Connect to OWA (Exchange 2010 - TMG) using Blackberry Phone

Hi All,

I have Exchange 2010 standard server migrated from Exchange 2003. All settings are ok. My OWA is published with TMG 2010 standard. I have access to OWA from external clients with no problem.
We need to configure email client in blackberry phone, but with no success. I have this message : " Cannot log in. Verify your email address, user name and password. If the error persists, contact domain.com, "

My Settings in Blackberry :

Email address : user@domain.com
Password : my AD password
Web Access URL : https://my.mail.com (without /owa)
User name : domain\username
Mailbox Name : my AD user name

OWA Authentication in Exchange 2010 : Basic Authentication
Web Listener Authentication in TMG 2010 : HTTP Authentication (Basic) - Windows (Active Directory)
OWA Publish Rule in TMG 2010 (Authentication Delegation) :  Basic Authentication

Please help me to find my mistake . Whats wrong in my configuration?
TamoozAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

lauchangkwangCommented:
Did you try Mailbox name = user@domain.com ??
TamoozAuthor Commented:
Yes, now and still cannot log in.
TamoozAuthor Commented:
May be it's because Basic Authentication?
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

lauchangkwangCommented:
Just to double confirm, when the time you said you are able to access OWA with no problem, is that using the link https://my.mail.com or https://my.mail.com/owa ?? If with owa, try to put the same link under Web Access URL and see whether it works.
TamoozAuthor Commented:
It's https://my.mail.com/owa. Still cannot log in.
Lance_PCommented:
https://www.testexchangeconnectivity.com/

Run the connectivity tests here and ensure that all pass. If not, then the site will guide you with what you can do to resolve your issues.
TamoozAuthor Commented:
Exchange Web Services synchronization, notification, availability, and Automatic Replies (OOF).

Not all of the tests of Exchange Web Services tasks completed.

Test Steps

Ensuring that the test mailbox folder is empty and accessible.

ExRCA couldn't confirm that the folder is accessible and empty.

Additional Details
Exception details:
Message: The request failed. The remote server returned an error: (403) Forbidden.
Type: Microsoft.Exchange.WebServices.Data.ServiceRequestException
Stack trace:
 at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.GetEwsHttpWebResponse(IEwsHttpWebRequest request)
 at Microsoft.Exchange.WebServices.Data.MultiResponseServiceRequest`1.Execute()
 at Microsoft.Exchange.WebServices.Data.ExchangeService.BindToFolder[TFolder](FolderId folderId, PropertySet propertySet)
 at Microsoft.Exchange.Tools.ExRca.Tests.EnsureEmptyFolderTest.PerformTestReally()
Exception details:
Message: The remote server returned an error: (403) Forbidden.
Type: System.Net.WebException
Stack trace:
 at System.Net.HttpWebRequest.GetResponse()
 at Microsoft.Exchange.WebServices.Data.EwsHttpWebRequest.Microsoft.Exchange.WebServices.Data.IEwsHttpWebRequest.GetResponse()
 at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.GetEwsHttpWebResponse(IEwsHttpWebRequest request)
Lance_PCommented:
I believe that you used an account which has emails in it which is why you see the above. You need to have a dummy mailbox with no emails in it to run that test

What happens when you run

Exchange ActiveSync
Outlook Autodiscover

Let us know. Try to click on the links that are provided to fix those issues if you get any.
TamoozAuthor Commented:
Account with no emails :

Additional Details
Exception details:
Message: The request failed. The remote server returned an error: (403) Forbidden.
Type: Microsoft.Exchange.WebServices.Data.ServiceRequestException
Stack trace:
 at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.GetEwsHttpWebResponse(IEwsHttpWebRequest request)
 at Microsoft.Exchange.WebServices.Data.MultiResponseServiceRequest`1.Execute()
 at Microsoft.Exchange.WebServices.Data.ExchangeService.BindToFolder[TFolder](FolderId folderId, PropertySet propertySet)
 at Microsoft.Exchange.Tools.ExRca.Tests.EnsureEmptyFolderTest.PerformTestReally()
Exception details:
Message: The remote server returned an error: (403) Forbidden.
Type: System.Net.WebException
Stack trace:
 at System.Net.HttpWebRequest.GetResponse()
 at Microsoft.Exchange.WebServices.Data.EwsHttpWebRequest.Microsoft.Exchange.WebServices.Data.IEwsHttpWebRequest.GetResponse()
 at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.GetEwsHttpWebResponse(IEwsHttpWebRequest request

My Autodiscover and activesync is not published
Lance_PCommented:
You need to publish active sync for Devices like  iPhones etc to connect. Unless you are just using the browser. And autodiscover is to make it easier for these devices.

For Laptops etc, you are using OWA which is web based. which is OK not to publish activesync

For BB I use BES. Ill check for BB's. Are you using BIS?
TamoozAuthor Commented:
ExRCA is testing Exchange ActiveSync.
Exchange ActiveSync was tested successfully.

Now trying to create mail in blackberry
TamoozAuthor Commented:
cannot log in.
May be it's because my published address of exchange is different from my prymary exchange domain?
My email address : user@x.com
Published Exchange 2010 address : https://mail.y.com
Lance_PCommented:
Published Exchange 2010 address : https://mail.y.com

As long as you can set everything manually it should be OK.

Server settings etc.

You do have a Data package with your BB right? Are you aware if your telephone company requires you to pay extra for mail services? Some countries do.
TamoozAuthor Commented:
My phone is ok. It's was worked with no errors before migration to Exchange 2010. In Exchange 2003 was Exchange-FronEnd Server, here (in Exchange 2010) i have OWA published with TMG 2010.
TamoozAuthor Commented:
by the way, i successfully configured POP3 mail account in my blackberry. It's may be solution for me now, but its interesting why my OWA not working with blackberry.
Lance_PCommented:
Get-webservicesvirtualdirectory | set-webservicesvirtualdirectory –basicauthentication:$true
TamoozAuthor Commented:
I've seen this command before also this discuss (http://www.experts-exchange.com/Software/Internet_Email/Email/Q_25343975.html), but this did not solve my problem.
TamoozAuthor Commented:
Hi All,

Thank you all for answers and help, but i'm alredy finde the solution.
The solution was to publish with OWA in TMG service EWS. Without this service blackberry can't verify your account in exchange. We must to verify that Exchange Web Services is turned on and accessible on port 80 (HTTP) or port 443 (HTTPS) of the Exchange Server. To check if Exchange Web Services is turned on, visit one of the following Internet addresses:
http://<maildomain>/EWS/Exchange.asmx
https://<maildomain>/EWS/Exchange.asmx
(for example, https://mail.microsoft.com/EWS/Exchange.asmx)
If Exchange Web Services is turned on and functioning correctly, the web address should display a XML page after the user credentials have been entered.

For publish EWS service you need to :
a) Open properties your OWA publish rule
b) Go to the "Paths" Tab
c) Click "Add", type /EWS/* and click OK
e) Click "Test Rule" just for verify that everything is ok

After that try to reconfig your Internet Mail Account in Blackberry. It's must to be OK.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
TamoozAuthor Commented:
Good Silution!
TamoozAuthor Commented:
Very good solution!
It's helped for me too.
Thanks!!!!
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.