Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Exchange 2007 Active Sync not working for one of my AD sites

Status
Not open for further replies.

acabezas2014

IS-IT--Management
Dec 2, 2013
6
US
Hi All,

I am having an issue with one of my AD sites. Users in this site and apart of the Exchange 2007 CAS,and Mail server are not able to connect to their email via their phone using active sync. I moved them to another email server in another site and it works fine. I have used the Microsoft Remote Connectivity Analyzer and get the following errors. Can anyone help with this error... Thanks


Error

Attempting to resolve the host name webmail.corizonnyc.com in DNS.
The host name resolved successfully.

Additional Details

IP addresses returned: 64.61.23.11

Elapsed Time: 106 ms.

Testing TCP port 443 on host webmail.corizonnyc.com to ensure it's listening and open.
The port was opened successfully.

Additional Details

Elapsed Time: 181 ms.

Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.

Additional Details

Elapsed Time: 398 ms.

Test Steps

The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server webmail.corizonnyc.com on port 443.
The Microsoft Connectivity Analyzer successfully obtained the remote SSL certificate.

Additional Details

Remote Certificate Subject: CN=webmail.corizonnyc.com, OU=Domain Control Validated, Issuer: SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU= O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US.

Elapsed Time: 312 ms.

Validating the certificate name.
The certificate name was validated successfully.

Additional Details

Host name webmail.corizonnyc.com was found in the Certificate Subject Common name.

Elapsed Time: 0 ms.

Validating certificate trust for Windows Mobile devices.
The certificate is trusted and all certificates are present in the chain.

Test Steps

The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate CN=webmail.corizonnyc.com, OU=Domain Control Validated.
One or more certificate chains were constructed successfully.

Additional Details

A total of 1 chains were built. The highest quality chain ends in root certificate OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US.

Elapsed Time: 28 ms.

Analyzing the certificate chains for compatibility problems with Windows Phone devices.
Potential compatibility problems were identified with some versions of Windows Phone.
Tell me more about this issue and how to resolve it

Additional Details

The certificate is only trusted on Windows Mobile 6.0 and later versions. Devices running Windows Mobile 5.0 and 5.0 with the Messaging and Security Feature Pack won't be able to sync. Root = OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US.

Elapsed Time: 4 ms.

The Microsoft Connectivity Analyzer is analyzing intermediate certificates sent by the remote server.
All intermediate certificates are present and valid.

Additional Details

All intermediate certificates were present and valid.

Elapsed Time: 0 ms.

Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.

Additional Details

The certificate is valid. NotBefore = 4/5/2013 6:57:39 PM, NotAfter = 4/5/2015 6:57:39 PM

Elapsed Time: 0 ms.

Checking the IIS configuration for client certificate authentication.
Client certificate authentication wasn't detected.

Additional Details

Accept/Require Client Certificates isn't configured.

Elapsed Time: 385 ms.

Testing HTTP Authentication Methods for URL The test passed with some warnings encountered. Please expand the additional details.
Tell me more about this issue and how to resolve it

Additional Details

The following authentication methods are enabled, but they aren't allowed authentication methods for this service. Methods: Negotiate, NTLM

Elapsed Time: 237 ms.

An ActiveSync session is being attempted with the server.
Errors were encountered while testing the Exchange ActiveSync session.

Additional Details

Elapsed Time: 4918 ms.

Test Steps

Attempting to send the OPTIONS command to the server.
Testing of the OPTIONS command failed. For more information, see Additional Details.
Tell me more about this issue and how to resolve it

Additional Details

An HTTP 401 Unauthorized response was received from the server. This may be the result of invalid credentials or a configuration problem on the Exchange Server.
Headers:
Cache-Control: private
Content-Type: text/html
Server: Microsoft-IIS/7.0
Negotiate,NTLM,Basic realm="webmail.corizonnyc.com"
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 03 Dec 2013 02:32:34 GMT
Content-Length: 1293

Elapsed Time: 4918 ms.
 
Since the issue is with authentication, see if you have any ADAccess errors in the event log on that Exchange server. Also, run "repadmin /showreps" from the command line on the DC that is local to that Exchange server and verify that replication is healthy between the DCs at different sites.

Dave Shackelford
ThirdTier.net
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top