Solved

New-EdgeSubscription, The LDAP server is unavailable

Posted on 2009-07-06
12
8,915 Views
Last Modified: 2012-05-07
I have EBS 2008 installed and have played around a little with certificates. When I now check my security server which has the edge transport service installed I get "The LDAP server is unavailable" in the Exchange managment console. So then I tried to issue a new subscription but then I get this error:

New-EdgeSubscription : An Active Directory error 0x51 occurred when trying to c
heck server 'localhost:50389' suitability: 'The LDAP server is unavailable.'.
At line:1 char:21
+ New-EdgeSubscription  <<<< -file "C:\EdgeSubscriptionExport.xml"
0
Comment
Question by:Findwise
  • 7
  • 5
12 Comments
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24785507
Can you confirm that DNS is all working ok? Event viewer clean? Can you ping by FQDN to the servers concerned. I don't have EBS 2008 specific experience but Edge servers are supposed to be on an independant computer not joined to the domain of the hub transport server(s).

Can you telnet the port 50389 on the Hub and Edge server?

Shaun
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24785528
Run through ports discussed on this post and ensure that these are all open on the Edge server.

http://technet.microsoft.com/en-us/library/aa996562.aspx

Shaun
0
 

Author Comment

by:Findwise
ID: 24785872
Could not open connection to the host on port 50389. Seems like we have a problem here.

A strange thing is when I look at my Server Manager I get an error from Active Directory Lightweight Directory Services that is running on the security server. There is a process called ADAM_Microsoft Exchange ADAM and it say Not available on the status. I can get any more status from it. Maybe this is the problem. I have no idea what this is.

I tried all the port in the list and only get smtp on port 25 working.
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24786539
Hi,

ADAM is very much related to the Edge Subscription syncronisation process. It uses the ADAM process to do a one way sync of data such as the recipients in the Exchange organisation, the domains that the exchange organisation are authoritative for etc.

You should look to getting this ADAM process issue resolved and you should then find that you can recreate the edge subscription successfully.

Shaun
0
 

Author Comment

by:Findwise
ID: 24786583
Thanks. Will look in to this tomorrow.
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24786586
This explains the relationship in more detail:

http://technet.microsoft.com/en-us/library/aa996855.aspx

Is there anything that has changed recently in your infrastructure?

shaun

0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 27

Expert Comment

by:shauncroucher
ID: 24787512
I've looked on my Windows 2008 server and I have a similar warning in my Server Manager about the service not being available. I do not have any issues with Edgesync.

Can you just ensure that the Microsoft Exchange ADAM service is running by using Exchange management shell (or powershell) console and typing the following command:

Get-Service *ADAM* | ft St*

What does this return?

You should be able to telnet the port 50389 on the Edge server and if you cannot, this could indicate a firewall issue, can you telnet locally on this port? If you use netsat -anp udp do you see the 50389 port as an active connection?

shaun
0
 

Author Comment

by:Findwise
ID: 24788686
On my secureity server:
[PS] C:\>Get-Service *ADAM* | ft St*

                                                                         Status
                                                                         ------
                                                                        Running
                                                                        Stopped


[PS] C:\>
Picture-1.png
Picture-5.png
0
 

Author Comment

by:Findwise
ID: 24788713
Hmm, I wrote alot here but it all disaperare after the attchment of the files. I attached them in the middle.

I had logs and everything :-(

Anyhow, my last comments was that I found that this might be the problem of an rouge ip adress ;-). I have had some problems with the ad and now I found that I had the same ip on a virtual domain controller that I had in the installation of EBS. I totally forgott about this and had another linux computer running on the same ip with a lot of strange problem. But I found it now and will dcpromo it tomorrow. Will be back if this dosent help out.
0
 
LVL 27

Accepted Solution

by:
shauncroucher earned 125 total points
ID: 24788814
Hi,

Sorry, can you just run the command again as below:

Get-Service *ADAM* | ft Di*,St*

This should tell me what service with ADAM in the name is running and which one is stopped. It seems you have ISA running on the server as well as Edge services (which makes perfect sense). I don't have specific EBS experience unfortunately but these services will be designed to work together.

Let me know how you get on. It would make sense if you have another machine with same IP etc. The Edge process relies heavily on DNS and in particular that the Hub server is able to resolve the Edge server by FQDN and vice versa.

However, would like the results of the Get-Service command above.

Shaun
0
 

Author Comment

by:Findwise
ID: 24791752
One wonder how one rouge domain controller could f**ck everything up. Yesterday I rebooted all the servers and now it works like a charm. Mails can go both way through :-)

[PS] C:\Windows\System32>Get-Service *ADAM* | ft Di*,St*

DisplayName                                                              Status
-----------                                                              ------
ISASTGCTRL                                                              Running
Microsoft Exchange ADAM                                                 Running


[PS] C:\Windows\System32>

The command you gave me looks good to. So lets consider this as solved. Thanks for all your help. And lessons learned. Never have a rouge domain controller ;-)
0
 
LVL 27

Expert Comment

by:shauncroucher
ID: 24792196
Glad I could help.

Shaun
0

Featured Post

Why do Marketing keep bothering you?

Is your marketing department constantly asking for new email signature updates? Are they requesting a different design for every department? Do they need yet another banner added? Don’t let it get you down! There is an easy way to manage all of these requests...

Join & Write a Comment

"Migrate" an SMTP relay receive connector to a new server using info from an old server.
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now