Exchange 2010 Options/Mobile Issues

Josh used Ask the Experts™
Our Exchange 2010 running on Server 2008r2 SP1 has slowly having issues.
1. New users were unable to add exchange email on mobile phones, now older users are having an issue where they do not receive emails any longer.
2. OWA will not let you look at options or see previous emails without displaying the first read email, mainly no buttons work other than looking at inbox emails, BUT if "Light Version" is used - no issues that I can see aside from not having all the features.

My workaround was making users able to select "Light Version". I have looked around, recreated virtual directories but nothing has changed.

One thing I forgot to add, while using O365 Outlook, we are prompted for a password every time we load Outlook up. We are even asked for passwords of "Managed Full Access Permission" inboxes that a user has access to.
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

first of all check the evenviewer logs.. related to exchange...

What OS is on the mobile devices?
Does it differ between IOS/Android/Windows Mobile?
Which process are you using for the devices to source email - Exchange HTTPS / Activesync / Pop SMTP?
Is your SSL current?
Can we see some screen captures?
Edward van BiljonMessaging and Collaboration Technical Lead (Exchange MVP & MCT)

Is this Exchange 2010 SP3 or SP1? What rollup?

What errors you seeing in the event logs?
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!


Exchange 2010 SP3, Rollup 27

Android and iOS (No windows Mobile)
Looks like no mobile ActivSync is working currently. I tested on another device with my credentials and nothing.

SSL's are current and not expired. (listed in Server Configuration)

Event Viewer : (Most Recent)

Log Name:      Application
Source:        ASP.NET 2.0.50727.0
Date:          4/29/2019 7:50:55 AM
Event ID:      1309
Task Category: Web Event
Level:         Warning
Keywords:      Classic
User:          N/A
Computer:      Server Name
Event code: 3005
Event message: An unhandled exception has occurred.
Event time: 4/29/2019 7:50:55 AM
Event time (UTC): 4/29/2019 12:50:55 PM
Event ID: d356a4b9c1e543519d2de60b80954692
Event sequence: 1880
Event occurrence: 1
Event detail code: 0
Application information:
    Application domain: /LM/W3SVC/1/ROOT/owa-1-132009844342144599
    Trust level: Full
    Application Virtual Path: /owa
    Application Path: \ClientAccess\owa\
    Machine name: Server Name
Process information:
    Process ID: 5032
    Process name: w3wp.exe
    Account name: NT AUTHORITY\SYSTEM
Exception information:
    Exception type: MapiExceptionNotFound
    Exception message: MapiExceptionNotFound: Unable to get properties on object. (hr=0x8004010f, ec=-2147221233)
Diagnostic context:
    Lid: 55847   EMSMDBPOOL.EcPoolSessionDoRpc called [length=611]
    Lid: 43559   EMSMDBPOOL.EcPoolSessionDoRpc returned [ec=0x0][length=386][latency=0]
    Lid: 23226   --- ROP Parse Start ---
    Lid: 27962   ROP: ropOpenMessage [3]
    Lid: 17082   ROP Error: 0x8004010F
    Lid: 26977  
    Lid: 21921   StoreEc: 0x8004010F
    Lid: 27962   ROP: ropExtendedError [250]
    Lid: 1494    ---- Remote Context Beg ----
    Lid: 26426   ROP: ropOpenMessage [3]
    Lid: 23921   StoreEc: 0x3EC    
    Lid: 21970   StoreEc: 0x8004010F PropTag: 0x668F0040
    Lid: 23921   StoreEc: 0x3EC    
    Lid: 21970   StoreEc: 0x8004010F PropTag: 0x3D2F0003
    Lid: 23921   StoreEc: 0x3EC    
    Lid: 21970   StoreEc: 0x8004010F PropTag: 0x672D0003
    Lid: 23921   StoreEc: 0x3EC    
    Lid: 21970   StoreEc: 0x8004010F PropTag: 0x672F0014
    Lid: 64937   dwParam: 0xADE9E7EF
    Lid: 43123   dwParam: 0x1A9166
    Lid: 60457   StoreEc: 0x8004010F
    Lid: 4353    StoreEc: 0x8004010F
    Lid: 19418  
    Lid: 6153    StoreEc: 0x8004010F
    Lid: 21810  
    Lid: 5249    StoreEc: 0x8004010F
    Lid: 37123  
    Lid: 59651   StoreEc: 0x8004010F
    Lid: 1750    ---- Remote Context End ----
    Lid: 27962   ROP: ropGetPropsSpecific [7]
    Lid: 17082   ROP Error: 0x4B9    
    Lid: 26465  
    Lid: 21921   StoreEc: 0x4B9    
    Lid: 27962   ROP: ropExtendedError [250]
    Lid: 1494    ---- Remote Context Beg ----
    Lid: 26426   ROP: ropGetPropsSpecific [7]
    Lid: 36739  
    Lid: 1750    ---- Remote Context End ----
    Lid: 26849  
    Lid: 21817   ROP Failure: 0x4B9    
    Lid: 20385  
    Lid: 28577   StoreEc: 0x8004010F
    Lid: 32001  
    Lid: 29953   StoreEc: 0x8004010F
Request information:
    Request URL: owa
    Request path: /owa/
    User host address:  
    User: Domain User
    Is authenticated: True
    Authentication Type: Basic
    Thread account name: NT AUTHORITY\SYSTEM
Thread information:
    Thread ID: 10
    Thread account name: NT AUTHORITY\SYSTEM
    Is impersonating: False
    Stack trace:    at Microsoft.Mapi.MapiExceptionHelper.ThrowIfError(String message, Int32 hresult, SafeExInterfaceHandle iUnknown, Exception innerException)
   at Microsoft.Mapi.MapiProp.GetProps(ICollection`1 propTagsRequested)
   at Microsoft.Exchange.Data.Storage.MapiPropertyBag.GetProperties(IList`1 propertyDefinitions)
We do have an error and warning of an expired cert from 2015 (expire date) that is not in use, not listed at server configuration.

Log Name:      System
Source:        Schannel
Date:          4/29/2019 9:12:07 AM
Event ID:      36888
Task Category: None
Level:         Error
User:          SYSTEM
Computer:      server
The following fatal alert was generated: 10. The internal error state is 10.
Event Xml:
<Event xmlns="">
    <Provider Name="Schannel" Guid="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
    <TimeCreated SystemTime="2019-04-29T14:12:07.736898100Z" />
    <Correlation />
    <Execution ProcessID="612" ThreadID="10040" />
    <Security UserID="***" />
    <Data Name="AlertDesc">10</Data>
    <Data Name="ErrorState">10</Data>

Let me know what type of captures you would like to see.

Thank you,
AmitIT Architect
Distinguished Expert 2017

Use this site and perform ActiveSync test:

Share the result.
AmitIT Architect
Distinguished Expert 2017

Yes, when you run the AS test, you will get a result. You can review, where it is failing and share with us, so we can help you further.
What I did to remedy the situation:
Built a new exchange server, the old one is running along side it as I have yet to move the mailbox database.
OWA is working smoothly, no issues with options or anything.
Mobile phone is working, we do have an log in event viewer of the users mailbox has a newer version the the new server that has to be updated. This is not letting many apps connect to their mailboxes but a work around is using "Microsoft Outlook" mobile app.
There have been no constant asking for email account passwords.

The reason for making a new server was the mass of issues I was having with the current one, and they kept coming.

I have learned a lot over the past few days.

Thank you for your help,
AmitIT Architect
Distinguished Expert 2017

I suspect your active sync policy is not allowing devices to connect. You might need to create new policy and allow all devices to connect and then set it as default policy.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial