[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

why MS Outlook randomly switch settings of access Exchange over HTTP

Posted on 2013-05-30
6
Medium Priority
?
1,421 Views
Last Modified: 2013-06-01
I’ve configured RPC over HTTPS on exchange 2007 server on 2003 R2 64 windows ; configured few of my remote users MS outlook 2007 with outlook anywhere “connect to MS Exchange using HTTP and exchange proxy settings. Outlook anywhere is working great until clients outlook settings randomly resets to standard access.
MS Outlook 2007 will keep settings for just a few outlook restarts and  reset it back to standard use without HTTP.

Same users have access to their mailboxes via terminal server desktop MS outlook. MS outlook within terminal server will do the opposite. IT will reconfigure to run via HTTP and I can reconfigure it back to standard access with http but few restarts later it will go back to    “connect to MS Exchange using HTTP”
How can I force client MS outlook profile s to keep the settings which were set and saved?
Why is MS outloook  randomly (i can't figure out the logic)  resets Outlook anywhere setting?
0
Comment
Question by:leop1212
  • 3
  • 3
6 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39209641
If you have Outlook Anywhere configured in Exchange, then ALL clients will be configured with the Outlook Anywhere settings. There is nothing you can easily do to stop that.
However that doesn't mean they will use it. The Outlook Anywhere settings that are pushed out by Autodiscover mean that on a LAN (A fast connection) the client should use TCP/IP, and only on a slow connection do they fall back to HTTPS.

Therefore the first thing you have to verify is what is actually being used.
Hold down CTRL while right clicking on the Outlook icon in the system tray. Choose Connection Status. ON the network everything should be TCP/IP.

The next thing to think about is the actual setting being removed.
You shouldn't need to configure the clients at all, the fact that you did means that Autodiscover isn't working properly. The clients should get those settings on their next Autodiscover pass.

Run a test account through the Microsoft test site at http://exrca.com/ and see whether that flags anything.

Simon.
0
 

Author Comment

by:leop1212
ID: 39211519
Simon,
I just ran excra tests and outlook autodiscover works fine.
I am getting an error when I use outlook Anywhere (RPC over HTTP) test
when choose "use autodiscover to detect server setting I am getting SSL certificate error.
and  the problem here is that I have main website on ISP public IP address and
autodiscover for some reason not looking at DNS record for mail server for SSL certificate  as IP address listed for the host name is for the website (completely different subnet from my exchange server )  see screenshot
when I ran same test with "manually specify server settings" I got another authentication error on port 6002. Should I have 6002 open on the firewall?
so the bottom line is that all internal users have outlook anywhere enabled as its pushed by autodiscover locally while remote users who do need outlook anywhere settings keep losing them.
manualtest.jpg
outlookanywhere.jpg
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39211973
The whole point of Outlook Anywhere is for it to run over a single port - 443. You don't open any other port. 6001 and 6002 are internal ports only.

Autodiscover errors are not unusual because the process uses a number of URLs:

example.com
autodiscover.example.com
then SRV records and finally a redirect.

Do you have autodiscover.example.com on your SSL certificate? If you do, does it resolve to your Exchange server?

Simon.
0
Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

 

Author Comment

by:leop1212
ID: 39212058
i only have exchange.mydain.com on my SSL Cert
how do I add autodiscover.mydomain.com to SSL Cert?
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 2000 total points
ID: 39212793
You would need a different kind of certificate if you want to use the host name method. This is called a Unified Communications (UC), SAN (Subject Alternative Name) or Multiple Domain certificate. You will need to be using a commercial certificate, as the self signed ones generated by Exchange are not supported for use with Outlook Anywhere.
http://semb.ee/certs

If you don't want to purchase a new certificate, then you can use SRV record if your external DNS provider supports them: http://semb.ee/srv
However if they don't, then you are faced with either changing DNS provider or changing the type of certificate.

Simon.
0
 

Author Closing Comment

by:leop1212
ID: 39213800
Simon,
very good troubleshooting and great info. thank you
0

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I am posting this in case anyone runs into similar issues that I did, this may save you a lot of grief: Condition: 1. Your NetBIOS domain name contains an ampersand " & " character.  (e.g. AT&T) 2. You've tried to run any Microsoft installation…
After a recent Outlook migration from a 2007 to 2010 environment, some issues with Distribution List owners were realized. In this article, I explain how that was rectified.
This video discusses moving either the default database or any database to a new volume.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

613 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question