Darth_mark67
asked on
Exchange 2010 RPC over Http
For some reason outlook clients configured for rpc/http are getting prompted for their password. What am I missing?
The RPC/HTTP test failed.
Test Steps
Attempting to resolve the host name mail.schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host mail.schulershook.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Testing HTTP Authentication Methods for URL https://mail.schulershook.com/rpc/rpcproxy.dll.
The HTTP authentication methods are correct.
Additional Details
Testing SSL mutual authentication with the RPC proxy server.
Mutual authentication was verified successfully.
Additional Details
Attempting to ping RPC proxy mail.schulershook.com.
RPC Proxy can't be pinged.
Additional Details
An HTTP 401 Unauthorized response was received from the remote Unknown server. This is usually the result of an incorrect username or password. If you are attempting to log onto an Office 365 service, ensure you are using your full User Principal Name (UPN).
The RPC/HTTP test failed.
Test Steps
Attempting to resolve the host name mail.schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host mail.schulershook.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Testing HTTP Authentication Methods for URL https://mail.schulershook.com/rpc/rpcproxy.dll.
The HTTP authentication methods are correct.
Additional Details
Testing SSL mutual authentication with the RPC proxy server.
Mutual authentication was verified successfully.
Additional Details
Attempting to ping RPC proxy mail.schulershook.com.
RPC Proxy can't be pinged.
Additional Details
An HTTP 401 Unauthorized response was received from the remote Unknown server. This is usually the result of an incorrect username or password. If you are attempting to log onto an Office 365 service, ensure you are using your full User Principal Name (UPN).
Is internal autodiscover working? How to you do the testing? Are you using this linkhttps://www.testexchangeconnectivity.com/?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
auto discover is not listed.
Welcome to the Exchange Management Shell!
Full list of cmdlets: Get-Command
Only Exchange cmdlets: Get-ExCommand
Cmdlets that match a specific string: Help *<string>*
Get general help: Help
Get help for a cmdlet: Help <cmdlet name> or <cmdlet name> -?
Show quick reference guide: QuickRef
Exchange team blog: Get-ExBlog
Show full output for a command: <command> | Format-List
Tip of the day #37:
Want to remove an ActiveSync device from a user's device list? Type:
Remove-ActiveSyncDevice
This cmdlet can be helpful for troubleshooting devices that don't synchronize successfully with the server.
VERBOSE: Connecting to MSG.schulershook.net
VERBOSE: Connected to MSG.schulershook.net.
[PS] C:\Windows\system32>cd..
[PS] C:\Windows>cd..
[PS] C:\>Get-ExchangeCertificat e |fl *domains
CertificateDomains : {mail.schulershook.com}
[PS] C:\>
Welcome to the Exchange Management Shell!
Full list of cmdlets: Get-Command
Only Exchange cmdlets: Get-ExCommand
Cmdlets that match a specific string: Help *<string>*
Get general help: Help
Get help for a cmdlet: Help <cmdlet name> or <cmdlet name> -?
Show quick reference guide: QuickRef
Exchange team blog: Get-ExBlog
Show full output for a command: <command> | Format-List
Tip of the day #37:
Want to remove an ActiveSync device from a user's device list? Type:
Remove-ActiveSyncDevice
This cmdlet can be helpful for troubleshooting devices that don't synchronize successfully with the server.
VERBOSE: Connecting to MSG.schulershook.net
VERBOSE: Connected to MSG.schulershook.net.
[PS] C:\Windows\system32>cd..
[PS] C:\Windows>cd..
[PS] C:\>Get-ExchangeCertificat
CertificateDomains : {mail.schulershook.com}
[PS] C:\>
ASKER
ExRCA is attempting to test Autodiscover for rshook@schulershook.com.
Testing Autodiscover failed.
Test Steps
Attempting each method of contacting the Autodiscover service.
The Autodiscover service couldn't be contacted successfully by any method.
Test Steps
Attempting to test potential Autodiscover URL https://schulershook.com/AutoDiscover/AutoDiscover.xml
Testing of this potential Autodiscover URL failed.
Test Steps
Attempting to resolve the host name schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host schulershook.com to ensure it's listening and open.
The specified port is either blocked, not listening, or not producing the expected response.
Tell me more about this issue and how to resolve it
Additional Details
A network error occurred while communicating with the remote host.
Attempting to test potential Autodiscover URL https://autodiscover.schulershook.com/AutoDiscover/AutoDiscover.xml
Testing of this potential Autodiscover URL failed.
Test Steps
Attempting to resolve the host name autodiscover.schulershook. com in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 206.188.193.210
Testing TCP port 443 on host autodiscover.schulershook. com to ensure it's listening and open.
The specified port is either blocked, not listening, or not producing the expected response.
Tell me more about this issue and how to resolve it
Additional Details
A network error occurred while communicating with the remote host.
Attempting to contact the Autodiscover service using the HTTP redirect method.
The attempt to contact Autodiscover using the HTTP Redirect method failed.
Test Steps
Attempting to resolve the host name autodiscover.schulershook. com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 80 on host autodiscover.schulershook. com to ensure it's listening and open.
The port was opened successfully.
ExRCA is checking the host autodiscover.schulershook. com for an HTTP redirect to the Autodiscover service.
ExRCA failed to get an HTTP redirect response for Autodiscover.
Tell me more about this issue and how to resolve it
Additional Details
A response other than a redirect was received. HTTP status: OK
Attempting to contact the Autodiscover service using the DNS SRV redirect method.
ExRCA failed to contact the Autodiscover service using the DNS SRV redirect method.
Test Steps
Attempting to locate SRV record _autodiscover._tcp.schuler shook.com in DNS.
The Autodiscover SRV record wasn't found in DNS.
Testing Autodiscover failed.
Test Steps
Attempting each method of contacting the Autodiscover service.
The Autodiscover service couldn't be contacted successfully by any method.
Test Steps
Attempting to test potential Autodiscover URL https://schulershook.com/AutoDiscover/AutoDiscover.xml
Testing of this potential Autodiscover URL failed.
Test Steps
Attempting to resolve the host name schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host schulershook.com to ensure it's listening and open.
The specified port is either blocked, not listening, or not producing the expected response.
Tell me more about this issue and how to resolve it
Additional Details
A network error occurred while communicating with the remote host.
Attempting to test potential Autodiscover URL https://autodiscover.schulershook.com/AutoDiscover/AutoDiscover.xml
Testing of this potential Autodiscover URL failed.
Test Steps
Attempting to resolve the host name autodiscover.schulershook.
The host name resolved successfully.
Additional Details
IP addresses returned: 206.188.193.210
Testing TCP port 443 on host autodiscover.schulershook.
The specified port is either blocked, not listening, or not producing the expected response.
Tell me more about this issue and how to resolve it
Additional Details
A network error occurred while communicating with the remote host.
Attempting to contact the Autodiscover service using the HTTP redirect method.
The attempt to contact Autodiscover using the HTTP Redirect method failed.
Test Steps
Attempting to resolve the host name autodiscover.schulershook.
The host name resolved successfully.
Additional Details
Testing TCP port 80 on host autodiscover.schulershook.
The port was opened successfully.
ExRCA is checking the host autodiscover.schulershook.
ExRCA failed to get an HTTP redirect response for Autodiscover.
Tell me more about this issue and how to resolve it
Additional Details
A response other than a redirect was received. HTTP status: OK
Attempting to contact the Autodiscover service using the DNS SRV redirect method.
ExRCA failed to contact the Autodiscover service using the DNS SRV redirect method.
Test Steps
Attempting to locate SRV record _autodiscover._tcp.schuler
The Autodiscover SRV record wasn't found in DNS.
ASKER
This is the only error I'm getting now:
Testing RPC/HTTP connectivity.
The RPC/HTTP test failed.
Test Steps
Attempting to resolve the host name mail.schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host mail.schulershook.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Testing HTTP Authentication Methods for URL https://mail.schulershook.com/rpc/rpcproxy.dll.
The HTTP authentication methods are correct.
Additional Details
Testing SSL mutual authentication with the RPC proxy server.
Mutual authentication was verified successfully.
Additional Details
Attempting to ping RPC proxy mail.schulershook.com.
RPC Proxy was pinged successfully.
Additional Details
Attempting to ping RPC endpoint 6001 (Exchange Information Store) on server mail.schulershook.com.
The attempt to ping the endpoint failed.
Tell me more about this issue and how to resolve it
Additional Details
The RPC_S_SERVER_UNAVAILABLE error (0x6ba) was thrown by the RPC Runtime process.
Testing RPC/HTTP connectivity.
The RPC/HTTP test failed.
Test Steps
Attempting to resolve the host name mail.schulershook.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host mail.schulershook.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Additional Details
Testing HTTP Authentication Methods for URL https://mail.schulershook.com/rpc/rpcproxy.dll.
The HTTP authentication methods are correct.
Additional Details
Testing SSL mutual authentication with the RPC proxy server.
Mutual authentication was verified successfully.
Additional Details
Attempting to ping RPC proxy mail.schulershook.com.
RPC Proxy was pinged successfully.
Additional Details
Attempting to ping RPC endpoint 6001 (Exchange Information Store) on server mail.schulershook.com.
The attempt to ping the endpoint failed.
Tell me more about this issue and how to resolve it
Additional Details
The RPC_S_SERVER_UNAVAILABLE error (0x6ba) was thrown by the RPC Runtime process.
You need to buy a UCC certificate from a 3rd Certificate Authority like http://www.digicert.com/ and include at least the following domains:
autodiscover.domain.com
client.domain.com
CASSERVERNAME.com / CASSERVERNAME.local
autodiscover.domain.com
client.domain.com
CASSERVERNAME.com / CASSERVERNAME.local