• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1485
  • Last Modified:

Exchange 2007: Clients do not download OAB in cached mode

I'm running Exchange 2007 and Outlook 2007. Outlook 2007 clients are not showing the updated GAL. If I turn off cached mode in Outlook the address book is up to date. Also, I am able to see the users listed in the GAL using OWA. I have regenerated the OAB and have forced a full OAB download to the client with no success. I changed my log settings on the CAS server to full and then checked the application log but there are no OAB events showing. I checked the application log on the client side and see no OAB errors. Exchange File Distribution Service is started on the CAS server. I’m not sure what else to try at this point.
0
IT-CSOL
Asked:
IT-CSOL
  • 9
  • 8
1 Solution
 
endital1097Commented:
from the exchange management shell run
Get-OabVirtualDirectory | fl InternalUrl

then from a client attempt to browse to that URL
https://server.domain.com/OAB

you should not get any certificate warnings or login prompts
0
 
IT-CSOLAuthor Commented:
The OAB virtual directory is pointing to the wrong server. How do I change this? Thanks.

Get-OabVirtualDirectory : The task was not able to connect to IIS on the server
 'oldserver.charlottelaw.org'.  Ensure that the server exists and is reachable fro
m this computer: The RPC server is unavailable.
At line:1 char:24
+ Get-OabVirtualDirectory <<<<  | fl InternalUrl
    + CategoryInfo          : ReadError: (oldserver\OAB (Default Web Site):ADObje
   ctId) [Get-OabVirtualDirectory], IISNotReachableException
    + FullyQualifiedErrorId : 39C8DF37,Microsoft.Exchange.Management.SystemCon
   figurationTasks.GetOabVirtualDirectory
0
 
endital1097Commented:
Set-Oabvirtualdirectory -internalURL https:\\servername.domain.com\OAB
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
endital1097Commented:
you'll also want to check the offline address book settings noting the web based distribution and virtaul directories
get-offlineaddressbook | fl

or you can view thru the gui
0
 
IT-CSOLAuthor Commented:
The offline address book settings are correct but I am forced to enter credentials when I connect to https://servername.domain.com/oab. After entering the credentials it doesn't take it. Do you think I have an IIS settings problem?
0
 
endital1097Commented:
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
 
endital1097Commented:
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
 
endital1097Commented:
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
 
IT-CSOLAuthor Commented:
Windows Authentication is enabled on the oab vdir and I've added the address to my intranet sites list. I'm still getting prompted for credentials and when I enter the credentials it doesn't take them.
0
 
endital1097Commented:
tools - internet options - security tab - custom level
verify that automatic login is enabled


security.PNG
0
 
IT-CSOLAuthor Commented:
I did that and I am still getting prompted for credentials. After trying to login three times I receive the following page.

401 - Unauthorized: Access is denied due to invalid credentials.
You do not have permission to view this directory or page using the credentials that you supplied.
0
 
endital1097Commented:
is name resolution sending you to the correct ip address?

i would check the iis logs on the server to make sure i was hitting the correct site
you could search the log on your username since it is obviously failing and generating a 401
0
 
IT-CSOLAuthor Commented:
The CAS server resolves to the correct IP. I searched the IIS logs for my username and I just see a lot of this following:

2010-08-31 00:16:13 10.10.10.115 GET /oab - 443 mydomain\username 10.10.90.53 Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+6.1;+WOW64;+Trident/4.0;+SLCC2;+.NET+CLR+2.0.50727;+.NET+CLR+3.5.30729;+.NET+CLR+3.0.30729;+Media+Center+PC+6.0;+InfoPath.3) 301 0 0 0
0
 
endital1097Commented:
did you enable redirection on this server (that's what the 301 error represents)
0
 
IT-CSOLAuthor Commented:
Redirection is not set for the OAB in IIS. I checked the other vdirs and it doesn't look to be set on any of them.
0
 
IT-CSOLAuthor Commented:
I opened a ticket with Microsoft on this issue yesterday. I will update this post when I have a resolution.
0
 
IT-CSOLAuthor Commented:
Microsoft resolved the issue. One of the problems was IIS related on the CAS server.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 9
  • 8
Tackle projects and never again get stuck behind a technical roadblock.
Join Now