OAB generation failure
Hi, I have a problem with an OAB nto generating and coming with the following error:
Failed to generate offline address book CN=OAB_Name,CN=Offline Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=mydomain,DC=local, error '80070005'
Here's the background:
I have had a mixed 2007/2010 setup for about 18 months, a requirement has arisen to start using ABPs to linit which users can see which users. To simplify (as i thought) i decided to remove the 2007 server and also remove public folders as i have no clients
that connect with less than outlook 2007. I have also have a new public domain that some new users will be using and one of the reasons for using ABPs. The new users have the custom attribute 1 set to an organisation name similar to the new domain name and
i have created a new user list, a new room list, a new OAB, a new GAL, and an ABP based on these,and applied the ABP to the new users.
The above error is the only error/warning in the event logs, however when a new user connect via outlook they can see the full default GAL, and when they go to download address book they get error 8004010F 'An object cannot be found', also when closing outlook
with these profiles the main window closes but the process just keeps running at 50%. But when accessing the mailboxes via OWA everything works as expected, these users only have visibility of users with the same settings.
Anyone any ideas?
Thanks
September 11th, 2012 2:32am
On Tue, 11 Sep 2012 06:26:03 +0000, IainZ wrote:
>Hi, I have a problem with an OAB nto generating and coming with the following error: Failed to generate offline address book CN=OAB_Name,CN=Offline Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=mydomain,DC=local,
error '80070005' Here's the background: I have had a mixed 2007/2010 setup for about 18 months, a requirement has arisen to start using ABPs to linit which users can see which users. To simplify (as i thought) i decided to remove the 2007 server and also remove
public folders as i have no clients that connect with less than outlook 2007. I have also have a new public domain that some new users will be using and one of the reasons for using ABPs. The new users have the custom attribute 1 set to an organisation name
similar to the new domain name and i have created a new user list, a new room list, a new OAB, a new GAL, and an ABP based on these,and applied the ABP to the new users. The above error is the
>only error/warning in the event logs, however when a new user connect via outlook they can see the full default GAL, and when they go to download address book they get error 8004010F 'An object cannot be found', also when closing outlook with these profiles
the main window closes but the process just keeps running at 50%. But when accessing the mailboxes via OWA everything works as expected, these users only have visibility of users with the same settings. Anyone any ideas? Thanks
Did you change the distribution of OABs so they no longer include
public folders?
---
Rich Matheisen
MCSE+I, Exchange MVP
--- Rich Matheisen MCSE+I, Exchange MVP
Free Windows Admin Tool Kit Click here and download it now
September 11th, 2012 4:55pm
Hi Rich,
Yes I did, I did that before I removed the publicfolders. I don't know if this helps at all, but also once I have created an offline address book I cannot make any changes to it through EMC, I get an error that states:
Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
It seems logical to me that both issues are related and are also related to permissions.
Thanks for your help.
Iain
September 11th, 2012 5:05pm
On Tue, 11 Sep 2012 20:59:18 +0000, IainZ wrote:
>Yes I did, I did that before I removed the publicfolders.
Is there an even in the Applications log? Can you post all of it and
not just a part of the "description"?
>I don't know if this helps at all, but also once I have created an offline address book I cannot make any changes to it through EMC, I get an error that states:
>
>Insufficient access rights to perform the operation. Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
>
>It seems logical to me that both issues are related and are also related to permissions.
Have you run Exchange Best Practices Analyzer? Does that point out any
problems?
---
Rich Matheisen
MCSE+I, Exchange MVP
--- Rich Matheisen MCSE+I, Exchange MVP
Free Windows Admin Tool Kit Click here and download it now
September 11th, 2012 9:46pm
hi,
First: If you can, please post the whole error information here. Please check the sourece in the app log. I recommend that you can turn up the related log level and then check the app log again. You will find more useful information about your issue.
>>>The new users have the custom attribute 1 set to an organisation name similar to the new domain name and i have created a new user list, a new room list, a new OAB, a new GAL, and an ABP based on these,and applied the ABP to the new users.
Have you changed the database setting? You should point the default offline address book to the new oab on the database client settings. And please make sure that the users meet the ABP requirement.
Please use the cmd to get the offline address book:
get-offlineaddressbook | fl
hope can help you
thanks,
CastinLu
TechNet Community Support
September 12th, 2012 3:54am
Hi, thank you both for your kind assistance, sorry for not responding sooner, this is the first chance i have had to get back on with it.
I have made a little progress, Rich, i am no longer getting that specific error. I have altered the permisions in ADSI Edit, under configuration, services, microsoft exchange, first organization, address lists container, the offline address list container
was not set for inheritable permissions, so i have changed that and i no longer get the error in the event stated previously, and i am also now able to edit an offline address book from the EMC. The exchange BPA only came up with an error about a san
mismatch for the autodiscover url, a warning about the temp path and a few informational items, I think the BPA might have come up with the permissions issue had i checked permissions before, but first time i only ran a healthcheck.
CastinLu, I have turned up the logging to expert for MSExchangeAL\* & MSExchangeSA\OAL Generator, this does now show a further error. Can you explain further what you are asking here please:
Have you changed the database setting? You should point the default offline address book to the new oab on the database client settings. And please make sure that the users meet the ABP requirement.
So I am no longer getting the error i was before but i am now getting:
OALGen did not find any recipients in address list '\CompanyName'. This offline address list will not be generated.
- \CompanyName
and
OALGen did not find any recipients in address list '\CompanyName Rooms'. This offline address list will not be generated.
- \CompanyName
In addition there is a new/corresponding guid folder appeared in default web site/oab however there are no lzx files, just the oab.xml file but this only contains:
<?xml version="1.0" encoding="UTF-8"?>
<OAB> </OAB>
Thanks for your help and patience.
Iain
Free Windows Admin Tool Kit Click here and download it now
September 12th, 2012 5:52pm
hi,
>>>Can you explain further what you are asking here please:
Have you changed the database setting? You should point the default offline address book to the new oab on the database client settings. And please make sure that the users meet the ABP requirement.
After you have created a new OAB, and you want to use the oab, then you should change the database setting for the oab. Please open your mailbox database through the EMC, right click it and open its properties, under the client setting tab you will see the
offline address book option, point to the new oab.
>>>OALGen did not find any recipients in address list '\CompanyName'. This offline address list will not be generated.
- \CompanyName
and
OALGen did not find any recipients in address list '\CompanyName Rooms'. This offline address list will not be generated.
It seems that the address list that you have created is wrong. Have you set the right filter policy to filter the users and groups when you create the list. Can you check that? When you create the address list, you can use the preview to check the filter, can
you see some users or groups.
hope can help you
thanks,
CastinLu
TechNet Community Support
September 12th, 2012 11:54pm
Hi Castinlu,
Thank you, I just wasn't sure of the question. I have 2 databases, one the man users and one for the new users, the OAB option for the main user database is set to the default OAB while the OAB option for the new users database is set to the new OAB, is
that set correctly?
When I preview the filter it does display the users i would expect to see, in both the companyname address list and the companyname room address list, that is part of what doesn't make a lot of sense to me.
Thanks
Iain
Free Windows Admin Tool Kit Click here and download it now
September 13th, 2012 1:57pm
hi,
>>> I have 2 databases, one the man users and one for the new users, the OAB option for the main user database is set to the default OAB while the OAB option for the new users database is set to the new OAB, is that set correctly?
If you have two database and one OAB object, you should set the two database to the OAB.
Please run the cmd:get-offlineaddressbook | FL and post the result.
thanks,CastinLu
TechNet Community Support
September 18th, 2012 9:44pm