So the issue you are encountering is that you received error 401 when you run Test-Outlookwebservices, right? Generally we don't use this cmdlet to test web-services. Instead, we run Test email AutoConfiguration in Outlook 2007 client. Please take a try and let me know the results and logs. You may also verify the default permission configuration: http://blogs.technet.com/b/exchange/archive/2008/02/01/3404755.aspx Hope it is helpful.Fiona Liao TechNet Community Support

If you go to https://webmail.company.com/autodiscover/autodiscover.xml what happens? Do you get an authentication prompt or does it take you to the page right away? You should get a response like below. I would also test each cas as well https://cas01.domain.com/autodiscover/autodiscover.xml <?xml version="1.0" encoding="utf-8" ?> - <Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006"> - <Response> - <Error Time="10:33:14.0231365" Id="2645275802"> <ErrorCode>600</ErrorCode> <Message>Invalid Request</Message> <DebugData /> </Error> </Response> </Autodiscover> James Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com

We are getting some autodiscover errors on our Exhcange server 2007 box. We have SBS 2008 Premium and have 1 box running 'SBS' which is the domain controller and Exchange server and second box that runs Server 2008 and SQL. Outlook, ActiveSync, OWA are all working fine, we are having trouble with our spam software though. It is VIPRE Email security, formally called Ninja. I worked with their support and we determined it is a Autodiscover issue. When we run test-outlookwebservices we get this error: The remote server returned an error: (401) Unauthorized. I have read a bunch on the topic and found a few things and it seems most everyone is getting around it by disabling the loopback check but that does not appear to be the best, the most secure or the reccomended solution. What is the best way to fix this?? Do I need another cert?? I have one GoDaddy Cert already for our external domain name so we don't get cert errors when using OWA. Thanks for any help.

Could be permissions issues on the directory or the IIS vdir. On your CAS verify C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess ClientAccess folder has authenticated users listed with permissions read and execute, list and read In IIS check the Autodiscover Vdir Autodiscover Basic authenticationWindows authentication SSL requiredRequire 128-bit encrypion James Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com

It's hard to say whether you need another certificate since you didn't tell us anything about your certificate. You can test Autodiscover yourself at http://exrca.com. Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

And no HTTP Redirect.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Thanks for the replies. I did check the security on the ClientAccess folder and authenticated users was not listed so I added them with the appropriate permissions. The Vdir permissions looked correct. I ran the tests at http://exrca.com and they all failed. What else can I look into?