Link to home
Start Free TrialLog in
Avatar of itsupportmd
itsupportmd

asked on

OMA Not Working - IPhone Sync SBS 2003

I need some help with OMA. I am trying to setup an iphone to sync with Exchange on SBS 2003. I know the first step is to check OMA. When I go there in the browswer, I get a login screen then a blank white screen.

I have already installed Exchange SP2.

Any help is apprecated.
Avatar of Alan Hardisty
Alan Hardisty
Flag of United Kingdom of Great Britain and Northern Ireland image

OMA has nothing to do with activesync which is what you use to connect an iPhone to an Exchange Server.

My guide should help you sort your configuration out and get you working:

https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
Avatar of itsupportmd
itsupportmd

ASKER

Thanks for the guilde. It is pretty awesome. Although, I am not working yet. I followed the guilde and the test failed when I used the https://testexchangeconnectivity.com . Although, when I used the https://store.accessmylan.com/main/diagnostic-tools tool, it said it was active, but there was a problem with my certificate, it wasn't trusted.

I think we are getter closer. Please help
Okay - is your certificate a self-issued SBS certificate or a 3rd party purchased certificate?

If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.

Then please post the results.

Thanks

Alan
Alan,

Thanks. No good. Here is what the error is:

ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
 
Okay - can you please re-run the connect to the internet wizard and then re-test.
Alan,

Here are the new results

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The SSL certificate failed one or more certificate validation checks.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Validating certificate trust for Windows Mobile devices.
  Certificate trust validation failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
 
 
 
 
 
Okay - your SSL Certificate is a self-issued one, so please re-run the Exchange Activesync test, specify manual server settings and please tick the "Ignore Trust for SSL" check box, then post the result.

Thanks

Alan
Alan,

Thanks. That is what I did and the results I posted previously is what I got.
Do you recall how the certificate was generated?  Was it done via the Connect to the internet Wizard or manually generated?
Alan,

Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
Are the test results any better?
I get the same 500 error.

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
This is what I get using the ActiveSync tester.


Testing 192.168.0.2 (SSL, On LAN):

Communications:
      Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
      Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
      Receiving ................................ OK
      Ensuring not Self-Signed ................. FAIL
      Verifying certificate .................... FAIL
ActiveSync:
      Checking for application ................. OK
      Checking version ......................... OK (6.5.7638.1)
      Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
      Checking "corporate/bcampbell" ........... OK

Result:
      ActiveSync IS available but the certificate is not trusted.
Okay - 1 test bad - 1 test good!  Can you try configuring the account on the iPhone please and if no dice - follow the HTTP 500 error section of my article:

https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
Alan,

I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.

please help!
Okay - following the HTTP 500 error from the test site - please follow method 2 of KB883380 which deletes and re-creates the Exchange virtual directories.

Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.

All links are in my article.
I will be following your suggestion tonight and I will you know how it turns out.
ASKER CERTIFIED SOLUTION
Avatar of Alan Hardisty
Alan Hardisty
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
alan - thanks for help. although I still have not resolved the problem I will still award the points for you tremendous effort.

Thanks again