none
ASP.NET 4.0.30319.0 + EventID 1309 RRS feed

  • Вопрос

  • Доброго дня, не работает OWA и ECP, прошу помощи...

    Event code: 3005

    Event message: Возникло необработанное исключение.

    Event time: 19.10.2014 13:32:03

    Event time (UTC): 19.10.2014 9:32:03

    Event ID: a58b3767c853421c913960b216ebee34

    Event sequence: 1243

    Event occurrence: 315

    Event detail code: 0

    Application information:

        Application domain: /LM/W3SVC/2/ROOT/owa-1-130581694234276678

        Trust level: Full

        Application Virtual Path: /owa

        Application Path: C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\owa\

        Machine name: EXCH1

    Process information:

        Process ID: 41060

        Process name: w3wp.exe

        Account name: NT AUTHORITY\СИСТЕМА

    Exception information:

        Exception type: OwaADUserNotFoundException

        Exception message:

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaIdentity.CreateOWAMiniRecipientBySid()

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaClientSecurityContextIdentity..ctor(ClientSecurityContext clientSecurityContext, String logonName, String authenticationType, OrganizationId userOrganizationId)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaClientSecurityContextIdentity.InternalCreateFromClientSecurityContextIdentity(ClientSecurityContextIdentity cscIdentity, String logonName, OrganizationId userOrganizationId)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaIdentity.ResolveLogonIdentity(HttpContext httpContext, AuthZClientInfo effectiveCaller)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.CreateUserContext(HttpContext httpContext, UserContextKey userContextKey, AuthZClientInfo effectiveCaller, IMailboxContext& userContext, UserContextStatistics& userContextStats)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.AcquireUserContext(HttpContext httpContext, AuthZClientInfo effectiveCaller, UserContextKey userContextKey, UserContextCookie userContextCookie)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.GetMailboxContext(HttpContext httpContext, AuthZClientInfo effectiveCaller, Boolean create)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.RequestDispatcherUtilities.IsDownLevelClient(HttpContext httpContext, Boolean avoidUserContextAccess)

       в Microsoft.Exchange.Clients.Owa.Core.OwaModule.OnAuthenticateRequest(Object sender, EventArgs e)

       в System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()

       в System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

    Request information:

        Request URL: https://localhost:444/owa/proxylogon.owa

        Request path: /owa/proxylogon.owa

        User host address: 127.0.0.1

        User: XXX\SM_a0f3f9735aa24b02b

        Is authenticated: True

        Authentication Type: Kerberos

        Thread account name: NT AUTHORITY\СИСТЕМА

    Thread information:

        Thread ID: 102

        Thread account name: NT AUTHORITY\СИСТЕМА

        Is impersonating: False

        Stack trace:    в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaIdentity.CreateOWAMiniRecipientBySid()

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaClientSecurityContextIdentity..ctor(ClientSecurityContext clientSecurityContext, String logonName, String authenticationType, OrganizationId userOrganizationId)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaClientSecurityContextIdentity.InternalCreateFromClientSecurityContextIdentity(ClientSecurityContextIdentity cscIdentity, String logonName, OrganizationId userOrganizationId)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.OwaIdentity.ResolveLogonIdentity(HttpContext httpContext, AuthZClientInfo effectiveCaller)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.CreateUserContext(HttpContext httpContext, UserContextKey userContextKey, AuthZClientInfo effectiveCaller, IMailboxContext& userContext, UserContextStatistics& userContextStats)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.AcquireUserContext(HttpContext httpContext, AuthZClientInfo effectiveCaller, UserContextKey userContextKey, UserContextCookie userContextCookie)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.UserContextManager.GetMailboxContext(HttpContext httpContext, AuthZClientInfo effectiveCaller, Boolean create)

       в Microsoft.Exchange.Clients.Owa2.Server.Core.RequestDispatcherUtilities.IsDownLevelClient(HttpContext httpContext, Boolean avoidUserContextAccess)

       в Microsoft.Exchange.Clients.Owa.Core.OwaModule.OnAuthenticateRequest(Object sender, EventArgs e)

       в System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()

       в System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

    Custom event details:


    19 октября 2014 г. 9:35

Ответы

  • Всем огромное спасибо, починил... Сделал setup /p и выставил права:

    Get-ClientAccessServer server | Add-ADPermission -AccessRights ExtendedRight -ExtendedRights "ms-exch-epi-impersonation" -User "XXX\Exchange Servers"
    Get-ClientAccessServer server | Add-AdPermission -AccessRights ExtendedRight -ExtendedRights "ms-exch-epi-token-serialization" -User "XXX\Exchange Servers"

    Вывод должен быть таким:

    Get-MailboxServer server | Get-ADPermission | where {$_.Extendedrights -like "ms-Exch-EPI-Token-Serialization"} | ft -AutoSize
    Identity User                                     Deny  Inherited
    -------- ----                                     ----  ---------
    EXCH0    NT AUTHORITY\NETWORK SERVICE             False False
    EXCH0    XXX\Exchange Servers                     False False
    EXCH0    XXX\Domain Admins                        True  True
    EXCH0    XXX\Schema Admins                        True  True
    EXCH0    XXX\Enterprise Admins                    True  True
    EXCH0    XXX\Exchange Organization Administrators True  True
    EXCH0    XXX\Organization Management              True  True

    Get-MailboxServer server | Get-ADPermission | where {$_.Extendedrights -like "ms-exch-epi-impersonation"} | ft -AutoSize
    Identity User                                     Deny  Inherited
    -------- ----                                     ----  ---------
    EXCH0    XXX\Exchange Servers                     False False
    EXCH0    XXX\Domain Admins                        True  True
    EXCH0    XXX\Schema Admins                        True  True
    EXCH0    XXX\Enterprise Admins                    True  True
    EXCH0    XXX\Exchange Organization Administrators True  True
    EXCH0    XXX\Organization Management              True  True

    Все заработало без перезагрузки моментально, вот еще http://support.microsoft.com/kb/2898571

    • Помечено в качестве ответа Maksim BarakinEditor 19 октября 2014 г. 14:46
    19 октября 2014 г. 10:28