Rami Alhasani
asked on
Exchange Connectivity Problem
i have made a migration from exchange 2010 to 2013 and every thing goes well till i reached to moving mailboxes, it moved mailboxes successfully but when the operation completed i checked the account settings and i found the server address as in attachment file (Name)
but the connectivity between the outlook and the new exchange 2013 is OK and it send and receive well.
And when i try to add the account from control panel/mail manually i got error in file (Connectivity)
the exchange 2010 v 14.03.0361.001, exchange 2013 Version 15.0 (Build 1347.2)
i have below results for Get command:
[PS] C:\Windows\system32>Get-Oa bVirtualDi rectory | fl server, exch13, ExternalURL, InternalURL, *auth*
Server : EXCH01
ExternalUrl : https://mail.company.net/OAB
InternalUrl : https://mail.company.net/OAB
BasicAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : False
InternalAuthenticationMeth ods : {WindowsIntegrated}
ExternalAuthenticationMeth ods : {WindowsIntegrated}
Server : EXCH13
ExternalUrl : https://mail.company.net/OAB
InternalUrl : https://mail.company.net/OAB
BasicAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : True
InternalAuthenticationMeth ods : {WindowsIntegrated, OAuth}
ExternalAuthenticationMeth ods : {WindowsIntegrated, OAuth}
[PS] C:\Windows\system32>Get-We bServicesV irtualDire ctory | fl server, exch13,ExternalURL, InternalURL, *auth*
Server : EXCH01
ExternalUrl : https://mail.company.net/ews/exchange.asmx
InternalUrl : https://mail.company.net/ews/exchange.asmx
CertificateAuthentication :
InternalAuthenticationMeth ods : {Ntlm, WindowsIntegrated, WSSecurity}
ExternalAuthenticationMeth ods : {Ntlm, WindowsIntegrated, WSSecurity}
LiveIdNegotiateAuthenticat ion :
WSSecurityAuthentication : True
LiveIdBasicAuthentication : False
BasicAuthentication : False
DigestAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : False
AdfsAuthentication : False
Server : EXCH13
ExternalUrl : https://mail.company.net/EWS/Exchange.asmx
InternalUrl : https://mail.company.net/EWS/Exchange.asmx
CertificateAuthentication :
InternalAuthenticationMeth ods : {Ntlm, WindowsIntegrated, WSSecurity, OAuth}
ExternalAuthenticationMeth ods : {Ntlm, WindowsIntegrated, WSSecurity, OAuth}
LiveIdNegotiateAuthenticat ion :
WSSecurityAuthentication : True
LiveIdBasicAuthentication : False
BasicAuthentication : False
DigestAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : True
AdfsAuthentication : False
[PS] C:\Windows\system32>Get-Ec pVirtualDi rectory | fl server, exch13, ExternalURL, InternalURL, *auth*
Server : EXCH01
ExternalUrl : https://mail.company.net/ecp
InternalUrl : https://mail.company.net/ecp
InternalAuthenticationMeth ods : {Basic, Fba, Ntlm, WindowsIntegrated}
BasicAuthentication : True
WindowsAuthentication : True
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth ods : {Fba}
Server : EXCH13
ExternalUrl : https://mail.company.net/ecp
InternalUrl : https://mail.company.net/ecp
InternalAuthenticationMeth ods : {Basic, Fba}
BasicAuthentication : True
WindowsAuthentication : False
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth ods : {Fba}
[PS] C:\Windows\system32>Get-Ac tiveSyncVi rtualDirec tory | fl server, name, ExternalURL, InternalURL, *auth*
Server : EXCH01
Name : Microsoft-Server-ActiveSyn c (Default Web Site)
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut horityURL :
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth ods : {}
ExternalAuthenticationMeth ods : {}
Server : EXCH13
Name : Microsoft-Server-ActiveSyn c (Default Web Site)
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut horityURL :
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth ods : {}
ExternalAuthenticationMeth ods : {}
[PS] C:\Windows\system32>Get-Ac tiveSyncVi rtualDirec tory | fl server, exch13, ExternalURL, InternalURL, *auth*
Server : EXCH01
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut horityURL :
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth ods : {}
ExternalAuthenticationMeth ods : {}
Server : EXCH13
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut horityURL :
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth ods : {}
ExternalAuthenticationMeth ods : {}
[PS] C:\Windows\system32>Get-Ou tlookAnywh ere | fl server, Name, *hostname*, *auth*
Server : EXCH01
Name : Rpc (Default Web Site)
ExternalHostname : mail.company.net
InternalHostname :
ExternalClientAuthenticati onMethod : Ntlm
InternalClientAuthenticati onMethod : Ntlm
IISAuthenticationMethods : {Ntlm}
Server : EXCH13
Name : Rpc (Default Web Site)
ExternalHostname : mail.company.net
InternalHostname : mail.company.net
ExternalClientAuthenticati onMethod : Ntlm
InternalClientAuthenticati onMethod : Ntlm
IISAuthenticationMethods : {Basic, Ntlm, Negotiate}
[PS] C:\Windows\system32>Get-Ow aVirtualDi rectory | fl server, Name, ExternalURL, InternalURL, *auth*
Server : EXCH01
Name : owa (Default Web Site)
ExternalUrl : https://mail.company.net/owa
InternalUrl : https://mail.company.net/owa
ClientAuthCleanupLevel : High
InternalAuthenticationMeth ods : {Basic, Fba, Ntlm, WindowsIntegrated}
BasicAuthentication : True
WindowsAuthentication : True
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth ods : {Fba}
Server : EXCH13
Name : owa (Default Web Site)
ExternalUrl : https://mail.company.net/owa
InternalUrl : https://mail.company.net/owa
ClientAuthCleanupLevel : High
InternalAuthenticationMeth ods : {Basic, Fba}
BasicAuthentication : True
WindowsAuthentication : False
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth ods : {Fba}
[PS] C:\Windows\system32>Get-Cl ientAccess Server | fl Name,OutlookAnywhereEnable d, AutodiscoverServiceInterna lUri
Name : EXCH01
OutlookAnywhereEnabled : True
AutoDiscoverServiceInterna lUri : https://mail.company.net/autodiscover/autodiscover.xml
Name : EXCH13
OutlookAnywhereEnabled : True
AutoDiscoverServiceInterna lUri : https://mail.company.net/autodiscover/autodiscover.xml
[PS] C:\Windows\system32>Get-Ex changeCert ificate | fl FriendlyName, Subject, CertificateDomains, Thumbprint, Services, I
ssuer, *not*
FriendlyName : Microsoft Exchange Server Auth Certificate
Subject : CN=Microsoft Exchange Server Auth Certificate
CertificateDomains : {}
Thumbprint : F6F6781D1A2CD3CF074447D371 6E2F4A3D2B FD42
Services : SMTP
Issuer : CN=Microsoft Exchange Server Auth Certificate
NotAfter : 9/19/2022 5:18:33 PM
NotBefore : 10/15/2017 5:18:33 PM
FriendlyName : Microsoft Exchange
Subject : CN=EXCH13
CertificateDomains : {EXCH13, EXCH13.company.local}
Thumbprint : AEEE2F6582A21138F61E629660 B8D14DF960 140E
Services : IIS, SMTP
Issuer : CN=EXCH13
NotAfter : 10/15/2022 5:17:38 PM
NotBefore : 10/15/2017 5:17:38 PM
FriendlyName : WMSVC
Subject : CN=WMSvc-EXCH13
CertificateDomains : {WMSvc-EXCH13}
Thumbprint : 4F40A10D0B8ADF2CAB8378F097 87DF65B58E DA84
Services : None
Issuer : CN=WMSvc-EXCH13
NotAfter : 10/13/2027 4:32:42 PM
NotBefore : 10/15/2017 4:32:42 PM
FriendlyName : JDS
Subject : CN=mail.company.net
CertificateDomains : {mail.company.net}
Thumbprint : 473E3A9AA5C6ACE7480666E242 7286E8F542 60E1
Services : IMAP, POP, IIS, SMTP
Issuer : CN=RapidSSL SHA256 CA - G3, O=GeoTrust Inc., C=US
NotAfter : 3/6/2018 11:11:15 PM
NotBefore : 2/3/2016 12:30:20 PM
[PS] C:\Windows\system32>Get-Ma piVirtualD irectory | fl server, Name,ExternalURL,InternalU RL, *auth*
Server : EXCH13
Name : mapi (Default Web Site)
ExternalUrl :
InternalUrl : https://exch13.company.local/mapi
IISAuthenticationMethods : {Ntlm, OAuth, Negotiate}
InternalAuthenticationMeth ods : {Ntlm, OAuth, Negotiate}
ExternalAuthenticationMeth ods : {}
[PS] C:\Windows\system32>Get-Cl ientAccess Array | fl
[PS] C:\Windows\system32>Get-Ou tlookProvi der
Name Server CertPrincipalName TTL
---- ------ ----------------- ---
EXCH 1
EXPR 1
WEB 1
[PS] C:\Windows\system32>
Is there a problem with my configuration or any connectivity problem between the active directory server and the new exchange 2013 server
1.JPG
2.JPG
but the connectivity between the outlook and the new exchange 2013 is OK and it send and receive well.
And when i try to add the account from control panel/mail manually i got error in file (Connectivity)
the exchange 2010 v 14.03.0361.001, exchange 2013 Version 15.0 (Build 1347.2)
i have below results for Get command:
[PS] C:\Windows\system32>Get-Oa
Server : EXCH01
ExternalUrl : https://mail.company.net/OAB
InternalUrl : https://mail.company.net/OAB
BasicAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : False
InternalAuthenticationMeth
ExternalAuthenticationMeth
Server : EXCH13
ExternalUrl : https://mail.company.net/OAB
InternalUrl : https://mail.company.net/OAB
BasicAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : True
InternalAuthenticationMeth
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-We
Server : EXCH01
ExternalUrl : https://mail.company.net/ews/exchange.asmx
InternalUrl : https://mail.company.net/ews/exchange.asmx
CertificateAuthentication :
InternalAuthenticationMeth
ExternalAuthenticationMeth
LiveIdNegotiateAuthenticat
WSSecurityAuthentication : True
LiveIdBasicAuthentication : False
BasicAuthentication : False
DigestAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : False
AdfsAuthentication : False
Server : EXCH13
ExternalUrl : https://mail.company.net/EWS/Exchange.asmx
InternalUrl : https://mail.company.net/EWS/Exchange.asmx
CertificateAuthentication :
InternalAuthenticationMeth
ExternalAuthenticationMeth
LiveIdNegotiateAuthenticat
WSSecurityAuthentication : True
LiveIdBasicAuthentication : False
BasicAuthentication : False
DigestAuthentication : False
WindowsAuthentication : True
OAuthAuthentication : True
AdfsAuthentication : False
[PS] C:\Windows\system32>Get-Ec
Server : EXCH01
ExternalUrl : https://mail.company.net/ecp
InternalUrl : https://mail.company.net/ecp
InternalAuthenticationMeth
BasicAuthentication : True
WindowsAuthentication : True
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth
Server : EXCH13
ExternalUrl : https://mail.company.net/ecp
InternalUrl : https://mail.company.net/ecp
InternalAuthenticationMeth
BasicAuthentication : True
WindowsAuthentication : False
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-Ac
Server : EXCH01
Name : Microsoft-Server-ActiveSyn
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth
ExternalAuthenticationMeth
Server : EXCH13
Name : Microsoft-Server-ActiveSyn
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-Ac
Server : EXCH01
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth
ExternalAuthenticationMeth
Server : EXCH13
ExternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
InternalUrl : https://mail.company.net/Microsoft-Server-ActiveSync
MobileClientCertificateAut
BasicAuthEnabled : True
WindowsAuthEnabled : False
ClientCertAuth : Ignore
InternalAuthenticationMeth
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-Ou
Server : EXCH01
Name : Rpc (Default Web Site)
ExternalHostname : mail.company.net
InternalHostname :
ExternalClientAuthenticati
InternalClientAuthenticati
IISAuthenticationMethods : {Ntlm}
Server : EXCH13
Name : Rpc (Default Web Site)
ExternalHostname : mail.company.net
InternalHostname : mail.company.net
ExternalClientAuthenticati
InternalClientAuthenticati
IISAuthenticationMethods : {Basic, Ntlm, Negotiate}
[PS] C:\Windows\system32>Get-Ow
Server : EXCH01
Name : owa (Default Web Site)
ExternalUrl : https://mail.company.net/owa
InternalUrl : https://mail.company.net/owa
ClientAuthCleanupLevel : High
InternalAuthenticationMeth
BasicAuthentication : True
WindowsAuthentication : True
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth
Server : EXCH13
Name : owa (Default Web Site)
ExternalUrl : https://mail.company.net/owa
InternalUrl : https://mail.company.net/owa
ClientAuthCleanupLevel : High
InternalAuthenticationMeth
BasicAuthentication : True
WindowsAuthentication : False
DigestAuthentication : False
FormsAuthentication : True
LiveIdAuthentication : False
AdfsAuthentication : False
OAuthAuthentication : False
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-Cl
Name : EXCH01
OutlookAnywhereEnabled : True
AutoDiscoverServiceInterna
Name : EXCH13
OutlookAnywhereEnabled : True
AutoDiscoverServiceInterna
[PS] C:\Windows\system32>Get-Ex
ssuer, *not*
FriendlyName : Microsoft Exchange Server Auth Certificate
Subject : CN=Microsoft Exchange Server Auth Certificate
CertificateDomains : {}
Thumbprint : F6F6781D1A2CD3CF074447D371
Services : SMTP
Issuer : CN=Microsoft Exchange Server Auth Certificate
NotAfter : 9/19/2022 5:18:33 PM
NotBefore : 10/15/2017 5:18:33 PM
FriendlyName : Microsoft Exchange
Subject : CN=EXCH13
CertificateDomains : {EXCH13, EXCH13.company.local}
Thumbprint : AEEE2F6582A21138F61E629660
Services : IIS, SMTP
Issuer : CN=EXCH13
NotAfter : 10/15/2022 5:17:38 PM
NotBefore : 10/15/2017 5:17:38 PM
FriendlyName : WMSVC
Subject : CN=WMSvc-EXCH13
CertificateDomains : {WMSvc-EXCH13}
Thumbprint : 4F40A10D0B8ADF2CAB8378F097
Services : None
Issuer : CN=WMSvc-EXCH13
NotAfter : 10/13/2027 4:32:42 PM
NotBefore : 10/15/2017 4:32:42 PM
FriendlyName : JDS
Subject : CN=mail.company.net
CertificateDomains : {mail.company.net}
Thumbprint : 473E3A9AA5C6ACE7480666E242
Services : IMAP, POP, IIS, SMTP
Issuer : CN=RapidSSL SHA256 CA - G3, O=GeoTrust Inc., C=US
NotAfter : 3/6/2018 11:11:15 PM
NotBefore : 2/3/2016 12:30:20 PM
[PS] C:\Windows\system32>Get-Ma
Server : EXCH13
Name : mapi (Default Web Site)
ExternalUrl :
InternalUrl : https://exch13.company.local/mapi
IISAuthenticationMethods : {Ntlm, OAuth, Negotiate}
InternalAuthenticationMeth
ExternalAuthenticationMeth
[PS] C:\Windows\system32>Get-Cl
[PS] C:\Windows\system32>Get-Ou
Name Server CertPrincipalName TTL
---- ------ ----------------- ---
EXCH 1
EXPR 1
WEB 1
[PS] C:\Windows\system32>
Is there a problem with my configuration or any connectivity problem between the active directory server and the new exchange 2013 server
1.JPG
2.JPG
ASKER
For what I can see your records looks OK.
Try restarting the Exchange topology services.
Try restarting the Exchange topology services.
Also, as a good practice dont show your domain information and whatnot.
People might want to hack your server.
People might want to hack your server.
ASKER
Hemil Aquini,
How can i edit my comment to remove this picture?
How can i edit my comment to remove this picture?
If someone commented after your comment, I don't think you can. Just deleting the whole thread will delete the image.
@Rami Alhasani
Just click on "Report Question" and request admin to remove the image.
Just click on "Report Question" and request admin to remove the image.
ASKER
Thanks MAS
Dear Hemil Aquino,
i have restarted this service and restart the whole server with no luck (same problem).
Dear Hemil Aquino,
i have restarted this service and restart the whole server with no luck (same problem).
ASKER
ASKER
Thanks Mr. Wolfe for your support
im waiting for a good expert solution
im waiting for a good expert solution
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear Jian An Lim,
thanks for your support,
my users can login with normal setup of mailbox on outlook that uses the Autodiscover, but the error appears when setup the account in outlook manually by typing the name of exchange server and mailbox.
for the Questions:
1. can you logon to OWA to confirm the mailbox is assessable? i can login to OWA without any problem.
also log in to https://mail.company.net/Ews/Exchange.asmx and confirm you hit a XML-like page. i logged in and i got this page:
2. then go to https://testconnectivity.microsoft.com/ and run both test
Microsoft Office Outlook Connectivity Tests Outlook Connectivity
Outlook Autodiscover
i uploaded the files.
thanks in advance
RCATestResult.txt
RCATestResult-1-.txt
thanks for your support,
my users can login with normal setup of mailbox on outlook that uses the Autodiscover, but the error appears when setup the account in outlook manually by typing the name of exchange server and mailbox.
for the Questions:
1. can you logon to OWA to confirm the mailbox is assessable? i can login to OWA without any problem.
also log in to https://mail.company.net/Ews/Exchange.asmx and confirm you hit a XML-like page. i logged in and i got this page:
2. then go to https://testconnectivity.microsoft.com/ and run both test
Microsoft Office Outlook Connectivity Tests Outlook Connectivity
Outlook Autodiscover
i uploaded the files.
thanks in advance
RCATestResult.txt
RCATestResult-1-.txt
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear Jian An Lim,
did you change the firewall to point to the new server?
yes i changed it.
can you test the following url? (credential is your new mailbox that moved)
https://mail.company.net/autodiscover/autodiscover.xml
https://<newservername>/autodiscov er/autodis cover.xml
https://<oldservername>/autodiscov er/autodis cover.xml
did you change the firewall to point to the new server?
yes i changed it.
can you test the following url? (credential is your new mailbox that moved)
https://mail.company.net/autodiscover/autodiscover.xml
https://<newservername>/autodiscov
https://<oldservername>/autodiscov
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Jian An Lim,
i wonder do your certificate have autodiscover as CNAME? how i can check that?
also we need to run the test command in exchange server
$TestCredentials = Get-Credential # this is the user's credential Test-OutlookConnectivity -ProbeIdentity OutlookRpcCtpProbe -MailboxId johnd@contoso.com -Credential $TestCredentials
but i noticed a weird thing that when i configure a mailbox that are existing on the new exchange 2013 server manually on outlook and type the old exchange server name its resolves the name of the new exchange 2013 server correctly
and do i need to delete default exchange 2013 certificates after importing my certificate from exchange 2010 to exchange 2013
i wonder do your certificate have autodiscover as CNAME? how i can check that?
also we need to run the test command in exchange server
$TestCredentials = Get-Credential # this is the user's credential Test-OutlookConnectivity -ProbeIdentity OutlookRpcCtpProbe -MailboxId johnd@contoso.com -Credential $TestCredentials
but i noticed a weird thing that when i configure a mailbox that are existing on the new exchange 2013 server manually on outlook and type the old exchange server name its resolves the name of the new exchange 2013 server correctly
and do i need to delete default exchange 2013 certificates after importing my certificate from exchange 2010 to exchange 2013
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
in the new world, you are not "suppose" to type in the servername, it should pick up by autodiscover
i know that, but i do it manually to test the connectivity, even with autodiscover it gave me below error, and when complete define mailbox in outlook, the server name is incorrect in the (account settings/server settings)
to check on cname
open the certificate and confirm Subject Alternative Name
When you next create an outlook profile, can you untick the "cached mode"? and see whether the same message reappear?
it gave another error message below:
i know that, but i do it manually to test the connectivity, even with autodiscover it gave me below error, and when complete define mailbox in outlook, the server name is incorrect in the (account settings/server settings)
to check on cname
open the certificate and confirm Subject Alternative Name
When you next create an outlook profile, can you untick the "cached mode"? and see whether the same message reappear?
it gave another error message below:
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Jian An Lim,
so first, your certificate does not have autodiscover alternative name. you need to regenerate a certificate to get that working.
what do you mean by "autodiscover alternative name", and how i can regenerate my certificate?
For clarification, when i was using the old exchange 2010 i was not facing any problems about server name, the only thing i was facing is the certificate message when the user opens the outlook only:
So let's go back to your ORIGINAL ISSUE, do you still have this error message every time?
no i get this error message only when i setup the mailbox manually and you clarified to me now that i cant do it manually, and when i setup via autodiscover i did not get any errors and every thing goes well, it connects perfect and i can send and receive emails but the only problem is that the server name problem Which I mentioned earlier:
and some users outlook keep asking them for authentication (user name and password)
so first, your certificate does not have autodiscover alternative name. you need to regenerate a certificate to get that working.
what do you mean by "autodiscover alternative name", and how i can regenerate my certificate?
For clarification, when i was using the old exchange 2010 i was not facing any problems about server name, the only thing i was facing is the certificate message when the user opens the outlook only:
So let's go back to your ORIGINAL ISSUE, do you still have this error message every time?
no i get this error message only when i setup the mailbox manually and you clarified to me now that i cant do it manually, and when i setup via autodiscover i did not get any errors and every thing goes well, it connects perfect and i can send and receive emails but the only problem is that the server name problem Which I mentioned earlier:
and some users outlook keep asking them for authentication (user name and password)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Jian An Lim
thanks for your support and sorry for late respond,
i created the request but when i complete the request and use the same valid certificate i got below error:
and when i'm trying to delete the current valid certificate i got below error:
and i'm insist for manual addition of email because some users opens two mailboxes on their outlook, the first one was added with autodiscover and the other one manual addition,
anyway am now adding it by giving the user mailbox full access "Mailbox Delegation" on the other mailbox, but in the same subject i'm in stage of Decommissioning Exchange 2010 but before that i shut down the exchange 2010 to make sure that every thing is OK and after testing everything is OK except that the delegated mailbox when i the cursor on its inbox or other folders it gave trying to connect for long time then connected and it gave that every time that i close outlook and reopen it, but when i turned on the exchange 2010 again this mailbox gave connected directly.
waiting for your support
thanks in advance.
thanks for your support and sorry for late respond,
i created the request but when i complete the request and use the same valid certificate i got below error:
and when i'm trying to delete the current valid certificate i got below error:
and i'm insist for manual addition of email because some users opens two mailboxes on their outlook, the first one was added with autodiscover and the other one manual addition,
anyway am now adding it by giving the user mailbox full access "Mailbox Delegation" on the other mailbox, but in the same subject i'm in stage of Decommissioning Exchange 2010 but before that i shut down the exchange 2010 to make sure that every thing is OK and after testing everything is OK except that the delegated mailbox when i the cursor on its inbox or other folders it gave trying to connect for long time then connected and it gave that every time that i close outlook and reopen it, but when i turned on the exchange 2010 again this mailbox gave connected directly.
waiting for your support
thanks in advance.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
My certificate is from rapidssl.com, do you mean that i have to request a new certificate from them and pay again for it, even though may certificate still valid, i dont know if i can manage my certificate from that site.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Jian An Lim for great support,
i'm waiting your feedback about "rapidssl"
i'm waiting your feedback about "rapidssl"
sorry, when i say "i will", i mean " if i am you, I will"
so please kindly contact rapidssl yourself
so please kindly contact rapidssl yourself
ASKER
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes as Domain Administrator
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear Jian,
i'm trying to install it from IIS manager
what do you mean by admin mode?
kindly i will respectely ask you to give me more details about that and how to install or merge it with existing private key?
i'm trying to install it from IIS manager
what do you mean by admin mode?
kindly i will respectely ask you to give me more details about that and how to install or merge it with existing private key?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi Jian An Lim,
I successfully imported the new certificate to the exchange server, and to test if the problem solved i shut down the old exchange 2010 server, but unfortunately the same problems appears and also new problems appears also, the problems is that outlook users on windows XP are disconnected and they get certificate error like below:
so i install the certificate on the users computer certificate store but that did not fix the problem
also outlook users on windows 7 are suffering from delay when open the outlook every time like below:
this message " updating this folder" is appears every time that user closes and reopen the outlook and it Cause of delaying messages
i think my problem is too complicated so i need an urgent help PLZ :)
I successfully imported the new certificate to the exchange server, and to test if the problem solved i shut down the old exchange 2010 server, but unfortunately the same problems appears and also new problems appears also, the problems is that outlook users on windows XP are disconnected and they get certificate error like below:
so i install the certificate on the users computer certificate store but that did not fix the problem
also outlook users on windows 7 are suffering from delay when open the outlook every time like below:
this message " updating this folder" is appears every time that user closes and reopen the outlook and it Cause of delaying messages
i think my problem is too complicated so i need an urgent help PLZ :)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
i got it from rapidssl
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
i forgot to mention that they sent me also an intermediate certificate and i installed it correctly to exchange server 2013 certificates store as they instructed me,
does that changing any thing here?
does that changing any thing here?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
where i should install the root certificate on the exchange server 2013?
and should i download (under SHA-1 Root) or (under SHA-2 Root)?
and should i download (under SHA-1 Root) or (under SHA-2 Root)?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ok but should i install the root certificate under the "intermediate certification authorities" store in in the exchange 2013 server certificate store or under "personal" store?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear Jian An Lim,
i installed the root certificate on the exchange 2013 server but with no luck, but when i install the intermediate and root certificate on the outlook user computer (that has XP installed on it) its connected now but the delay problem still there, when you open the outlook it takes long time to get the data from the server (that's when the exchange 2010 is turned off),
but when i turn on the exchange 2010 server the delay problem disappears !!
i installed the root certificate on the exchange 2013 server but with no luck, but when i install the intermediate and root certificate on the outlook user computer (that has XP installed on it) its connected now but the delay problem still there, when you open the outlook it takes long time to get the data from the server (that's when the exchange 2010 is turned off),
but when i turn on the exchange 2010 server the delay problem disappears !!
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The reason why I'm turning off exchange 2010 is to test connectivity for the new exchange 2013 before Decommissioning of exchange 2010, that was the recommendation of the article that i was processed step by step from techgenix.com site
http://techgenix.com/migrating-small-organization-exchange-2010-exchange-2013-part4/
do you mean that when i safely decommission the exchange 2010, my delay problem will be solved?
regarding to public folder i should told that my public folder on my old exchange 2010 server is corrupted and i cannot dismounted from a long time but it was not making any problems when i was using only the exchange 2010, i don't know now if it is making problems after migration or not or it will make a problems with Decommissioning i should ask you?
or should i make a new public folder on the exchange 2013 (i don't need it in my environment).
http://techgenix.com/migrating-small-organization-exchange-2010-exchange-2013-part4/
do you mean that when i safely decommission the exchange 2010, my delay problem will be solved?
regarding to public folder i should told that my public folder on my old exchange 2010 server is corrupted and i cannot dismounted from a long time but it was not making any problems when i was using only the exchange 2010, i don't know now if it is making problems after migration or not or it will make a problems with Decommissioning i should ask you?
or should i make a new public folder on the exchange 2013 (i don't need it in my environment).
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear Jian An Lim
i appreciate your great support :)
but i prefer to continue in this post because it has full details about my problem and i don't want to start from zero and my primary issue was connectivity delay in outlook after migration from exchange 2010 to exchange 2013,and we are a step away from solving the problem, and i will be thankfull for you support to end this issue.
i appreciate your great support :)
but i prefer to continue in this post because it has full details about my problem and i don't want to start from zero and my primary issue was connectivity delay in outlook after migration from exchange 2010 to exchange 2013,and we are a step away from solving the problem, and i will be thankfull for you support to end this issue.
Hi Rami,
I appreciate your support, but it is really streching your original question as we have exchanged almost 49 messages since.
You can always refer back to this post on your new question for history purpose but rest assure, whatever you done here have nothing to do with how you going to decomission your exchange 2010.
It is just good to get a closure by accepting the answer.
and onceyou post your question, i will look into it and give other expert a chance to look into this.
I appreciate your support, but it is really streching your original question as we have exchanged almost 49 messages since.
You can always refer back to this post on your new question for history purpose but rest assure, whatever you done here have nothing to do with how you going to decomission your exchange 2010.
It is just good to get a closure by accepting the answer.
and onceyou post your question, i will look into it and give other expert a chance to look into this.
ASKER
Ok thanks i have published a new post and i hope we can reach to an appropriate solution to my problem
the link to the new post :
https://www.experts-exchange.com/questions/29081396/Exchange-2010-to-2013-Migration-problem.html
the link to the new post :
https://www.experts-exchange.com/questions/29081396/Exchange-2010-to-2013-Migration-problem.html
ASKER
Thanks for your great support
Where is your autodiscover pointing to?
Both common name and autodiscover should be pointed to Exchange2013.
Please ensure all services are started.
Thanks
MAS