locked
Autodiscover - DC2008 RRS feed

  • Question

  • Hello,

    I use Exchange 2007 (IIS Version 6.0) and I lately noticed that some users got the prompt for credentials when they open or use Oultook 2007 or 2010.

    As it used to work properly and nothing has changed (Thrid party certificate was renewed in January). I started to check the Test-OutlookWebServices and the AutodiscoverVirtualDirectory.

    I only notice that when I type the https://autodiscover.company.com/Autodiscover/Autodiscover.xml in a browser directly from the hubcas or when I am connected with a machine on the domain that I got the prompt for credential.

    Also the AD team informed me that the installed a new Domain controler with Windows server 2008 R2 standard. I would think that there is something missing but I would need your help to figure out what is going on.

    Is there anything else I should check on the exchange server? or the ad team on the DC?

    many thanks,

    Graig
    Tuesday, May 14, 2013 7:02 AM

Answers

  • Hi Graig,

    Is there any problem when affected users access mailboxes via OWA?
    Is there any commonplace among the affected users, on the server level or the workstation level?
    Does the issue only happen to the user in the office LAN, or in the external (Outlook Anywhere) as well?
    Please run “Test Email AutoConfiguration” on problematic outlook client, and then check if the response is returned correctly

    Wednesday, May 15, 2013 1:26 AM
  • Hi,

    I noticed , the new DC was replaced the old one, so the old one has been removed ?

    If yes, you need to test the new DC use BPA, if no, please check if the DC are synchronized.

    Please test on the following page, if it occured on outlook anywhere.

    https://www.testexchangeconnectivity.com/


    Wendy Liu
    TechNet Community Support

    Monday, May 27, 2013 2:53 AM
    Moderator

All replies

  • Hi Graig,

    Is there any problem when affected users access mailboxes via OWA?
    Is there any commonplace among the affected users, on the server level or the workstation level?
    Does the issue only happen to the user in the office LAN, or in the external (Outlook Anywhere) as well?
    Please run “Test Email AutoConfiguration” on problematic outlook client, and then check if the response is returned correctly

    Wednesday, May 15, 2013 1:26 AM
  • Hi,

    Outlook keeps prompting credential ? Please run Exchange BPA to test if it can connect to DC.


    Wendy Liu
    TechNet Community Support


    Wednesday, May 15, 2013 8:00 AM
    Moderator
  • Hi James,

    Here is the "Test Email AutoConfiguration". It occurs to the user in the office LAN and in the external.

    Everything's okay on OWA side. I noticed that I have the prompt on my Oultook when I am on LAN or in external and it happens few time during the day. I also have the prompt on my Smartphone too! 

    RESULTS:
    Autoconfiguration has started, this may take up to a minute
    Autoconfiguration found the following settings:

    Display Name: MYLASTNAME MYFIRSTNAME

    Protocol: Exchange RPC
    Server: EXCSERV01.mycompany.intra 
    Login Name: MYFIRSTNAME.MYLASTNAME
    Availability Service URL: https://autodiscover.mycompany.com/EWS/Exchange.asmx
    OOF URL: https://autodiscover.mycompany.com/EWS/Exchange.asmx
    OAB: https://autodiscover.mycompany.com/OAB/068d6092-acf9-42f8-a2d6-e558118ab2c4/
    Unified Message Service URL: https://autodiscover.mycompany.com/UnifiedMessaging/Service.asmx
    Auth Package: Unspecified

    Protocol: Exchange HTTP
    Server: mail.mycompany.com
    Login Name: MYFIRSTNAME.MYLASTNAME
    SSL: Yes
    Mutual Authentication: Yes
    Availability Service URL: https://autodiscover.mycompany.com/EWS/Exchange.asmx
    OOF URL: https://autodiscover.mycompany.com/EWS/Exchange.asmx
    OAB: https://autodiscover.mycompany.com/OAB/068d6092-acf9-42f8-a2d6-e558118ab2c4/
    Unified Message Service URL: https://autodiscover.mycompany.com/UnifiedMessaging/Service.asmx
    Auth Package:Basic
    Certificate Principal Name: msstd:mail.mycompany.com

    LOG:
    SMTP=MYFIRSTNAME.MYLASTNAME@my-company.com
    Attempting URL https://autodiscover.mycompany.com/Autodiscover/Autodiscover.xml found through SCP
    Atodiscover to https://autodiscover.mycompany.com/Autodiscover/Autodiscover.xml starting
    GetLastError=0;httpStatus=200.
    Atodiscover to https://autodiscover.mycompany.com/Autodiscover/Autodiscover.xml succeeded (0x00000000)


    XML FILE:
    <?xml version="1.0" encoding="utf-8"?>
    <Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006">
      <Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a">
        <User>
          <DisplayName>MYLASTNAME MYFIRSTNAME</DisplayName>
          <LegacyDN>/o=mycompany/ou=Exchange Administrative Group (FYIBPHF39SPLMT)/cn=Recipients/cn=GCH</LegacyDN>
          <DeploymentId>ff83a24e-8780-4b8d-813e-f60a656a9df5</DeploymentId>
        </User>
        <Account>
          <AccountType>email</AccountType>
          <Action>settings</Action>
          <Protocol>
            <Type>EXCH</Type>
            <Server>EXCSERV01.mycompany.intra</Server>
            <ServerDN>/o=mycompany/ou=Exchange Administrative Group (FYIBPHF39SPLMT)/cn=Configuration/cn=Servers/cn=EXCSERV01</ServerDN>
            <ServerVersion>720180F0</ServerVersion>
            <MdbDN>/o=mycompany/ou=Exchange Administrative Group (FYIBPHF39SPLMT)/cn=Configuration/cn=Servers/cn=EXCSERV01/cn=Microsoft Private MDB</MdbDN>
            <PublicFolderServer>EXCSERV01.mycompany.intra</PublicFolderServer>
            <AD>SERVDCP02.mycompany.intra</AD>
            <ASUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</ASUrl>
            <EwsUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</EwsUrl>
            <OOFUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</OOFUrl>
            <UMUrl>https://autodiscover.mycompany.com/UnifiedMessaging/Service.asmx</UMUrl>
            <OABUrl>https://autodiscover.mycompany.com/OAB/068d6092-acf9-42f8-a2d6-e558118ab2c4/</OABUrl>
          </Protocol>
          <Protocol>
            <Type>EXPR</Type>
            <Server>mail.mycompany.com</Server>
            <SSL>On</SSL>
            <AuthPackage>Basic</AuthPackage>
            <ASUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</ASUrl>
            <EwsUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</EwsUrl>
            <OOFUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</OOFUrl>
            <UMUrl>https://autodiscover.mycompany.com/UnifiedMessaging/Service.asmx</UMUrl>
            <OABUrl>https://autodiscover.mycompany.com/OAB/068d6092-acf9-42f8-a2d6-e558118ab2c4/</OABUrl>
          </Protocol>
          <Protocol>
            <Type>WEB</Type>
            <External>
              <OWAUrl AuthenticationMethod="Fba">https://mail.mycompany.com/owa</OWAUrl>
              <Protocol>
                <Type>EXPR</Type>
                <ASUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</ASUrl>
              </Protocol>
            </External>
            <Internal>
              <OWAUrl AuthenticationMethod="Basic, Ntlm, WindowsIntegrated">https://mail.mycompany.com/owa</OWAUrl>
              <Protocol>
                <Type>EXCH</Type>
                <ASUrl>https://autodiscover.mycompany.com/EWS/Exchange.asmx</ASUrl>
              </Protocol>
            </Internal>
          </Protocol>
        </Account>
      </Response>
    </Autodiscover>

    Thanks,

    Graig

    Tuesday, May 21, 2013 1:08 PM
  • Thanks Wendy, I seems to me that the issues started when a DC was replaced 3 weeks ago. It is the only DC with Windows server 2008 (the other are running Windows server 2003).

    Should I run the BPA mentionning that new DC in WServer 2008?

    so far the BPA I ran says that the Edge servers are down or unreachable.. (DMZ?) I followed this link but nothing wrong on my servers: http://technet.microsoft.com/en-us/library/fa727882-9fdd-4664-9d49-f0ef95193b49.aspx

    Thanks,

    Graig

    Tuesday, May 21, 2013 1:53 PM
  • Hi,

    I noticed , the new DC was replaced the old one, so the old one has been removed ?

    If yes, you need to test the new DC use BPA, if no, please check if the DC are synchronized.

    Please test on the following page, if it occured on outlook anywhere.

    https://www.testexchangeconnectivity.com/


    Wendy Liu
    TechNet Community Support

    Monday, May 27, 2013 2:53 AM
    Moderator