RE: SBS2003, Exchange 2003 & Mobile ActiveSync
- From: v-jaluo@xxxxxxxxxxxxxxxxxxxx ("Jacky Luo [MSFT]")
- Date: Fri, 25 May 2007 14:13:04 GMT
Hi Matt,
Thanks for posting here.
From your post, my understanding on this issue is: You encountered errorcode 0x85010004 during accessing mailbox by ActiveSync. If I'm off base,
please feel free to let me know.
Based on my knowledge, The error 0x85010004 happens when the authentication
method is not configured correctly in ActiveSync, OMA and
Exchange/Exchange-OMA virtual directory.
I.Please verify Authentication settings by the following steps.
For Exchange-oma virtual directory:
1. Open IIS Manager
2. Open properties of virtual directory Exchange-oma
3. Select Directory Security tab
4. Select Edit in Authentication and access control box. Make sure the
authentication setting as below:
Authentication Methods
Enabled Basic authentication
Enabled Integrated Windows authentication
Disabled anonymous access
Note:If you need to use SSL on the Exchange virtual directory, you may
create the Exchange-OMA virtual directory for the OMA and ActiveSync and
don't use SSL on the Exchange-OMA virtual directory.
For OMA virtual directory and Microsoft-Server-ActiveSync virtual directory:
1. Open IIS Manager
2. Open properties of OMA virtual directory and Microsoft-Server-ActiveSync
virtual directory respectively.
3. Select Directory Security tab
4. Select Edit in Authentication and access control box. Make sure the
authentication setting as below:
Authentication Methods
Uncheck Enable anonymous access
Uncheck Integrated Windows authentication
Check Basic authentication
After that, please restart the IIS Admin Service (services.msc) and then
verify the issue.
II. if issue still occur, refer to the KB article 883380 to rebuild the
DS2MB of IIS server and manually create exchange-oma VD to see if the issue
resolved.
Step 1: Rebuild the DS2MB of IIS server. To do so:
1. Go to Internet Services Manager and delete the following virtual
directories:
Microsoft-Server-ActiveSync,
OMA,
Exchange,
Public,
ExchWeb.
2. Open Metabase Explorer and expand LM > DS2MB > HighWaterMarks > GUID
3. Double click the entry which has a 5-digit number in the data folder in
the right pane of the GUID folder.
4. Replace the number in the Data field with 0 (zero) and then click OK.
Close Metaedit
5. Run services.msc and right click IIS Admin Service, and then click
Restart to restart the service.
6. Restart the System Attendant. After that, these virtual directories can
be created.
7. Then please re-run CEICW to configure network connection.
More detailed information is addressed in the following article:
883380 How to reset the default virtual directories for Outlook Web Access
in Exchange Server 2003
http://support.microsoft.com/?id=883380
Step 2: Then create exchange-oma VD in IIS manager console manually since
the VD can not be automatically created by re-building DS2MB. Please refer
to the following KB article method 2 to create the exchange-oma VD.
Exchange ActiveSync and Outlook Mobile Access errors occur when SSL or
forms-based authentication is required for Exchange Server 2003
http://support.microsoft.com/default.aspx?kbid=817379
More information is addressed in the following article, please check into
the following document:
Step-by-Step Guide to Deploying Windows Mobile-based Devices with Microsoft
Exchange Server 2003 SP2
http://www.microsoft.com/technet/itsolutions/mobile/deploy/msfp_2.mspx
III.I have one way to verify whether the issue is related to Firewall
server.
1. Disable SSL for Microsoft-Server-ActiveSync virtual directory.
2. Locate a workstation within LAN; download PC ActiveSync application as
below:
http://www.microsoft.com/windowsmobile/downloads/activesync45.mspx
3. Connect Pocket PC through cradle with this PC;
4. Specify the NetBIOS name of Exchange Server in order to avoid PPC
connecting Exchange Server from Internet; and then synchronize Exchange
Server mailbox by PC ActiveSync application.
If the issue disappears here, I am sure it is caused by Firewall settings.
If possible,temporarily disable ISA firewall.
If the issue persists after steps above, in order to have a more concrete
idea about the issue, please let me know the following info.
1. Does issue happen to accessing mailbox by OMA? For further test, please
login Exchange Server itself, and access URL: http://Exchange_Server/OMA,
verify whether you can access the mailbox successfully.
2. Do all the users have such issue or just specific users? this error
could also occur because of corrupt exchange attributes for the mailbox.
So, I would like to suggest that you create a new mail enabled user account
and see if the activesync/OMA can work for the new account.
3. Collect the IIS metabase on Exchange Server and send to
me:v-jaluo@xxxxxxxxxxxxxx for further analysis:
1). On Exchange Server, install .NET Framework Version 1.1:
http://www.microsoft.com/downloads/details.aspx?FamilyID=262d25e3-f589-4842-
8157-034d1e7cf3a3&DisplayLang=en.
2). Install MBExplorer by installing IIS 6 Resource Kit Tools:
http://www.microsoft.com/downloads/details.aspx?FamilyId=56FC92EE-A71A-4C73-
B628-ADE629C89499&displaylang=en.
3). Once it is installed, access it from Start, Programs, IIS Resources,
Metabase Explorer.
4). In the left pane, right click ''LM'' (under your server computer name)
to choose ''Export to file'', and then save it as IIS.mbk.
5). Compress this mbk file and send it to me for analysis. Please let me
know the password if you set on this iis mbk file.
4. Please collect the IIS log on Exchange Server so that I can perform
further research:
1). On Exchange Serves, open IIS MMC, right click Default Web Site and then
click Properties.
2). Click Website tab and then check Enable logging.
3). Stop the Default Website and RENAME the existing IIS log files under
C:\WINDOWS\system32\LogFiles\W3SVC1.
4). Restart the Default Website and reproduce the problem, which will
generate new IIS log file with the exact error.
5). Wait for a while so that IIS Log can be synced. And then go to the
following folder on Exchange Server: C:\WINDOWS\system32\LogFiles\W3SVC1.
6). Send me the log files to my working email address
v-jaluo@xxxxxxxxxxxxxx And please let me know the alias of the user who
encountered the issue.
Hope this helps! If you have further concern, feel free to let me know.
Have a great day!
Have a nice day!
Best regards,
Jacky Luo (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
====================================================
PLEASE NOTE: The partner managed newsgroups are provided to
assist with break/fix issues and simple how to questions.
We also love to hear your product feedback! Let us know what you think by
posting
from the web interface: Partner Feedback
from your newsreader: microsoft.private.directaccess.partnerfeedback.
We look forward to hearing from you!
====================================================
When responding to posts, please "Reply to Group" via your newsreader
so that others may learn and benefit from this issue.
====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
====================================================
.
- Prev by Date: Re: new installation sbs 2003
- Next by Date: Re: Problems after cloning SBS2003
- Previous by thread: Re: SBS2003, Exchange 2003 & Mobile ActiveSync
- Next by thread: RE: SBS2003, Exchange 2003 & Mobile ActiveSync
- Index(es):
Relevant Pages
|
Loading
