I have somewhat of an interesting problem that I've been attempting to solve for about a week now. First a little about our environment.

1:DC, 1:Exchange 2013, 1:Decommissioned Exchange 2013

After an upgrade from 2010 to 2013 we seem to be having some issues with remote connections to our exchange. The 2010 has been completely shutdown. We are able to access OWA remotely. Internally outlook does work. Externally outlook and mobile phones are unable to authenticate to exchange. Remote connectivity tester results have given the follow message.

[X]	Exchange Web Services synchronization, notification, availability, and Automatic Replies.
	Not all tests of Exchange Web Services tasks completed.
	Additional Details   Elapsed Time: 7167 ms.
	Test Steps   [] The Microsoft Connectivity Analyzer is attempting to test Autodiscover for ####@####.org.   Autodiscover was tested successfully.     Test Steps   [] Attempting each method of contacting the Autodiscover service.   The Autodiscover service was tested successfully.   Additional Details   Elapsed Time: 6685 ms.   Test Steps [X] Creating a temporary folder to perform synchronization tests.   Failed to create temporary folder for performing tests.   Additional Details   Exception details: Message: The response received from the service didn't contain valid XML. Type: Microsoft.Exchange.WebServices.Data.ServiceRequestException Stack trace: at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.ReadXmlDeclaration(EwsServiceXmlReader reader) at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.ReadSoapFault(EwsServiceXmlReader reader) at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.ProcessWebException(WebException webException) at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.GetEwsHttpWebResponse(IEwsHttpWebRequest request) at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.ValidateAndEmitRequest(IEwsHttpWebRequest& request) at Microsoft.Exchange.WebServices.Data.MultiResponseServiceRequest`1.Execute() at Microsoft.Exchange.WebServices.Data.ExchangeService.BindToFolder[TFolder](FolderId folderId, PropertySet propertySet) at Microsoft.Exchange.Tools.ExRca.Tests.GetOrCreateSyncFolderTest.PerformTestReally() Exception details: Message: Data at the root level is invalid. Line 1, position 1. Type: System.Xml.XmlException Stack trace: at System.Xml.XmlTextReaderImpl.Throw(Exception e) at System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace() at System.Xml.XmlTextReaderImpl.ParseDocumentContent() at System.Xml.XmlCharCheckingReader.Read() at Microsoft.Exchange.WebServices.Data.EwsXmlReader.Read(XmlNodeType nodeType) at Microsoft.Exchange.WebServices.Data.ServiceRequestBase.ReadXmlDeclaration(EwsServiceXmlReader reader) Elapsed Time: 478 ms.

-----------------------------

EDIT: When browsing to mail.domain.org/ews/exchange.asmx I get the following:

"The page cannot be displayed because an internal server error has occurred."

------------------------------

Edit2: 

[PS] C:\Windows\system32>Get-WebServicesVirtualDirectory #####\ews* | fl name, internal*, external*, *authentication


Name                          : EWS (Default Web Site)
InternalNLBBypassUrl          :
InternalAuthenticationMethods : {WSSecurity, OAuth}
InternalUrl                   : https://mail.####.org/ews/exchange.asmx
ExternalAuthenticationMethods : {WSSecurity, OAuth}
ExternalUrl                   :
CertificateAuthentication     :
LiveIdNegotiateAuthentication :
WSSecurityAuthentication      : True
LiveIdBasicAuthentication     : False
BasicAuthentication           : False

Am I missing an External URL?? 

• Edited by Madison Pace Sunday, August 03, 2014 7:53 PM

Basic authentication has  been enabled in addition to a iisreset 

Name                          : EWS (Default Web Site)
InternalNLBBypassUrl          :
InternalAuthenticationMethods : {Basic, WSSecurity, OAuth}
InternalUrl                   : https://mail.####.org/ews/exchange.asmx
ExternalAuthenticationMethods : {Basic, WSSecurity, OAuth}
ExternalUrl                   :
CertificateAuthentication     :
LiveIdNegotiateAuthentication :
WSSecurityAuthentication      : True
LiveIdBasicAuthentication     : False
BasicAuthentication           : True
DigestAuthentication          : False
WindowsAuthentication         : False
OAuthAuthentication           : True
AdfsAuthentication            : False

What do you mean by external DNS? Thanks!

• Edited by Madison Pace 22 hours 16 minutes ago

the ISP that hosts your external autodiscover records, have they updated your info or is your autodiscover records externally the same as the current server?

I don't think anything with the ISP has been updated yet, Although I don know all of our godaddy certs have been re keyed. I also ran these commands for more debug info:

[PS] Get-ClientAccessServer | fl Namae,AutoDiscoverServiceInternalUri

AutoDiscoverServiceInternalUri : https://mail.####.org/Autodiscover/Autodiscover.xml

AutoDiscoverServiceInternalUri : https://mail.####.org/autodiscover/autodiscover.xml



[PS] Get-ClientAccessServer | fl Name,AutoDiscoverServiceExternalUri

Name : 2010ExchangeServer

Name : 2013ExchangeServer



[PS] Get-AutodiscoverVirtualDirectory | ft *url*

InternalUrl                                                 ExternalUrl
-----------                                                 -----------
https://autodiscover.####.org/AutoDiscover/AutoDiscover... https://autodiscover.####.org/AutoDiscover/AutoDiscover...

• Edited by Madison Pace 22 hours 17 minutes ago

Hi

Try enabling basic authentication, do an IISreset on your servers or reboot them and try again. Also make sure your DNS externally is set for the new server.

Still no luck. External DNS confirmed 

This issue persists both internally and externally. 

I should also mention that the OOF (out of office) service is also effected. Users are able to set an OOF from OWA but not from Outlook. When attempting to use out look they are presented with the following error: 

" Your automatic reply settings cannot be displayed because the server is currently unavailable. " 

It's like nothing can see EWS . . .

I'm lost as to how to further troubleshoot