Avatar of itsupportmd
itsupportmd
 asked on

OMA Not Working - IPhone Sync SBS 2003

I need some help with OMA. I am trying to setup an iphone to sync with Exchange on SBS 2003. I know the first step is to check OMA. When I go there in the browswer, I get a login screen then a blank white screen.

I have already installed Exchange SP2.

Any help is apprecated.
ExchangeMicrosoft IIS Web ServerSBS

Avatar of undefined
Last Comment
itsupportmd

8/22/2022 - Mon
Alan Hardisty

OMA has nothing to do with activesync which is what you use to connect an iPhone to an Exchange Server.

My guide should help you sort your configuration out and get you working:

https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
itsupportmd

ASKER
Thanks for the guilde. It is pretty awesome. Although, I am not working yet. I followed the guilde and the test failed when I used the https://testexchangeconnectivity.com . Although, when I used the https://store.accessmylan.com/main/diagnostic-tools tool, it said it was active, but there was a problem with my certificate, it wasn't trusted.

I think we are getter closer. Please help
Alan Hardisty

Okay - is your certificate a self-issued SBS certificate or a 3rd party purchased certificate?

If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.

Then please post the results.

Thanks

Alan
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
itsupportmd

ASKER
Alan,

Thanks. No good. Here is what the error is:

ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
 
Alan Hardisty

Okay - can you please re-run the connect to the internet wizard and then re-test.
itsupportmd

ASKER
Alan,

Here are the new results

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The SSL certificate failed one or more certificate validation checks.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Validating certificate trust for Windows Mobile devices.
  Certificate trust validation failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
 
 
 
 
 
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
Alan Hardisty

Okay - your SSL Certificate is a self-issued one, so please re-run the Exchange Activesync test, specify manual server settings and please tick the "Ignore Trust for SSL" check box, then post the result.

Thanks

Alan
itsupportmd

ASKER
Alan,

Thanks. That is what I did and the results I posted previously is what I got.
Alan Hardisty

Do you recall how the certificate was generated?  Was it done via the Connect to the internet Wizard or manually generated?
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
Alan Hardisty

itsupportmd

ASKER
Alan,

Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
Alan Hardisty

Are the test results any better?
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
itsupportmd

ASKER
I get the same 500 error.

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
itsupportmd

ASKER
This is what I get using the ActiveSync tester.


Testing 192.168.0.2 (SSL, On LAN):

Communications:
      Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
      Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
      Receiving ................................ OK
      Ensuring not Self-Signed ................. FAIL
      Verifying certificate .................... FAIL
ActiveSync:
      Checking for application ................. OK
      Checking version ......................... OK (6.5.7638.1)
      Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
      Checking "corporate/bcampbell" ........... OK

Result:
      ActiveSync IS available but the certificate is not trusted.
Alan Hardisty

Okay - 1 test bad - 1 test good!  Can you try configuring the account on the iPhone please and if no dice - follow the HTTP 500 error section of my article:

https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
itsupportmd

ASKER
Alan,

I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.

please help!
Alan Hardisty

Okay - following the HTTP 500 error from the test site - please follow method 2 of KB883380 which deletes and re-creates the Exchange virtual directories.

Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.

All links are in my article.
itsupportmd

ASKER
I will be following your suggestion tonight and I will you know how it turns out.
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
ASKER CERTIFIED SOLUTION
Alan Hardisty

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
itsupportmd

ASKER
alan - thanks for help. although I still have not resolved the problem I will still award the points for you tremendous effort.

Thanks again