Exchange 2007 SP1 + Outlook 2007/2010 - Autodiscover for Outlook Anywhere and Out of Office not working

Status
Not open for further replies.
N

n4rk5



Hey all,

I've been pulling my hair out for the last day and a half trying to get both Outlook Anywhere and Out of Office working. The server in question is an SBS 2008 with all of the latest updates etc. This is a pretty big post, so sorry in advance!!

We recently purchased a UC certificate which was issued to mail.domain.com.au with autodiscover.domain.com.au, owa.domain.com.au and server.domain.local. The certificate has been installed and looks to be working fine.

I'll start with OOF first. OOF was working a while ago and then stopped (I think) after a colleague made a change to IIS relating to activesync. Now when ever anyone tries to access OOF from Outlook 2007 or 2010 they get the following error: "Your Out of Office settings cannot be displayed, because the server is currently unavailable. Try again later." OOF works fine through OWA.

The following is the contents of olkdisc.log after I attempted to open OOF from a client:

Thread Tick Count Date/Time Description

2576 3277237 12/17/10 11:00:24 Attempting URL https://mail.OLDdomain.com/autodiscover/autodiscover.xml found through SCP

2576 3277237 12/17/10 11:00:24 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml starting

2576 3291605 12/17/10 11:00:38 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml Failed (0x800C8203)

2576 3291605 12/17/10 11:00:38 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml starting

2576 3293898 12/17/10 11:00:41 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml Failed (0x800C8203)

2576 3293898 12/17/10 11:00:41 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

2576 3296238 12/17/10 11:00:43 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

2576 3296238 12/17/10 11:00:43 Local autodiscover for domain.com.au starting

2576 3296254 12/17/10 11:00:43 Local autodiscover for domain.com.au Failed (0x8004010F)

2576 3296254 12/17/10 11:00:43 Redirect check to http://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

2576 3298563 12/17/10 11:00:45 Srv Record lookup for http://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80004005)

2576 3298563 12/17/10 11:00:45 Srv Record lookup for domain.com.au starting

2576 3298563 12/17/10 11:00:45 Autodiscover URL redirection to https://mail.domain.com.au/autodiscover/autodiscover.xml

2576 3298563 12/17/10 11:00:45 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml starting

2576 3300887 12/17/10 11:00:48 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

2576 3300887 12/17/10 11:00:48 Srv Record lookup for domain.com.au Failed (0x80072F0C)

3660 3300887 12/17/10 11:00:48 Autodiscover XML Received

---BEGIN XML-

<?xml version="1.0" encoding="utf-8"?>

<Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006 ">
<Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a ">
<User>
<DisplayName>Test</DisplayName>
<LegacyDN>/o=First Organization/ou=Exchange Administrative Group (xxx)/cn=Recipients/cn=test</LegacyDN>
<DeploymentId>xxx</DeploymentId>
</User>
<Account>
<AccountType>email</AccountType>
<Action>settings</Action>
<Protocol>
<Type>EXCH</Type>
<Server>server.domain.local</Server>
<ServerDN>/o=First Organization/ou=Exchange Administrative Group (xxxx)/cn=Configuration/cn=Servers/cn=server</ServerDN>
<ServerVersion>0000000</ServerVersion>
<MdbDN>/o=First Organization/ou=Exchange Administrative Group (xxxx)/cn=Configuration/cn=Servers/cn=server/cn=Microsoft Private MDB</MdbDN>
<PublicFolderServer>server.domain.local</PublicFolderServer>
<AD>server.domain.local</AD>
<ASUrl>https://remote.domain.com.au/EWS/Exchange.asmx</ASUrl >
<EwsUrl>https://remote.domain.com.au/EWS/Exchange.asmx</EwsUrl >
<OOFUrl>https://remote.domain.com.au/EWS/Exchange.asmx</OOFUrl >
<UMUrl>https://remote.domain.com.au/UnifiedMessaging/Service.asmx</UMUrl >
<OABUrl>https://mail.domain.com.au/OAB/bef5159d-45d6-44e3-857e-dc8a7874d3ec/</OABUrl >
</Protocol>
<Protocol>
<Type>EXPR</Type>
<Server>mail.domain.com.au</Server>
<SSL>On</SSL>
<AuthPackage>Basic</AuthPackage>
<ASUrl>https://remote.domain.com.au/EWS/Exchange.asmx</ASUrl >
<EwsUrl>https://remote.domain.com.au/EWS/Exchange.asmx</EwsUrl >
<OOFUrl>https://remote.domain.com.au/EWS/Exchange.asmx</OOFUrl >
<UMUrl>https://remote.domain.com.au/UnifiedMessaging/Service.asmx</UMUrl >
<OABUrl>https://mail.domain.com.au/OAB/xxxxx/</OABUrl >
</Protocol>
<Protocol>
<Type>WEB</Type>
<External>
<OWAUrl AuthenticationMethod="Fba">https://mail.domain.com.au/owa/</OWAUrl >
<Protocol>
<Type>EXPR</Type>
<ASUrl>https://remote.domain.com.au/EWS/Exchange.asmx</ASUrl >
</Protocol>
</External>
<Internal>
<OWAUrl AuthenticationMethod="Basic, Fba">https://mail.domain.com.au/owa/</OWAUrl >
<Protocol>
<Type>EXCH</Type>
<ASUrl>https://remote.domain.com.au/EWS/Exchange.asmx</ASUrl >
</Protocol>
</Internal>
</Protocol>
</Account>
</Response>

</Autodiscover>

----END XML--

2360 3300918 12/17/10 11:00:48 Attempting URL https://mail.OLDdomain.com/autodiscover/autodiscover.xml found through SCP

2360 3300918 12/17/10 11:00:48 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml starting

2360 3312977 12/17/10 11:01:00 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml Failed (0x800C8203)

2360 3312977 12/17/10 11:01:00 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml starting

2360 3312977 12/17/10 11:01:00 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml Failed (0x800C8203)

2360 3312977 12/17/10 11:01:00 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

2360 3315302 12/17/10 11:01:02 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

2360 3315302 12/17/10 11:01:02 Local autodiscover for domain.com.au starting

2360 3315302 12/17/10 11:01:02 Local autodiscover for domain.com.au Failed (0x8004010F)

2360 3315302 12/17/10 11:01:02 Redirect check to http://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

2360 3315302 12/17/10 11:01:02 Srv Record lookup for http://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80004005)

2360 3315302 12/17/10 11:01:02 Srv Record lookup for domain.com.au starting

2360 3315302 12/17/10 11:01:02 Autodiscover URL redirection to https://mail.domain.com.au/autodiscover/autodiscover.xml

2360 3315302 12/17/10 11:01:02 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml starting

2360 3317626 12/17/10 11:01:04 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

2360 3317626 12/17/10 11:01:04 Srv Record lookup for domain.com.au Failed (0x80072F0C)

3660 3337422 12/17/10 11:01:24 Attempting URL https://mail.OLDdomain.com/autodiscover/autodiscover.xml found through SCP

3660 3337422 12/17/10 11:01:24 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml starting

3660 3349481 12/17/10 11:01:36 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml Failed (0x800C8203)

3660 3349481 12/17/10 11:01:36 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml starting

3660 3349481 12/17/10 11:01:36 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml Failed (0x800C8203)

3660 3349481 12/17/10 11:01:36 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

3660 3351806 12/17/10 11:01:38 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

3660 3351806 12/17/10 11:01:38 Local autodiscover for domain.com.au starting

3660 3351806 12/17/10 11:01:38 Local autodiscover for domain.com.au Failed (0x8004010F)

3660 3351806 12/17/10 11:01:38 Redirect check to http://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

3660 3351806 12/17/10 11:01:38 Srv Record lookup for http://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80004005)

3660 3351806 12/17/10 11:01:38 Srv Record lookup for domain.com.au starting

3660 3351806 12/17/10 11:01:38 Autodiscover URL redirection to https://mail.domain.com.au/autodiscover/autodiscover.xml

3660 3351806 12/17/10 11:01:38 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml starting

3660 3354130 12/17/10 11:01:41 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

3660 3354130 12/17/10 11:01:41 Srv Record lookup for domain.com.au Failed (0x80072F0C)

3816 3354333 12/17/10 11:01:41 Attempting URL https://mail.OLDdomain.com/autodiscover/autodiscover.xml found through SCP

3816 3354333 12/17/10 11:01:41 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml starting

3816 3366392 12/17/10 11:01:53 Autodiscover to https://mail.OLDdomain.com/autodiscover/autodiscover.xml Failed (0x800C8203)

3816 3366392 12/17/10 11:01:53 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml starting

3816 3366392 12/17/10 11:01:53 Autodiscover to https://domain.com.au/autodiscover/autodiscover.xml Failed (0x800C8203)

3816 3366392 12/17/10 11:01:53 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

3816 3368716 12/17/10 11:01:55 Autodiscover to https://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

3816 3368716 12/17/10 11:01:55 Local autodiscover for domain.com.au starting

3816 3368716 12/17/10 11:01:55 Local autodiscover for domain.com.au Failed (0x8004010F)

3816 3368716 12/17/10 11:01:55 Redirect check to http://autodiscover.domain.com.au/autodiscover/autodiscover.xml starting

3816 3368716 12/17/10 11:01:55 Srv Record lookup for http://autodiscover.domain.com.au/autodiscover/autodiscover.xml Failed (0x80004005)

3816 3368716 12/17/10 11:01:55 Srv Record lookup for domain.com.au starting

3816 3368716 12/17/10 11:01:55 Autodiscover URL redirection to https://mail.domain.com.au/autodiscover/autodiscover.xml

3816 3368716 12/17/10 11:01:55 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml starting

3816 3371041 12/17/10 11:01:58 Autodiscover to https://mail.domain.com.au/autodiscover/autodiscover.xml Failed (0x80072F0C)

3816 3371041 12/17/10 11:01:58 Srv Record lookup for domain.com.au Failed (0x80072F0C)

***Running the Test Email AutoConfiguration shows exactly the same as this. Also - the Test Email AutoConfiguration XML section doesn't show anything (don't know if it's meant to)***

Now a few things I've noticed is that the SCP is pointing to an old domain (implemented before I started working on the machine). I tried to edit the URL's using ADSI edit but I couldn't find the SCP account. Now I've read that it shouldn't matter anyway because if the url provided by the SCP doesn't work, it will continue on to try https://domain.com/autodiscover/autodiscover.xml then https://autodiscover.domain.com/autodiscover/autodiscover.xml.

I can browse https://autodiscover.domain.com/autodiscover/autodiscover.xml fine (it shows <this is a placeholder file> which is the same as what's in the .xml file on the server) - so I figure that's a good thing? It resolves both internally and externally using that address as well as https://mail.domain.com/autodiscover/autodiscover.xml. Both urls, both internally and externally show that they're using the new valid UC cert as well. The domain.com one doesn't work because that's the website which is hosted in a different location.

I noticed at the bottom of the log (and at the bottom of the Test Email AutoConfiguration) that it says there isnt' a valid SVR record. I tried to create one called _autodiscover using _tcp and port 443 (priority and weight = 0) but that didn't work either.

A couple of EMS commands I've run are:

test-OutlookWebServices -identity:test@domain.com | fl

Id : 1003
Type : Information
Message : About to test AutoDiscover with the e-mail address test@domain.com.au.

Id : 1013
Type : Error
Message : When contacting https://mail.OLDdomain.com/autodiscover/autodiscover.xml received the error The remote name could not be resolved: 'mail.OLDdomain.com'

Id : 1006
Type : Error
Message : The Autodiscover service could not be contacted.

***********************************************************

[PS] C:\Windows\System32>Test-OutlookWebServices | FL
Id : 1003
Type : Information
Message : About to test AutoDiscover with the e-mail address admin@domain.com.au.

Id : 1007
Type : Information
Message : Testing server server.domain.local with the published name https://mail.domain.com.au/ews/exchange.asmx & https://mail.domain.com.au/ews/exchange.asmx.

Id : 1019
Type : Information
Message : Found a valid AutoDiscover service connection point. The AutoDiscover URL on this object is https://mail.OLDdomain.com/autodiscover/autodiscover.xml.
Id : 1013
Type : Error
Message : When contacting https://mail.OLDdomain.com/autodiscover/autodiscover.xml received the error The remote name could not be resolved: 'mail.OLDdomain.com'
Id : 1006
Type : Error
Message : The Autodiscover service could not be contacted.

^^^These two initially got me looking into the SCP account, I'm still a bit worried about it seeing as it doesn't look to be working

***********************************************************

Get-ClientAccessServer -Identity server

Name

--

server

***********************************************************

Get-WebServicesVirtualDirectory -server server | fl *url

InternalNLBBypassUrl : https://server.domain.local/EWS/Exchange.asmx
InternalUrl : https://mail.domain.com.au/ews/exchange.asmx
ExternalUrl : https://mail.domain.com.au/ews/exchange.asmx

Above is what it is now, I changed it from:

InternalNLBBypassUrl : https://server.domain.local/EWS/Exchange.asmx
InternalUrl : https://remote.domain.com.au/EWS/Exchange.asmx
ExternalUrl : https://remote.domain.com.au/EWS/Exchange.asmx

The guy who set up the server had a lot of things pointing to remote.domain.com, so I've had to change it to mail.domain.com in several places including here.

************************************************************

GET-Webservicesvirtualdirectory |FL


InternalNLBBypassUrl : https://server.domain.local/EWS/Exchange.asmx

Name : EWS (SBS Web Applications)

InternalAuthenticationMethods : {Basic, Ntlm, WindowsIntegrated}

ExternalAuthenticationMethods : {Basic, Ntlm, WindowsIntegrated}

BasicAuthentication : True

DigestAuthentication : False

WindowsAuthentication : True

MetabasePath : IIS://server.domain.local/W3SVC/3/ROOT/EWS

Path : C:\Program Files\Microsoft\Exchange Server\ClientAccess\exchweb\EWS

Server : server

InternalUrl : https://mail.domain.com.au/ews/exchange.asmx

ExternalUrl : https://mail.domain.com.au/ews/exchange.asmx

AdminDisplayName :

ExchangeVersion : 0.1 (8.0.535.0)

DistinguishedName : CN=EWS (SBS Web Applications),CN=HTTP,CN=Protocols,CN=SERVER,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=First Organization,CN=Microsoftexchange,CN=Services,CN=Configuration,DC=domain,DC=local

Identity : server\EWS (SBS Web Applications)

Guid : xxx

ObjectCategory : domain.local/Configuration/Schema/ms-Exch-Web-Services-Virtual-Directory

ObjectClass : {top, msExchVirtualDirectory, msExchWebServicesVirtualDirectory}

WhenChanged : 17/12/2010 11:20:29 AM

WhenCreated : 20/02/2010 10:58:32 AM

OriginatingServer : server.domain.local

IsValid : True

***********************************************************

get-outlookprovider

Name Server CertPrincipalName TTL

---- ------ ----------------- -

EXCH server 1
EXPR server 1
WEB server 1

^^ Should there be an SSL field on this??? I tried to run the command that had SSL=true on it but it didn't work.

I've also successfully browsed to https://mail.domain.com.au/ews/Services.wsdl and https://autodiscover.domain.com.au/ews/Services.wsdl.

Now yesterday I submitted a request to our hosting company to add autodiscover.domain.com and point to our public IP addy. I can now ping autodiscover and the IP addy is correct. (I set up a host record locally for autodiscover which points to the local IP address - is this correct?) I read that this needed to be done because the SCP was giving out the incorrect URL, but now that it's been done I still can't log on via Outlook Anywhere.

I followed some instructions from the net to add clients via Outlook Anywhere (by going Control Panel>mail>new profile>add exchange account>put in mail.domain.com (tick cached mode) put in the plain username then click on more settings. As soon as I click more settings it starts searching for the server, and about 30 seconds later a message pops up saying: "The action cannot be completed. The connection to Microsoft Exchange is unavailable. Outlook must be online or connected to complete this action."

I hit OK and it brings up the Microsoft exchange box where you put your exchange server and mailbox details into. When that pops up, I cancel it then 'more settings' appears. I then went to Connections>Ticked Connect to Microsoft Exchange server using HTTP then hit Exchange Proxy Settings. I put in mail.domain.com, ticked both Fast and Slow networks and changed authentication to Basic. Hit OK and 'Check Name' then it times out again saying it can't find the server.

I've got a feeling that there's still issues regarding exchange/IIS on the server that need to be resolved before this will work, but is this the correct way to add a 2007 Outlook client via Outlook Anywhere?

Ok well that's been a massive post, sorry about that - just wanted to get as much information up so that HOPEFULLY someone is able to help with the issue. I'm on a fairly tight schedule to get his up and running before everyone leaves for Christmas holidays. If anybody has any ideas at all I'll be super grateful!!

Cheers,
Kai
 
A

Allen Song



Hi,

For the issue, let's first start with the Autodiscover issue. Since the Autodiscover doesn't work which causes the OOF URL failed. To change the SCP object, you can use the command as below:

Set-ClientAccessServer -Identity "CAS" -AutodiscoverServiceInternalURI "https://mail.domain.com.au/autodiscover/autodiscover.xml"

Or use ADSI Edit tool: Expand Configuration, CN=Services, CN=Microsoft Exchange, CN=Organization Name, CN=Administrative Groups, CN=Exchange Administrative Group (FYDIBOHF23SPDLT), CN=Servers, CN=CAS, CN=Protocols, CN=Autodiscover, CN=CAS and right click it, select Properties, find the serviceBindingInformation, and change it as you want.

Then ensure the remote.domain.com.au for the OOF URL could be resolved for the internal users.

After that, please check OOF issue again.

Thanks

Allen

Allen Song
 
Status
Not open for further replies.
Top