Solved

Exchange 2007: Clients do not download OAB in cached mode

Posted on 2010-08-30
17
1,438 Views
Last Modified: 2012-05-10
I'm running Exchange 2007 and Outlook 2007. Outlook 2007 clients are not showing the updated GAL. If I turn off cached mode in Outlook the address book is up to date. Also, I am able to see the users listed in the GAL using OWA. I have regenerated the OAB and have forced a full OAB download to the client with no success. I changed my log settings on the CAS server to full and then checked the application log but there are no OAB events showing. I checked the application log on the client side and see no OAB errors. Exchange File Distribution Service is started on the CAS server. I’m not sure what else to try at this point.
0
Comment
Question by:IT-CSOL
  • 9
  • 8
17 Comments
 
LVL 32

Accepted Solution

by:
endital1097 earned 500 total points
ID: 33561943
from the exchange management shell run
Get-OabVirtualDirectory | fl InternalUrl

then from a client attempt to browse to that URL
https://server.domain.com/OAB

you should not get any certificate warnings or login prompts
0
 

Author Comment

by:IT-CSOL
ID: 33562062
The OAB virtual directory is pointing to the wrong server. How do I change this? Thanks.

Get-OabVirtualDirectory : The task was not able to connect to IIS on the server
 'oldserver.charlottelaw.org'.  Ensure that the server exists and is reachable fro
m this computer: The RPC server is unavailable.
At line:1 char:24
+ Get-OabVirtualDirectory <<<<  | fl InternalUrl
    + CategoryInfo          : ReadError: (oldserver\OAB (Default Web Site):ADObje
   ctId) [Get-OabVirtualDirectory], IISNotReachableException
    + FullyQualifiedErrorId : 39C8DF37,Microsoft.Exchange.Management.SystemCon
   figurationTasks.GetOabVirtualDirectory
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33562082
Set-Oabvirtualdirectory -internalURL https:\\servername.domain.com\OAB
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33562100
you'll also want to check the offline address book settings noting the web based distribution and virtaul directories
get-offlineaddressbook | fl

or you can view thru the gui
0
 

Author Comment

by:IT-CSOL
ID: 33562421
The offline address book settings are correct but I am forced to enter credentials when I connect to https://servername.domain.com/oab. After entering the credentials it doesn't take it. Do you think I have an IIS settings problem?
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33562990
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33563004
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33563078
Make sure windows integrated is enabled for the oab vdir
you can also add servername.domain.com to the local intranet security zone in ie
0
Integrate social media with email signatures

Is your company active on social media? Do you also use email signatures? Including social media icons in your email signature is a great way to get fans for free. Let all your email users know you’re on social media quickly and easily, in a single click.

 

Author Comment

by:IT-CSOL
ID: 33563181
Windows Authentication is enabled on the oab vdir and I've added the address to my intranet sites list. I'm still getting prompted for credentials and when I enter the credentials it doesn't take them.
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33563269
tools - internet options - security tab - custom level
verify that automatic login is enabled


security.PNG
0
 

Author Comment

by:IT-CSOL
ID: 33563422
I did that and I am still getting prompted for credentials. After trying to login three times I receive the following page.

401 - Unauthorized: Access is denied due to invalid credentials.
You do not have permission to view this directory or page using the credentials that you supplied.
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33563452
is name resolution sending you to the correct ip address?

i would check the iis logs on the server to make sure i was hitting the correct site
you could search the log on your username since it is obviously failing and generating a 401
0
 

Author Comment

by:IT-CSOL
ID: 33567084
The CAS server resolves to the correct IP. I searched the IIS logs for my username and I just see a lot of this following:

2010-08-31 00:16:13 10.10.10.115 GET /oab - 443 mydomain\username 10.10.90.53 Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+6.1;+WOW64;+Trident/4.0;+SLCC2;+.NET+CLR+2.0.50727;+.NET+CLR+3.5.30729;+.NET+CLR+3.0.30729;+Media+Center+PC+6.0;+InfoPath.3) 301 0 0 0
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33567145
did you enable redirection on this server (that's what the 301 error represents)
0
 

Author Comment

by:IT-CSOL
ID: 33568128
Redirection is not set for the OAB in IIS. I checked the other vdirs and it doesn't look to be set on any of them.
0
 

Author Comment

by:IT-CSOL
ID: 33576779
I opened a ticket with Microsoft on this issue yesterday. I will update this post when I have a resolution.
0
 

Author Comment

by:IT-CSOL
ID: 33616981
Microsoft resolved the issue. One of the problems was IIS related on the CAS server.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
This video discusses moving either the default database or any database to a new volume.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now