Solved

User gets prompted credentials from HT-CAS server roles

Posted on 2013-12-01
11
226 Views
Last Modified: 2013-12-09
Hi Folks,

Can anyone here please assist me with some explanation as to why after I changed the HT-CAS server role in my DR site, some of my users gets prompted to retype their credentials in their Outlook ?

Here’s the setting as at the moment

Physical SiteA – Domain.com (Main HQ)
HT-CAS1-Prod-VM (AD-Site-A)
HT-CAS2-Prod-VM (AD-Site-A)

CCR-MBX1-Prod-VM (AD-Site-A)

Physical SiteB – Domain.com (DR remote site)
HT-CAS1-DR-VM (AD-Site-A)
CCR-MBX2-DR-VM (AD-Site-A)
Previously the setting is bit different:

Physical SiteB – Domain.com (DR remote site)
HT-CAS1-DR-VM (AD-Site-B)
CCR-MBX2-DR-VM (AD-Site-B)
This was due to the CCR mailbox server needs to be in the same domain for me to be able to upgrade to SP3
0
Comment
  • 7
  • 3
11 Comments
 
LVL 14

Expert Comment

by:Ram Balachandran
ID: 39689175
Have you tried auto discover ?
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 39689187
Why do I need to so that ?
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39689629
When you added the new CAS/HT server in the DR site do you have the appropriate Certificates present on these servers?

You should have a SAN/UCC cert that has the following entries...
- autodiscover.domain.com
- mail.domain.com

Will.
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 39689701
Will, what is that certificate for ?

this prompt is from outlook internal user, there is no Outlook Anywhere enabled in all of my CAS server.

Somehow the only server who ask the credential is the DR HT-CAS server, both servers in production are ok.
0
 
LVL 53

Assisted Solution

by:Will Szymkowski
Will Szymkowski earned 500 total points
ID: 39689729
Is this DR site isolated from your production network?

Are the virtual directories on the CAS server set accordingly? Where are they being prompted, from Outlook client?. Have you looked at the connection status on the outlook client to see what servers the client is authenticating to? Also what are your authentication settings set to on your DR servers?

Will.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 39689900
Well during the DR test, the core switch link is disconnected so practically there is no connection. That is the reason why we hard coded all of the DR site exchange servers with Site-A to resume the mail flow.

And now the DR test has finished, the link back up and running again, the users across the company is now randomly prompted for pop up to type in their credentials? Not all just random people.
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 39689905
Yes the users is prompted in Outlook the first time they open the application.

Service Desk team ask those users to close and re open outlook but somehow the issue still remains, more random people is prompted with credentials pop up ?
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39689912
Are the users using Outlook cached mode? Have you treid to re-create the OST file or have your users. Try changing that and seeing if that corrects it.

Will.
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 39691255
Yes they are all using cached mode Exchange Outlook connection.
0
 
LVL 7

Accepted Solution

by:
Senior IT System Engineer earned 0 total points
ID: 39694048
ok, I have fixed the issue by setting the following:

Set-ClientAccessServer -AutoDiscoverSiteScope {AD-Site-A}

Open in new window

0
 
LVL 7

Author Closing Comment

by:Senior IT System Engineer
ID: 39705679
I have found my solution based on the finding that I did myself.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A safe way to clean winsxs folder from your windows server 2008 R2 editions
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

912 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now