Cannot access Exchange 2010 with smartphone
We have set up an Exchange 2010 server along side Exchange 2003 for testing and have moved a dozen or so users over, including me. I can send and receive mail OK. I could access my mail before on my Windows phone or Android device before I moved my mailbox by using the IP address on our internet facing router in the settings when I configured my devices.
Inbound connections from the router goes to our Watchguard device which sends mail to the IP of our spam filter, a WatchGuard device. From there it is all sent to the IP address of Exchange 2003 server. Since I moved my mailbox to the Exchange 2010 server I cannot get mail on my phone or tablet anymore. I assume it is because the spam filter is sending everything to the IP of the Exchange 2003 server, but why are the send-receive connectors not putting me thru to the new Exchange 2010 server?
Inbound connections from the router goes to our Watchguard device which sends mail to the IP of our spam filter, a WatchGuard device. From there it is all sent to the IP address of Exchange 2003 server. Since I moved my mailbox to the Exchange 2010 server I cannot get mail on my phone or tablet anymore. I assume it is because the spam filter is sending everything to the IP of the Exchange 2003 server, but why are the send-receive connectors not putting me thru to the new Exchange 2010 server?
Vijaya Babu Sekar
You can enable the inheritance from ADUC-> user's properties-> security->advanced-> enabled the inheritance, then you can check. Thanks.
ASKER
I enabled it for my account but still no email. Also, for some reason, it keeps resetting back to 'disabled'.
If your 2003 Server is still your "MAIN" server you are not going to be able to open a much newer mailbox on your 2010 Server. This is by design.
Put your 2010 server as your "Main" server by changing in your router and DNS Server all records that points to your old server to point the new one.
You are going to get your messages back in your mobile and in your computer, but this will bring some issues somewhere else, your OWA will need to be setup and redirected to match the new server settings and if someone uses OWA and is on the 2003 server they won't be able to open their mailboxes... like you where not able to open yours from the phone.
Users will get the following error:
"Your request couldn't be completed because no server with the correct security settings was found to handle the request. If the problem continues, contact your helpdesk."
Reason: You haven’t set Exchange 2010’s CAS server for it to know what is the URL for your Exchange 2010 Outlook Web App and what is the URL for your legacy Exchange 2003 Outlook Web Access.
Solution: Open Exchange Management Shell and execute the following by replacing the server with yours:
Get-OwaVirtualDirectory -server internalCASserverName | Set-OwaVirtualDirectory -externalURL https://webmail.yourDomain.com/OWA -Exchange2003URL https://legacy.yourDomain.com/exchange
If your mail flow stop, you might need to add in your 2010 using the EMC under Server Configuration->Hub Transport-Default ServerName receive connector, properties, permission groups "Anonymous users".
You will also have to install a certificate, if your internal and external domains are not the same on the certificate and you can get a "general" certificate or one with up to 5 names on it your users will get the following error message on outlook:
Outlook 2007 security warning: "The name of the security certificate is invalid or does not match the name of the site"
Follow this link to fix that: http://support.microsoft.c
Put your 2010 server as your "Main" server by changing in your router and DNS Server all records that points to your old server to point the new one.
You are going to get your messages back in your mobile and in your computer, but this will bring some issues somewhere else, your OWA will need to be setup and redirected to match the new server settings and if someone uses OWA and is on the 2003 server they won't be able to open their mailboxes... like you where not able to open yours from the phone.
Users will get the following error:
"Your request couldn't be completed because no server with the correct security settings was found to handle the request. If the problem continues, contact your helpdesk."
Reason: You haven’t set Exchange 2010’s CAS server for it to know what is the URL for your Exchange 2010 Outlook Web App and what is the URL for your legacy Exchange 2003 Outlook Web Access.
Solution: Open Exchange Management Shell and execute the following by replacing the server with yours:
Get-OwaVirtualDirectory -server internalCASserverName | Set-OwaVirtualDirectory -externalURL https://webmail.yourDomain.com/OWA -Exchange2003URL https://legacy.yourDomain.com/exchange
If your mail flow stop, you might need to add in your 2010 using the EMC under Server Configuration->Hub Transport-Default ServerName receive connector, properties, permission groups "Anonymous users".
You will also have to install a certificate, if your internal and external domains are not the same on the certificate and you can get a "general" certificate or one with up to 5 names on it your users will get the following error message on outlook:
Outlook 2007 security warning: "The name of the security certificate is invalid or does not match the name of the site"
Follow this link to fix that: http://support.microsoft.c
ASKER
Well, I was hoping for some time to do testing. Do you mean that any user who accesses their email via a smartphone, tablet, etc will either need to stay on 2003 during the test to keep their connection?
So the 2010 test users won't have phone access or OWA until I move everyone over and point everything to the 2010 server as the main one?
So the 2010 test users won't have phone access or OWA until I move everyone over and point everything to the 2010 server as the main one?
If your account has admin permission, it will not work inheritance. That's why Ms recommemdaed xadm id for administrative purpose and normal account should be used for normal operation. If you enabled inheritance for your administrative account, it will disabled automatically, Thanks for understanding.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Vijaya, does that mean if I use the xadm account to enable inheritance for my account I can sync my phone again to my email box on 2010?
No Xadm account will not work with the iPhone. Because it will not allow inheritance, you may try to your normal account. That means should not have any administrative privileges with inheritance. Thanks.