Re: Trying to setup Activesync now can't access /exchange or /remote

Well, I figured out how to get this to work. Not sure why, but after reading
the log file again I did a search on the error code Error 0x800700b7 and
found this post. I had a few custom web listeners for some websites. One had
it's own SSL certificate. I forgot about this. I don't need these sites
anymore so that's fine to blow them out. Not sure I'm going to try to get
both to work together, or not. I'm just happy to get my email on the phone.
:^)

Here's the post:

http://groups.google.com/group/microsoft.public.windows.server.sbs/browse_frm/thread/ff820dab5f85196d/1e7c4ec242fb96eb?q=CStingrayCommit%3A%3AValidatePropertyBag+&rnum=4#1e7c4ec242fb96eb

Specifically this section that prompted me to kill the listeners:

"2. If the issue persists, please remove Web listeners and see whether it
works. To do so, please see:

a. Open the ISA Server 2004 Management, expand to Yourserver\Firewall
Policy.


b. On the right pane, click Toolbox tab.


c. You will find the Web Listeners listed at the bottom.


d. Right click each of the Web Listeners, and select Delete.


e. Test the issue again. "


Thank you for your help!

Hugh


"Hugh G. Johnson" <hughNOTgNOTjohnson@xxxxxxxxxxx> wrote in message
news:OJJ9HndoGHA.4024@xxxxxxxxxxxxxxxxxxxxxxx
Chace,

Thank you so much for your help. Unfortunately I am still having what
appears to be the same issue. I got an error the first time I ran CEICW,
then the second time it was fine, but the /remote, /exhange directories
can't be accessed. I can get to the site and it prompts about the
certificate not being from a valid source, etc. but then once I say yes it
get a 404.

I'll try repair of ISA this weekend when I get in front of the machine.

Do you want me to send the CEICW log again?

Thank You.

Hugh


"chace zhang" <v-chacez@xxxxxxxxxxxxx> wrote in message
news:Ujk08taoGHA.4612@xxxxxxxxxxxxxxxxxxxxxxxx
Hi,

Thank you for your response and information.

Based on my research, Getting Sbs web listener certificate hash returned
ERROR 8007007a in ICW log.
I would like to provide following steps to solve this issue:

Open ISA 2004 console on Small Business Server.
Select <server name> right click and point to Export, export your setting
to a .xml file
Then go to Firewall Policy, in the right pane, remove all web listeners
and
web publish rules.

Then click Start , click Run , and then type mmc.exe .
On File menu, click Add/Remove Snap-in .
Click Add , and then either double-click Certificates or click
Certificates
, and then click Add .
In the This snap-in will always manage certificates for box, click
Computer
Account , and then click Next .
Click Local Computer , and then click Finish .
Click Close , and then click OK .
Double-click Certificates (Local Computer), double-click Trusted Root
Certificates Authorities, and then click Certificates .
Under the "Issued To" column, right-click certificates issued during
CEICW
wizard, and then click Delete .
Click Yes when you receive the following message:
This is a root certificate. Deleting this certificate will invalidate
this
CA. Are you certain you wish to delete this certificate?


After steps above, re-run CEICW does this issue persists?

I would also suggest a repair installation of ISA 2004 so that we can
make
sure the ISA components are all running fine.

1. Please insert the CD3 of SBS SP1 CD and click install ISA 2004

2. Choose repair option in the wizard

3. Finish the repair of the ISA 2004

4. Run the CEICW wizard and test your issue again.

Hope this helps, I look forward to your update.


Best Regards,

Chace Zhang (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the
corresponding
newsgroups so that they can be resolved in an efficient and timely
manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check
the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In
doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.

=====================================================

This posting is provided "AS IS" with no warranties, and confers no
rights.
--------------------
| Reply-To: "Hugh G. Johnson" <hughNOTgNOTjohnson@xxxxxxxxxxx>
| From: "Hugh G. Johnson" <hughNOTgNOTjohnson@xxxxxxxxxxx>
| References: <OTqvr5EoGHA.2100@xxxxxxxxxxxxxxxxxxxx>
<AMKLNGPoGHA.4632@xxxxxxxxxxxxxxxxxxxxx>
| Subject: Re: Trying to setup Activesync now can't access /exchange or
/remote
| Date: Thu, 6 Jul 2006 16:25:18 -0700
| Lines: 179
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.3790.2663
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2663
| X-RFC2646: Format=Flowed; Original
| Message-ID: <#CLF4NVoGHA.4912@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: c-24-5-103-151.hsd1.ca.comcast.net 24.5.103.151
| Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP05.phx.gbl
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:279565
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Chace,
|
| Thank you so much for your help. I tried everything up to sending the
files.
| I still can't access the server from outside the network.
|
| Let me know what else I can do.
|
| The files are on their way.
|
| Hugh
|
| "chace zhang" <v-chacez@xxxxxxxxxxxxx> wrote in message
| news:AMKLNGPoGHA.4632@xxxxxxxxxxxxxxxxxxxxxxxx
| > Hi Huge,
| >
| > Thank you for posting here.
| >
| > According to your description, I understand after you re-run CEICW
| > wizard(during this process you encountered some error) you can not
access
| > OWA and RWW from internet.
| >
| > In order to clarify your situation, please help me to gather
following
| > info:
| >
| > What the error message during you re-run CEICW wizard? Please tell me
the
| > info word for word.
| >
| > What's the version of your SBS 2003?
| >
| > How many NIC does your ISA Server have?
| >
| >
| > 1. First of all, I would like to suggest that you re-run CEICW to
publish
| > the web sites again and see how things go from there. For detail
| > information, you can refer to the following KB:
| >
| > How to configure Internet access in Windows Small Business Server
2003
| > http://support.microsoft.com/?id=825763
| >
| >
| >
| > 2. Please check the security of Inetpub, the permission should be:
| >
| > Administrators and System account should have full control
| > Users have Read&Excute/List Folder Contents/Read permission.
| > Interactive and NETWORK should have List Folder Contents permission.
| >
| > 3. To avoid any affect from third party software, please perform a
clean
| > boot on your SBS server, and then check if there is any change.
| >
| > To perform a clean boot, follow the steps below:
| >
| > A. Click Start, click Run, type "msconfig" (without the quotation
marks)
| > and click OK.
| > B. Select "Selective Startup" and remove the check box for "Load
Startup
| > Items".
| > C. On the "Services" tab, click Enable All.
| > D. Check "Hide all Microsoft Services", click Disable All and clear
"Hide
| > all Microsoft Services".
| > E. Click the OK button and then Click Yes to restart your computer.
| > F. Try again.
| >
| >
| >
| > Please also help me to collect the following logs and send them to
| > v-chacez@xxxxxxxxxxxxx for research.
| >
| > Info 1. CEICW log:
| >
| > Please send icwlog.txt file to me.
| >
| > Info 2. IIS Metabase:
| >
| > 1. Download the IIS Resource Kit tools from the following page:
| >
http://www.microsoft.com/downloads/details.aspx?FamilyId=56FC92EE-A71A-4C73-
| > B628-ADE629C89499&displaylang=en
| > 2. Install it, run MBExplorer (Metabase Explorer)
| > 3. Right click the "LM" node and choose "Export to file".
| > 4. Specify a file name, specify the password and finish the export.
| > 5. Send the file and the password to v-bpeng@xxxxxxxxxxxxxx
| >
| > In additional, I would like to provide following info about how to
deply
| > Mobile with your SBS server.
| >
| > Deploying Windows Mobile 5.0 with Windows Small Business Server 2003
| >
http://www.microsoft.com/downloads/details.aspx?FamilyID=8be70d72-1e5a-4128-
| > a30c-dafeeb43544d&displaylang=en
| >
| > Deploying Windows Mobile 2002 with Windows Small Business Server 2003
| >
http://www.microsoft.com/downloads/details.aspx?FamilyId=401CC9FD-4CC5-43C9-
| > 9309-70798F7BA611&displaylang=en
| >
| >
| > Hope this helps, if you have any concerns on this issue, please feel
free
| > to let me know.
| >
| > Have a nice day!
| >
| >
| > Best Regards,
| >
| > Chace Zhang (MSFT)
| >
| > Microsoft CSS Online Newsgroup Support
| >
| > Get Secure! - www.microsoft.com/security
| >
| > =====================================================
| > This newsgroup only focuses on SBS technical issues. If you have
issues
| > regarding other Microsoft products, you'd better post in the
corresponding
| > newsgroups so that they can be resolved in an efficient and timely
manner.
| > You can locate the newsgroup here:
| > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| >
| > When opening a new thread via the web interface, we recommend you
check
| > the
| > "Notify me of replies" box to receive e-mail notifications when there
are
| > any updates in your thread. When responding to posts via your
newsreader,
| > please "Reply to Group" so that others may learn and benefit from
your
| > issue.
| >
| > Microsoft engineers can only focus on one issue per thread. Although
we
| > provide other information for your reference, we recommend you post
| > different incidents in different threads to keep the thread clean. In
| > doing
| > so, it will ensure your issues are resolved in a timely manner.
| >
| > For urgent issues, you may want to contact Microsoft CSS directly.
Please
| > check http://support.microsoft.com for regional support phone
numbers.
| >
| > Any input or comments in this thread are highly appreciated.
| >
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
| > rights.
| > --------------------
| > | Reply-To: "Hugh G. Johnson" <hughNOTgNOTjohnson@xxxxxxxxxxx>
| > | From: "Hugh G. Johnson" <hughNOTgNOTjohnson@xxxxxxxxxxx>
| > | Subject: Trying to setup Activesync now can't access /exchange or
| > /remote
| > | Date: Wed, 5 Jul 2006 09:16:48 -0700
| > | Lines: 16
| > | X-Priority: 3
| > | X-MSMail-Priority: Normal
| > | X-Newsreader: Microsoft Outlook Express 6.00.3790.2663
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2663
| > | X-RFC2646: Format=Flowed; Original
| > | Message-ID: <OTqvr5EoGHA.2100@xxxxxxxxxxxxxxxxxxxx>
| > | Newsgroups: microsoft.public.windows.server.sbs
| > | NNTP-Posting-Host: c-24-5-103-151.hsd1.ca.comcast.net 24.5.103.151
| > | Path:
TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP02.phx.gbl
| > | Xref: TK2MSFTNGXA01.phx.gbl
microsoft.public.windows.server.sbs:279244
| > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > |
| > | I bought a new Cingular 8125 over the weekend and was trying to get
it
| > to
| > | sync via ActiveSync with my SBS03 and ISA04 with all the latest
SPKs.
| > |
| > | I kept getting the error the certficate couldn't be trusted. Well
one
| > thing
| > | led to another so I ran the CIEW (sp?) and got a few errors (Red
X's)
| > but
| > | then totally re-did everything. firewall, certificate, email, etc.
and
| > it
| > | ran without errors (Red Xs) but now I can't access /Exchange and
/Remote
| > | from outside the network. /OMA works too, but only locally.
| > |
| > | Sorry for being so lame, but where do I begin?
| > |
| > | Thanks.
| > |
| > | Hugh
| > |
| > |
| > |
| >
|
|
|





.