Exchange 2010 issues after migration from SBS 2003

Hi
Have installed Exchange 2010 on Server 2008R2 and migrated users mailboxes from SBS 2003 which is still co-existing on the network.

I have 2 issues:

1. Although owa works from the internet, iphones won't connect and application log shows Event id 1033 MSExchange Activesync "The setting ExternalProxy in the web.config file was not valid. The previous value was null and has been changed to ."

2. When opening Outlook on the Client machines, a security alert is seen. "The name on the security certificate is invalid or does not match the name of the site". The certificate is for xyz.externaldomain.com however the exchange server is ex2010.intdomain.local

Any help appreciated

Thanks

Julian
J-BAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Jeffrey Kane - TechSoEasyConnect With a Mentor Principal ConsultantCommented:
Follow this article to reapply the appropriate permissions to migrated accounts:
http://technet.microsoft.com/en-us/library/gg615504.aspx

(FYI, this is a step in the migration process, but is often missed)

Jeff
0
 
Simon Butler (Sembee)ConsultantCommented:
Do you have a trusted SSL certificate on the server?
If so, have you changed all URLs within Exchange to match the name on the trusted SSL certificate?

http://semb.ee/hostnames

On the ActiveSync error, that is unusual. Has any attempt been made to customise the ActiveSync configuration in any way?

Have you installed Exchange 2010 SP3 plus the latest rollup?

Simon.
0
 
J-BAuthor Commented:
Yes I have a trusted cert on the server from RapidSSL for new.domain.co.uk

I have made all the URL's internally on exchange match the name of the trusted SSL cert

Exchange 2010 SP3 is installed but no rollup packages.


This is the only error message I am getting when running the Microsoft Remote Connectivity Analyser using the Activesync option

"Analyzing the certificate chains for compatibility problems with Windows Phone devices.
       Potential compatibility problems were identified with some versions of Windows Phone.
        Tell me more about this issue and how to resolve it
       
      Additional Details
       
The certificate is only trusted on Windows Mobile 6.0 and later versions. Devices running Windows Mobile 5.0 and 5.0 with the Messaging and Security Feature Pack won't be able to sync. Root = CN=GeoTrust Global CA, O=GeoTrust Inc., C=US.
Elapsed Time: 4 ms. "

OWA access is working fine, and the iPhone will now accept and validate the settings when the account is entered however with a series of ticks, however when I check for mail i am getting the error "The connection to the server failed".

The only port I have open is 443

Julian
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
J-BAuthor Commented:
Right, I have it working :) But only with a newly created account.

So I guess its a permission / Active directory issue on the accounts that were moved over from SBS 2003
0
 
Simon Butler (Sembee)ConsultantCommented:
Check that permission inheritance is enabled on the accounts that were moved from SBS 2003.

Simon.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
For the certificate issue, follow the solution referenced here:
http://www.experts-exchange.com/Q_27417843.html
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.