Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


web access and outlook won't work - exchange server 2010

Posted on 2010-09-01
Medium Priority
Last Modified: 2012-05-10
hi - I have a question here about exchange server 2010, it is in a test environment.

server1: windows server 2003 standard SP2, exchange server standard 2003 SP2. it is a DC with a mail server on it. for sure also with dns, dhcp and wins. mail flow is fine with internal and external.

I would like to replace this server with 2008R2 and exchange 2010. so
I install a 2008R2 server, join the domain, make it a DC. then dcpromo it to a DC. then demote the server1 to a regular server. on the new DC( server2), I raise the function level of domain and forest to 2008R2. and also move the dns and dhcp to server2. at this moment, everything is still fine: internet access, user login, mail flow...

then on server2, i installed exchange 2010. I can move mailbox from server1 to server2. I can see both servers in exchange system manager.
for these mailbox still in server1, I can access them either from http://server1/exchange or from outlook 2003.
but i can not access these mailbox in server2 through https://server2/owa or outlook 2003.
I tried these moved mailbox or new created mailbox, neither doesnot work.

on the OWA, it says 'The user name or password you entered isn't correct. Try entering it again.'
on the outlook, it says 'unable to open your default email folders. The microsoft exchange server computer is not available. either there are network problems or the microsoft exchanger server computer is down for maintenance'

the exchange 2010 installation seems a straight through. i do not know why it does not let me access the mailbox, anyone can help?

Question by:robinyanwang
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 3
  • 2

Expert Comment

ID: 33582960
Have you configured outlook web app
From EMS

Set-OwaVirtualDirectory -Identity "YOUREXCHANGE2010SERVER\owa (Default Web Site)"
-ExternalUrl "https://mail.yourexternalurl.com/owa
-InternalUrl "https://server2/owa"

Expert Comment

ID: 33582989
From the GUI
Configure Settings on Virtual Directories
Perform the following steps from the computer that has the Exchange 2010 Client Access server role installed.
1.      In the Console tree, navigate to Server Configuration > Client Access.
2.      In the Result pane, select the Client Access server you want to configure.
3.      In the Work pane, click the tab that corresponds to the virtual directory whose settings you want to configure (Outlook Web App, Exchange Control Panel, Exchange ActiveSync), and then click the virtual directory.
4.      In the Actions pane, under the virtual directory name, click Properties.
5.      Edit any of the settings on the tabs. (If you need more information about the settings, click F1 while you're on a tab.) Common settings to be configured are:
External URL   This is the URL used to access the Web site from the Internet. The value for this URL should have been set during installation of the Client Access server role.
Authentication   You can specify a variety of authentication options, as well as specify the sign-in format and sign-in domain.
Public Computer File Access   For Outlook Web App, you can configure direct file access settings for users who choose the public or shared computer option when logging in.
Private Computer File Access   For Outlook Web App, you can configure direct file access settings for users who choose the private option when logging in.
Exchange2003URL   This parameter is only necessary when you have users with mailboxes on Exchange 2003 at the same time as users with mailboxes on Exchange 2010. In that case, set this parameter to the legacy DNS endpoint, for example, http://legacy.contoso.com.
Click OK to confirm changes

Author Comment

ID: 33583591
thanks and will get back to you tomorrow morning.
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

LVL 14

Accepted Solution

Kaffiend earned 1600 total points
ID: 33583874
For the Outlook 2003 issue, configure the client and make sure that "Encrypt data between Microsoft Office Outlook and Microsoft Exchange Server" is checked.  (You will find this in the "Security" tab)

Or, I suppose you could (this is the opposite of a "Best Practice", btw) turn off the encryption requirement on the Exchange 2010 server.

Author Comment

ID: 33588990
Hi, Kaffiend.

by checked the 'Encrypt data between Microsoft Office Outlook and Microsoft Exchange Server', I can access it through outlook 2003.

do you know how to turn off the 'encryption requirement on the Exchange 2010 server'?


Author Comment

ID: 33589342
hi, I use 'Set-RpcClientAccess –Server Exchange_server_name –EncryptionRequired $False' in EMS and i can use outlook 2003 without  checking the 'Encrypt data between Microsoft Office Outlook and Microsoft Exchange Server'

but I still can not see this through owa, I am wondering if it is a SSL issue? I tried IE 8 and chrome

in IE8, when I tried https://server2.domain.com/owa, it comes out a webiste security certificate problem warning, and I choose continue to this website, then I can see the outlook web app, but just wont let me login.

in chrome, also the same thing.

the IIS seems working, I do not know why I can not using the web access.

by the way, mail flow using outlook 2003 for these new created user in server2 is fine.

Author Comment

ID: 33592596
updates -

I installed the SP1 and there are some requirements for iis 7. I follow the steps and got the owa up and running for login.

thanks guys.


Expert Comment

ID: 33592611
Well Done,

Default install of IIS misses some key requirements for sure.

Author Comment

ID: 33632458
hey, sorry for not closing this question.

i have a new question regarding to this exchange upgrade issue.

incoming email is now go through the exchange 2010 - server2, i modify the static route in our firewall, make the public Ip address mapping to the server2 ip address.

but looks like the outgoing email still need server1. if the server is shut down, i can not send email out (from these mailbox in server2 for sure.) I know in 2003, outgoing email is about the smtp connection.

I have a smtp 'send connector' - the default one in the 'organization configuration' 'hub transport'.  i am not sure why it still goes out through the old exchange 2003 - server1.

any suggestions? thanks.

LVL 14

Assisted Solution

Kaffiend earned 1600 total points
ID: 33632912
Check the settings on your Send Connector.

Source server: make sure the new server is listed here (and not the Ex2K3 server)
Things like address space - (should be " * ")
Make sure there is no Smart Host


Author Comment

ID: 33642577
updates -

can not modify the default smtp one via server2

but i can create a new outbound smtp connector and add server2 in the list.

the outbound email is working now without the help of server1/


Author Closing Comment

ID: 33642593

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question