Link to home
Start Free TrialLog in
Avatar of Joris Dijk
Joris Dijk

asked on

HCW8057 error message

I'm trying to migrate my exchange 2010 on premisis environment to Office 365 via the hybrid method. I have already synchronized my AD with azure. when I start the hybrid configuration wizard I get the following message HCW8057 at the end (see the picture).

Ive used the following commands to configure autodiscover:

Get-ClientAccessServer | Set-ClientAccessServer –AutoDiscoverServiceInternalUri https://mail.contoso.com/autodiscover/autodiscover.xml

Get-ClientAccessServer | Select AutoDiscoverServiceInternalUri, AutoDiscoverSiteScope


Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceInternalUri https://mail.contoso.com/autodiscover/autodiscover.xml


Get-ClientAccessServer | Select AutoDiscoverServiceInternalUri, AutoDiscoverSiteScope

Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceInternalUri https://mail.contoso.com/autodiscover/autodiscover.xml

Get-ClientAccessServer | Select AutoDiscoverServiceInternalUri, AutoDiscoverSiteScope

Set-ClientAccessServer -Identity DC-server -AutodiscoverServiceInternalUri https://mail.contoso.com/autodiscover/autodiscover.xml

Set-WebServicesVirtualDirectory -Identity "DC-server\EWS (default web site)" -InternalUrl https://mail.contoso.com/ews/exchange.asmx

Set-WebServicesVirtualDirectory -Identity "DC-server\EWS (Default web site)" -ExternalUrl https://mail.contoso.com/ews/exchange.asmx

Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -InternalUrl https://mail.contoso.com/oab

Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -ExternalUrl https://mail.contoso.com/oab


Get-OabVirtualDirectory | Set-OabVirtualDirectory –ExternalURL https://mail.contoso.com/oab

Get-WebServicesVirtualDirectory | Set-WebServicesVirtualDirectory –ExternalURL https://mail.contoso.com/ews/exchange.asmx

Set-OutlookAnywhere -Identity "DC-server\Rpc (Default Web Site)" -SSLOffloading $true -ClientAuthenticationMethod NTLM -IISAuthenticationMethods Basic,NTLM

Set-OutlookProvider -Identity EXCH -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProvider -Identity EXPR -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProviderF -Identity WEB -CertPrincipalName msstd:mail.contoso.com
Set-AutodiscoverVirtualDirectory "DC-server\Autodiscover (Default Web Site)" -WSSecurityAuthentication:$True
Set-AutodiscoverVirtualDirectory -Identity ‘autodiscover (Default Web Site)’ –WSSecurityAuthentication $true

i`ve also enabled Outlook Anywhere.

My server runs on windows server 2012 R2

User generated image
SOLUTION
Avatar of Shreedhar Ette
Shreedhar Ette
Flag of India image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Ganesh Gurudu
Ganesh Gurudu
We can run EXRCA(https://testconnectivity.microsoft.com/) report to ensure the Autodiscover is working properly externally.
From the Internet, you can also test Autodiscover for your domains:
https://autodiscover.domain.com/Autodiscover/Autodiscover.xml
After authenticating, if you get XML with a 600 error and no certificate warning, it's a good sign that it's working.
Make sure that WSSecurity is properly enabled on the Autodiscover virtual directory.
Make sure the domain autodiscover records are list in your internet published certificate.
What’s more, please help to connect the HCW log (location: %appdata%\Microsoft\Exchange Hybrid Configuration) to find more information about this issue.
refer : https://social.technet.microsoft.com/Forums/windows/en-US/59604c51-894d-4ab3-a9bf-ed54cd7c3a08/hcw8057-office-365-was-unable-to-communicate-with-your-onpremises-autodiscover-endpoint?forum=onlineservicesexchange

And also check the below URL
https://community.spiceworks.com/topic/2034346-hcw8057-office-365-was-unable-to-communicate-with-your-on-premises-autodiscover
Avatar of Joris Dijk
Joris Dijk

ASKER

Hi,

i can access The URL "https://autodiscover.contoso.com/autodiscover/autodiscover.svc/WSSecurity" externally.

And ive had already added the autodiscover.contoso.com to my internal dns.


the problem still occurs
Avatar of Joris Dijk
Joris Dijk

ASKER

HI

Ive done the conectivety test and ive get the following results everything is green and there is one warning the warning says:

Certificate trust is being validated.
       The certificate is trusted and all certificates are present in the chain.
       
      Test Steps
       
      The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate CN=mail.contoso.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated.
       One or more certificate chains were constructed successfully.
       
      Additional Details
      Analyzing the certificate chains for compatibility problems with versions of Windows.
       Potential compatibility problems were identified with some versions of Windows.

ive also checked the https://autodiscover.domain.com/Autodiscover/Autodiscover.xml and get the 600 error message.
ASKER CERTIFIED SOLUTION
Avatar of Shreedhar Ette
Shreedhar Ette
Flag of India image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Mahesh
Mahesh
Flag of India image
you can rerun the hybrid config wizard and it should get completed without errors
As some times O365 federation gateway need some time to validate onpremise federation certificates which are generated during HCW process
Avatar of Ganesh Gurudu
Ganesh Gurudu
contact Office support directly.

i feel this is not the issue,  you can ignore this warning .