects the user to the /owa variant.
You should also switch the home grown certificate for a commercial certificate.
I have outlined that process here:
http://blog.sembee.co.uk/archive/2008/05/30/78.aspx
Finally get autodiscover working, which is a combination of having the autodiscover host in your public DNS and the URL in the SSL certificate.
Simon.
You should also switch the home grown certificate for a commercial certificate.
I have outlined that process here:
http://blog.sembee.co.uk/archive/2008/05/30/78.aspx
Finally get autodiscover working, which is a combination of having the autodiscover host in your public DNS and the URL in the SSL certificate.
Simon.
ASKER
dear ikshf143:
from the client, (internally) no issues, it is working fine without any certificate error.
from the client, (internally) no issues, it is working fine without any certificate error.
ASKER
mbprint B4F1164C105DFD3B8A6EE6FF70 D3954C812E 6E2A -Services "IMAP,POP,SMTP"
[PS] C:\Documents and Settings\administrator.ADS >Get-Excha ngeCertifi cate
Thumbprint Services Subject
---------- -------- -------
B4F1164C105DFD3B8A6EE6FF70 D3954C812E 6E2A IP..S CN=webmail.uob.edu.bh
1ED316C950BB03A677A32B74E7 A78DD414C6 4AF0 ...W. CN=webmail.ads.uob, DC=...
B4676770099C495A801F61E1AB BE8B337490 2CA0 ..... CN=webmail.ads.uob, DC=...
0BE8B6BAC5B5D0B5F7A2988432 6BED6BCA66 5C6E ....S CN=uob-srv-cas01
[PS] C:\Documents and Settings\administrator.ADS
Thumbprint Services Subject
---------- -------- -------
B4F1164C105DFD3B8A6EE6FF70
1ED316C950BB03A677A32B74E7
B4676770099C495A801F61E1AB
0BE8B6BAC5B5D0B5F7A2988432
ASKER
Now my owa from internal and external also not working!!!
[PS] C:\Documents and Settings\administrator.ADS >Get-Excha ngeCertifi cate |fl
AccessRules : {System.Security.AccessCon trol.Crypt oKeyAccess Rule, System
.Security.AccessControl.Cr yptoKeyAcc essRule, System.Securi
ty.AccessControl.CryptoKey AccessRule }
CertificateDomains : {webmail.uob.edu.bh}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=webmail.uob.edu.bh
NotAfter : 5/11/2010 9:09:46 AM
NotBefore : 5/11/2009 9:09:46 AM
PublicKeySize : 2048
RootCAType : None
SerialNumber : 4D9457DF34D6B7A94BD02F3F4D F6C979
Services : IMAP, POP, SMTP
Status : Valid
Subject : CN=webmail.uob.edu.bh
Thumbprint : B4F1164C105DFD3B8A6EE6FF70 D3954C812E 6E2A
AccessRules : {System.Security.AccessCon trol.Crypt oKeyAccess Rule, System
.Security.AccessControl.Cr yptoKeyAcc essRule, System.Securi
ty.AccessControl.CryptoKey AccessRule }
CertificateDomains : {uob-srv-cas01, webmail.ads.uob, uob-srv-cas01.ads.uob}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=uob-srv-cas01
NotAfter : 4/4/2010 5:08:04 PM
NotBefore : 4/4/2009 5:08:04 PM
PublicKeySize : 2048
RootCAType : None
SerialNumber : D46E43E8EDE4C38C459180B50A DDBD61
Services : SMTP
Status : Valid
Subject : CN=uob-srv-cas01
Thumbprint : 0BE8B6BAC5B5D0B5F7A2988432 6BED6BCA66 5C6E
[PS] C:\Documents and Settings\administrator.ADS >
[PS] C:\Documents and Settings\administrator.ADS
AccessRules : {System.Security.AccessCon
.Security.AccessControl.Cr
ty.AccessControl.CryptoKey
CertificateDomains : {webmail.uob.edu.bh}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=webmail.uob.edu.bh
NotAfter : 5/11/2010 9:09:46 AM
NotBefore : 5/11/2009 9:09:46 AM
PublicKeySize : 2048
RootCAType : None
SerialNumber : 4D9457DF34D6B7A94BD02F3F4D
Services : IMAP, POP, SMTP
Status : Valid
Subject : CN=webmail.uob.edu.bh
Thumbprint : B4F1164C105DFD3B8A6EE6FF70
AccessRules : {System.Security.AccessCon
.Security.AccessControl.Cr
ty.AccessControl.CryptoKey
CertificateDomains : {uob-srv-cas01, webmail.ads.uob, uob-srv-cas01.ads.uob}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=uob-srv-cas01
NotAfter : 4/4/2010 5:08:04 PM
NotBefore : 4/4/2009 5:08:04 PM
PublicKeySize : 2048
RootCAType : None
SerialNumber : D46E43E8EDE4C38C459180B50A
Services : SMTP
Status : Valid
Subject : CN=uob-srv-cas01
Thumbprint : 0BE8B6BAC5B5D0B5F7A2988432
[PS] C:\Documents and Settings\administrator.ADS
ASKER
dear ikshf143:
From the Client try to browse https://webmail.uob.edu.bh/rpc/rpcproxy.dll and see what you get. Expected response is a Blank Page.
+ Try to telnet ports 6001, 6002, 6004 from the CAS to the Mailbox
EG: from the CAS server open Command prompt and run this command Telnet Mailbox_server 6001, then 6002 and 6004.
i tested this and i am able to succeed, but still i cannot get my outlook anywhere works. When i do a netstat -ano, i cannot see these above ports listed
connection-status-outlookanywher.JPG
From the Client try to browse https://webmail.uob.edu.bh/rpc/rpcproxy.dll and see what you get. Expected response is a Blank Page.
+ Try to telnet ports 6001, 6002, 6004 from the CAS to the Mailbox
EG: from the CAS server open Command prompt and run this command Telnet Mailbox_server 6001, then 6002 and 6004.
i tested this and i am able to succeed, but still i cannot get my outlook anywhere works. When i do a netstat -ano, i cannot see these above ports listed
connection-status-outlookanywher.JPG
Where are you trying to check the ports by running netstat -ano, If you are doing it on the CAS server then it won't be there those ports are on the Mailbox server.
Also as per the attachment attached I see that we are having issues connecting to the directory service that is port 6004. On the CAS server check the valid ports registry under
HKEY_LOCAL_MACHINE\Softwar e\Microsof t\RPC\RpcP roxy ValidPorts:
Mailbox_NETBIOS:6001-6002; Mailbox_FQ DN:6001-60 02;Mailbox _NETBIOS:6 004;Mailbo x_FQDN:600 4;
Also as per the attachment attached I see that we are having issues connecting to the directory service that is port 6004. On the CAS server check the valid ports registry under
HKEY_LOCAL_MACHINE\Softwar
Mailbox_NETBIOS:6001-6002;
ASKER
dear ikshf143:
i did checke the ports in the cas server, and i could see the valid entries as you mentioned.
i did checke the ports in the cas server, and i could see the valid entries as you mentioned.
Try running the https://testexchangeconnectivity.com and if you see what is the error we get.
ASKER
testing is failed ,
says autodiscover for the email failed
says autodiscover for the email failed
ASKER
pls note that outlolook anywhere is not working from internal as well
ASKER
its taking almost 2 hrs to get connected , now connection status shows connected but which is after two hours
Internally when you configure a profile for Outlook Anywhere. It would fail over to TCP/IP under connection status. Is that what you are trying to tell.
Also try uninstalling the RPC component from the Control Panel and then re-install it and see what is the result.
Also try uninstalling the RPC component from the Control Panel and then re-install it and see what is the result.
ASKER
i did removed the rpc component and tried to installing again, but same result i am not able to succeed the outlook anywhere, Yes i was testing outlook anywhere from internal as well, But it is failed to connect using http,
ASKER
microsoft is trying to resolve this issue, they have taken the case and studying what causing the problem
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
It looks like Exchange was installed in IIS under an alias of /owa only. The Exchange servers I administer serve Exchange on the root of IIS and forward to /owa automatically (this was done automatically during the setup of Exchange). Is there something else running on IIS that you can't just make the root point to the OWA?