I am in the coexistence phase of a migration from Exchange 2003 to Exchange 2010 and I am having problems with autodiscover and ActiveSync that are making it impossible to get email to iPhones. In my company this is a very big deal.
Our environment consists of one server running Exchange 2003 and two servers running Exchange 2010. The 2010 servers sit behind a Kemp LoadMaster 2200 that load balances incoming web and smtp traffic.
When I run tests of Autodiscover and ActiveSync from www.testexchangeconnectivity.com
I get the following relevant information:
Attempting to test potential Autodiscover URL https://autodiscover.companyname.com/AutoDiscover/AutoDiscover.xml
Testing of this potential Autodiscover URL failed.
Attempting to resolve the host name autodiscover.companyname.c
om in DNS.
The host name resolved successfully.
IP addresses returned: x.x.x.x
Testing TCP port 443 on host autodiscover.companyname.c
om to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
ExRCA is attempting to obtain the SSL certificate from remote server autodiscover.companyname.c
om on port 443.
ExRCA successfully obtained the remote SSL certificate.
Remote Certificate Subject: CN=webmail.companyname.com
, OU=MIS, O="companyname", L=Seattle, S=Washington, C=US, Issuer: CN=DigiCert High Assurance CA-3, OU=www.digicert.com
, O=DigiCert Inc, C=US.
Validating the certificate name.
The certificate name was validated successfully.
Host name autodiscover.companyname.c
om was found in the Certificate Subject Alternative Name entry.
Certificate trust is being validated.
The certificate is trusted and all certificates are present in the chain.
ExRCA is attempting to build certificate chains for certificate CN=webmail.companyname.com
, OU=MIS, O="companyname", L=Seattle, S=Washington, C=US.
One or more certificate chains were constructed successfully.
A total of 4 chains were built. The highest quality chain ends in root certificate CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com
, O=DigiCert Inc, C=US.
Analyzing the certificate chains for compatibility problems with versions of Windows.
No Windows compatibility problems were identified.
The certificate chain has been validated up to a trusted root. Root = CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS
incorp. by ref. (limits liab.), O=Entrust.net, C=US.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
The certificate is valid. NotBefore = 4/26/2012 12:00:00 AM, NotAfter = 7/3/2013 12:00:00 PM
Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.
Accept/Require Client Certificates isn't configured.
Attempting to send an Autodiscover POST request to potential Autodiscover URLs.
Autodiscover settings weren't obtained when the Autodiscover POST request was sent.
ExRCA is attempting to retrieve an XML Autodiscover response from URL https://autodiscover.companyname.com/AutoDiscover/AutoDiscover.xml
for user email@example.com.
ExRCA failed to obtain an Autodiscover XML response.
The Response element in the payload was null.
Please assist if you are able.