troubleshooting Question

Exchange 2003 front-end to 2010 back-end OWA and mobile access

Avatar of zc2
zc2Flag for United States of America asked on
ExchangeMicrosoft IIS Web ServerActive Directory
11 Comments1 Solution1078 ViewsLast Modified:
Hello,

I've installed a new Exchange 2010 on Windows 208R2 and I want the old 2003 Exchange (on a Windows 2003R2) be a front-end server (exposed to the internet). It works fine as the front-end (POP3 and SMTP are accessible from outside) except the mobile access, i.e.  I want it be able to let the mobile devices use the Exchange mail as well as let the external users open their mailboxes using the web browser. But that does not work.

If I go to the 2003 front-end (https://2003_server/exchange/) with a browser, I get:
403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied.
It worked before it was made the front-end.

I can access directly to my mailbox on the 2010 server from a mobile devices connected to the network via WiFi, and also to the /OWA application using a browser on my local PC.

In the 2010's IIS the following folders were created:
Autodiscover, ecp, EWS, Exchange, Exchweb, Microsoft-Server-ActiveSync, OAB, owa
But on the 2003 front-end the virtual directories/apps are different:
Exadmin, Exchange, Exchweb, Microsoft-Server-ActiveSync, OMA

The first question: which of these directories are actually used by the mobile device to connect to the Exchange?

On 2003 the /Exchange is redirected to \\.\BackOfficeStorage\mymaildomain.com\MBX
But on 2010 the /Exchange was just pointed to  "C:\Program Files\Exchange\ClientAccess\owa"

I tried to monitor the system events on the back-end server using the ProcMon utility while I access to the front-end server using my Android phone, among the other messages I got the following:
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\Microsoft-Server-ActiveSync\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\Microsoft-Server-ActiveSync\Android\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\Microsoft-Server-ActiveSync\Android\validate\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\PROGRAM FILES\EXCHANGE\CLIENTACCESS\OWA\<myEmail>\NON_IPM_SUBTREE\MICROSOFT-SERVER-ACTIVESYNC\ANDROID\VALIDATE	PATH NOT FOUND	Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Attributes: RE, ShareMode: Read, Write, Delete, AllocationSize: n/a, Impersonating: NT AUTHORITY\IUSR
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\Program Files\Exchange\ClientAccess\owa\<myEmail>\NON_IPM_SUBTREE\Microsoft-Server-ActiveSync\web.config	PATH NOT FOUND	Desired Access: Read Attributes, Disposition: Open, Options: Open Reparse Point, Attributes: n/a, ShareMode: Read, Write, Delete, AllocationSize: n/a
	w3wp.exe	CreateFile	C:\PROGRAM FILES\EXCHANGE\CLIENTACCESS\OWA\<myEmail>\NON_IPM_SUBTREE\MICROSOFT-SERVER-ACTIVESYNC	PATH NOT FOUND	Desired Access: Generic Read, Disposition: Open, Options: Sequential Access, Attributes: RE, ShareMode: Read, Write, Delete, AllocationSize: n/a, Impersonating: NT AUTHORITY\IUSR
So, it seems the front-end actually does connect to the back-end, but something is wrong.

The second question: if the /Exchange directory is used, how should it be configured properly?
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 11 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros