Solved

After moving the OWA to a different DMZ it does not work.

Posted on 2009-05-14
3
452 Views
Last Modified: 2012-05-07
Hello,

We have two OWA servers runing Exchange 2003 SP2 under W2K3 SP2. As part of the move, we moved one OWA server to a different DMZ. After taht we can access the web interface for logon credential but cannot access the mailbox. After giving the credentials it says "Page cannot be displayed". Turned off user friendly error, it shows "Unspecified error".

The firewall group claims that everything is open between the OWA server DMZ and the Mailbox server subnet. I compared all other configurations with the working one. They are same.

Important: But I tried to see the list of domain controllers under 'Directory Access' tab of the OWA server properties, it shows empty.
Any help is greatly appreciated.

Thanks,
0
Comment
Question by:rafiq01
  • 2
3 Comments
 
LVL 24

Expert Comment

by:Rajith Enchiparambil
ID: 24389861
All you need is a front end server with your firewall forwarding 443 traffic to it. Why do you have the server in DMZ?
0
 

Author Comment

by:rafiq01
ID: 24391368
That is from outside to the OWA server what about OWA server to mailbox server?

There might have reasons to the engineers who originally put it in the DMZ but not to me and I cannot change the decision now. So, just left it there.
0
 

Accepted Solution

by:
rafiq01 earned 0 total points
ID: 24503808
Two issues found and resolved.
1. Firewall did not have appropiet posts opened from OWA to AD and Exchange.
For Exchange Communication:
Port 80 for HTTP
Port 691 for Link State Algorithm routing protocol

For Active Directory communication:
Port 389 for LDAP (TCP and UDP)
Port 3268 for Global Catalog Server LDAP (TCP)
Port 88 for Kerberos Authentication (TCP and UDP)
Port 53 for DNS (TCP and UDP)
Port 135  RPC endpoint mapper (TCP)
Ports 1024 and higher for RPC services

2. Needed to add the subnet of OWA under AD Sites and Services.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now