Requirements to use RPC over HTTP/S To use RPC over HTTP/S, your computers must meet the following requirements. Microsoft has an in-depth article on publishing RPC over HTTPS with ISA 2004 which is linked at the end of this article. One common issue is that the remote user does not have the correct version of Outlook installed or they are running the wrong base OS. If this connection fails, Outlook attempts to connect over HTTP. weblink
Follow the instructions found in the Testing RPC over HTTP/S Connection article. Basically, there are 2 configurations possible when configuring RPC over HTTP/S: Multiple servers - In this scenario, you have multiple servers in your organization. Understanding Outlook and Exchange Interaction All versions of Outlook use Messaging API (MAPI) to interact with any Exchange Server version, and Outlook uses RPCs to execute its MAPI calls. Note: This is the part where most administrators fail.
RPC over HTTPS allows RPC traffic to be tunnelled inside secured HTTP packets. your Exchange server - this is a single server scenario), start Registry Editor. Connect with Daniel Petri Like on Facebook Follow on Twitter Circle on Google+ Subscribe via RSS Sponsors Join the Petri Insider Subscribe to the Petri Insider email newsletter to stay up
On the Exchange server settings page, click on More settings. Locate and then click the following registry subkey: Microsoft Registry HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters 1 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters On the Edit menu, point to New, and then click Multi-String Value. Exchange server software Mobility & Wireless Monitoring Office 365 Tools Outlook Addons OWA Addons POP3 Downloaders PST Management Reporting Security & Encryption Services Anti Spam Filtering BlackBerry Hosting Exchange Hosting Hosted Rpc Over Http Exchange 2010 Not Working Windows Server 2012 / 2008 / 2003 & Windows 8 / 7 networking resource site Network Security & Information Security resource for IT administrators The essential Virtualization resource site for administrators
Obviously, if you have tens or perhaps hundreds of mailbox servers and GCs, updating the ValidPorts registry value with details about every one would be a huge task. Enable Outlook Anywhere Wizard Exchange 2003 Check the On slow networks, connect using HTTP first, then connect using TCP/IP box. Check ‘Mutually authenticate the session when connection with SSL'. ‘Principal name for proxy server:' msstd:mail.externaldomain.com If you want to use RPC over HTTPS even while on the internal network, then check You may be prompted with a warning dialogue; click on Yes and ignore this as it does not apply while using SSL.
Latest Contributions Hardening Exchange Server 2007 - Part 3: Securing Email Client Access 5 Feb. 2008 Hardening Exchange Server 2007 - Part 2: Secure by Default 3 Jan. 2008 Hardening Exchange Rpc Over Http Exchange 2013 Click Close. To use the ExRCA, open a Web browser, navigate to the Exchange Remote Connectivity Analyzer tool's Web site, and follow the wizard for Outlook 2003 RPC/HTTP testing. After setting up a Digital Certificate for the Default Website you will need to configure the RPC virtual directory to require SSL for all client-side connections.
For this reason, expect to see Microsoft supply a utility with Exchange 2003 that will analyze your Exchange environment and automatically update this registry setting. Select ‘Connection status' and you will see a list of all connections between Outlook and the Exchange server. Exchange 2003 Rpc Over Http Setup You may stop it. Rpcnofrontend Click to select the Basic authentication (password is sent in clear text) check box.
On the General tab, verify that you have SP1 installed. have a peek at these guys He is employed as technology consultant in Winnipeg, Manitoba, Canada working primarily with Active Directory, Exchange and Virtual Server 2005; and is the publisher of TheLazyadmin.com. http://technet.microsoft.com/en-us/library/aa998943.aspx. If you look at the example that Figure 6 shows, you'll see that in addition to specifying entries for osbex01, I also specify corresponding entries for osbex01.osb.cantaz.net. Rpc Over Https Exchange 2010
Figure 4: Enable SSL for the RPC Virtual Directory Configure the RPC proxy server to use specified ports for RPC over HTTP Now we need to configure the RPC Proxy Server Always ensure that your registry is backed up before commencing any modifications. But Outlook is also downloaded a copy of your mail from the Exchange server. check over here If the user already has a MAPI profile, you access the properties of that MAPI profile by selecting the Control Panel Mail applet and selecting the appropriate profile.
In Step 12, after msstd there is a colon ( : ). Rpc Over Http Connectivity Failed Exchange 2010 Outlook should open normally.You're done. Yes No Additional feedback? 1500 characters remaining Submit Skip this Thank you!
On the Exchange server, open Control Panel. If Control Panel is in Classic view, double-click the Mail control panel. Ensure that the RPC over HTTP service check box is selected, as Figure 4 shows, then click OK to install the service. Rpc Proxy Server Exchange 2007 Someone attempting to compromise your system security could use a protocol analyzer to examine user passwords during the authentication process.
Has anybody got Outlook 2010 working with Exchange 2003 using RPC over HTTP? Select Microsoft Exchange Server. When the HTTP forward proxy terminates the SSL connection, the subsequent connection to the RPC proxy is typically non-SSL, and thus will be rejected. this content Click the Mutually authenticate the session when connecting with SSL box.
Apply RPC over HTTP to an existing account If Outlook is open, from the File menu choose Exit. Hot Network Questions Do GUI based application execute shell commands in the background? Remove all the information from the Value data box, and then type the following information: PowerShell ServerNETBIOSName:6001-6002;ServerFQDN:6001-6002;ServerNetBIOSName:6004;ServerFQDN:6004 1 ServerNETBIOSName:6001-6002;ServerFQDN:6001-6002;ServerNetBIOSName:6004;ServerFQDN:6004 Replace ServerNetBIOSName with the NetBIOS name of your server. Generated Tue, 15 Nov 2016 03:38:31 GMT by s_wx1199 (squid/3.5.20)
An Internet Server API (ISAPI) filter in IIS 6.0 performs the proxy activity, and therefore the only requirement is that the system run Windows 2003. Copyright © 2016, TechGenix Ltd. It doesn't seem to make a difference. One important thing to note is that if you're connecting Outlook to the Exchange server for the first time, then you must be on the internal network using TCP/IP.
The leading Microsoft Exchange Server and Office 365 resource site. Introduction In the past remote users where forced to use a VPN to connect Outlook to the corporate Exchange servers or be forced to use the limited features available in Outlook Effectively, these restrictions mean that you can't use Outlook from one company's network to connect over the Internet to an Exchange server in another company's network. If you pass the testexchangeconnectivity.com test, I'd appreciate stealing that green checkmark from you ;) share|improve this answer answered Oct 21 '11 at 21:04 Bigbio2002 1,67882244 I double-checked ValidPorts
Always back up the registry before making any changes. You will find RPC Proxy in Add/remove Programs --> Add/Remove Windows Components --> Networking ServicesYou do NOT install this component on your domain controllers unless you are in a single server Save the file as rpc-http-server.reg, changing the "File Type" to "All Types" so that the file is saved as a registry key Double click on the file to install. For example: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\RpcProxy] "ValidPorts"="exchange-server:100-5000; exchange-server:6001-6002; exchange-server.domain.local:6001-6002; dc1:6001-6002; dc1.domain.local:6001-6002; dc2:6001-6002; dc2.domain.local:6001-6002; exchange-server:6004; exchange-server.domain.local:6004; dc1:6004; dc1.domain.local:6004; dc2:6004; dc2.domain.local:6004; mail.external.com:6001-6002; mail.external.com:6004; dc1:593; dc1.domain.local:593; dc2:593; dc2.domain.local:593; exchange-server:593; exchange-server.domain.local:593; mail.external.com:593;" More
This URL can also be the value that the HTTP forward proxy server exposes (which will subsequently redirect the packets to the RPC proxy server). Can I use more than one in the registry settings?A: Yes you can use more than one domain controller. The only ports you'll need to open on your firewall are TCP 80 and, if using SSL, TCP 443. I hope this has been a useful guide for those looking to try out RPC over HTTPS with Exchange 2003.