Announcement

Collapse
No announcement yet.

RPC over HTTP/S not working

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • RPC over HTTP/S not working

    I have set this up several times before and have not run into a situation where this does not work.
    Our Config:
    We have a Single 2k3 SBS Standard Server with RPC over Https setup and it will not accept logins. It is running 2k3 SP2 with Exchange 2k3 SP2. We are using a Thawte SSL Cert and it is installed properly. rpccfg /hd looks good and proper. I can get to OWA via https://server.com/exchange no problem. Here is what I get when I run a rpcping (rpcping -t ncacn_http -s ExchServer -o RpcProxy=RPCProxyServer -P "user,domain,*" -I "user,domain,*" -H 2 -u 10 -a connect -F 3 -v 3 -E -R none) this returns:

    RPCPinging proxy server xxx.xxxxxx.com with Echo Request Packet
    Sending ping to server
    Response from server received: 403
    Ping failed.

    Outlook 2007 client is being used and the RPC key and dword =0 DefConnectOPs has been added. I have also tested with other sites and it works fine.
    outlook /rpcdiag results in mail,referal,directory never connecting and ending in a disconnected state.

    443 and 80 are forwarded from the external firewall interface to the Exchange BE RPC-HTTP server.

    Where do I go from here?

    Thanks for your help.
    Last edited by dougan78; 12th December 2007, 23:43.

  • #2
    Re: RPC over HTTP/S not working

    doesn't work for me as well, however I can't log on using https://server/exchange (http works fine)

    the rest looks exactly like you say...
    ..:: jumanji

    Comment


    • #3
      Re: RPC over HTTP/S not working

      Well it would appear as if it works internally based on the IIS logs the clients on the local net are set to use RPC no matter what and it looks as though they are working fine here is a snipit from the w3svc1 logs:

      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6002 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6004 443 domain\username 10.20.13.53 MSRPC 200 0 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_IN_DATA /rpc/rpcproxy.dll ExchangeServer.local:593 443 - 10.20.13.53 MSRPC 401 1 0
      2007-12-13 00:15:26 W3SVC1 10.20.13.10 RPC_OUT_DATA /rpc/rpcproxy.dll ExchangeServer.local:6001 443 - 10.20.13.53 MSRPC 401 1 0

      Comment


      • #4
        Re: RPC over HTTP/S not working

        Dougan78 did you set it up using the Wizards?

        jum4n7i is you system an SBS setup and why have you hijacked this thread? Please start your own topic. Thank you.
        1 1 was a racehorse.
        2 2 was 1 2.
        1 1 1 1 race 1 day,
        2 2 1 1 2

        Comment


        • #5
          Re: RPC over HTTP/S not working

          Standard 2003 single DC with Exchange 2003 SP2 running on it. Hijack this thread I believe i started it?

          Comment


          • #6
            Re: RPC over HTTP/S not working

            jum4n7i is you system an SBS setup and why have you hijacked this thread? Please start your own topic. Thank you.
            Yes, my system is SBS 2k3 and I haven't hijacked this thread, just joined it. If it's such a big problem - I am really sorry, I will leave now...


            kind regards
            ..:: jumanji

            Comment


            • #7
              Re: RPC over HTTP/S not working

              Well in my case the problem was the server was SBS2003 and MS was able to fix it for me. here is the article on it:

              Symptoms:
              ==============
              When you access Remote Web Workplace (http://servername/remote), SBS Backup website (http://servername/backup), or Companyweb (http://companyweb), you are prompted to specify username and password. After you specify any username and password including the administrator's credential, you receive the error message <In this example, we access Remote Web Workplace>:

              You are not authorized to view this page

              HTTP Error 401.1 - Unauthorized: Access is denied due to invalid credentials.
              Internet Information Services (IIS)

              If you click Cancel on the username and password prompt, you receive the followig error:

              Server Error in '/Remote' Application.
              --------------------------------------------------------------------------------

              Runtime Error
              Description: An application error occurred on the server. The current custom error settings for this application prevent the details of the application error from being viewed.

              Details: To enable the details of this specific error message to be viewable on the local server machine, please create a <customErrors> tag within a "web.config" configuration file located in the root directory of the current web application. This <customErrors> tag should then have its "mode" attribute set to "RemoteOnly". To enable the details to be viewable on remote machines, please set "mode" to "Off".

              When you follow the error message above to turn to enable the details of this specific error message <See More Information>, you receive the similar error like below when you access the site again:

              Server Error in '/Remote' Application.
              --------------------------------------------------------------------------------

              Access to the path "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Temp orary ASP.NET Files\remote\ab3b0cb8\7540844c" is denied.
              Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

              Exception Details: System.UnauthorizedAccessException: Access to the path "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Temp orary ASP.NET Files\remote\ab3b0cb8\7540844c" is denied.

              ASP.NET is not authorized to access the requested resource. Consider granting access rights to the resource to the ASP.NET request identity. ASP.NET has a base process identity (typically {MACHINE}\ASPNET on IIS 5 or Network Service on IIS 6) that is used if the application is not impersonating. If the application is impersonating via <identity impersonate="true"/>, the identity will be the anonymous user (typically IUSR_MACHINENAME) or the authenticated request user.

              To grant ASP.NET write access to a file, right-click the file in Explorer, choose "Properties" and select the Security tab. Click "Add" to add the appropriate user or group. Highlight the ASP.NET account, and check the boxes for the desired access.

              Cause:
              ===================
              Local Service and Network Service accounts do not have Full Control to the "Temporary ASP.NET Files" folder

              Resolution:
              =====================
              Add Local Service and Network Service account Read & Execute, List Folder Contents, and Read permissions to %windir%\Microsoft.NET\Framework\v1.1.4322.
              Add Local Service and Network Service account Full Control permission to %windir%\Microsoft.NET\Framework\v1.1.4322\Tempora ry ASP.NET Files.

              More Information
              ===================
              <How to enable the details of the specific error>
              Remote Web Workplace, Backup website, and Companyweb each has their own Web.config located in Inetpub\Remote, Inetpub\Backup, Inetpub\Companyweb, respectively. Follow the steps below to modify Web.config in the specific directory to display detailed ASP.NET error information for that specific website.

              For example, to display the detailed ASP.Net error for Remote Web Workplace:
              1. Make a backup of C:\Inetpub\Remote\Web.config
              2. Open Web.config with Notepad
              3. Change <customErrors mode="On" defaultRedirect=”error.aspx” /> to <customErrors mode="Off" />
              Please notice the text is case sensitive.
              4. Save the file
              5. Go to a command prompt, type “iisreset”

              Comment

              Working...
              X