?
Solved

Outlook 2007 problems accessing Exchange 2010 mailboxes

Posted on 2011-10-25
7
Medium Priority
?
370 Views
Last Modified: 2012-08-14
Hello,

My company is moving from Exchange 2003 to Exchange 2010.  We have one back-end Exchange 2003 server, and two Exchange 2010 servers.  I have setup a DAG using the 2010 servers.  I have also setup a CAS array, and am using hardware load balancers.

If I either create a new Exchange 2010 mailbox, or move an existing mailbox from Exchange 2003, when using a Windows 7 client logged on as the associated user, I can successfully configure and open the mailbox in Outlook 2007.  However, when I am logged onto our Windows 2003 Terminal Server as the same user, I get the message "Outlook cannot log on.  Verify you are connected to the network and using the proper server and mailbox name.  The connection to Microsoft Exchange is unavailable.  Outlook must be online or connected to complete this action."  If I can get past this point, I get a message saying "Microsoft Exchange is unavailable".

In addition, even though I should have full access to all mailboxes, when I add an Exchange 2010 mailbox as a secondary mailbox to my Outlook profile, I get "Cannot display the folder".  If I create a new Outlook profile to make the Exchange 2010 mailbox a primary mailbox, I am repeatedly asked to enter credentials, and cannot open the mailbox.

Any help would be much appreciated.
0
Comment
Question by:vphul
  • 4
  • 3
7 Comments
 
LVL 5

Expert Comment

by:neothwin
ID: 37025212
are you using wildcard certificate? e.g. *.abc.com
0
 
LVL 5

Expert Comment

by:neothwin
ID: 37025341
if you are using wildcard cert or your certificate subject name is different from exchange outlook anywhere external host name, you need to run reconfigure your outlook provider:

Set-OutlookProvider EXPR -CertPrincipalName msstd:*.abc.com
or
Set-OutlookProvider EXPR -CertPrincipalName msstd:yourExternalName.company.com

Wildcard certs and SAN certs are OK on win Vista and later OS but not on Win XP/2003.
0
 

Author Comment

by:vphul
ID: 37030022
Hello Neothwin,

We are not using Outlook Anywhere.

The internal and external address for our CAS array is mail.company.com .

I have run
Set-OutlookProvider EXPR -CertPrincipalName msstd:mail.company.com
and it has made no difference.  Before running it, I could get an Exchange 2010 mailbox to open in Outlook 2007 on our Windows 2003 Terminal Server by disabling RPC Encryption on both our CAS servers, but now I can't.

0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 
LVL 5

Expert Comment

by:neothwin
ID: 37030581
it needs to match with the cert name install on CAS servers.
0
 

Author Comment

by:vphul
ID: 37030638
It does.  We have a Unified Communications certificate with the common name of mail.company.com .
0
 

Accepted Solution

by:
vphul earned 0 total points
ID: 37094886
In the end I paid for support from Microsoft.

The terminal server issue relates to
 
http://blogs.technet.com/b/kpapadak/archive/2011/03/13/setting-up-kerberos-with-a-client-access-server-array.aspx
 
and the secondary mailbox issue is covered in part by
 
http://support.microsoft.com/kb/907434
 
"We recommend that you do not use accounts that are members of protected groups for e-mail purposes. If you require the rights that are afforded to a protected group, we recommend that you have two Active Directory user accounts. These Active Directory accounts include one user account that is added to a protected group and one user account that is used for e-mail purposes and at all other times."
 
I hope this helps others.
0
 

Author Closing Comment

by:vphul
ID: 37123866
Upgrading to Exchange 2010 is a real learning curve!!
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
MS Outlook undoubtedly is the most widely used email client.Its user-friendliness, cost effectiveness, and availability with Microsoft Office Suite make it the most popular email application.  Its compatibility with Microsoft applications like Exch…
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses
Course of the Month16 days, 3 hours left to enroll

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question