free\busy information could not be retrieved, outlook 2010 with exchange 2007 cas and mailbox servers
Client Setup
98 windows xp sp3 using outlook 2003, 8 using outlook 2007
3 mac osx using mail
3 windows 7 x64 pro using outlook 2010 x32
server
2 exchange 2007 servers runnong on windows 2008 r2
exch01 mailbox server
exch02 cas
outlook anywhere and unified messaging not used
test-outlookwebservices and test-activesyncconnectivity pass with no errors
test email autoconfiguration on the client passes with no errors
https direct to availability Service url: https://exch02.domain.local/EWS/Exchange.asmx brings up the page after windows login prompt
Basically the problem is, the 3 outlook 2010 clients will not bring up free/busy info within the scheduling assistant. The office 2007 clients don't have a problem, so I would presume that the availability service is running as it is supposed to.
any ideas?
<?xml version="1.0" encoding="utf-8"?>
<Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006">
<Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a">
<User>
<DisplayName>David Feifer</DisplayName>
<LegacyDN>/o=company./ou=domain/cn=Recipients/cn=dfiefer</LegacyDN>
<DeploymentId>4dd0be15-e01e-4eff-8d36-640af49c340c</DeploymentId>
</User>
<Account>
<AccountType>email</AccountType>
<Action>settings</Action>
<Protocol>
<Type>EXCH</Type>
<Server>MDSTVEXCH01.domain.local</Server>
<ServerDN>/o=company./ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=MDSTVEXCH01</ServerDN>
<ServerVersion>720180F0</ServerVersion>
<MdbDN>/o=company/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=MDSTVEXCH01/cn=Microsoft Private MDB</MdbDN>
<PublicFolderServer>MDSTVEXCH01.domain.local</PublicFolderServer>
<AD>mdstvdc02.domain.local</AD>
<ASUrl>https://mdstvexch02.domain.local/EWS/Exchange.asmx</ASUrl>
<EwsUrl>https://mdstvexch02.domain.local/EWS/Exchange.asmx</EwsUrl>
<OOFUrl>https://mdstvexch02.domain.local/EWS/Exchange.asmx</OOFUrl>
<UMUrl>https://mdstvexch02.domain.local/UnifiedMessaging/Service.asmx</UMUrl>
<OABUrl>Public Folder</OABUrl>
</Protocol>
<Protocol>
<Type>EXPR</Type>
<Server>webmail1.domain.com</Server>
<SSL>On</SSL>
<AuthPackage>Basic</AuthPackage>
<OABUrl>Public Folder</OABUrl>
</Protocol>
<Protocol>
<Type>WEB</Type>
<External>
<OWAUrl AuthenticationMethod="Fba">https://webmail1.domain.com/owa</OWAUrl>
</External>
<Internal>
<OWAUrl AuthenticationMethod="Basic, Fba">https://mdstvexch02.domain.local/owa</OWAUrl>
<Protocol>
<Type>EXCH</Type>
<ASUrl>https://mdstvexch02.domain.local/EWS/Exchange.asmx</ASUrl>
</Protocol>
</Internal>
</Protocol>
</Account>
</Response>
</Autodiscover>
January 28th, 2011 9:08am
Hi
Are you using split dns?
Same dns zonename internal as external?
What names are included in your certificate? UC/SAN certificate?
Get-Exchangecertificate | flJonas Andersson MCTS: Microsoft Exchange Server 2007/2010 | MCITP: EMA 2007/2010 | Blog:
http://www.testlabs.se/blog | Follow me on twitter:
jonand82
Free Windows Admin Tool Kit Click here and download it now
February 1st, 2011 7:44am
Hi
Are you using split dns?
Same dns zonename internal as external?
What names are included in your certificate? UC/SAN certificate?
Get-Exchangecertificate | flJonas Andersson MCTS: Microsoft Exchange Server 2007/2010 | MCITP: EMA 2007/2010 | Blog:
http://www.testlabs.se/blog | Follow me on twitter:
jonand82
February 1st, 2011 7:44am
webmail1.domain.com is our owa entry point on iis, domain.com itself is actualy hosted for us by a company out of illinois. domain.local is our internal domain.
AccessRules : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessR
ule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {webmail1, webmail1.domain.com, autodiscover.domain.com, MDSTVEXCH02.domain.local, MDSTVE
XCH02}
HasPrivateKey : True
IsSelfSigned : False
Issuer : CN=MDSTVDC03, DC=domain, DC=local
NotAfter : 1/31/2013 9:46:05 AM
NotBefore : 2/1/2011 9:46:05 AM
PublicKeySize : 1024
RootCAType : Enterprise
SerialNumber : 343D77F10000000000A4
Services : IMAP, POP, IIS, SMTP
Status : Valid
Subject : CN=webmail1, OU=IT, O=domain., L=Stevensville, S=Maryland, C=US
Thumbprint : 53D93AD4DCF93261D3FFFE1D8853290ED8D53688
=====================================================
OABInteg (Offline Address Book Integrity Checker)
Product Version 06.05.7839.2
OABInteg.exe
Microsoft Corporation, Copyright (C) 2006 - 2008
Microsoft and Windows are registered trademarks of Microsoft Corporation.
=====================================================
Command line arguments: oabinteg.exe /s:MDSTVEXCH01 /t:storealtest
Program started at: 02:43:35 PM
Running OABInteg on: MDSTVEXCH02\dom_admin
Trying to connect to: GC://MDSTVEXCH01
Failure: ADsOpenObject
ADSI Error: hr = 0x8007203a - LDAP_SERVER_DOWN - ERROR_DS_SERVER_DOWN: Cannot
ntact the LDAP server.
Function: HrGetRootDSEData
Line number: 177
Unable to obtain the configuration container.
=====================================================
OABInteg (Offline Address Book Integrity Checker)
Product Version 06.05.7839.2
OABInteg.exe
Microsoft Corporation, Copyright (C) 2006 - 2008
Microsoft and Windows are registered trademarks of Microsoft Corporation.
=====================================================
Command line arguments: oabinteg.exe /s:MDSTVEXCH01 /t:certtest
Checking to see if OABInteg is running on an Exchange Server
Checking version of Exchange Server
Exchange 2007 Version: 8.0.240.6
Starting Test 18 - Starting OAB Certificate Filtering Test
NOTE: By default this test is set to 0 which is default for filtering. Run this
on your exchange server to detect your settings.
For more information please see: 'http://blogs.msdn.com/dgoldman/archive/2008/11
/21/oabinteg-and-certificate-testing.aspx'
NOTE: You can use the /v:2 switch for maximum logging. This switch will display
everything
MAPIInitialize Failure: hr = 0x80004005 - MAPI Error = E_FAIL: General access de
nied error.
Function: StartMapi
Line number: 121
M Failure: hr = 0x80004005 - MAPI Error = E_FAIL: General access denied error.
Function: DeleteNewProfile
Line number: 337
VERBOSE: Test-OutlookWebServices : Beginning processing.
VERBOSE: Testing Outlook Web Services.
Id : 1003
Type : Information
Message : About to test AutoDiscover with the e-mail address dfeifer@prsguitars.com.
Id : 1006
Type : Information
Message : The Autodiscover service was contacted at https://MDSTVEXCH02.domain.local/Autodiscover/Autodiscover.xml.
Id : 1016
Type : Success
Message : [EXCH]-Successfully contacted the AS service at https://mdstvexch02.domain.local/ews/exchange.asmx. The elap
sed time was 31 milliseconds.
Id : 1015
Type : Success
Message : [EXCH]-Successfully contacted the OAB service at https://mdstvexch02.domain.local/ews/exchange.asmx. The ela
psed time was 0 milliseconds.
Id : 1014
Type : Success
Message : [EXCH]-Successfully contacted the UM service at https://mdstvexch02.domain.local/UnifiedMessaging/Service.as
mx. The elapsed time was 0 milliseconds.
Id : 1016
Type : Success
Message : [EXPR]-Successfully contacted the AS service at https://webmail1.domain.com/EWS/Exchange.asmx. The elapse
d time was 46 milliseconds.
Id : 1015
Type : Success
Message : [EXPR]-Successfully contacted the OAB service at https://webmail1.domain.com/EWS/Exchange.asmx. The elaps
ed time was 0 milliseconds.
Id : 1014
Type : Information
Message : [EXPR]-The UM is not configured for this user.
Id : 1017
Type : Success
Message : [EXPR]-Successfully contacted the RPC/HTTP service at https://webmail1.domain.com/Rpc. The elapsed time w
as 156 milliseconds.
Id : 1006
Type : Success
Message : The Autodiscover service was tested successfully.
dc03 has my microsoft pki running server 2003. I am not worried about getting oa working, but free/busy on internal clients makes making meetings a little hard. oab seems to be having some trouble, not sure if this may be a root cause or not. The outlook
icon is showing the double icons, and can not download the oab. and when i run oabinteg.exe /t:storealtest i get Failure: ADsOpenObject
ADSI Error: hr = 0x8007203a - LDAP_SERVER_DOWN - ERROR_DS_SERVER_DOWN: Cannot
ntact the LDAP server. Though I have no problem manually going in to adsiedit.
Free Windows Admin Tool Kit Click here and download it now
February 1st, 2011 2:56pm
Hi,
Please enable Outlook Logging on the Outlook 2010, then reproduce this issue and collect the Free/Busy log under %temp%\temp\olkas folder.
Then post here.
Thanks
AllenAllen Song
February 2nd, 2011 1:52am
Hi,
Please enable Outlook Logging on the Outlook 2010, then reproduce this issue and collect the Free/Busy log under %temp%\temp\olkas folder.
Then post here.
Thanks
AllenAllen Song
Free Windows Admin Tool Kit Click here and download it now
February 2nd, 2011 1:52am
I did something yesterday that appears to have fixed the problem. Most probable is the fact that all of the virtual directories had accept client certificates selected under ssl settings. Changed this to ignore for all directories.
February 2nd, 2011 1:02pm
Hi David,
I am unclear where to find this option and virtual direcotries?Andy
Free Windows Admin Tool Kit Click here and download it now
April 25th, 2012 5:36am
Hi David,
I am unclear where to find this option and virtual direcotries?Andy
April 25th, 2012 5:36am
Hi David,
what do you get when you run this command ?
Get-WebServicesVirtualDirectory | ft name, server, internalurl, externalurl <-- this will display the InternalUrl and ExternalUrl for all your CAS servers.
for non internet facing sites, the externalURL should point to $null and InternalURL should be set to https://local_exchangeserver.local/EWS/Exchange.asmx
Free Windows Admin Tool Kit Click here and download it now
July 12th, 2012 3:01am