asked on
OMA Not Working - IPhone Sync SBS 2003
I need some help with OMA. I am trying to setup an iphone to sync with Exchange on SBS 2003. I know the first step is to check OMA. When I go there in the browswer, I get a login screen then a blank white screen.
I have already installed Exchange SP2.
Any help is apprecated.
I have already installed Exchange SP2.
Any help is apprecated.
ExchangeMicrosoft IIS Web ServerSBS
Last Comment
itsupportmd
ASKER
Thanks for the guilde. It is pretty awesome. Although, I am not working yet. I followed the guilde and the test failed when I used the https://testexchangeconnectivity.com . Although, when I used the https://store.accessmylan.com/main/diagnostic-tools tool, it said it was active, but there was a problem with my certificate, it wasn't trusted.
I think we are getter closer. Please help
I think we are getter closer. Please help
Okay - is your certificate a self-issued SBS certificate or a 3rd party purchased certificate?
If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.
Then please post the results.
Thanks
Alan
If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.
Then please post the results.
Thanks
Alan
ASKER
Alan,
Thanks. No good. Here is what the error is:
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
Additional Details
The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Accept/Require Client Certificates isn't configured.
Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
The HTTP authentication methods are correct.
Additional Details
ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
An ActiveSync session is being attempted with the server.
Errors were encountered while testing the Exchange ActiveSync session.
Test Steps
Attempting to send the OPTIONS command to the server.
The OPTIONS response was successfully received and is valid.
Additional Details
Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Attempting the FolderSync command on the Exchange ActiveSync session.
The test of the FolderSync command failed.
Tell me more about this issue and how to resolve it
Additional Details
Exchange ActiveSync returned an HTTP 500 response.
Thanks. No good. Here is what the error is:
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
Additional Details
The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Accept/Require Client Certificates isn't configured.
Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
The HTTP authentication methods are correct.
Additional Details
ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
An ActiveSync session is being attempted with the server.
Errors were encountered while testing the Exchange ActiveSync session.
Test Steps
Attempting to send the OPTIONS command to the server.
The OPTIONS response was successfully received and is valid.
Additional Details
Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Attempting the FolderSync command on the Exchange ActiveSync session.
The test of the FolderSync command failed.
Tell me more about this issue and how to resolve it
Additional Details
Exchange ActiveSync returned an HTTP 500 response.
Okay - can you please re-run the connect to the internet wizard and then re-test.
ASKER
Alan,
Here are the new results
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Validating certificate trust for Windows Mobile devices.
Certificate trust validation failed.
Tell me more about this issue and how to resolve it
Additional Details
The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
Here are the new results
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Validating certificate trust for Windows Mobile devices.
Certificate trust validation failed.
Tell me more about this issue and how to resolve it
Additional Details
The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
Okay - your SSL Certificate is a self-issued one, so please re-run the Exchange Activesync test, specify manual server settings and please tick the "Ignore Trust for SSL" check box, then post the result.
Thanks
Alan
Thanks
Alan
ASKER
Alan,
Thanks. That is what I did and the results I posted previously is what I got.
Thanks. That is what I did and the results I posted previously is what I got.
Do you recall how the certificate was generated? Was it done via the Connect to the internet Wizard or manually generated?
Can you also download the following update:
http://www.microsoft.com/downloads/en/details.aspx?FamilyID=e4f9b573-66d7-4dda-95d5-26c7d0f6c652
http://www.microsoft.com/downloads/en/details.aspx?FamilyID=e4f9b573-66d7-4dda-95d5-26c7d0f6c652
ASKER
Alan,
Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
Are the test results any better?
ASKER
I get the same 500 error.
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
Additional Details
The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Accept/Require Client Certificates isn't configured.
Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
The HTTP authentication methods are correct.
Additional Details
ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
An ActiveSync session is being attempted with the server.
Errors were encountered while testing the Exchange ActiveSync session.
Test Steps
Attempting to send the OPTIONS command to the server.
The OPTIONS response was successfully received and is valid.
Additional Details
Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Attempting the FolderSync command on the Exchange ActiveSync session.
The test of the FolderSync command failed.
Tell me more about this issue and how to resolve it
Additional Details
Exchange ActiveSync returned an HTTP 500 response.
ExRCA is testing Exchange ActiveSync.
The Exchange ActiveSync test failed.
Test Steps
Attempting to resolve the host name mail.balancelogic.com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 173.10.170.125
Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name mail.balancelogic.com was found in the Certificate Subject Common name.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
Additional Details
The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Accept/Require Client Certificates isn't configured.
Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
The HTTP authentication methods are correct.
Additional Details
ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
An ActiveSync session is being attempted with the server.
Errors were encountered while testing the Exchange ActiveSync session.
Test Steps
Attempting to send the OPTIONS command to the server.
The OPTIONS response was successfully received and is valid.
Additional Details
Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Attempting the FolderSync command on the Exchange ActiveSync session.
The test of the FolderSync command failed.
Tell me more about this issue and how to resolve it
Additional Details
Exchange ActiveSync returned an HTTP 500 response.
ASKER
This is what I get using the ActiveSync tester.
Testing 192.168.0.2 (SSL, On LAN):
Communications:
Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
Receiving ..........................
Ensuring not Self-Signed ................. FAIL
Verifying certificate .................... FAIL
ActiveSync:
Checking for application ................. OK
Checking version ......................... OK (6.5.7638.1)
Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
Checking "corporate/bcampbell" ........... OK
Result:
ActiveSync IS available but the certificate is not trusted.
Testing 192.168.0.2 (SSL, On LAN):
Communications:
Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
Receiving ..........................
Ensuring not Self-Signed ................. FAIL
Verifying certificate .................... FAIL
ActiveSync:
Checking for application ................. OK
Checking version ......................... OK (6.5.7638.1)
Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
Checking "corporate/bcampbell" ........... OK
Result:
ActiveSync IS available but the certificate is not trusted.
Okay - 1 test bad - 1 test good! Can you try configuring the account on the iPhone please and if no dice - follow the HTTP 500 error section of my article:
https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
ASKER
Alan,
I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.
please help!
I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.
please help!
Okay - following the HTTP 500 error from the test site - please follow method 2 of KB883380 which deletes and re-creates the Exchange virtual directories.
Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.
All links are in my article.
Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.
All links are in my article.
ASKER
I will be following your suggestion tonight and I will you know how it turns out.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
alan - thanks for help. although I still have not resolved the problem I will still award the points for you tremendous effort.
Thanks again
Thanks again
My guide should help you sort your configuration out and get you working:
https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html