Solved

Exchange 2010 issues after migration from SBS 2003

Posted on 2014-01-31
6
252 Views
Last Modified: 2014-11-12
Hi
Have installed Exchange 2010 on Server 2008R2 and migrated users mailboxes from SBS 2003 which is still co-existing on the network.

I have 2 issues:

1. Although owa works from the internet, iphones won't connect and application log shows Event id 1033 MSExchange Activesync "The setting ExternalProxy in the web.config file was not valid. The previous value was null and has been changed to ."

2. When opening Outlook on the Client machines, a security alert is seen. "The name on the security certificate is invalid or does not match the name of the site". The certificate is for xyz.externaldomain.com however the exchange server is ex2010.intdomain.local

Any help appreciated

Thanks

Julian
0
Comment
Question by:J-B
  • 2
  • 2
  • 2
6 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39825414
Do you have a trusted SSL certificate on the server?
If so, have you changed all URLs within Exchange to match the name on the trusted SSL certificate?

http://semb.ee/hostnames

On the ActiveSync error, that is unusual. Has any attempt been made to customise the ActiveSync configuration in any way?

Have you installed Exchange 2010 SP3 plus the latest rollup?

Simon.
0
 

Author Comment

by:J-B
ID: 39826341
Yes I have a trusted cert on the server from RapidSSL for new.domain.co.uk

I have made all the URL's internally on exchange match the name of the trusted SSL cert

Exchange 2010 SP3 is installed but no rollup packages.


This is the only error message I am getting when running the Microsoft Remote Connectivity Analyser using the Activesync option

"Analyzing the certificate chains for compatibility problems with Windows Phone devices.
       Potential compatibility problems were identified with some versions of Windows Phone.
        Tell me more about this issue and how to resolve it
       
      Additional Details
       
The certificate is only trusted on Windows Mobile 6.0 and later versions. Devices running Windows Mobile 5.0 and 5.0 with the Messaging and Security Feature Pack won't be able to sync. Root = CN=GeoTrust Global CA, O=GeoTrust Inc., C=US.
Elapsed Time: 4 ms. "

OWA access is working fine, and the iPhone will now accept and validate the settings when the account is entered however with a series of ticks, however when I check for mail i am getting the error "The connection to the server failed".

The only port I have open is 443

Julian
0
 

Author Comment

by:J-B
ID: 39826464
Right, I have it working :) But only with a newly created account.

So I guess its a permission / Active directory issue on the accounts that were moved over from SBS 2003
0
Too many email signature changes to deal with?

Are you constantly being asked to update your organization's email signatures? Do they take up too much of your time? Wouldn't you love to be able to manage all signatures from one central location, easily design them and deploy them quickly to users. Well, you can!

 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39826495
Check that permission inheritance is enabled on the accounts that were moved from SBS 2003.

Simon.
0
 
LVL 74

Accepted Solution

by:
Jeffrey Kane - TechSoEasy earned 500 total points
ID: 39834635
Follow this article to reapply the appropriate permissions to migrated accounts:
http://technet.microsoft.com/en-us/library/gg615504.aspx

(FYI, this is a step in the migration process, but is often missed)

Jeff
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39834640
For the certificate issue, follow the solution referenced here:
http://www.experts-exchange.com/Q_27417843.html
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Utilizing an array to gracefully append to a list of EmailAddresses
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now