locked
OWA Configuration RRS feed

  • Question

  • Hi, I have a existing W2k3 DC with AD configured and working fine. I added a member server for Exchange email service and the internals mails are working fine. When i configured OWA, the user can access using http but not through https...all the configurations was then rechecked but still it cannot access. If I enable the secure https and 128kbit encryption and then try to connect through http..the message displays to connect through https...but when https is typed followed by server name..the error displays page cannot be displayed...Can anyone please help me on this.
     
    Thanks,
    Zohid Khan
    Sunday, July 26, 2009 7:42 PM

Answers

  • Hi Zohid,

    Which exchange server are you using 2003/2007?
    If your exchange server is on Windows 2003, then go to IIS Manager > Properties of Default WebSite > Directory Security > View Certificate. Check if you see a line, which mentions “you have a private key” If you don’t see that line then follow this KB 889651
    Also under IIS Manager > Properties of Default WebSite > Home Directory Advanced check if port 443 is mentioned or not.

    It seems that either there is some issue with the certificate or there is no service on the Exchange server which is listening on port 443.
    You can also use the SSLDiag tool (part of IIS Resource Kit)to check if there is any issues with the certificate


    Harpreet Singh Khandiyal (http://support.microsoft.com/kb/555375)
    • Proposed as answer by Mail Server Friday, July 31, 2009 6:54 PM
    • Marked as answer by Allen Song Friday, August 7, 2009 3:57 AM
    Tuesday, July 28, 2009 10:57 PM

All replies

  • Hi Zohid,

    Which exchange server are you using 2003/2007?
    If your exchange server is on Windows 2003, then go to IIS Manager > Properties of Default WebSite > Directory Security > View Certificate. Check if you see a line, which mentions “you have a private key” If you don’t see that line then follow this KB 889651
    Also under IIS Manager > Properties of Default WebSite > Home Directory Advanced check if port 443 is mentioned or not.

    It seems that either there is some issue with the certificate or there is no service on the Exchange server which is listening on port 443.
    You can also use the SSLDiag tool (part of IIS Resource Kit)to check if there is any issues with the certificate


    Harpreet Singh Khandiyal (http://support.microsoft.com/kb/555375)
    • Proposed as answer by Mail Server Friday, July 31, 2009 6:54 PM
    • Marked as answer by Allen Song Friday, August 7, 2009 3:57 AM
    Tuesday, July 28, 2009 10:57 PM
  • Zohid,

    You need to verify of you have installed Certificate for exchange server. as Harpreet said you need to check in IIS manager.

    If you want to go with Self Signed Certificate then you can follow below steps.

    http://www.petri.co.il/configure_ssl_on_owa.htm

    Or you can opt for third party such as Thwart and Verisign etc.

    http://www.msexchange.org/tutorials/SSL-Enabling-OWA-2003-Using-Free-3rdParty-Certificate.html
    Vinod |CCNA|MCSE 2003 +Messaging|MCTS|ITIL V3|
    Wednesday, July 29, 2009 1:18 PM
  • Hi,

    It seems that the certificate was not applied for the IIS properly.

    Please run the command get-exchangecertificate |fl command in EMS, then post the information on the forum.

    Thanks

    Allen
    Monday, August 3, 2009 5:45 AM