Solved

OMA Not Working - IPhone Sync SBS 2003

Posted on 2011-03-09
20
1,451 Views
Last Modified: 2012-05-11
I need some help with OMA. I am trying to setup an iphone to sync with Exchange on SBS 2003. I know the first step is to check OMA. When I go there in the browswer, I get a login screen then a blank white screen.

I have already installed Exchange SP2.

Any help is apprecated.
0
Comment
Question by:itsupportmd
  • 10
  • 10
20 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
OMA has nothing to do with activesync which is what you use to connect an iPhone to an Exchange Server.

My guide should help you sort your configuration out and get you working:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
0
 

Author Comment

by:itsupportmd
Comment Utility
Thanks for the guilde. It is pretty awesome. Although, I am not working yet. I followed the guilde and the test failed when I used the https://testexchangeconnectivity.com . Although, when I used the https://store.accessmylan.com/main/diagnostic-tools tool, it said it was active, but there was a problem with my certificate, it wasn't trusted.

I think we are getter closer. Please help
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Okay - is your certificate a self-issued SBS certificate or a 3rd party purchased certificate?

If self-issued - on the https://testexchangeconnectivity.com site, run the Exchange Activesync test, specify manual server settings and tick the "Ignore Trust for SSL" check box.

Then please post the results.

Thanks

Alan
0
 

Author Comment

by:itsupportmd
Comment Utility
Alan,

Thanks. No good. Here is what the error is:

ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Wed, 09 Mar 2011 22:40:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
 
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Okay - can you please re-run the connect to the internet wizard and then re-test.
0
 

Author Comment

by:itsupportmd
Comment Utility
Alan,

Here are the new results

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The SSL certificate failed one or more certificate validation checks.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Validating certificate trust for Windows Mobile devices.
  Certificate trust validation failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  The certificate chain didn't end in a trusted root. Root = CN=mail.balancelogic.com, CN=companyweb, CN=bl-sbs, CN=localhost, CN=bl-sbs.corporate.local
 
 
 
 
 
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Okay - your SSL Certificate is a self-issued one, so please re-run the Exchange Activesync test, specify manual server settings and please tick the "Ignore Trust for SSL" check box, then post the result.

Thanks

Alan
0
 

Author Comment

by:itsupportmd
Comment Utility
Alan,

Thanks. That is what I did and the results I posted previously is what I got.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Do you recall how the certificate was generated?  Was it done via the Connect to the internet Wizard or manually generated?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:itsupportmd
Comment Utility
Alan,

Thanks. I downloaded the update and ran it. Although, nothing came on the screen. The certificate was generated when I reran the Connect to the internet Wizard
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Are the test results any better?
0
 

Author Comment

by:itsupportmd
Comment Utility
I get the same 500 error.

 ExRCA is testing Exchange ActiveSync.  
  The Exchange ActiveSync test failed.
   Test Steps
   Attempting to resolve the host name mail.balancelogic.com in DNS.
  The host name resolved successfully.
   Additional Details
  IP addresses returned: 173.10.170.125
 
 Testing TCP port 443 on host mail.balancelogic.com to ensure it's listening and open.
  The port was opened successfully.
 Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
   Test Steps
   Validating the certificate name.
  The certificate name was validated successfully.
   Additional Details
  Host name mail.balancelogic.com was found in the Certificate Subject Common name.
 
 Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
   Additional Details
  The certificate is valid. NotBefore = 3/9/2011 9:53:48 PM, NotAfter = 3/9/2016 9:53:48 PM
 
 
 
 Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
   Additional Details
  Accept/Require Client Certificates isn't configured.
 
 Testing HTTP Authentication Methods for URL https://mail.balancelogic.com/Microsoft-Server-Activesync/.
  The HTTP authentication methods are correct.
   Additional Details
  ExRCA found all expected authentication methods and no disallowed methods. Methods found: Basic
 
 An ActiveSync session is being attempted with the server.
  Errors were encountered while testing the Exchange ActiveSync session.
   Test Steps
   Attempting to send the OPTIONS command to the server.
  The OPTIONS response was successfully received and is valid.
   Additional Details
  Headers received: MicrosoftOfficeWebServer: 5.0_Pub
Pragma: no-cache
Public: OPTIONS, POST
Allow: OPTIONS, POST
MS-Server-ActiveSync: 6.5.7638.1
MS-ASProtocolVersions: 1.0,2.0,2.1,2.5
MS-ASProtocolCommands: Sync,SendMail,SmartForward,SmartReply,GetAttachment,GetHierarchy,CreateCollection,DeleteCollection,MoveCollection,FolderSync,FolderCreate,FolderDelete,FolderUpdate,MoveItems,GetItemEstimate,MeetingResponse,ResolveRecipients,ValidateCert,Provision,Search,Notify,Ping
Content-Length: 0
Date: Thu, 10 Mar 2011 15:43:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

 
 
 Attempting the FolderSync command on the Exchange ActiveSync session.
  The test of the FolderSync command failed.
   Tell me more about this issue and how to resolve it
   Additional Details
  Exchange ActiveSync returned an HTTP 500 response.
 
 
 
 
 
0
 

Author Comment

by:itsupportmd
Comment Utility
This is what I get using the ActiveSync tester.


Testing 192.168.0.2 (SSL, On LAN):

Communications:
      Doing DNS lookup on 192.168.0.2 .......... OK (bl-sbs.corporate.local)
      Testing TCP to 192.168.0.2 port 443 ...... OK
SSL Certificate:
      Receiving ................................ OK
      Ensuring not Self-Signed ................. FAIL
      Verifying certificate .................... FAIL
ActiveSync:
      Checking for application ................. OK
      Checking version ......................... OK (6.5.7638.1)
      Checking protocols ....................... OK (1.0,2.0,2.1,2.5)
User Permissions:
      Checking "corporate/bcampbell" ........... OK

Result:
      ActiveSync IS available but the certificate is not trusted.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Okay - 1 test bad - 1 test good!  Can you try configuring the account on the iPhone please and if no dice - follow the HTTP 500 error section of my article:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/A_1798-Exchange-2003-Activesync-Connection-Problems-FAQ.html
0
 

Author Comment

by:itsupportmd
Comment Utility
Alan,

I have done all of the steps except messing with the registry. Nothing seems to be working. I am getting 403 from ActiveSync and 500 from the exchange test.

please help!
0
 
LVL 76

Expert Comment

by:Alan Hardisty
Comment Utility
Okay - following the HTTP 500 error from the test site - please follow method 2 of KB883380 which deletes and re-creates the Exchange virtual directories.

Also delete the exchange-oma virtual directory (which won't get recreated automatically) and then follow KB817379 to create that.

All links are in my article.
0
 

Author Comment

by:itsupportmd
Comment Utility
I will be following your suggestion tonight and I will you know how it turns out.
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 500 total points
Comment Utility
No problems - here for a few more hours if you need me then about tomorrow.

Alan
0
 

Author Closing Comment

by:itsupportmd
Comment Utility
alan - thanks for help. although I still have not resolved the problem I will still award the points for you tremendous effort.

Thanks again
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now