We help IT Professionals succeed at work.

POP3 failed logins Exchange 2010

stives1974
stives1974 asked
on
613 Views
Last Modified: 2013-01-10
Hello Experts Exchange

I have an issue with pop3 logins in an Exchange 2010 DAG environment.   WE have two servers holding the Mailbox Server role and one holding the CAS and Hub Transport roles.  The passive Mailbox server is in another site, there is no firewall in between.

Everything works fine when mailboxes are on the active mailbox database but were failing recently.  Upon logging into the Exchange Management Console we noticed that the Exchange server had failed over to the copy mailbox server.  Once we moved the active copy back the the original server pop3 logins worked again.

To test I have created a single instance database and mailbox on the passive copy server and pop3 logins fail with the error "-ERR Login Failure. Unknown Username or password"

Help much appreciated.
Comment
Watch Question

CERTIFIED EXPERT

Commented:
Are your mailbox servers in different subnets ?

Did OWA continue to work ?
Manpreet SIngh KhatraSolutions Architect, Project Lead
CERTIFIED EXPERT
Top Expert 2013

Commented:
Do we have a GC on the other site ?
Ideally its said that any Active site should have the CAS for login

Also ensure if from the Second site you can telnet with port for POP3 to the CAS server

- Rancy

Author

Commented:
Thanks for the responses.

I can telnet to the cas server on port 110 from the secondary site and get the banner
+OK The Microsoft Exchange POP3 service is ready.

Webmail still works.

The mailbox and cas server are in different subnets.

There is a GC in both sites.
CERTIFIED EXPERT
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
They are in different AD sites.  Is this a requirement for pop3?  Normal mapi email works ok for the mailbox on the secondary site.
Rick HobbsRETIRED
CERTIFIED EXPERT
Top Expert 2006

Commented:
Yes.  "every site with a Exchange server with mailbox server role installed needs a CAS, period."
Check this link:

http://www.petri.co.il/forums/showthread.php?t=44521

Author

Commented:
Many thanks, installing a local CAS box fixed the issue.
CERTIFIED EXPERT

Commented:
I do not understand the complaint from Rancy.

My post 38750996 is the first post to question there being a second AD site, and to state the requirement for a CAS server.

The post from Rancy included two questions that were not relevant to the issue, however "Ideally its said" is not stating a requirement.

I would suggest 3) keeping the answer as is.
Manpreet SIngh KhatraSolutions Architect, Project Lead
CERTIFIED EXPERT
Top Expert 2013

Commented:
ID: 38750486

Ideally its said that any Active site should have the CAS for login

- Rancy
CERTIFIED EXPERT

Commented:
@Rancy

The part you have highlighted does not say Active Directory, I do not disagree that it could be implied, but from the original post it was just physical sites that had been mentioned.

You said Ideally this would indicate a "nice to have" rather than a "must have" which is the case.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.