Outlook Anywhere
I have the following configuration;Microsoft Server 2008 StandardExchange 2007OWA EnabledOutlook Anywhere EnabledGo Daddy OCC SSL CertificateI have run the www.testexchangeconnectivity.com and found that the "Testing SSL mutual authentication with RPC Proxy server" had failed where the common name on the SSL certificate did not match the principal name on the CAS. I have since reissued my SSL cert with GoDaddy and made the common name my mail server's DNS name.I now pass the mutual authentication step but am now faced with the "Attempting to Ping RPC Proxy mail.mydomain.com" and recieve error, "Cannot ping RPC Proxy - A Web Exception occurred because an HTTP 401 - Unauthorized response was received from Unknown" I have changed the authentication method to both NTLM and Basic on IISAuthenticationMethod and I am able to browse the rpc virtual directory in IIS.All users are able to use OWA and internal mail just fine. I also do not use ISA Server and run a single 2008 server DC.Any suggestions from here?
March 1st, 2010 9:21am

You have port 443 open to the Exchange server? Also check the authentication settings here http://exchangeshell.wordpress.com/2009/11/09/default-authentication-settings-exchange-2007-iis-application-virtual-directories/ match your setup. Shaun
Free Windows Admin Tool Kit Click here and download it now
March 1st, 2010 1:09pm

Hi, Please check the below linkif it helps http://forums.msexchange.org/m_1800521362/mpage_1/key_/tm.htm#1800521470 Mahendra
March 1st, 2010 2:59pm

There were a couple changes to make in IIS for the VD's. After all was said and done I still have repeated prompts for authentication. Port 443 IS being port forwarded to the internal IP of my CAS.
Free Windows Admin Tool Kit Click here and download it now
March 3rd, 2010 6:55pm

Here are the results for the exchange connectivity tool; Testing RPC/HTTP connectivity RPC/HTTP test failed Test Steps Attempting to resolve the host name milter.albertacomputers.com in DNS. Host successfully resolved Additional Details IP(s) returned: 255.255.255.255 Testing TCP Port 443 on host mail.mydomain.com to ensure it is listening and open. The port was opened successfully. Testing SSL Certificate for validity. The certificate passed all validation requirements. Test Steps Validating certificate name Successfully validated the certificate name Additional Details Found hostname mail.mydomain.com in Certificate Subject Common name Validating certificate trust The test passed with some warnings encountered. Please expand additional details. Additional Details Only able to build certificate chain when using the Root Certificate Update functionality from Windows Update. Your server may not be properly configured to send down the required intermediate certificates to complete the chain. Consult the certificate installation instructions or FAQ's from your Certificate Authority for more information. Testing certificate date to ensure validity Date Validation passed. The certificate is not expired. Additional Details Certificate is valid: NotBefore = 2/23/2010 8:28:23 PM, NotAfter = 2/23/2012 8:28:23 PM" Testing Http Authentication Methods for URL https://mail.mydomain.com/rpc/rpcproxy.dll Http Authentication Methods are correct Additional Details Found all expected authentication methods and no disallowed methods. Methods Found: Basic, Negotiate, NTLM Testing SSL mutual authentication with RPC Proxy server Successfully verified Mutual Authentication Additional Details Certificate common name mail.mydomain.com matches msstd:mail.mydomain.com Attempting to Ping RPC Proxy mail.mydomain.com Cannot ping RPC Proxy Additional Details A Web Exception occurred because an HTTP 401 - Unauthorized response was received from Unknown As you can see it gets to port 443 successfully.
March 3rd, 2010 7:05pm

Ok....I might be getting somewhere now. I downlaoded the 2003 resource kit tools and ran rpccfg.exe /hd on the 2008 server. It states that rpcproxy is not installed on this system. I double-checked my installed features under server manager to make sure RPC over HTTP proxy was installed and it is. I checked the registry entries under HKEY_LM/software/rpc and it shows enabled as well as the correct ports to boot.Can anyone make sense of this? Do I need to reinstall IIS after installing the RPC over HTTP feature?
Free Windows Admin Tool Kit Click here and download it now
March 3rd, 2010 10:35pm

Hi,Please try to access http://localhost/Rpc/RpxProxy.dll on the CAS, the blank page should be displayed.Additionally, please check whether the Validports are configured properly on the CAS.How does Outlook Anywhere workhttp://msexchangeteam.com/archive/2008/06/20/449053.aspxThanksAllen
March 5th, 2010 10:21am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics