This is a exchange 2007 server that was initially installed as a RTM verion. It is now SP1. The database is mounted and functioning for other users. I do not know of anyother users having problems, we have about 75 in total. The Database size is 109GB. I have not located a reg entry that allows for the larger size, but I am read some where that the RTM version enabled 150GB by default. (I did not setup this server so some details are fuzzy) I know the size is not ideal, Splitting it up into multiple datbases in on my very long to do list, I am trying to get a fix for this now, without making significant changes. There are two AD controllers up and functioning. I can log into the Domain (Not Exchange) with the users credentials Logging into OWA produces this error. All my web searching has found many people with similar errors, but no fixes. RequestUrl: https://webmail.domainname.com:443/owa/default.aspxUser host address: xx.xx.xx.xx ExceptionException type: Microsoft.Exchange.Data.Storage.ConnectionFailedTransientExceptionException message: Cannot open mailbox /o=Company Name/ou=First Administrative Group/cn=Recipients/cn=user. Call stack Microsoft.Exchange.Data.Storage.ConnectionCachePool.OpenMailbox(String serverDn, String userDn, String mailboxDn, Guid mailboxGuid, Guid mdbGuid, Object identity, ConnectFlag connectFlag, OpenStoreFlag openStoreFlag, CultureInfo cultureInfo, String clientInfoString, Boolean secondTry) Microsoft.Exchange.Data.Storage.ConnectionCachePool.OpenMailbox(String serverDn, String userDn, String mailboxDn, Guid mailboxGuid, Guid mdbGuid, Object identity, ConnectFlag connectFlag, OpenStoreFlag openStoreFlag, CultureInfo cultureInfo, String clientInfoString, Boolean secondTry) Microsoft.Exchange.Data.Storage.ConnectionCachePool.OpenMailbox(String serverDn, String userDn, String mailboxDn, Guid mailboxGuid, Guid mdbGuid, Object identity, ConnectFlag connectFlag, OpenStoreFlag openStoreFlag, CultureInfo cultureInfo, String clientInfoString) Microsoft.Exchange.Data.Storage.MailboxSession.Initialize(LogonType logonType, ExchangePrincipal owner, DelegateLogonUser delegateUser, Object identity, OpenMailboxSessionFlags flags) Microsoft.Exchange.Data.Storage.MailboxSession.CreateMailboxSession(LogonType logonType, ExchangePrincipal owner, DelegateLogonUser delegateUser, Object identity, OpenMailboxSessionFlags flags, CultureInfo cultureInfo, String clientInfoString) Microsoft.Exchange.Data.Storage.MailboxSession.Open(ExchangePrincipal mailboxOwner, WindowsPrincipal authenticatedUser, CultureInfo cultureInfo, String clientInfoString) Microsoft.Exchange.Clients.Owa.Core.OwaWindowsIdentity.CreateMailboxSession(ExchangePrincipal exchangePrincipal, CultureInfo cultureInfo) Microsoft.Exchange.Clients.Owa.Core.UserContext.Load(OwaContext owaContext) Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.CreateUserContext(OwaContext owaContext, UserContextKey userContextKey, UserContext& userContext) Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.PrepareRequestWithoutSession(OwaContext owaContext, UserContextCookie userContextCookie) Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.InternalDispatchRequest(OwaContext owaContext) Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchRequest(OwaContext owaContext) System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) Inner ExceptionException type: Microsoft.Mapi.MapiExceptionLogonFailedException message: MapiExceptionLogonFailed: Unable to open message store. (hr=0x80040111, ec=1010) Diagnostic context: Lid: 18969 EcDoRpcExt2 called [length=943] Lid: 27161 EcDoRpcExt2 returned [ec=0x0][length=124][latency=0] Lid: 23226 --- ROP Parse Start --- Lid: 27962 ROP: ropLogon [254] Lid: 17082 ROP Error: 0x3F2 Lid: 26937 Lid: 21921 StoreEc: 0x3F2 Lid: 27962 ROP: ropExtendedError [250] Lid: 1494 ---- Remote Context Beg ---- Lid: 26426 ROP: ropLogon [254] Lid: 4740 StoreEc: 0x80070005 Lid: 30409 StoreEc: 0x80070005 Lid: 19145 StoreEc: 0x3F2 Lid: 23241 StoreEc: 0x3F2 Lid: 32186 Lid: 8620 StoreEc: 0x3F2 Lid: 1750 ---- Remote Context End ---- Lid: 26849 Lid: 21817 ROP Failure: 0x3F2 Lid: 26297 Lid: 16585 StoreEc: 0x3F2 Lid: 32441 Lid: 1706 StoreEc: 0x3F2 Lid: 24761 Lid: 20665 StoreEc: 0x3F2 Lid: 25785 Lid: 29881 StoreEc: 0x3F2 Call stack Microsoft.Mapi.MapiExceptionHelper.ThrowIfError(String message, Int32 hresult, Int32 ec, DiagnosticContext diagCtx) Microsoft.Mapi.ExRpcConnection.OpenMsgStore(OpenStoreFlag storeFlags, String mailboxDn, Guid mailboxGuid, Guid mdbGuid, MapiStore msgStorePrivate, String& correctServerDn, ClientIdentityInfo clientIdentityAs, String userDnAs, String applicationId, CultureInfo cultureInfo) Microsoft.Mapi.ConnectionCache.OpenMapiStore(String mailboxDn, Guid mailboxGuid, Guid mdbGuid, ClientIdentityInfo clientIdentity, String userDnAs, OpenStoreFlag openStoreFlags, CultureInfo cultureInfo, String applicationId) Microsoft.Mapi.ConnectionCache.OpenMailbox(String mailboxDn, Guid mailboxGuid, Guid mdbGuid, WindowsIdentity windowsIdentityAs, String userDnAs, OpenStoreFlag openStoreFlags, CultureInfo cultureInfo, String applicationId) Microsoft.Exchange.Data.Storage.ConnectionCachePool.OpenMailbox(String serverDn, String userDn, String mailboxDn, Guid mailboxGuid, Guid mdbGuid, Object identity, ConnectFlag connectFlag, OpenStoreFlag openStoreFlag, CultureInfo cultureInfo, String clientInfoString, Boolean secondTry)

Here is a update to this issue for anyone with similar problems. I negleted to mention in my earlier post that this user still had full access via a BlackBerry. This made me hesitant to do anything with their mailbox, primarily becuase it was an executive and I did not want to block all their mail if a change went wrong. I began moving other users off this DB to another, during that process normal functioning returned to the affected user. I suspect the root cause was a DB issue. I plan on moving all other users and dumping this DB asap.

Hey Mark, Yes looks like users are unable to access mailbox due to MapiExceptionLogonFailed. You may create a new mailbox store and move all the mailboxes there OR if you want to troubleshoot further, you can create a new mailbox store andcompare/validate the value of different attributes of problematic mailbox store with new one inadsiedit.msc. Specially some attributes like legacyExchangeDN, dn etc... which normally points the direction of store location to users. Additionally, you can run http://ExBPA.com to scan your exchange environment and check if it gives any related error. Check for any error in event log.

Hi, In case anyone encounter will the same problem, below steps may help you to correct the issue. MapiExceptionLogonFailed: Unable to make connection to the server 1. Please check whether Inheritance has been enabled. 1). Open up Active Directory Users and Computers2).Go to the View menu, Advanced.3).Locate the user in AD, right click, properties. Jump to the security tab.4).Click "Advanced" next to the "For special permissions or for advanced settings, click Advanced.5).Click "Allow inheritable permissions from the parent to propagate to this object and all child objects. Include these with entries explicitly defined here." Check box and apply.6). Click OK and OK again. 2. Please check permission settings for "Exchange Servers". 1). Using ADSIEdit.msc navigate to the Exchange server object and view the properties.2). Switch to the Security tab and click Advanced.3). Sort the columns by "Name" and locate the entries for "Exchange Servers"4). Verify if there are explicit Deny Exchange Servers settings (4) for problematic account following rights:Store Constrained DelegationStore Read and Write AccessStore Read only AccessStore Transport Access By Default Exchange Servers will explicitly be allowed these rights at the server level, but denied these rights at the Org level. 3. Check for Manage auditing and security logs on the Default Domain Controllers Policy to see if the "Exchange Servers" group is present there.Hope it helps. Xiu

Hi... I had the same issue, this thread helped in solving the issue although I did not follow the procedures stated above.... I clicked on the account under Recipient Configuration on the Exchange MAnagement Console... then clicked on the "Manage Fulll Access Permission" link on the rightmost panel, and to my amazement, the AD account related to this mailbox was not on the list!!!, I simply added the AD account again.. and the user can log back in Outlook again... :-)

I had the same error as above, but after removing and reconnecting my mailbox to another user account. Giving my new user account full access permissions to my mailbox seems to have resolved the issue. Thanks for the suggestion!

Hi... I had the same issue, this thread helped in solving the issue although I did not follow the procedures stated above.... I clicked on the account under Recipient Configuration on the Exchange MAnagement Console... then clicked on the "Manage Fulll Access Permission" link on the rightmost panel, and to my amazement, the AD account related to this mailbox was not on the list!!!, I simply added the AD account again.. and the user can log back in Outlook again... :-) This worked for me also. Although it was never needed before, I beleive it was getting permission from "NT USER / AUTHORITY" account I don't know what changed or why but adding the domain account to manage full access permission worked.

OH MY GOD THATS IT!!! that did it!! YIPPEEEPEPEPE I have spent 5 hours on this and here it was, oh my god, I can go have a christmas now

Hello, Just the other day this happened to my account. I am a domain admin, so we do not have the "Allow inheritable permissions from the parent to propagate to this object and all child objects. Include these with entries explicitly defined here." check box checked. I can receive email on my BB, and on my outlook client on the network... I cannot log into owa ( i get the mapi exception: Microsoft.Mapi.MapiExceptionLogonFailed) and I can not use outlook rpc over https. I don't know what was changed or who did it, as I was on PTO and noticed my mail stopped working. As far as security permissions and group info, My account is identical to other admin accounts setup the same way, who can access owa with out inherited permissions. Any other suggestions?