Solved

OWA through TMG 2010

Posted on 2014-02-19
3
634 Views
Last Modified: 2014-05-19
Hi
I have an Exchange server 2010 behind a TMG 2010, all was working fine OWA, ANYWHERE & ACTIVESYNC until the certificate expired.

I have renewed the certificate, ANYWHERE & ACTIVESYNC  is working fine, I got an issue with OWA when accessing from outside.
Errors:
1. The website is not available
2. 404 error
3. sometimes I got the trust certificate and 404 error

From the TMG I can access OWA on Exchange but not from external.
I even delete the rule & Listener and create a new one, issue persist.

note: I use a  listener for each service.
In the TMG Logs,  I created a filter on HTTPS, but I did not see my request coming in, I see for ActiveSync and others

Note: OWA is configured with FBA and in Exchange 2010 the Service FBA is started.

Thanking you in advanced
Regards
Jeff
0
Comment
Question by:JAY2013
  • 2
3 Comments
 
LVL 16

Expert Comment

by:Dirk Mare
ID: 39872750
New certificate should be in the following places

Exchange Management Console
Exchange IIS; bind the certificate to the https and 443 ports. make sure you don't bind the local IP/443 to the external certificate.

TMG Server you must add it to you listener

In TMG go to your rule that's publishing OWA to the internet. Go to listener TAB Select properties. Select Certificates TAB. Click Select Certificate.  Also please run this rule test and post your findings

Make sure the new certificate is selected.

As best practice reboot both Exchange and TMG server after changing the certificate.

another troubleshooting utility is
https://testconnectivity.microsoft.com/

DirkMare
0
 
LVL 16

Expert Comment

by:Dirk Mare
ID: 39872752
one more thing..

Godaddy has nice interactive step by step guides on how to change your Certificate.

Google should help you here..

DirkMare
0
 
LVL 23

Accepted Solution

by:
Suliman Abu Kharroub earned 500 total points
ID: 39884167
As outlook anywhere and active sync are working fine, but OWA not working, it is mostly an authentication issue.

Check the authentication/delegation tab in publishong rule and authentication tab in listener if they are configured correctlly or not.
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

In Africa (and potentially where you live…), reliability of ISPs is questionable.  With the increased reliance on e-mail as one of the primary forms of communication, the costs to business are significant based on interuption of ISP Connectivity.  T…
INTRODUCTION The purpose of this document is to demonstrate the Installation and configuration of the Data Protection Manager product. Note that this demonstration was prepared on the basis of Windows OS is 2008 R2 and DPM 2010. DATA PROTECTI…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now