Exchange 2013 autodiscover not working from Externally (Network Steve Forum)

Exchange 2013 autodiscover not working from Externally

i have exchange 2010 sp3(2Mb, 2hub/cas). I installed exchange 2013 servers(2MB, 2CAS). For coexistence i generated new certifcate with new cas from third party. I installed that certificate in that cas and assigned all services. i changed all my virtual directories service url. I didnt import the new certificate to exchange 2010 cas server and i didnt change url to legacy link.But still iam able to check exchange 2010 user mailbox owa, activesync and autodiscover without any certificate error.

If i try to browse owa, its going to 2013 server, if user is exchange 2010 user and its redirecting to exchange 2010 owa with same link.

But i dont know how above things is working without importing to new certificate...

Main problem is i am not able to configure exchange 2013 users outlookanywhere, Autodiscover from externally...

So in tmg i pointed the outlook anywhere ip address new cas server, now both exchange 2010 and exchange 2013 users while OA from external, its keep on asking password... Not accepting it...

Please help me to fix this issue..

January 30th, 2015 8:56am

Hi vino1958,

The reason TMG is keep asking users for password is that Exchange 2013 authentication rules are not the same as for 2010. You should review and update TMG publishing rules for Exchange 2013 CAS,

This must help you pretty much: http://blogs.technet.com/b/exchange/archive/2012/11/21/publishing-exchange-server-2013-using-tmg.as

Free Windows Admin Tool Kit Click here and download it now

January 30th, 2015 2:25pm

could you please tell me the folders to be added in outlook anywhere tmg rule...

Currently rpc, autodiscover and OAB is there...

January 30th, 2015 9:54pm

Autodiscover is working now, but my outlook anywhere still not working from external both exchange 2010 and 2013.

In exchange test connectivity, iam getting this below error...

RPC Proxy can't be pinged.

Additional Details

An unexpected network-level exception was encountered. Exception details:
Message: The remote server returned an error: (403) Forbidden.
Type: Microsoft.Exchange.Tools.ExRca.Extensions.MapiTransportException
Stack trace:
at Microsoft.Exchange.Tools.ExRca.Extensions.MapiRpcTestClient.PingProtocolProxy(String endpointIdentifier)
at Microsoft.Exchange.Tools.ExRca.Tests.MapiPingProxyTest.PerformTestReally()
Exception details:
Message: The remote server returned an error: (403) Forbidden.
Type: System.Net.WebException
Stack trace:
at System.Net.HttpWebRequest.GetResponse()
at RpcPingLib.RpcPing.PingProxy(String internalServerFqdn, String endpoint)
at Microsoft.Exchange.Tools.ExRca.Extensions.MapiRpcTestClient.PingProtocolProxy(String endpointIdentifier)
Elapsed Time: 1426 ms.

Edited by vino1985 Saturday, January 31, 2015 5:58 AM editing

Free Windows Admin Tool Kit Click here and download it now

January 31st, 2015 8:57am

Anybody share me Outlook anywhere rule settings in tmg...

February 1st, 2015 11:35pm

Hi ,

On TMG please have the outlook anywhere rule like below and check the status.

Step 1 :

On the TMG rule - >authentication delegation ---> select the option "no delegation users can authenticate directly"

Step 2 :

on the users tab in the TMG rule - just add "all users" group on that rule.

By having the above settings we have avoided the issues in your environment.

Note : Based on the above setting's , Each and everyone in exchange will have a access to the outlook anywhere from external world , because there would not be having any restriction on the TMG rules.

Please have a look in to the below link , it will give you some ideas which is related to TMG

http://blogs.technet.com/b/exchange/archive/2012/11/21/publishing-exchange-server-2013-using-tmg.aspx

Free Windows Admin Tool Kit Click here and download it now

February 2nd, 2015 12:32am

Thanks for your responses..

I have the same settings in TMG..

Below are the things i added in TMG rule Path....

Is there any other things i missed out...

February 2nd, 2015 5:45am

Hi vino1985,

According to your description, I understand that Outlook always ask for password after publish Exchange 2013 from TMG.
If I misunderstand your concern, please do not hesitate to let me know.

Please run following command to double check the setting of Outlook Anywhere, then to double confirm whether it is match the configuration of Outlook client, especially authentication:

Get-OutlookAnywhere | FL Identity,*host*,*auth*

Besides, I find some similar thread about your question, for your reference:
https://social.technet.microsoft.com/Forums/exchange/en-US/2b4501af-da79-4026-8ffb-8bba5269ac97/how-can-i-publish-outlook-anywhere-via-tmg-in-an-exchange-20102013-coexistence-scenario?forum=exchangesvrclientslegacy
https://social.technet.microsoft.com/Forums/office/en-US/12602ae2-8f09-4b03-8343-b334bc37dddf/password-keeps-prompt-on-clients-for-outlook-anywhere-2013-published-in-tmg-2010?forum=exchangesvrgeneral

Best Regards,
Allen Wang

Free Windows Admin Tool Kit Click here and download it now

February 2nd, 2015 9:37pm

Hi Allen,

Thank you for the response..

Outlook any where not connecting from External, its asking for password. After giving password its not accepting..

i read threads given by you..its not working..

Still same error when we try exchange test connectivity RPC Proxy can't be pinged..

I am not able to differntiate the error, whether the problem is with my exchange or TMG..

February 4th, 2015 3:34am

This topic is archived. No further replies will be accepted.