Re: rpc over http woes.. single exchange server 2 DC controllers 1 of which is a GC
- From: "Alan Drown" <adrown@xxxxxxxxxxxxxx>
- Date: Wed, 6 Apr 2005 17:01:12 -0700
hi Nebojsa,
Yup, I've done everything like this already. I tried adding 593 as well but
it didnt make a difference.
any other suggestions?
TIA
Alan
"Nebojsa Seslija" <nebojsa.seslija@xxxxxxxxx> wrote in message
news:ecshYivOFHA.3704@xxxxxxxxxxxxxxxxxxxxxxx
> Try this article
>
> http://www.outlookexchange.com/articles/HenrikWalther/RPC_over_HTTP.asp
>
> I think it has your scenario
>
> Nebojsa Seslija
>
>
> "Alan Drown" <adrown@xxxxxxxxxxxxxx> wrote in message
> news:%23pYqjnuOFHA.3292@xxxxxxxxxxxxxxxxxxxxxxx
>> Hi all,
>>
>> I've gone thru all the post here but I'm still not able to get it to
>> work.
>>
>> All the scenarios seem to assume you either are a single server
>> installation or your using a FE/BE installation.
>>
>> I'm a SINGLE exchange server installation which happens to not be a DC
>> and I have two DC controllers.
>> So I guess I'm kind of in the middle of these scenarios.....
>>
>>
>>
>> My site.
>>
>> two windows 2003 domain controllers
>> 1 exhange 2003 server running service pack1 - is not a domain controllers
>>
>> I have the microsoft CA installed on the exchange server
>> I have the RPC proxy server running on the exchange server
>> I created a certificate and installed it against the the default web
>> server.
>> It appears I've enable and required SSL 128bit encryption against the
>> default website (dont know if I should have just done this against the
>> individual directories/servers - i.e. exchange , rpc , oma, etc.... In
>> either case it's enabled on exchange and rpc.
>> I configured the rpc virtual directory appropriate with basic and
>> integrated authentication methods.
>>
>> I have a client in which I installed the CA root certificate by going to
>> https://externalname/certsrv
>> and installed it to my laptop.
>>
>> When I go to https://externalname.company.com\exchange I'm able to login
>> in to OWA. I get a dialogue box to log in with domain/username and
>> password. I dont receive the "This is not a trusted blah blah" .
>> When I go to https://externalname.company.com/rpc I get prompted to log
>> in and then I get the expected 403.2 forbidden: read access denied
>>
>> I believe this means that the webserver and cert portion has been
>> issued/created and installed correctly, yes?
>>
>>
>> I initially went thru the non Exchange SP1 steps of make the registry
>> changes on my GC server and the rest on my Exchange server which is also
>> the RPC Proxy Server.
>>
>> I made the following changes:
>>
>> On GC:
>> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\ Parameters
>> multi string value named NSPI interface protocol sequences with
>> ncacn_http:6004
>>
>> Single Exhange Server: ( is also the Rpc Proxy server)
>> I verfied the following were present :
>> HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\MSExchangeIS\ParametersSystem
>> Value name: Rpc/HTTP Port
>> Value type: REG_DWORD
>> Value data: 0x1771 (Decimal 6001)
>>
>> HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\MSExchangeSA\Parameters
>> Value name: HTTP Port
>> Value type: REG_DWORD
>> Value data: 0x1772 (Decimal 6002)
>>
>> HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\MSExchangeSA\Parameters
>> Value name: Rpc/HTTP NSPI Port
>> Value type: REG_DWORD
>> Value data: 0x1774 (Decimal 6004)
>>
>> I added all the ports
>> internalexchange:6001-6002;GCserver:6004;internalexchange.mycompany.com:6001-6002;GCserver.mycompany.com:6004
>>
>> to HKLM\software\microsoft\RPC\RpcProxy .
>>
>>
>>
>> On my client laptop
>>
>> I have this laptop already configure successfully using rpc over https to
>> an SBS 2003 box so I know it meets the minimum requirements
>> I created a new profile configured it up accordingly with the internal
>> exchange server name and my mailbox, then went and configured the rpc
>> settings with the externally available dns name - i.e
>> externalexchange.mycompany.com.
>> set it up for basic authentication and both slow nad fast network
>> connections to be certain it attempts to use SSL.......
>>
>> doesnt work.... I get prompted to log in I put my domainname\username and
>> enter my password and it never connects online.
>> I control click on the outlook icon in the system tray and I see entries
>> for my GCserver.mycompany.com for directory and internalexchangeserver
>> and they say connecting but I dont see anything under interface or
>> connection.
>>
>> It's almost as if the client never tries to connect to it or RPC proxy
>> isnt running...
>>
>> I'm stumped
>>
>> any help would be most sincerely appreciated.
>>
>> alan
>>
>>
>>
>>
>>
>>
>>
>>
>
>
.
- Follow-Ups:
- Re: rpc over http woes.. single exchange server 2 DC controllers 1 of which is a GC
- From: "Pat Cai[MSFT]"
- Re: rpc over http woes.. single exchange server 2 DC controllers 1 of which is a GC
- References:
- Prev by Date: Re: Can anyone explain this
- Next by Date: New to Exchange Server. Help!
- Previous by thread: Re: rpc over http woes.. single exchange server 2 DC controllers 1 of which is a GC
- Next by thread: Re: rpc over http woes.. single exchange server 2 DC controllers 1 of which is a GC
- Index(es):
Relevant Pages
|
