Re: OWA cannot access mailboxes on new BE server
- From: "Ed Crowley [MVP]" <curspice@xxxxxxxxxxxxxx>
- Date: Wed, 27 Sep 2006 21:40:02 -0700
Put the front-end server in your Intranet where it belongs and close all the
dangerous ports you had to open in your firewall to make it work.
Optionally, replace it with an ISA server or other web publishing appliance.
--
Ed Crowley
MVP - Exchange
"Protecting the world from PSTs and brick backups!"
"CDB" <CDB@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C98E1751-1FC9-4111-9D3D-D4E7289B5AED@xxxxxxxxxxxxxxxx
I have an FE Exchange server in a DMZ with FBA enabled. Originally, we
had
a single BE server. Everything worked as it should. Recently, we
introduced
a new BE server to the mix. It is on the same address space as the
original
BE server and is at the same build level (service pack) as the other
exchange
servers.
When I move a mailbox from the original BE server to the new BE server, I
cannot access that mailbox through the OWA URL on the FE server. I can
however, access the mailbox by using OWA directly on the new BE server
(i.e.
http://server/exchange). I have searched for answers to this issue in
various locations, but none of the suggestions have resolved the issue so
far. I have verified that my authentication and host header settings
resemble the configuration on the original BE server. I can even hit the
new
BE server's OWA from the FE server.
The DMZ is currently set with no ACL restrictions between the FE and BE
servers. I ran Ethereal on the FE server and analyzed the difference
between
login attempts to accounts on both BE servers. The major difference is
that
I do not see Kerberos traffic in the failed attempts. Everything else
looks
fairly similar. I see LDAP lookups taking place to Domain Controllers,
but
the HTTP GET to the BE server never happens. In the successful attempts,
I
see Kerberos traffic between the LDAP lookups and the HTTP GET request.
The really odd part is that our Windows Mobile devices are able to access
mailboxes on the BE server through the URL configured on our FE server.
I'm
not sure what is different between the two access methods.
Has anyone dealt with this before? I would be eternally grateful for any
suggestions offered.
Thanks,
CDB
.
- Follow-Ups:
- Prev by Date: Re: Not receiving mail
- Next by Date: Re: Need Help regarding "send AS"
- Previous by thread: Re: "Specified domain either does not exist" after Ex 2003 SP2 install
- Next by thread: Re: OWA cannot access mailboxes on new BE server
- Index(es):
