sbs 2008 RWW intermittent connections

We have an SBS  2008 Server using RWW.  Recently we began to have intermittent RWW login problems.

Everyone can login to the RWW portal page fine and select their computer to login to. We are then prompted for our credentials again (at the bottom, the domain is the correct domain.)  The first attempt always fails with a general failure to authenticate.  Sometimes the second attempt will work.  If the second attempt doesnt work, all subsequent attempts will fail for an unknown period of time.

If we attempt to connect a few hours later, it may work and it may not work.

Under IIS | Sites | SBS Web Apps | RPC  - The authentication has both basic and Windows Authentication Enabled.  Kernel Mode for Windows Authentication is disabled.

Event viewer is not logging any errors in Application, System or Security.

We are having Problems on different OS's - XP Vista and Windows 7.

Certificate is self-issued.

Any Ideas?

TIA  
southrayAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ConchCrawlCommented:
I strongly recommend a 3rd Party SSL Cert(SAN) like from godaddy. This will usually prevent the confinuing prompting for credentials.
Please don't manually configure any settings in IIS you should run the wizards and all apps will be configured properly.
Please run the fix my network wizard and post the results here.
Download the BPA for sbs 2008 from MS and post the results here.
Sounds like you have some misconfiguration going on that is causing some intermittent problems on your network.
 
 
0
southrayAuthor Commented:
Fix my network results:

DHCP not configured for IPV6
Could Not Configure The Router
0
southrayAuthor Commented:
What is BPA for SBS 2008?  
0
Why Diversity in Tech Matters

Kesha Williams, certified professional and software developer, explores the imbalance of diversity in the world of technology -- especially when it comes to hiring women. She showcases ways she's making a difference through the Colors of STEM program.

southrayAuthor Commented:
If we upgrade are certificate to a godaddy cert, what will happen to the workstations who have already installed the self signed certificate?
0
southrayAuthor Commented:
All Issues
Warning       
Add-On Congestion Control Provider       :
      Add-On Congestion Control Provider is set to ctcp. To disable Add-On Congestion Control Provider, click Start, and in the Search box type "command." in the results, right-click Command Prompt, and then click Run as administrator. At the command prompt, run the following command: netsh int tcp set global congestion=none

Warning
Local activation permission to the IIS WAMREG Admin Service required       :
      The Network Service is missing local activation permissions to the IIS WAMREG admin Service in accordance with the event ID 10016 in the system event log. For more information, see KB "Event ID error messages 10016 and 10017 are logged in the System log after you install Windows SharePoint Services 3.0" at http://go.microsoft.com/fwlink/?LinkId=128063. Note: This warning will continue to appear until at least 24 hours have passed since the most recent occurrence of event 10016.

Warning       
Receive Window Auto-Tuning Level       :
      Receive Window Auto-Tuning Level is set to normal. To disable Receive Window Auto-Tuning Level, click Start, and in the Search box type "command." in the results, right-click Command Prompt, and then click Run as administrator. At the command prompt, run the following command: netsh int tcp set global autotuning=disabled
Warning       Receive-Side Scaling State       :
      Receive-Side Scaling State is set to enabled. To disable Receive-Side Scaling, click Start, and in the Search box type "command." in the results, right-click Command Prompt, and then click Run as administrator. At the command prompt, run the following command: netsh int tcp set global rss=disabled

Warning       
remote.domain.info does not exist in the BackConnectionHostNames registry key       :
      The BackConnectionHostNames key should include the value remote.sepaint.info. To resolve this issue, open Registry Editor, and then locate and click HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\BackConnectionHostNames. Right-click BackConnectionHostNames, and then click Modify. In the Value data box, type remote.domain.info, and then click OK.

Warning       
Service Pack 2 for Windows Server 2008 is not installed       :
      Service Pack 2 for Windows Server 2008 is not installed on this server.


Warning       
Task Offload       :
      Task Offload is set to enabled. To disable Task Offload, click Start, and in the Search box type "command." in the results, right-click Command Prompt, and then click Run as administrator. At the command prompt, run the the following command: netsh int ip set global taskoffload=disabled
Warning       The BackConnectionHostNames registry key does not exist       :
      The registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\BackConnectionHostNames does not exist. To resolve this issue, open Registry Editor, and then locate and click HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\. Right-click MSV1_0, point to New, and then click Multi-String Value. Type BackConnectionHostNames, and then press ENTER.
Warning       The Companyweb value does not exist in the BackConnectionHostNames registry key       :
      The Companyweb value does not exist in the BackConnectionHostNames registry key. To resolve this issue, open Registry Editor, and then locate and click HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\BackConnectionHostNames. Right-click BackConnectionHostNames, and then click Modify, In the Value data box, type Companyweb, and then click OK.


Warning       
The Default Web Site is using port 443       :
      By default, Windows Small Business Server 2008 does not enable Secure Sockets Layer (SSL) on port 443 for the Default Web Site. It configures SSL only for the SBS Web Applications Web site. Either change the port that the Default Web Site uses, or remove the https binding from the site. To change the binding, click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager. In the console tree, expand the node for your server, click Sites, and then click Default Web Site. On the Actions menu, click Bindings.
Warning       The DNS parameter MaxCacheTTL is not set       :
      The DNS parameter MaxCacheTTL is not set. For more information, see ”Windows Server 2008 DNS Servers may fail to resolve queries for some top-level domains” in the Microsoft Knowledge Base at http://go.microsoft.com/fwlink/?LinkId=152402.
Warning       Two or more network adapter cards detected       :
      Two or more network adapter cards are detected on this server. This is not a supported configuration. Windows SBS 2008 supports only one network adapter.


Warning       
Windows SharePoint Services 3.0       :
      Windows SharePoint Services 3.0 is installed with Service Pack 1. Service Pack 2 is available.
0
ConchCrawlCommented:
on the fix my network you can ignore the router but let it fix the ipv6 problem 2008 needs that even i you don't use it you can't disable it.
The workstations will automatically accept the cert with no problem.
BPA = best practices analyzer
0
southrayAuthor Commented:
Now, after installing Exchange SP2,  RWW is not working at all.  We are getting the following error:


IIS-W3SVC
Event ID 1007

The World Wide Web Publishing Service (WWW Service) did not register the URL prefix https://*.443 for site 3.  The necessary binding may already be in use.  The site has been disabled.  The data field contains the error number.

Yeah - I love it when I break one thing by updating something else.
0
ConchCrawlCommented:
Did you install all the other SPs it was asking you to fix. I would recommend fixing the warnings as well and rerun the wizard again.
Yeah that sux, but if you follow the recommended steps it should be fine, just make sure you use the. You probably have other underlying issues that should get resolved by correcting these existing issues. But at least it's step in the right direction.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SBS

From novice to tech pro — start learning today.