Solved

OMA Not Working - IPhone Sync SBS 2003

Posted on 2011-03-09
20
1,457 Views
Last Modified: 2012-05-11
I need some help with OMA. I am trying to setup an iphone to sync with Exchange on SBS 2003. I know the first step is to check OMA. When I go there in the browswer, I get a login screen then a blank white screen.

I have already installed Exchange SP2.

Any help is apprecated.
0
Comment
Question by:itsupportmd
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 10
  • 10
20 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35088018
OMA has nothing to do with activesync which is what you use to connect an iPhone to an Exchange Server.

My guide should help you sort your configuration out and get you working:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
0
 

Author Comment

by:itsupportmd
ID: 35088431
Thanks for the guilde. It is pretty awesome. Although, I am not working yet. I followed the guilde and the test failed when I used the https://testexchangeconnectivity.com . Although, when I used the https://store.accessmylan.com/main/diagnostic-tools tool, it said it was active, but there was a problem with my certificate, it wasn't trusted.

I think we are getter closer. Please help
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35088663
Okay - is your certificate a self-issued SBS certificate or a 3rd party purchased certificate?

If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.

Then please post the results.

Thanks

Alan
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:itsupportmd
ID: 35088794
Alan,

Thanks. No good. Here is what the error is:

ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
 
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35088860
Okay - can you please re-run the connect to the internet wizard and then re-test.
0
 

Author Comment

by:itsupportmd
ID: 35094722
Alan,

Here are the new results

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The SSL certificate failed one or more certificate validation checks.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Validating certificate trust for Windows Mobile devices.
  Certificate trust validation failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
 
 
 
 
 
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35095177
Okay - your SSL Certificate is a self-issued one, so please re-run the Exchange Activesync test, specify manual server settings and please tick the "Ignore Trust for SSL" check box, then post the result.

Thanks

Alan
0
 

Author Comment

by:itsupportmd
ID: 35095195
Alan,

Thanks. That is what I did and the results I posted previously is what I got.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35095272
Do you recall how the certificate was generated?  Was it done via the Connect to the internet Wizard or manually generated?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35095285
0
 

Author Comment

by:itsupportmd
ID: 35095850
Alan,

Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35095861
Are the test results any better?
0
 

Author Comment

by:itsupportmd
ID: 35095877
I get the same 500 error.

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
0
 

Author Comment

by:itsupportmd
ID: 35095883
This is what I get using the ActiveSync tester.


Testing 192.168.0.2 (SSL, On LAN):

Communications:
      Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
      Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
      Receiving ................................ OK
      Ensuring not Self-Signed ................. FAIL
      Verifying certificate .................... FAIL
ActiveSync:
      Checking for application ................. OK
      Checking version ......................... OK (6.5.7638.1)
      Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
      Checking "corporate/bcampbell" ........... OK

Result:
      ActiveSync IS available but the certificate is not trusted.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35095941
Okay - 1 test bad - 1 test good!  Can you try configuring the account on the iPhone please and if no dice - follow the HTTP 500 error section of my article:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
0
 

Author Comment

by:itsupportmd
ID: 35099695
Alan,

I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.

please help!
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35100604
Okay - following the HTTP 500 error from the test site - please follow method 2 of KB883380 which deletes and re-creates the Exchange virtual directories.

Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.

All links are in my article.
0
 

Author Comment

by:itsupportmd
ID: 35152255
I will be following your suggestion tonight and I will you know how it turns out.
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 500 total points
ID: 35152364
No problems - here for a few more hours if you need me then about tomorrow.

Alan
0
 

Author Closing Comment

by:itsupportmd
ID: 35710565
alan - thanks for help. although I still have not resolved the problem I will still award the points for you tremendous effort.

Thanks again
0

Featured Post

Free Webinar: AWS Backup & DR

Join our upcoming webinar with experts from AWS, CloudBerry Lab, and the Town of Edgartown IT to discuss best practices for simplifying online backup management and cutting costs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question