autodiscover exchange 2010 server 2008 R2 error 500

We are trying to setup autodiscover on our exchange server and are having issues. test exchange remote connectivity is failing on the last step. I have checked internal and external urls, rebuild the autodiscover virtual directory and when we go to the web address externally it asked for credentials and then displeys the error 600 which I believe is correct.

Any ideas? See output form connectivity tester below.

The Microsoft Connectivity Analyzer is attempting to retrieve an XML Autodiscover response from URL https://autodiscover.xxxxxxx.com:443/Autodiscover/Autodiscover.xml for user ohare@xxxxxxx.com.
       The Microsoft Connectivity Analyzer failed to obtain an Autodiscover XML response.
       
      Additional Details
       
An HTTP 500 response was returned from Unknown.
HTTP Response Headers:
Content-Length: 0
Cache-Control: private
Date: Thu, 06 Nov 2014 14:50:24 GMT
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Elapsed Time: 364 ms.
YorkDataAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Adam FarageEnterprise ArchCommented:
What are the permissions you have on the AutoDiscover Virtual Directory?

Get-AutoDiscoverVirtualDirectory | FL 

Open in new window

0
YorkDataAuthor Commented:
Please see output below

[PS] C:\Windows\system32>Get-Au<wbr ></wbr>toDiscover<wbr ></wbr>VirtualDir<wbr ></wbr>ectory | FL

RunspaceId                      : d7a03a49-a3fb-40bc-9ecd-93<wbr ></wbr>47826590e6<wbr ></wbr>
Name                            : Autodiscover (Default Web Site)
InternalAuthenticationMeth<wbr ></wbr>ods   : {Basic, Ntlm, WindowsIntegrated}
ExternalAuthenticationMeth<wbr ></wbr>ods   : {Basic, Ntlm, WindowsIntegrated}
LiveIdSpNegoAuthentication<wbr ></wbr>      : False
WSSecurityAuthentication        : False
LiveIdBasicAuthentication       : False
BasicAuthentication             : True
DigestAuthentication            : False
WindowsAuthentication           : True
MetabasePath                    : IIS://server.xxxxxxx.local<wbr ></wbr>/W3SVC/1/R<wbr ></wbr>OOT/Autodi<wbr ></wbr>scover
Path                            : C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Au<wbr ></wbr>todiscover<wbr ></wbr>
ExtendedProtectionTokenChe<wbr ></wbr>cking : None
ExtendedProtectionFlags         : {}
ExtendedProtectionSPNList       : {}
Server                          : server
InternalUrl                     :
ExternalUrl                     :
AdminDisplayName                :
ExchangeVersion                 : 0.10 (14.0.100.0)
DistinguishedName               : CN=Autodiscover (Default Web Site),CN=HTTP,CN=Protocols<wbr ></wbr>,CN=server<wbr ></wbr>,CN=Server<wbr ></wbr>s,CN=Excha<wbr ></wbr>nge Administrative Group (FYDIBOHF23SPDLT),CN=Admin<wbr ></wbr>istrative Groups,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Co<wbr ></wbr>nfiguratio<wbr ></wbr>n,DC=xxxxx<wbr ></wbr>xxx,DC=loc<wbr ></wbr>al
Identity                        : server\Autodiscover (Default Web Site)
Guid                            : 42f80cd4-ad65-4603-9d05-a2<wbr ></wbr>172b300c8a<wbr ></wbr>
ObjectCategory                  : xxxxxxx.local/Configuratio<wbr ></wbr>n/Schema/m<wbr ></wbr>s-Exch-Aut<wbr ></wbr>o-Discover<wbr ></wbr>-Virtual-D<wbr ></wbr>irectory
ObjectClass                     : {top, msExchVirtualDirectory, msExchAutoDiscoverVirtualD<wbr ></wbr>irectory}
WhenChanged                     : 06/11/2014 14:44:33
WhenCreated                     : 06/11/2014 14:44:33
WhenChangedUTC                  : 06/11/2014 14:44:33
WhenCreatedUTC                  : 06/11/2014 14:44:33
OrganizationId                  :
OriginatingServer               : server.xxxxx.local
IsValid                         : True

Open in new window

0
Adam FarageEnterprise ArchCommented:
Does it work externally, or no? I would run outlook.exe /rpcdiag from an external client and screen shot that for us. Your permissions look fine but I would imagine if its working externally then the testexchangeconnectivity.com website is giving issues (which I have seen before).
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

YorkDataAuthor Commented:
No it doesn't work externally.

I ran rpcdiag however it didn't display any connections to the Exchange server at all. We're only enabling autodiscover to migrate over to to Office365 frustratingly!

Any other ideas?
0
Vinod PawarIT Core Computing AdvisorCommented:
Please Set External and Internal Url for Autodiscover and also Make sure there is proper Entry of DNS for Autodiscover.*.domain.com.
After Setting this both check internally if your URL is working properly or you can check with Outlook with holding Cntrl key and Right click on Outlook Icon and click Test Email Autoconfiguration and you will found errors and get to root cause.
0
Adam FarageEnterprise ArchCommented:
@Vinod.. the AutoDiscover InternalURL and ExternalURL are *not* used at all. They are there due to the way the Exchange schema objects are extended for Virtual directories.
0
YorkDataAuthor Commented:
I've done all of this however internally I am still getting the same error from test email autoconfig.

See attached image - we keep getting this error code 500. Out of office is also no longer working from within outlook.
0
YorkDataAuthor Commented:
I've set the autodiscovery urls within the client access not the autodiscovery virtual dir.
0
Adam FarageEnterprise ArchCommented:
no image attached, but if you have one with the Test-EmailAutoconfig I would love to see it. it would help us further troubleshoot this issue.
0
Gareth GudgerCommented:
Hey York,

What accounts are you testing with? Your own? If so, they may be a protected account and you may need to set the Security Inheritance check box to enabled in Active Directory Users and Computers.

Active Directory Users and Computers >> Properties of your user >> Security tab >> Advanced button >> make sure Security Inheritance is checked >> Retest.

Protected accounts (those that are domain admins, etc.) will revert back to unchecked after about 15 minutes.
0
YorkDataAuthor Commented:
I have tested this with multiple accounts, my admin one and normal user. I have also tried checking the inheritance tick box and removing admin count 1.

Please see image attached this time, how do I run the test-emailautoconfig? It doesn't seem to be a command in shell for Exch2010

I've rebooted the server this weekend to see if this helped but it hasn't.

Thanks for your help.
Capture.JPG
0
Gareth GudgerCommented:
What happens if you try to browse to your autodiscover URL in a browser?
0
YorkDataAuthor Commented:
I get an authentication screen and then the below - which I believe is correct

This XML file does not appear to have any style information associated with it. The document tree is shown below.
      <Autodiscover><Response><Error Time="08:25:09.8583711" Id="2245846463"><ErrorCode>600</ErrorCode><Message>Invalid Request</Message><DebugData/></Error></Response></Autodiscover>

Open in new window

0
Adam FarageEnterprise ArchCommented:
Try resetting the autodiscover virtual directory. Sounds like something is hosed up in there.
0
YorkDataAuthor Commented:
I've worked it out - there was a binding on port 80 in IIS which was bizarrely causing the issue. It temporarily broke the EMC but its all now working. Thanks for your input guys.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
YorkDataAuthor Commented:
I found my own solution from other websites. I have added the solution to this thread.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.