cetomas
asked on
Exchange 2010 - ECP redirects to login page
Hi all,
I have recently setup a new Exchange 2010 server.
When I log into OWA and then click on 'Options' - 'See All Options' I get redirected to a login page displaying the following error, "The user name or password you entered isn't correct. Try entering it again.". Subsequent login attempts with the same user result in the same error. This is related to ECP and not specifically OWA.
I've tried running the following commands from EMS:
get-ecpvirtualdirectory | remove-ecpvirtualdirectory
new-ecpvirtualdirectory
and then restarting IIS. This didn't resolve the issue.
Has anybody seen this before?
I have recently setup a new Exchange 2010 server.
When I log into OWA and then click on 'Options' - 'See All Options' I get redirected to a login page displaying the following error, "The user name or password you entered isn't correct. Try entering it again.". Subsequent login attempts with the same user result in the same error. This is related to ECP and not specifically OWA.
I've tried running the following commands from EMS:
get-ecpvirtualdirectory | remove-ecpvirtualdirectory
new-ecpvirtualdirectory
and then restarting IIS. This didn't resolve the issue.
Has anybody seen this before?
ASKER
I'm explicitly getting an "Access Denied" error but I'll give it a shot and see what happens.
Did you set up any redirection so the site will automaticlly take the users to /owa?
IF you did you want to remove the http redirection for that virtual directory. It may be inherited
IF you did you want to remove the http redirection for that virtual directory. It may be inherited
I also found that i had to change the security settings in AD to allow iphones to connect so it might be worth checking this (its about half way down the page that you need to check)
http://blog.nick.mackechnie.co.nz/post/2009/11/20/Exchange-2010-Active-Sync-Issue.aspx
http://blog.nick.mackechnie.co.nz/post/2009/11/20/Exchange-2010-Active-Sync-Issue.aspx
ASKER
So I tried running these from EMS from the link above:
Remove-EcpVirtualDirectory -Identity "Server01\ecp (default Web site)"
...successfull
New-EcpVirtualDirectory -Identity "Server01\ecp (default Web site)"
...not successful, I have to run just New-EcpVirtualDirectory without parsing any parameters for this to work. Then in EMC, I go to 'Server Configuration' - 'Client Access' - "Exchange Control Panel' tab - Right click on 'ecp (Default Web Site)' - 'Properties' - Manually enter in Internal URL and External URL.
I encounter the same issue as before.
Remove-EcpVirtualDirectory
...successfull
New-EcpVirtualDirectory -Identity "Server01\ecp (default Web site)"
...not successful, I have to run just New-EcpVirtualDirectory without parsing any parameters for this to work. Then in EMC, I go to 'Server Configuration' - 'Client Access' - "Exchange Control Panel' tab - Right click on 'ecp (Default Web Site)' - 'Properties' - Manually enter in Internal URL and External URL.
I encounter the same issue as before.
https://www.experts-exchange.com/questions/26490672/setting-user-acess-to-ECP-in-Exchange-2010-OWA.html
read this thread- had the same problems
read this thread- had the same problems
ASKER
Sorry jrgcomputing, that link is just timing out for me. Care to perform some copy/pasta for me?
ASKER
funkone60: Honestly, this does look like more of a permissions issue than a corrupt ECP virtualdirectory issue.
Hi try this
http://webcache.googleusercontent.com/search?q=cache:FtCF7qZM9I8J:blog.nick.mackechnie.co.nz/post/2009/11/20/Exchange-2010-Active-Sync-Issue.aspx+exchange+2010+activesync+ad+security+settings&cd=4&hl=en&ct=clnk&gl=uk
but basically
On a Domain Controller, Click on Start/All Programs/Administrative Tools/Active Directory Users and Computers
Click on View and Select Advanced Features
Select a mailbox that isn’t working with Active Sync, double click on the account, Select the Security Tab and then the Advanced Button.
Select Exchange Servers, and tick the Include inheritable permissions toggle then Apply and OK.
http://webcache.googleusercontent.com/search?q=cache:FtCF7qZM9I8J:blog.nick.mackechnie.co.nz/post/2009/11/20/Exchange-2010-Active-Sync-Issue.aspx+exchange+2010+activesync+ad+security+settings&cd=4&hl=en&ct=clnk&gl=uk
but basically
On a Domain Controller, Click on Start/All Programs/Administrative Tools/Active Directory Users and Computers
Click on View and Select Advanced Features
Select a mailbox that isn’t working with Active Sync, double click on the account, Select the Security Tab and then the Advanced Button.
Select Exchange Servers, and tick the Include inheritable permissions toggle then Apply and OK.
I did a number of things- to try and fix but the link at the end was the deal
ASKER
funkyone60: I executed this command from the link you provided in the other post but it didn't help:
Set-OwaVirtualDirectory -identity "Owa (Default Web Site)" -DefaultClientLanguage 0 -LogonAndErrorLanguage 0
Set-OwaVirtualDirectory -identity "Owa (Default Web Site)" -DefaultClientLanguage 0 -LogonAndErrorLanguage 0
ASKER
Hey guys, I'm just revisiting this after some proactive tardiness on my part, I'm still experiencing this issue, I've tried a lot of recommendations and aside from contacting Microshaft and having them bill me $200 for support I think I've exhausted all options.
Essentially what this boils down to is through OWA I'm unable to login to ECP as it prompts to re-authenticate even once I've authenticated to OWA. So there's something wacky going on with the permissions I have setup.
Essentially what this boils down to is through OWA I'm unable to login to ECP as it prompts to re-authenticate even once I've authenticated to OWA. So there's something wacky going on with the permissions I have setup.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Did a bit more Googling....found a good resource.
http://social.technet.microsoft.com/Forums/en/exchange2010/thread/4ffb9356-c1b9-4bdd-b6b3-803b3bd3ad3d