Solved

Exchange 2010, unable to access OWA from internal with Internet Explorer using the FQDN.

Posted on 2013-01-08
4
1,306 Views
Last Modified: 2013-01-14
I have a single Exchange 2010 server running the mailbox, CAS and HUB transport roles.  Things have been working for about 2 months until we started adding Outlook 2010 clients.  We started getting SSL mismatch errors on the clients.  Basically that problem boils down to the fact that we are not using a SAN certificate and the internal and external FQDN's don't match.
  While trying to fix that problem we are now unable to connect to the site with Internet Explorer on the Exchange server it self with the FQDN or from other machines on the network. (Using another browser like Chrome allows us to access the site just fine?)  We can access the site externally and with clients connected to our VPN.
  In looking around I see that within IIS our Default Website has the globe with a question mark on it.  So I started looking around in IIS.  If I click on the OWAfolder under the default website and right click Authentication and choose Basic Settings, I try and click the Test Settings... button I get an error.  "There was an error while performing this operation.  Details: Invalid Application Path"
  I've been all over the place on this one and it's starting to get really frustrating.  I just want my OWA back to operational for my clients.  I can deal with the original SSL cert mismatch problem later.

Thanks for any help or points to get me moving on this.

James
0
Comment
Question by:WcsdTech
  • 2
4 Comments
 
LVL 10

Expert Comment

by:gaurav05
ID: 38757772
Hi,

1) When you ping the name mentioned - does it resolve to the correct IP address.

2)Run Get-OwaVirtualDirectory |fl >c:\owa.txt and check what the internal url is set to

3) Run Test-OwaConnectivity - http://technet.microsoft.com/en-us/library/aa997682.aspx
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38758586
If you have been changing the settings in IIS manager, then you should probably start by resetting the virtual directories. You can do that with the tool inside EMC.
Once you have done that, you will have to resolve the problem with the URLs. If you don't have a UC certificate with the internal name on it, then you will have to use the external URL internally. That will require a split DNS system and changes to Exchange.

http://exchange.sembee.info/2010/install/singlenamessl.asp

Simon.
0
 

Accepted Solution

by:
WcsdTech earned 0 total points
ID: 38759206
Update to this.  

  Last night, before any responses, I tried to reset the virtual directories with no luck so then I removed the CAS role and then re-installed it.  Still no luck.  This morning a colleague did some more investigating and found that our problem seems to stem from our proxy server and network configuration, although nothing had changed prior to our problems.  He added the external FQDN to the list of servers or domains section, instead of just a wild card and domain name, in the proxy server settings. (We have ISA server 2004 and yes we know it's old.  We inherited this network 9 months ago and are still trying to get things cleaned up and updated.)  After rebooting the clients most worked, some had to have the IE cache cleared and then they were fine.

Thank you for your input, I had tried both of those things already.

James
0
 

Author Closing Comment

by:WcsdTech
ID: 38773794
Problem was fixed on our own.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

What does UTC stand for?  “Coordinated Universal Time” – Think of this as the true time on Planet Earth that never changes with the exception of minor leap seconds here and there to account for the changes in the planet's rotation.   What does th…
If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now