Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 280
  • Last Modified:

Exchange 2010 issues after migration from SBS 2003

Hi
Have installed Exchange 2010 on Server 2008R2 and migrated users mailboxes from SBS 2003 which is still co-existing on the network.

I have 2 issues:

1. Although owa works from the internet, iphones won't connect and application log shows Event id 1033 MSExchange Activesync "The setting ExternalProxy in the web.config file was not valid. The previous value was null and has been changed to ."

2. When opening Outlook on the Client machines, a security alert is seen. "The name on the security certificate is invalid or does not match the name of the site". The certificate is for xyz.externaldomain.com however the exchange server is ex2010.intdomain.local

Any help appreciated

Thanks

Julian
0
J-B
Asked:
J-B
  • 2
  • 2
  • 2
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
Do you have a trusted SSL certificate on the server?
If so, have you changed all URLs within Exchange to match the name on the trusted SSL certificate?

http://semb.ee/hostnames

On the ActiveSync error, that is unusual. Has any attempt been made to customise the ActiveSync configuration in any way?

Have you installed Exchange 2010 SP3 plus the latest rollup?

Simon.
0
 
J-BAuthor Commented:
Yes I have a trusted cert on the server from RapidSSL for new.domain.co.uk

I have made all the URL's internally on exchange match the name of the trusted SSL cert

Exchange 2010 SP3 is installed but no rollup packages.


This is the only error message I am getting when running the Microsoft Remote Connectivity Analyser using the Activesync option

"Analyzing the certificate chains for compatibility problems with Windows Phone devices.
       Potential compatibility problems were identified with some versions of Windows Phone.
        Tell me more about this issue and how to resolve it
       
      Additional Details
       
The certificate is only trusted on Windows Mobile 6.0 and later versions. Devices running Windows Mobile 5.0 and 5.0 with the Messaging and Security Feature Pack won't be able to sync. Root = CN=GeoTrust Global CA, O=GeoTrust Inc., C=US.
Elapsed Time: 4 ms. "

OWA access is working fine, and the iPhone will now accept and validate the settings when the account is entered however with a series of ticks, however when I check for mail i am getting the error "The connection to the server failed".

The only port I have open is 443

Julian
0
 
J-BAuthor Commented:
Right, I have it working :) But only with a newly created account.

So I guess its a permission / Active directory issue on the accounts that were moved over from SBS 2003
0
Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

 
Simon Butler (Sembee)ConsultantCommented:
Check that permission inheritance is enabled on the accounts that were moved from SBS 2003.

Simon.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Follow this article to reapply the appropriate permissions to migrated accounts:
http://technet.microsoft.com/en-us/library/gg615504.aspx

(FYI, this is a step in the migration process, but is often missed)

Jeff
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
For the certificate issue, follow the solution referenced here:
http://www.experts-exchange.com/Q_27417843.html
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

  • 2
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now