medium_grade
asked on
Windows XP/Outlook 2010 clients endlessly ask for authentication on Exchange 2013...
Since upgrading to Exchange 2013, I am having an issue in which when any of my Windows XP clients open Outlook, the server will prompt them for credentials and never accept them. Looking online, I see that XP/Exchange 2013 issues are fairly common. I have tried running the following:
In every case, Outlook will open the very first time if I setup the account manually (not using Autodiscover). Every subsequent time, Outlook will prompt for the user's credentials but never actually accept them. Any ideas as to how I can fix this for now? While we have replaced several machines with newer Windows 7 machines, we are still not prepared to replace all of them just yet. Any ideas as to how I can fix these problems for now? Is there a way to completely remove the "CertPrincipalName" directive?
Any help would be appreciated.
Set-OutlookProvider EXPR -CertPrincipalName:""msstd:FQDNSERVERNAME"
Set-OutlookProvider -Identity EXCH -CertPrincipalName msstd:FQDNSERVERNAME
Set-OutlookProvider -Identity WEB -CertPrincipalName msstd:FQDNSERVERNAME
Get-OutlookAnywhere | set-Outlookanywhere -IISAuthenticationMethods Basic,NTLM,Negotiate
Get-OutlookAnywhere -Server SERVERNAME | Set-OutlookAnywhere -InternalClientAuthenticationMethod Basic (and NTLM)
In every case, Outlook will open the very first time if I setup the account manually (not using Autodiscover). Every subsequent time, Outlook will prompt for the user's credentials but never actually accept them. Any ideas as to how I can fix this for now? While we have replaced several machines with newer Windows 7 machines, we are still not prepared to replace all of them just yet. Any ideas as to how I can fix these problems for now? Is there a way to completely remove the "CertPrincipalName" directive?
Any help would be appreciated.
check the events on the CAS server and verify the Certificate is fine. Also you need to check the authentication is properly set or not.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Phil Coulson,
The clients are using Outlook 2010. Will this still work assuming I use the correct version number?
Also, if I uncheck the "only connect to proxy servers that have this principal in there certificate" box, won't it re-populate once the user connects or is it auto discover that does that?
The clients are using Outlook 2010. Will this still work assuming I use the correct version number?
Also, if I uncheck the "only connect to proxy servers that have this principal in there certificate" box, won't it re-populate once the user connects or is it auto discover that does that?