Joris Dijk
asked on
HCW8057 error message
I'm trying to migrate my exchange 2010 on premisis environment to Office 365 via the hybrid method. I have already synchronized my AD with azure. when I start the hybrid configuration wizard I get the following message HCW8057 at the end (see the picture).
Ive used the following commands to configure autodiscover:
Get-ClientAccessServer | Set-ClientAccessServer –AutoDiscoverServiceIntern alUri https://mail.contoso.com/autodiscover/autodiscover.xml
Get-ClientAccessServer | Select AutoDiscoverServiceInterna lUri, AutoDiscoverSiteScope
Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceIntern alUri https://mail.contoso.com/autodiscover/autodiscover.xml
Get-ClientAccessServer | Select AutoDiscoverServiceInterna lUri, AutoDiscoverSiteScope
Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceIntern alUri https://mail.contoso.com/autodiscover/autodiscover.xml
Get-ClientAccessServer | Select AutoDiscoverServiceInterna lUri, AutoDiscoverSiteScope
Set-ClientAccessServer -Identity DC-server -AutodiscoverServiceIntern alUri https://mail.contoso.com/autodiscover/autodiscover.xml
Set-WebServicesVirtualDire ctory -Identity "DC-server\EWS (default web site)" -InternalUrl https://mail.contoso.com/ews/exchange.asmx
Set-WebServicesVirtualDire ctory -Identity "DC-server\EWS (Default web site)" -ExternalUrl https://mail.contoso.com/ews/exchange.asmx
Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -InternalUrl https://mail.contoso.com/oab
Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -ExternalUrl https://mail.contoso.com/oab
Get-OabVirtualDirectory | Set-OabVirtualDirectory –ExternalURL https://mail.contoso.com/oab
Get-WebServicesVirtualDire ctory | Set-WebServicesVirtualDire ctory –ExternalURL https://mail.contoso.com/ews/exchange.asmx
Set-OutlookAnywhere -Identity "DC-server\Rpc (Default Web Site)" -SSLOffloading $true -ClientAuthenticationMetho d NTLM -IISAuthenticationMethods Basic,NTLM
Set-OutlookProvider -Identity EXCH -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProvider -Identity EXPR -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProviderF -Identity WEB -CertPrincipalName msstd:mail.contoso.com
Set-AutodiscoverVirtualDir ectory "DC-server\Autodiscover (Default Web Site)" -WSSecurityAuthentication: $True
Set-AutodiscoverVirtualDir ectory -Identity ‘autodiscover (Default Web Site)’ –WSSecurityAuthentication $true
i`ve also enabled Outlook Anywhere.
My server runs on windows server 2012 R2
Ive used the following commands to configure autodiscover:
Get-ClientAccessServer | Set-ClientAccessServer –AutoDiscoverServiceIntern
Get-ClientAccessServer | Select AutoDiscoverServiceInterna
Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceIntern
Get-ClientAccessServer | Select AutoDiscoverServiceInterna
Get-ClientAccessServer | ? {$_.AutoDiscoverSiteScope –eq “AD Site Name” } | Set-ClientAccessServer –AutoDiscoverServiceIntern
Get-ClientAccessServer | Select AutoDiscoverServiceInterna
Set-ClientAccessServer -Identity DC-server -AutodiscoverServiceIntern
Set-WebServicesVirtualDire
Set-WebServicesVirtualDire
Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -InternalUrl https://mail.contoso.com/oab
Set-OABVirtualDirectory -Identity "DC-server\oab (default web site)" -ExternalUrl https://mail.contoso.com/oab
Get-OabVirtualDirectory | Set-OabVirtualDirectory –ExternalURL https://mail.contoso.com/oab
Get-WebServicesVirtualDire
Set-OutlookAnywhere -Identity "DC-server\Rpc (Default Web Site)" -SSLOffloading $true -ClientAuthenticationMetho
Set-OutlookProvider -Identity EXCH -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProvider -Identity EXPR -CertPrincipalName msstd:mail.contoso.com
Set-OutlookProviderF -Identity WEB -CertPrincipalName msstd:mail.contoso.com
Set-AutodiscoverVirtualDir
Set-AutodiscoverVirtualDir
i`ve also enabled Outlook Anywhere.
My server runs on windows server 2012 R2
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi,
i can access The URL "https://autodiscover.contoso.com/autodiscover/autodiscover.svc/WSSecurity" externally.
And ive had already added the autodiscover.contoso.com to my internal dns.
the problem still occurs
i can access The URL "https://autodiscover.contoso.com/autodiscover/autodiscover.svc/WSSecurity" externally.
And ive had already added the autodiscover.contoso.com to my internal dns.
the problem still occurs
ASKER
HI
Ive done the conectivety test and ive get the following results everything is green and there is one warning the warning says:
Certificate trust is being validated.
The certificate is trusted and all certificates are present in the chain.
Test Steps
The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate CN=mail.contoso.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated.
One or more certificate chains were constructed successfully.
Additional Details
Analyzing the certificate chains for compatibility problems with versions of Windows.
Potential compatibility problems were identified with some versions of Windows.
ive also checked the https://autodiscover.domain.com/Autodiscover/Autodiscover.xml and get the 600 error message.
Ive done the conectivety test and ive get the following results everything is green and there is one warning the warning says:
Certificate trust is being validated.
The certificate is trusted and all certificates are present in the chain.
Test Steps
The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate CN=mail.contoso.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated.
One or more certificate chains were constructed successfully.
Additional Details
Analyzing the certificate chains for compatibility problems with versions of Windows.
Potential compatibility problems were identified with some versions of Windows.
ive also checked the https://autodiscover.domain.com/Autodiscover/Autodiscover.xml and get the 600 error message.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
you can rerun the hybrid config wizard and it should get completed without errors
As some times O365 federation gateway need some time to validate onpremise federation certificates which are generated during HCW process
As some times O365 federation gateway need some time to validate onpremise federation certificates which are generated during HCW process
contact Office support directly.
i feel this is not the issue, you can ignore this warning .
i feel this is not the issue, you can ignore this warning .
From the Internet, you can also test Autodiscover for your domains:
https://autodiscover.domain.com/Autodiscover/Autodiscover.xml
After authenticating, if you get XML with a 600 error and no certificate warning, it's a good sign that it's working.
Make sure that WSSecurity is properly enabled on the Autodiscover virtual directory.
Make sure the domain autodiscover records are list in your internet published certificate.
What’s more, please help to connect the HCW log (location: %appdata%\Microsoft\Exchan
refer : https://social.technet.microsoft.com/Forums/windows/en-US/59604c51-894d-4ab3-a9bf-ed54cd7c3a08/hcw8057-office-365-was-unable-to-communicate-with-your-onpremises-autodiscover-endpoint?forum=onlineservicesexchange
And also check the below URL
https://community.spiceworks.com/topic/2034346-hcw8057-office-365-was-unable-to-communicate-with-your-on-premises-autodiscover