Solved

New-EdgeSubscription, The LDAP server is unavailable

Posted on 2009-07-06
12
9,374 Views
Last Modified: 2012-05-07
I have EBS 2008 installed and have played around a little with certificates. When I now check my security server which has the edge transport service installed I get "The LDAP server is unavailable" in the Exchange managment console. So then I tried to issue a new subscription but then I get this error:

New-EdgeSubscription : An Active Directory error 0x51 occurred when trying to c
heck server 'localhost:50389' suitability: 'The LDAP server is unavailable.'.
At line:1 char:21
+ New-EdgeSubscription  <<<< -file "C:\EdgeSubscriptionExport.xml"
0
Comment
Question by:Findwise
  • 7
  • 5
12 Comments
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24785507
Can you confirm that DNS is all working ok? Event viewer clean? Can you ping by FQDN to the servers concerned. I don't have EBS 2008 specific experience but Edge servers are supposed to be on an independant computer not joined to the domain of the hub transport server(s).

Can you telnet the port 50389 on the Hub and Edge server?

Shaun
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24785528
Run through ports discussed on this post and ensure that these are all open on the Edge server.

http://technet.microsoft.com/en-us/library/aa996562.aspx

Shaun
0
 

Author Comment

by:Findwise
ID: 24785872
Could not open connection to the host on port 50389. Seems like we have a problem here.

A strange thing is when I look at my Server Manager I get an error from Active Directory Lightweight Directory Services that is running on the security server. There is a process called ADAM_Microsoft Exchange ADAM and it say Not available on the status. I can get any more status from it. Maybe this is the problem. I have no idea what this is.

I tried all the port in the list and only get smtp on port 25 working.
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 27

Expert Comment

by:shauncroucher
ID: 24786539
Hi,

ADAM is very much related to the Edge Subscription syncronisation process. It uses the ADAM process to do a one way sync of data such as the recipients in the Exchange organisation, the domains that the exchange organisation are authoritative for etc.

You should look to getting this ADAM process issue resolved and you should then find that you can recreate the edge subscription successfully.

Shaun
0
 

Author Comment

by:Findwise
ID: 24786583
Thanks. Will look in to this tomorrow.
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24786586
This explains the relationship in more detail:

http://technet.microsoft.com/en-us/library/aa996855.aspx

Is there anything that has changed recently in your infrastructure?

shaun

0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24787512
I've looked on my Windows 2008 server and I have a similar warning in my Server Manager about the service not being available. I do not have any issues with Edgesync.

Can you just ensure that the Microsoft Exchange ADAM service is running by using Exchange management shell (or powershell) console and typing the following command:

Get-Service *ADAM* | ft St*

What does this return?

You should be able to telnet the port 50389 on the Edge server and if you cannot, this could indicate a firewall issue, can you telnet locally on this port? If you use netsat -anp udp do you see the 50389 port as an active connection?

shaun
0
 

Author Comment

by:Findwise
ID: 24788686
On my secureity server:
[PS] C:\>Get-Service *ADAM* | ft St*

                                                                         Status
                                                                         ------
                                                                        Running
                                                                        Stopped


[PS] C:\>
Picture-1.png
Picture-5.png
0
 

Author Comment

by:Findwise
ID: 24788713
Hmm, I wrote alot here but it all disaperare after the attchment of the files. I attached them in the middle.

I had logs and everything :-(

Anyhow, my last comments was that I found that this might be the problem of an rouge ip adress ;-). I have had some problems with the ad and now I found that I had the same ip on a virtual domain controller that I had in the installation of EBS. I totally forgott about this and had another linux computer running on the same ip with a lot of strange problem. But I found it now and will dcpromo it tomorrow. Will be back if this dosent help out.
0
 
LVL 27

Accepted Solution

by:
shauncroucher earned 125 total points
ID: 24788814
Hi,

Sorry, can you just run the command again as below:

Get-Service *ADAM* | ft Di*,St*

This should tell me what service with ADAM in the name is running and which one is stopped. It seems you have ISA running on the server as well as Edge services (which makes perfect sense). I don't have specific EBS experience unfortunately but these services will be designed to work together.

Let me know how you get on. It would make sense if you have another machine with same IP etc. The Edge process relies heavily on DNS and in particular that the Hub server is able to resolve the Edge server by FQDN and vice versa.

However, would like the results of the Get-Service command above.

Shaun
0
 

Author Comment

by:Findwise
ID: 24791752
One wonder how one rouge domain controller could f**ck everything up. Yesterday I rebooted all the servers and now it works like a charm. Mails can go both way through :-)

[PS] C:\Windows\System32>Get-Service *ADAM* | ft Di*,St*

DisplayName                                                              Status
-----------                                                              ------
ISASTGCTRL                                                              Running
Microsoft Exchange ADAM                                                 Running


[PS] C:\Windows\System32>

The command you gave me looks good to. So lets consider this as solved. Thanks for all your help. And lessons learned. Never have a rouge domain controller ;-)
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24792196
Glad I could help.

Shaun
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question