Solved

RPC over HTTP issue

Posted on 2009-07-10
6
1,506 Views
Last Modified: 2012-05-07
We recently lost RPC over HTTP connectivity. I have been troubleshooting this for the last few days following the MS Troubleshooting guide but was unable to find any problems.
I have just managed to restore connectivity by ticking 'Windows Integrated Authentication' in the Directory Security tab of the rpc site Properties.  All other settings left as recommended (ie Basic Authentication also ticked, anonymous access disabled). Basic Authentication is also set on the client machines.
I presume this points to some kind of security problem, but can find no issues with our certificate (GoDaddy) or other security settings.
Hopefully the fact that enabling Windows Integrated Authentication fixes the issue might give someone who understands this better a clue?
0
Comment
Question by:keithxp
  • 3
  • 2
6 Comments
 
LVL 3

Expert Comment

by:mojopojo
ID: 24825226
If you are running SBS 2003 and "lost RPC over HTTP" (means it was working fine and then stopped) that generally suggests a change in your network, ISP or firewall.

First thing in SBS 2003 is to re-run the CEICW wizard from Computer Management and select the proper connection OWA, RWP, etc. ( http://support.microsoft.com/kb/825763 ) That will fix 90% of all SBS 2003 connectivity issues.



0
 

Author Comment

by:keithxp
ID: 24825256
Thanks for the suggestion, I should probably have mentioned that I have re-run the wizard a couple of times without luck.
0
 
LVL 1

Expert Comment

by:Rick_Lewis
ID: 24827534
Your right to tick windows authentication in rpc and make sure your domain is displayed in the default domain box. I always setup the clients thus:

https://remote.yourdoamin.com
Connect using SSL only (Ticked)
Only connect to proxy... (ticked)
msstd:remote.yourdomain.com

On fast networks... (unticked)
On Slow Networks (ticked)

Proxy Authentication set to NTLM Authencation

Additionally, I've found that occasionally the windows authentication and or basic authentication in rpc security gets unticked no idea why, but it does. Just double check your firewall on your router for the usual ports allowed (80,443)
0
Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

 

Author Comment

by:keithxp
ID: 24827575
Hi,
well that configuration seems to be working for me too, but am I going mad or do most guides recommend that the RPC virtual directory security settings are that
- anonymous access is disabled
- only Basic Authentication is ticked
- SSL is enabled
??
At present clients are using Basic Authentication, but you are suggesting it is better to set it to NTLM (presumably to match to the Basic Authentication by NTLM on the virtual directory)?
 
0
 
LVL 1

Accepted Solution

by:
Rick_Lewis earned 250 total points
ID: 24828055
Yes, in my experience using NTLM also enables the remember password box to work on the clients outlook. Especially when the PC's are not joined to the domain. As for guides, well I've read quite a few too but after 6 years of working on SBS2003 this works just fine.
0
 

Author Closing Comment

by:keithxp
ID: 31602383
OK. This is great because I have lost RPC-HTTP connectivity several times in the past, never understood why (ie could not relate it to a particular change on the server etc). Hopefully I can fix it quicker in future. thank you
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
What is filling up the server HDD? 13 62
SBS2011 DNS for external FQDN 6 66
SBS2011 - Can't change internet domain name 4 55
SBS Server and Office 365 5 46
In the event you manage a Small Business Server 2003, and you are audited for PCI compliance, there are several changes you must make in order to pass the audit. I can take no credit for discovering any of these fixes or workarounds, but there is no…
If you are a user of the discontinued Microsoft Office Accounting 2008 (MSOA) and have to move to a new computer running Windows 8, you will be unhappy to discover that it won't install.  In particular, Microsoft SQL Server 2005 Express Edition (SSE…
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question