First off great site!
Now on to the fun stuff. I am having an issue getting Autodiscovery to work, if I manually import the settings into the outlook client it works with no issues other than it prompts for u/p each time you open outlook.
What I have done:
Installed Multi-SAN SSL CA
Created a dns entry internally for autodiscover to point to the exchange box
Setup external dns for autodiscover.mycompany.com
Verified virtual directory was created in IIS
Used the enable OutlookAnywhere via wizard in Management console (External Host name: mail.mycompany.com, Basic Authentication)
Problem:
Whenever I try to connect outlook via autodiscovery it prompts me for a username and password when it gets to the Log onto the server portion of the wizard. No matter what u/p i put in it just bounce back the log in box.
When I run test-outlookwebservices I get:
Id : 1003Type : InformationMessage : About to test AutoDiscover with the e-mail address Administrator@mycompany.com.
Id : 1007Type : InformationMessage : Testing server vti-ex01.veritythree.Local with the published name htt ps://vti-ex01.mycompany.local/EWS/Exchange.asmx & https://mail.mycompany.com/EWS/Exchange.asmx.
Id : 1019Type : InformationMessage : Found a valid AutoDiscover service connection point. The AutoDiscover URL on this object is https://vti-ex01.mycompany.Local/Autodiscove r/Autodiscover.xml.
Id : 1013Type : ErrorMessage : When contacting https://vti-ex01.mycompany.Local/Autodiscover/Autod iscover.xml received the error The remote server returned an error: ( 403) Forbidden.
Id : 1006Type : ErrorMessage : Failed to contact AutoDiscover
My gut tells me this is a IIS permission issue but I have not been able to figure out what permissions it needs. Also it is prompting out internal users to provide u/p which does not make sense to me.
Any thoughts?
From what it looks like you have a lot of what is required. I would say that your gut is probably correct about being a permissions issue. You might want make sure that anonymous is not allowed on the autodiscover virtual directory but that basic and integrated are (I don't have my 2007 in front of me at the moment).
Also make sure to set your SCP to the proper URL for internal users.
Set-ClientAccessServer -id <cas server> -AutoDiscoverServiceInternalUri https://mail.company.com/autodiscover/autodiscover.xml
- Joel
Ok I fixed my other errors by making sure of the permissions on the virtual directory but now I get the following after running test-outlookwebservices
Id : 1007Type : InformationMessage : Testing server vti-ex01.mycompany.Local with the published name htt ps://vti-ex01.mycompany.local/EWS/Exchange.asmx & https://mail.mycompany.com/EWS/Exchange.asmx.
Id : 1006Type : InformationMessage : Contacted AutoDiscover at https://vti-ex01.mycompany.Local/Autodisc over/Autodiscover.xml.
Id : 1016Type : SuccessMessage : [EXCH]-Successfully contacted the AS service at https://vti-ex01.mycompany.local/EWS/Exchange.asmx.
Id : 1015Type : SuccessMessage : [EXCH]-Successfully contacted the OAB service at https://vti-ex01.mycompany.local/EWS/Exchange.asmx.
Id : 1014Type : SuccessMessage : [EXCH]-Successfully contacted the UM service at https://vti-ex01.mycompany.local/UnifiedMessaging/Service.asmx.
Id : 1013Type : ErrorMessage : When contacting https://mail.mycompany.com/EWS/Exchange.asmx receiv ed the error Unable to connect to the remote server
Id : 1013Type : ErrorMessage : When contacting https://mail.mycompany.com/EWS/Exchange.asmx receiv ed the error A connection attempt failed because the connected party did not properly respond after a period of time, or established conne ction failed because connected host has failed to respond
Id : 1016Type : ErrorMessage : [EXPR]-Error when contacting the AS service at https://mail.mycompany.com/EWS/Exchange.asmx.
Id : 1015Type : SuccessMessage : [EXPR]-Successfully contacted the OAB service at https://mail.mycompany.com/EWS/Exchange.asmx.
Id : 1014Type : InformationMessage : [EXPR]-The UM is not configured for this user.
Id : 1013Type : ErrorMessage : When contacting https://mail.mycompany.com/Rpc received the error U nable to connect to the remote server
Id : 1013Type : ErrorMessage : When contacting https://mail.mycompany.com/Rpc received the error A connection attempt failed because the connected party did not proper ly respond after a period of time, or established connection failed b ecause connected host has failed to respond
Id : 1017Type : ErrorMessage : [EXPR]-Error when contacting the RPC/HTTP service at https://mail.mycompany.com/Rpc.
Id : 1006Type : SuccessMessage : Successfully tested AutoDiscover.
Id : 1021Type : InformationMessage : The following web services generated errors. As, in EXPR Contacting server in EXPR Please use the prior output to diagnose and correct the errors.
Anythoughts?
Here is the XML output when I test OutlookAnywhere from the system icon.
<?xml version="1.0" encoding="utf-8"?><Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006"><Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a"> <User> <DisplayName>ME</DisplayName> <LegacyDN>/o=MYCOMPANY/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Recipients/cn=ME</LegacyDN> <DeploymentId>cf2e9ca3-f544-4cc5-9d47-ee15551fe9fb</DeploymentId> </User> <Account> <AccountType>email</AccountType> <Action>settings</Action> <Protocol> <Type>EXCH</Type> <Server>vti-ex01.MYCOMPANY.Local</Server> <ServerDN>/o=MYCOMPANY/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=VTI-EX01</ServerDN> <ServerVersion>720082AD</ServerVersion> <MdbDN>/o=MYCOMPANY/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=VTI-EX01/cn=Microsoft Private MDB</MdbDN> <ASUrl>https://vti-ex01.MYCOMPANY.local/EWS/Exchange.asmx</ASUrl> <OOFUrl>https://vti-ex01.MYCOMPANY.local/EWS/Exchange.asmx</OOFUrl> <UMUrl>https://vti-ex01.MYCOMPANY.local/UnifiedMessaging/Service.asmx</UMUrl> <OABUrl>http://vti-ex01.MYCOMPANY.local/OAB/48341453-eef6-43cf-9d56-e2e8e5de1265/</OABUrl> </Protocol> <Protocol> <Type>EXPR</Type> <Server>mail.MYCOMPANY.com</Server> <SSL>On</SSL> <AuthPackage>Basic</AuthPackage> <ASUrl>https://mail.MYCOMPANY.com/EWS/Exchange.asmx</ASUrl> <OOFUrl>https://mail.MYCOMPANY.com/EWS/Exchange.asmx</OOFUrl> <OABUrl>https://mail.MYCOMPANY.com/OAB/48341453-eef6-43cf-9d56-e2e8e5de1265/</OABUrl> </Protocol> <Protocol> <Type>WEB</Type> <External> <OWAUrl AuthenticationMethod="Fba">http://mail.MYCOMPANY.com/owa</OWAUrl> <Protocol> <Type>EXPR</Type> <ASUrl>https://mail.MYCOMPANY.com/EWS/Exchange.asmx</ASUrl> </Protocol> </External> <Internal> <OWAUrl AuthenticationMethod="Basic, Fba">https://vti-ex01.MYCOMPANY.local/owa</OWAUrl> <Protocol> <Type>EXCH</Type> <ASUrl>https://vti-ex01.MYCOMPANY.local/EWS/Exchange.asmx</ASUrl> </Protocol> </Internal> </Protocol> </Account></Response></Autodiscover>
The LOG states:
AD lookup for e-mail address FAILED(0X9=8007054B)
Autodiscover to https://MYCOMPANY.com/autodiscover/autodiscover.xm starting
Autodiscover to https://MYCOMPANY.com/autodiscover/autodiscover.xm FAILED (0x800c8203)
Autodiscover to https://autodiscover.MYCOMPANY.com/autodiscover/autodiscover.xm
Autodiscover to https://autodiscover.MYCOMPANY.com/autodiscover/autodiscover.xm succeeded (0x00000000)
Which log did you see this in? What concerns me is that the log is missing the L from xmL.
https://autodiscover.MYCOMPANY.com/autodiscover/autodiscover.xm[no L]
Its the output when you run test autodiscovery after right clicking on system icon. Log tab. Dont worry about the missing L. I just forget it when I typed it in. You cant copy and paste
ZeroCool: Problem: Whenever I try to connect outlook via autodiscovery it prompts me for a username and password when it gets to the Log onto the server portion of the wizard. No matter what u/p i put in it just bounce back the log in box. When I run test-outlookwebservices I get: Id : 1003Type : InformationMessage : About to test AutoDiscover with the e-mail address Administrator@mycompany.com. Id : 1007Type : InformationMessage : Testing server vti-ex01.veritythree.Local with the published name htt ps://vti-ex01.mycompany.local/EWS/Exchange.asmx & https://mail.mycompany.com/EWS/Exchange.asmx. Id : 1019Type : InformationMessage : Found a valid AutoDiscover service connection point. The AutoDiscover URL on this object is https://vti-ex01.mycompany.Local/Autodiscove r/Autodiscover.xml. Id : 1013Type : ErrorMessage : When contacting https://vti-ex01.mycompany.Local/Autodiscover/Autod iscover.xml received the error The remote server returned an error: ( 403) Forbidden. Id : 1006Type : ErrorMessage : Failed to contact AutoDiscover
I was hoping he would have posted how he fixed his problem. What happens when you go to "https://vti-ex01.mycompany.Local/Autodiscover/Autod iscover.xml " in a web browswer and you provide a valid user\password?
Sorry guys but I was unable to find a good solution. For the time we have determined to setup the clients while inside the domain.
I have a feeling it has to do with the server.local being part of the CA but have not had time to test.
To answer your above question: If I go to the link you post and change "mycompany" i get this: