jayman7
asked on
Exchange 2003 OMA Problem
Hi All,
I am having a problem with Exchange 2003 SP2 and OMA. If I browse to https://mydomain.com/oma I get the login prompt but when I enter a valid login I get the following error:
A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator.
And when I test at https://testexchangeconnectivity.com I get the following error:
Attempting to Resolve the host name mail.mydomain.com in DNS.
Host successfully Resolved
Additional Details
IP(s) returned: 0.0.0.0
Testing TCP Port 443 on host mail.mydomain.com to ensure it is listening/open.
The port was opened successfully.
Testing SSL Certificate for validity.
The SSL Certificate failed one or more certificate validation checks.
Test Steps
Validating certificate name
Successfully validated the certificate name
Additional Details
Found hostname mail.elizapurton.com.au in Certificate Subject Common name
Validating certificate trust for Windows Mobile Devices
Certificate trust validation failed
Tell me more about this issue and how to resolve it
Additional Details
The certificate chain did not end in a trusted root. Root = CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
The certificate works fine on OWA... any ideas?
Any help would be greatly appreciated.
- Jason
I am having a problem with Exchange 2003 SP2 and OMA. If I browse to https://mydomain.com/oma I get the login prompt but when I enter a valid login I get the following error:
A System error has occurred while processing your request. Please try again. If the problem persists, contact your administrator.
And when I test at https://testexchangeconnectivity.com I get the following error:
Attempting to Resolve the host name mail.mydomain.com in DNS.
Host successfully Resolved
Additional Details
IP(s) returned: 0.0.0.0
Testing TCP Port 443 on host mail.mydomain.com to ensure it is listening/open.
The port was opened successfully.
Testing SSL Certificate for validity.
The SSL Certificate failed one or more certificate validation checks.
Test Steps
Validating certificate name
Successfully validated the certificate name
Additional Details
Found hostname mail.elizapurton.com.au in Certificate Subject Common name
Validating certificate trust for Windows Mobile Devices
Certificate trust validation failed
Tell me more about this issue and how to resolve it
Additional Details
The certificate chain did not end in a trusted root. Root = CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
The certificate works fine on OWA... any ideas?
Any help would be greatly appreciated.
- Jason
ASKER
Hi Dream,
Thanks for the response. I am trying to use it with an I-phone, does that need Oma?
Thanks for the response. I am trying to use it with an I-phone, does that need Oma?
The root certificates from that issuer are not included in most mobile handhelds. That means the device will not trust the handheld. The usual consequence of that is a repeating authentication prompt.
Simon.
Simon.
Hi jayman7,
https://mail.mydomain.com/
As Simon has pointed out already, untrusted certificates can cause a whole lot of problems with mobile devices and syncing with active sync.
You now have two choices.
https://mail.mydomain.com/
As Simon has pointed out already, untrusted certificates can cause a whole lot of problems with mobile devices and syncing with active sync.
You now have two choices.
- Change your certificate to a providor that is included in the iPhones trusted roots
- Backup the iPhone, restore it, then add the email account again. This should make the phone forget anything that it has remember about the account and it's certificate, you will then be asked to accept the certificate and it should work.
Hey Jason,
Yes, iPhone uses Exchange ActiveSync, and try switcing off Wi-Fi and then try to configure Exchange ActiveSync, if you have a Public Certificate, it should already be present on iPhone and use OWA url, Username and password, if everthing is set up correctly, iPhone will sync with Exchange will all your mails on the device...
It does not require OMA to work.
- Dream
Yes, iPhone uses Exchange ActiveSync, and try switcing off Wi-Fi and then try to configure Exchange ActiveSync, if you have a Public Certificate, it should already be present on iPhone and use OWA url, Username and password, if everthing is set up correctly, iPhone will sync with Exchange will all your mails on the device...
It does not require OMA to work.
- Dream
ASKER
Hi,
Thanks for the suggestions.
I added a new account on the iphone with the following settings:
Email: jcitizen@mydomain.com.au
Server: mail.mydomain.com.au (OWA URL)
Domain: mydomain
Username: jcitizen
Password: password
SSL: On
I get a message that says:
Cannot Get Mail
The connection to the server failed
Any ideas?
Thanks for the suggestions.
I added a new account on the iphone with the following settings:
Email: jcitizen@mydomain.com.au
Server: mail.mydomain.com.au (OWA URL)
Domain: mydomain
Username: jcitizen
Password: password
SSL: On
I get a message that says:
Cannot Get Mail
The connection to the server failed
Any ideas?
Hi Jason,
1. Did you follwed KB 817379, since you have SSL enabled?
2. Make sure that Exchange VDir in IIS has Windows Integrated Authentication enabled.
3. Check for any Application logs in Event Viewer, please paste the any error from Application logs.
I have a strong feeling that Step 1 should resolve your issue.
- Dream
1. Did you follwed KB 817379, since you have SSL enabled?
2. Make sure that Exchange VDir in IIS has Windows Integrated Authentication enabled.
3. Check for any Application logs in Event Viewer, please paste the any error from Application logs.
I have a strong feeling that Step 1 should resolve your issue.
- Dream
ASKER
Hi Dream,
I checked the event log and this is the event that had been occuring:
Event Type: Error
Event Source: Server ActiveSync
Event Category: None
Event ID: 3029
Date: 30/06/2009
Time: 1:44:07 PM
User: MYDOMAIN\jcitizen
Computer: SERVER
Description:
The mailbox server [server.mydomain.local] has its [exchange] virtual directory set to require SSL. Exchange ActiveSync cannot access the server if SSL is set to be required. For information about how to correctly configure Exchange virtual directory settings, see Microsoft Knowledge Base article 817379, "Exchange ActiveSync and Outlook Mobile Access errors occur when SSL or forms-based authentication is required for Exchange Server 2003" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=817379).
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
So I followed KB 817379 and created a virtual directory /ExchangeOMA.
The event has now stopped, however on the I-Phone I still get a message that says:
Cannot Get Mail
The connection to the server failed
My configuration details are now:
Email: jcitizen@mydomain.com.au
Server: mail.mydomain.com.au/Excha
Domain: mydomain
Username: jcitizen
Password: password
SSL: Off (or On neither work)
Thanks for the help so far,
- Jason
I checked the event log and this is the event that had been occuring:
Event Type: Error
Event Source: Server ActiveSync
Event Category: None
Event ID: 3029
Date: 30/06/2009
Time: 1:44:07 PM
User: MYDOMAIN\jcitizen
Computer: SERVER
Description:
The mailbox server [server.mydomain.local] has its [exchange] virtual directory set to require SSL. Exchange ActiveSync cannot access the server if SSL is set to be required. For information about how to correctly configure Exchange virtual directory settings, see Microsoft Knowledge Base article 817379, "Exchange ActiveSync and Outlook Mobile Access errors occur when SSL or forms-based authentication is required for Exchange Server 2003" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=817379).
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
So I followed KB 817379 and created a virtual directory /ExchangeOMA.
The event has now stopped, however on the I-Phone I still get a message that says:
Cannot Get Mail
The connection to the server failed
My configuration details are now:
Email: jcitizen@mydomain.com.au
Server: mail.mydomain.com.au/Excha
Domain: mydomain
Username: jcitizen
Password: password
SSL: Off (or On neither work)
Thanks for the help so far,
- Jason
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Great, looks like we are getting there now..!
Can you follow saakar_rao's advice and just put the exchange server FQDN in the servername, nothing else.
Also now try the active sync test @ www.testexchangeconnectivi
Can you follow saakar_rao's advice and just put the exchange server FQDN in the servername, nothing else.
Also now try the active sync test @ www.testexchangeconnectivi
ASKER
Woohoo! it works
Thanks a lot for the help
- Jason
Thanks a lot for the help
- Jason
From OMA here I suspect that you are trying to work with Exchange ActiveSync to sync your Windows Mobile Devices with Exchange???
If yes, let's not use OMA because Exchange ActiveSync works with Microsoft-Server-ActiveSyn
- Dream