CAS Server Returned in Autodiscovery Information

Similar Messages

• Exchange 2013 CAS server returned '500 Message rejected'

  Hi, all.
  Exchange 2013 with CAS server and 2 mailbox servers. Health checks are all 100% healthy.
  One of our users cannot receive email from an external user. Our CAS server keeps rejecting the message. I can trace the message and see that it did indeed hit our servers, and was rejected. But I cannot find out WHY it was rejected.
  Here is the Delivery Report from the EAC:
  Delivery Report for               NAME ‎([email protected])
  Failed
  3/30/2015 1:41 PM <CAS servername>
  The message couldn't be delivered.
  [{LRT=};{LED=500 Message rejected};{FQDN=};{IP=}]
  The external user gets this NDR:
  <our local CAS servername> gave this error:
  Message rejected
  In the Diagnostic information for administrator section:
  <our local CAS servername> returned '500 message rejected'
  followed by the Original message headers. I think I'm looking for some more verbose logging to see what rule or configuration rejected the message. Any help would be greatly appreciated!
  Thanks!
  Dan

  My main question: how can I see what triggered my CAS server to reject this message with error 500?
  Our user can receive email from other external senders ok. It seems to be just this one sender having trouble.
  Our transport rules are not complex, and I see no rules that would block this sender or domain.
  We use Exchange Online Protection. The message gets through EOP and hits our CAS server. The CAS server rejects the message - it never gets to the Client.
  The CAS server gives the error 500 - but that's all I can find. I need a command or somewhere to look to see what triggered the 500 error.
  I've posted the NDR received by the sender and scrubbed our identifying information.
  Rcn.com looks like the sender's online forwarding host - the spf record for senderdomain.net points back to rcn.com. I've run an spf record check and it passes, so I do not believe that is the issue.
  Here is the NDR:
  From: [email protected]
  To: [email protected]
  Sent: Monday, March 30, 2015 1:41 PM
  Subject: Undeliverable: Hello from FirstName
  CAS1.our_internal_domain.local rejected your message to the following email addresses:
  FirstName LastName ([email protected])
  A problem occurred while delivering your message to this email address. Try sending your message again. If the problem continues, please contact your email admin.
  CAS1.our_internal_domain.local gave this error:
  Message rejected
  Diagnostic information for administrators:
  Generating server: BY1PR0501MB1112.namprd05.prod.outlook.com
  [email protected]
  CAS1.our_internal_domain.local
  Remote Server returned '500 Message rejected'
  Original message headers:
  Received: from BLUPR05CA0049.namprd05.prod.outlook.com (10.141.20.19) by
   BY1PR0501MB1112.namprd05.prod.outlook.com (25.160.103.146) with Microsoft
   SMTP Server (TLS) id 15.1.118.21; Mon, 30 Mar 2015 17:40:54 +0000
  Received: from BL2FFO11FD027.protection.gbl (2a01:111:f400:7c09::115) by
   BLUPR05CA0049.outlook.office365.com (2a01:111:e400:855::19) with Microsoft
   SMTP Server (TLS) id 15.1.125.19 via Frontend Transport; Mon, 30 Mar 2015
   17:40:54 +0000
  Received: from smtp.rcn.com (69.168.97.78) by
   BL2FFO11FD027.mail.protection.outlook.com (10.173.161.106) with Microsoft
   SMTP Server (TLS) id 15.1.130.10 via Frontend Transport; Mon, 30 Mar 2015
   17:40:54 +0000
  Return-Path: [email protected]
  X_CMAE_Category: , ,
  X-CNFS-Analysis: v=2.0 cv=PMSNCIWC c=1 sm=1 a=gRQJo8bc1j9+0GSSRogFxg==:17 a=NTyKUL13AAAA:8 a=ML7w5Z3_AAAA:8 a=3H5rcUylbt2uBKgiyYQA:9 a=wPNLvfGTeEIA:10 a=XQfDMMe_SRUA:10 a=SEXQnC1BqQAA:10 a=7ZjHjvgxCjAA:10 a=Wcs1mLwGzyUA:10 a=sBa8ZLUje9YA:10 a=k-GqB2yPh3IA:10
  a=N4kHG9ehtKzd7-3o534A:9 a=_W_S_7VecoQA:10 a=gRQJo8bc1j9+0GSSRogFxg==:117
  X-CM-Score: 0
  X-Scanned-by: Cloudmark Authority Engine
  X-Authed-Username: ZHAtZm1hQHJjbi5jb20=
  Authentication-Results: smtp02.rcn.cmh.synacor.com
   [email protected]; sender-id=neutralourdomain.com; dkim=none
   (message not signed) header.d=none;ourdomain.com; dmarc=pass action=none
   header.from=senderdomain.net;
  Authentication-Results: smtp02.rcn.cmh.synacor.com [email protected]; spf=neutral; sender-id=neutral
  Authentication-Results: smtp02.rcn.cmh.synacor.com smtp.user=sender; auth=pass (LOGIN)
  Received-SPF: neutral (smtp02.rcn.cmh.synacor.com: 69.72.92.252 is neither permitted nor denied by domain of senderdomain.net)
  Received: from [69.72.92.252] ([69.72.92.252:2689] helo=FirstNameLastName)
          by smtp.rcn.com (envelope-from <[email protected]>)
          (ecelerity 3.6.2.43620 r(Platform:3.6.2.0)) with ESMTPA
          id 58/6E-17115-4AA89155; Mon, 30 Mar 2015 13:40:53 -0400
  Message-ID: <011A7DBF0D954F62987032D45778AF29@FirstNameLastName>
  From: FirstName LastName <[email protected]>
  To: FirstName LastName <[email protected]>
  Subject: Hello from FirstName
  Date: Mon, 30 Mar 2015 13:40:49 -0400
  MIME-Version: 1.0
  Content-Type: multipart/alternative;
          boundary="----=_NextPart_000_0007_01D06AEF.223E4A60"
  X-Priority: 3
  X-MSMail-Priority: Normal
  X-Mailer: Microsoft Outlook Express 6.00.2900.5931
  X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157
  X-EOPAttributedMessage: 0
  Received-SPF: Pass (protection.outlook.com: domain of senderdomain.net designates
   69.168.97.78 as permitted sender) receiver=protection.outlook.com;
   client-ip=69.168.97.78; helo=smtp.rcn.com;
  Authentication-Results: spf=pass (sender IP is 69.168.97.78)
   [email protected];
  X-Forefront-Antispam-Report:
          CIP:69.168.97.78;CTRY:US;IPV:NLI;EFV:NLI;SFV:SKN;SFS:;DIR:INB;SFP:;SCL:-1;SRVR:BY1PR0501MB1112;H:smtp.rcn.com;FPR:;SPF:None;LANG:en;
  X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
  X-Exchange-Antispam-Report-Test: UriScan:;
  X-Exchange-Antispam-Report-CFA-Test:
          BCL:0;PCL:0;RULEID:(601004);SRVR:BY1PR0501MB1112;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
  X-OriginatorOrg: ourdomain.onmicrosoft.com
  X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Mar 2015 17:40:54.1243
   (UTC)
  X-MS-Exchange-CrossTenant-Id: c92ecf05-92f8-42f4-a246-24bee4988793
  X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
  X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR0501MB1112
  Dan

• How to Verify That I Need Another CAS Server

  We have one CAS server and I am thinking we need a second and to set up some load balancing. However, mgmt wants to know what the threshold is for one CAS server before introducing a second is needed. What do I need to be measuring or can someone point
  me towards some documentation of what the limits are for a single CAS server before you need a second one? 

  Hi,
  As far as I know, we can use performance monitor to check the client access server counters.
  If most counters are over the expected value, we can add a new CAS server.
  For more information about the proper value of the counters, you can refer to the following article:
  http://technet.microsoft.com/en-us/library/ff367877(v=exchg.141).aspx
  If you have any question, please feel free to let me know.
  Thanks,
  Angela Shi
  TechNet Community Support

• Wrong Autodiscover Server returned in XML

  We are trying to migrate to new Exchange 2013 CAS servers, however the autodiscover xml information they handing out still has the old server name in it
  X-CalculatedBETarget: old server
  X-DiagInfo: old server
  X-BEServer: old server
  Persistent-Auth: old server
  X-FEServer: old server
  When we stop the services on the old server as a test Autodiscover fails even though dns etc points to the new server, we are not seeing any other issues, owa etc all works.
  If I look at CN=autodiscover in ADSI there is no mention of the old server.
  We are migrating from a single server to a loadbalanced pair, what entry should we use to ensure autodiscover doesn't fail in the even one server is down?

  Hi Winnie, thanks for the response, in answer
  Have the problematic user been moved to Exchange 2013? What’s the mailbox server version for the problematic user?
  It's all the users and their mailboxes are actually on office 365, we are running hybrid mode as we have non Exchange\AD mail systems.
  Please check the
  Keywords
  and
  ServiceBindingInformationService attributes in the Service Connection Point (SCP) object in the following location of ADSIEdit:
  It's not just the SCP record as non domain joined users get the same information returned when using dns to resolve autodiscover
  The serviceBindingInformation is set as the dns name for the loadbalanced address of the front end servers
  https://autodiscover.domain.com/autodiscover/autodiscover.xml
  If you want to force all the old mailbox server users to connect to Exchange 2013 CAS server, please run the following command to have a try:
  Get-ClientAccessServer | Set-ClientAccessServer -AutodiscoverServiceInternalUri
  https://Exch13.domain.com/autodiscover/autodiscover.xml
  Again AutodiscoverserviceInternalURI is already set to the load balanced front end server address.
  https://autodiscover.domain.com/autodiscover/autodiscover.xml
  Regards

• Error while executing script for sharepoint online (office 365) - the remote server returned an error: (503) server unavailable

  error while executing script for sharepoint online (office 365) - the remote server returned an error: (503) server unavailable.
  I am creating many site collections reading records from sharepoint list using powershell in sharepoint online tenant (office 365).
  Few site collections are created and then getting above error so this error record will be skipped then few succeeding record processed then again getting error.
  pattern is like:
  success
  success
  success
  success
  Error
  success
  success
  success
  success
  success
  success
  error
  success

  Hi,
  As it is an online environment, to troubleshoot this issue in an easier way, I suggest you contact Office 365 Support to see if there is any useful information in
  the log files in the server side:
  https://support.office.com/en-us/article/Contact-Office-365-for-business-support-32a17ca7-6fa0-4870-8a8d-e25ba4ccfd4b?ui=en-US&rs=en-US&ad=US
  Best regards
  Patrick Liang
  TechNet Community Support

• Can i use same certificate on 2 different CAS Server across sites

  Hi All
  I have a question I have been playing with for a few days,
  I have the following setup,
  2 sites connected via a VPN and a DAG configured between sites.
  Site 1-Head Office
  2 exchange 2010 servers,
  1 running CAS and Mailbox (this server is entry point to all clients for owa etc.)
  1 running Hub, CAS, Mailbox. (this is the main server and a DAG Member)
  We have a UNC certificate associated with all records pointing to remote access and its installed on both servers.
  ** Everything in this site works fine.
  ** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
  Site 2.
  1 exchange 2010 servers,
  1 running Hub, CAS, Mailbox. (this is the main server for this site, a DAG Member and no entry point at this time but we intend to use it for redundancy)
  ** Currently all BD are on server in site 1.
  ** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
  My questions are as follows:
  1      on site 2’s the cas server can I use the same certificate I’m using onsite 1. in other words all clients currently use mail.domain.com which has an IP pointing to site 1, can I use that same certificate in site 2 and associate
  it with the CAS server there? (in the event of a failover I just change the records IP)
  2      All smtp traffic come through site 1, when I test moving active databases to site 2, all email stay in the ques of exchange server in site one, they don’t get delivered. (I have not set AD replication through smtp so don’t know
  if this is a factor)
  3      When I do set the active databases to site 2, webmail and remote services stop working, I get the infamous error when logging onto webmail, service unavailable because it’s been moved. I have read a lot about this being an internal
  external url issue.
  All these issues im starting to think they all interlinked, and would like some help.
  Cheers

  Answers to your questions:
  Yes.  Understand that until you swap your external DNS so it points to Site 2, the mail.domain.com won't be accessed, but it will be there for when you want it to be.
  AD replication is not the issue, so don't try to set it to use SMTP.  If you have hub servers in both sites, your inbound Internet email should be delivered from the Site 1 hubs to the Site 2 hubs.  We may need more information before we can give
  you a good answer for this question.  However, you may check the following TechNet article (and its links) for assistance. 
  http://technet.microsoft.com/en-us/library/aa998825(v=exchg.141).aspx
  Web access requires that the CAS you connect to be either externally accessible and in the same site as your mailbox server, or that the CAS in the inaccessible Windows site needs to be configured as internal only and the accessible CAS needs to be configured
  to proxy connections.  For this, make sure you have followed the directions in the following TechNet article.
  http://technet.microsoft.com/en-us/library/bb310763(v=exchg.141).aspx
  HTH ...

• Provider-hosted Apps debug error: The remote server returned an error: (401) unauthorised

  Hi,
  Any help appreciated!!
  I'm getting this error: "The remote server returned an error: (401) unauthorised when I debug a provider-hosted app.  I get the error on this line:  
  HttpWebResponse response = (HttpWebResponse)request.GetResponse();
  See code below
  I created a high trust development environment following the instructions provided here:
  http://msdn.microsoft.com/en-us/library/office/fp179901(v=office.15).aspx and
  http://msdn.microsoft.com/library/office/fp179923
  I created a provider-hosted app with the intent to:
  create a SharePoint list in the appweb
  Use self-signed certificate, tokenhepler.cs and sharepointcontext.cs to retrieve current user context and access on SharePoint.  (No changes were made to tokenhelper.cs and sharepointcontext.cs)
  retrieve list items from the SharePoint list in a button click event handler on a default.aspx of the remote web
  What happens:
  The app is deployed successfully to the Dev site
  The SharePoint feature is deployed and activated
  The default.aspx page of the remote web loads
  The error (see image) is returned on clicking of the button
  My environment is an on-premise SharePoint 2013 with AD and my dev box is standalone windows 8.1 running Visual Studio Professional 2013 Update 3.
  The code block below is a copy of the default.aspx code-behind
  using System;
  using System.Collections.Generic;
  using System.Linq;
  using System.Web;
  using System.Web.UI;
  using System.Web.UI.WebControls;
  using Microsoft.SharePoint.Client;
  using Microsoft.IdentityModel.S2S.Tokens;
  using System.Net;
  using System.IO;
  using System.Xml;
  using System.Data;
  using System.Xml.Linq;
  using System.Xml.XPath;
  namespace Idea.GeneratorWeb
  public partial class Default : System.Web.UI.Page
  SharePointContextToken contextToken;
  string accessToken;
  Uri sharepointUrl;
  protected void Page_PreInit(object sender, EventArgs e)
  Uri redirectUrl;
  switch (SharePointContextProvider.CheckRedirectionStatus(Context, out redirectUrl))
  case RedirectionStatus.Ok:
  return;
  case RedirectionStatus.ShouldRedirect:
  Response.Redirect(redirectUrl.AbsoluteUri, endResponse: true);
  break;
  case RedirectionStatus.CanNotRedirect:
  Response.Write("An error occurred while processing your request.");
  Response.End();
  break;
  protected void Page_Load(object sender, EventArgs e)
  //// The following code gets the client context and Title property by using TokenHelper.
  //// To access other properties, the app may need to request permissions on the host web.
  var spContext = SharePointContextProvider.Current.GetSharePointContext(Context);
  //var spContext = new ClientContext("MySPDevInstance");
  //spContext.Credentials = new NetworkCredential("username", "password");
  //using (var clientContext = spContext.CreateUserClientContextForSPHost())
  // clientContext.Load(clientContext.Web, web => web.Title);
  // clientContext.ExecuteQuery();
  // Response.Write(clientContext.Web.Title);
  string contextTokenString = TokenHelper.GetContextTokenFromRequest(Request);
  if (contextTokenString != null)
  // Get context token
  contextToken = TokenHelper.ReadAndValidateContextToken(contextTokenString, Request.Url.Authority);
  // Get access token
  sharepointUrl = new Uri(Request.QueryString["SPAppWebUrl"]);
  accessToken = TokenHelper.GetAccessToken(contextToken, sharepointUrl.Authority).AccessToken;
  // Pass the access token to the button event handler.
  Button1.CommandArgument = accessToken;
  protected void Button1_Click(object sender, EventArgs e)
  // Retrieve the access token that the Page_Load method stored
  // in the button's command argument.
  string accessToken = ((Button)sender).CommandArgument;
  if (IsPostBack)
  sharepointUrl = new Uri(Request.QueryString["SPAppWebUrl"]);
  // REST/OData URL section
  string oDataUrl = "/_api/Web/lists/getbytitle('Diagrams In Idea Generator')/items?$select=Title,Diagram,SharingStatus";
  // HTTP Request and Response construction section
  HttpWebRequest request = (HttpWebRequest)HttpWebRequest.Create(sharepointUrl.ToString() + oDataUrl);
  request.Method = "GET";
  request.Accept = "application/atom+xml";
  request.ContentType = "application/atom+xml;type=entry";
  request.Headers.Add("Authorization", "Bearer " + accessToken);
  HttpWebResponse response = (HttpWebResponse)request.GetResponse();
  // Response markup parsing section
  XDocument oDataXML = XDocument.Load(response.GetResponseStream(), LoadOptions.None);
  XNamespace atom = "http://www.w3.org/2005/Atom";
  XNamespace d = "http://schemas.microsoft.com/ado/2007/08/dataservices";
  XNamespace m = "http://schemas.microsoft.com/ado/2007/08/dataservices/metadata";
  List<XElement> entries = oDataXML.Descendants(atom + "entry")
  .Elements(atom + "content")
  .Elements(m + "properties")
  .ToList();
  var entryFieldValues = from entry in entries
  select new
  Character = entry.Element(d + "Title").Value,
  Actor = entry.Element(d + "Diagram").Value,
  CastingStatus = entry.Element(d + "SharingStatus").Value
  GridView1.DataSource = entryFieldValues;
  GridView1.DataBind();
  Any ideas what I might be doing wrong

  Hi ,
  Use the below code
  Public string GetAccessToken(){
  string sharePointSiteUrlHost =  Page.Request["SPHostUrl"].Tostring();
  string AccessToken = tokenHelper.GetS2SAccessTokenWithWindowsIdentity(sharePointSiteUrlHost, Request.LogonUserIdentity);
  return accessToken;
  Than initialize the ClientCOntext with the below Method
   private static ClientContext GetClientContextWithAccessTokenString(string targetUrl, object accessToken)
              ClientContext clientContext = new ClientContext(targetUrl);
              clientContext.AuthenticationMode = ClientAuthenticationMode.Anonymous;
              clientContext.FormDigestHandlingEnabled = false;
              clientContext.ExecutingWebRequest +=
                  delegate(object oSender, WebRequestEventArgs webRequestEventArgs)
                      webRequestEventArgs.WebRequestExecutor.WebRequest.UserAgent = "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)";
                      webRequestEventArgs.WebRequestExecutor.RequestHeaders["Authorization"] =
                          "Bearer " + accessToken;
              return clientContext;
  use this clientCOntext and it will work.
  Do not use
  SharePointContextProvider
  Whenever you see a reply and if you think is helpful,Vote As Helpful! And whenever you see a reply being an answer to the question of the thread, click Mark As Answer

• Error: Load operation failed for query 'GetAuthenticationInfo'. The remote server returned an error: NotFound.

  Hello,
  I have a lightswitch web-application in development, which I need to copy from one computer to the other. I have tried doing it both through Git and by simply copying the solution and opening the project on another machine. The project builds without errors,
  but when I try to debug it, it opens a web-browser, loads to 100% and pops up an error - Load operation failed for query 'GetAuthenticationInfo'. The remote server returned an error: NotFound.
  Now, I have tried repairing Visual Studio on my machine, reinstalling .NET framework and setting  <basicAuthentication enabled="false" /> in web.config, yet it still does not run.
  When using Fiddler, it shows an error while loading the application - "HTTP/1.1 500 Internal Server Error" , which I honestly don't know what it means.
  The application uses ComponentOne and Telerik modules, but they are both installed on both machines. 
  The application does run perfectly on the original machine, but it is not working on any other one.
  Both machines are using Win 8.1 and Visual Studio 2013 Update 4.
  I have tried to look this up online, but most people's problem are when they are deploying the app, not just debugging. I would be really happy for any help with this issue.
  Thanks!

  I have the same problem on one of my development machines. Whenever I create a new project, the System.IdentityModel.Tokens.Jwt nuget package is not referenced properly. The project compiles correctly but you are not able to debug as I get the same error
  as you.
  If you open up your references and there is an error next to any of your references make sure that you correct them. In the case of the jwt reference error, I have to remove the jwt reference and then add it back from the packages folder.
  This may not be your problem but could point you in a direction?

• SharePoint List Error :[DataSource.Error] SharePoint: Request failed: The remote server returned an error: (500) Internal Server Error. (An error occurred while processing this request.)

  When I connect to the SharePoint site that contains the lists I need to build my query from , Power Query enumerates the list and displays them in the tool. I can click on the system tables and view the records but any table
  in the list I created returns this  error.
  I can connect fine with InfoPath
  [DataSource.Error] SharePoint:   Request failed: The remote server returned an error: (500) Internal Server   Error. (An error occurred while processing this request.)
  thank you for your help
  Andrew
   

  Hi Andrew. In order for us diagnose this issue, you'll need to capture some network traces using a tool such as Fiddler and share them by sending a Frown.
  To capture a trace using Fiddler, start Fiddler, enable the Tools > Fiddler Options > HTTPS > Decrypt HTTPS traffic option, start the capture, reproduce your issue, then stop and save the capture. You can find more information here.
  Once you've done that, please send a Frown through the Power Query ribbon and attach the traces.
  Thanks,
  Ehren

• The remote server returned an error: (503) Server Unavailable In SharePoint 2010.

  I created a web app with claims based authentication ,
  basiclly i follwe this blog
  http://donalconlon.wordpress.com/2010/02/23/configuring-forms-base-authentication-for-sharepoint-2010-using-iis7/
  but when i login it throws 503 error
  Server Error in '/' Application.
  The remote server returned an error: (503) Server Unavailable.
  Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.
  Exception Details: System.Net.WebException: The remote server returned an error: (503) Server Unavailable.
  Source Error:
  An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.
  Stack Trace:
  [WebException: The remote server returned an error: (503) Server Unavailable.]
  System.Net.HttpWebRequest.GetResponse() +1126
  System.ServiceModel.Channels.HttpChannelRequest.WaitForReply(TimeSpan timeout) +81
  [ServerTooBusyException: The HTTP service located at http://localhost:32843/SecurityTokenServiceApplication/securitytoken.svc is too busy. ]
  System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) +10258154
  System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) +539
  Microsoft.IdentityModel.Protocols.WSTrust.IWSTrustContract.Issue(Message message) +0
  Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst, RequestSecurityTokenResponse& rstr) +61
  Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst) +36
  Microsoft.SharePoint.SPSecurityContext.SecurityTokenForContext(Uri context, Boolean bearerToken, SecurityToken onBehalfOf, SecurityToken actAs, SecurityToken delegateTo) +26062081
  Microsoft.SharePoint.SPSecurityContext.SecurityTokenForLegacyLogin() +270
  Microsoft.SharePoint.IdentityModel.SPWindowsClaimsAuthenticationHttpModule.GetSecurityTokenFromWindowsIdentity(WindowsIdentity windowsIdentity, HttpContext httpContext) +21
  Microsoft.SharePoint.IdentityModel.SPWindowsClaimsAuthenticationHttpModule.AuthenticateRequest(Object sender, EventArgs e) +1176
  System.Web.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +80
  System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +171
  any thoughts?
  thanks in advance!
  Share Knowledge and Spread Love!

  Hi ,
  I was also facing the same issue on changing my credentials. This effects the ServiceTokenApplicationPool and other pools related to the Web applications
  To resolve this  follow these :
  1. Open IIS Manager , under Connection section you can see the Name of your site collection(as
  siteCollectionName(Username))
  2. Open SiteCollection , select Application Pools. A new window with your Web application pool names would open.
  3. Right click on web app, select Advance Setting... , under Process Model select Identity 
  4. check for Custom account , click set and enter your Credentials and click
  OK
  Atlast Refresh the IIS manager.
  Thank you.
  Under application pools Do select the ServiceTokenApplicationPool  also and follow steps 3 and 4

• The remote server returned an error: (401) Unauthorized error while using Microsoft.SharePoint.Client.dll

  I have access to sharepoint site and I have tested this by manually creating the lists and announcements in the sharepoint site.
  now the same thing when I try to do it through the c#.net code it always gives me the following :
  "An unhandled exception of type 'System.Net.WebException' occurred in
  Microsoft.SharePoint.Client.dll Additional information: The remote server returned an error:
  (401) Unauthorized."
  My code looks like below:
  string userName = "[email protected]";
  SecureString password = new SecureString();
  foreach (char c in "abc123".ToCharArray()) password.AppendChar(c);
  using (var context = new ClientContext("https://sharepoint.partners.extranet.adlabs.com/sites/UniTest"))
  context.Credentials = new SharePointOnlineCredentials(userName, password);
  context.Load(context.Web, w => w.Title);
  context.ExecuteQuery();
  Krrishna

  Hi Krrishna,
  You code is used to access SharePoint Online, if you are use SharePoint 2007, we can use SharePoint web service or custom web service to achieve your requirement. 
  Lists Web Service
  http://msdn.microsoft.com/en-us/library/lists(v=office.12).aspx
  Creating a Custom Web Service
  http://msdn.microsoft.com/en-us/library/ms464040(v=office.12).aspx
  About SharePoint 2007(MOSS 2007), you can also post it to the forum below, you will get more help and confirmed answers there.
  https://social.technet.microsoft.com/Forums/en-US/home?forum=sharepointdevelopmentlegacy
  Thanks,
  Dennis Guo
  TechNet Community Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Dennis Guo
  TechNet Community Support

• Exchange 2013 - Prevent Outlook Clients From Connecting To A CAS Server In A Different AD Site

  Hi all,
  I could really do with your help!
  We have 3 physical sites, A, B & C, with sites A & B having a really fast low latency links between them, so from an AD point of view they are 1 site.  Site C has links to both sites A & B, but the link is a lot slower.
  We have an exchange design with 3 servers (one located at each physical site) that will form a DAG spread over the 3 physical sites.  Ideally we will separate the CAS and mailbox server roles out and have them controlled by a hardware load balancer,
  however we can have both roles on the same server if required.
  What we want, is to prevent is a situation where an outlook client in site C connects to a CAS server in site A/B with the mail being hosted on a mailbox server in site C therefore traversing the network twice to get its mail.
  From doing the Microsoft training course, my understanding is that in Exchange 2013, the CAS server only proxy's the request on to the mailbox server and does not redirect the request to the CAS server in the site where the mailbox server resides.
  I have seen information online stating that a single namespace is the way to go as long as your site links/network bandwidth is good, but nothing to help with our scenario.
  Has anyone else come across this situation and how did you get round it?
  Thanks in advance :)

  Hi Johnson,
  Based on my knowledge, Outlook Client will connect to the CAS server which in local first.
  Please check whether the CAS server that in site C is healthy.
  If the CAS server in site C is healthy, please disable the CAS Load Balance for testing.
  Also found a useful blog for your reference:
  Exchange 2013 Client Access Server Role
  http://blogs.technet.com/b/exchange/archive/2013/01/25/exchange-2013-client-access-server-role.aspx
  Thanks
  Mavis
  Mavis Huang
  TechNet Community Support

• Content-Type is net being set in HTTP header. Server returns 400 Bad Request error.

  Hi,
  I am trying to access an XML WebService. This service requires the content type of the request to be set to "text/xml". As you can see in the source code, I am setting the req.ContentType property to "text/xml".
  However, this content type seems not to be added to the HTTP headers. The server returns a 400 Bad Request error as can be seen in the log.
  I've attached a System.Net.trace log and it states:
  [Public Key]
  Algorithm: RSA
  Length: 2048
  Key Blob: 30 82 01 0a 02 82 01 01 00 bc 09 30 8a 1e 03 4d 7a ea 16 d3 a8 5e d8 5b 00 c4 8a c5 9f 26 bd 7d d6 cb 8b d0 db bd 93 2d 2b 3b 84 f6 20 79 83 34 67 51 37 21 ea 56 5e 18 d8 a3 db 72 43 0e 14 77 e2 64 cb 07 b6 2a 81 c7 f5 16 dd 19 c7 d9 68 0b 3a 81 5c f0 05 c9 ed 2b 37 00 31 41 37 8b 3a 73 4a 4d ab d7 d8 87 79 35 82 01 97 e3 3c be bb 84 e5 94 bb 87 52 e3 9f b5 fb 3e 33 38 c3 eb 73 42 ee ba 1e c5 4a 33 18 a1 0d 8a d2 10 a8 c5 3....
  System.Net Information: 0 : [26780] SecureChannel#31884011 - Remote certificate was verified as valid by the user.
  System.Net Information: 0 : [26780] ConnectStream#26966483 - Sending headers
  API-VERSION: 1
  Host: test.myhost.com
  Content-Length: 329
  Expect: 100-continue
  Connection: Keep-Alive
  System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=100, StatusDescription=Continue.
  System.Net Information: 0 : [26780] Connection#3888474 - Received headers
  System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=400, StatusDescription=Bad Request.
  System.Net Information: 0 : [26780] Connection#3888474 - Received headers
  0: Content-type
  1: text/xml
  X-Debug-Token: a810dc
  X-Debug-Token-Link: /service/_profiler/a810dc
  Connection: keep-alive
  Content-Length: 3440
  Cache-Control: no-cache
  Content-Type: text/html; charset=UTF-8
  Date: Tue, 14 Apr 2015 11:07:11 GMT
  Server: Apache
  ...and here's the implementation of the web request:
  private void ButtonSend_Click(object sender, EventArgs e)
  WebHeaderCollection whCol = new WebHeaderCollection();
  whCol.Add("API-VERSION", "1");
  //whCol.Add("Content-Type", "text/xml; charset=UTF-8"); <-- That doesn't work in .NET. Content-Type has to be set on the ContentType-Property
  string msg = _textBoxReq.Text;
  HttpWebRequest req = (HttpWebRequest)WebRequest.Create(_textBoxURL.Text);
  byte[] data = Encoding.UTF8.GetBytes(msg);
  req.Method = "POST";
  req.ContentType = "text/xml; charset=UTF-8";
  req.ContentLength = data.Length;
  req.Headers = whCol;
  req.GetRequestStream().Write(data, 0, data.Length);
  string xml = "";
  try
  using (HttpWebResponse resp = (HttpWebResponse)req.GetResponse())
  using (System.IO.StreamReader sr = new System.IO.StreamReader(resp.GetResponseStream()))
  xml = sr.ReadToEnd().Trim();
  catch (WebException we)
  using (System.IO.StreamReader sr = new System.IO.StreamReader(we.Response.GetResponseStream()))
  xml = sr.ReadToEnd().Trim();
  _textBoxRes.Text = xml;
  Can anyone help?
  Thanks,
  MiRi

  Hi _MiRichter,
  Well Done!
  Thank you very much for sharing the solution to us.
  Best Regards,
  Amy Peng
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Return The remote server returned an error: (403) Forbidden error for some file types

  hi
  am using below code to get the byte array 
  byte[] myDataBuffer = client.DownloadData((new Uri(sourceUrl)));
  for source of type .txt/.jpg no problem with accessing.but the file type with .master/.wsp/.cs
  it is returning "The remote server returned an error: (403) Forbidden error for some file types" Error.how can i get rid of this.please help me
  Thanks in Advance

  Hi,
  It seems there is something wrong with your code, from your code the account and key are the same, because their appsetting name are the same.
  string account = ConfigurationManager.AppSettings["StorageAccountName"];
  //string account = CloudConfigurationManager.GetSetting("StorageAccountName");
  //string key = CloudConfigurationManager.GetSetting("StorageAccountAccessKey");
  string key = ConfigurationManager.AppSettings["StorageAccountName"];
  string connectionString = String.Format("DefaultEndpointsProtocol=https;AccountName={0};AccountKey={1}", account, key);
  return CloudStorageAccount.Parse(connectionString);
  If you use CloudConfigurationManager.GetSetting, please consider set azure project as the startup project, if not, this value will be null, this resulted in solution being started as a web project that didn't run inside the Azure emulator. Since CloudConfigurationManager.GetSetting
  tries to get setting by contacting Azure (or Azure emulator in this case), and it is not running, it returns null.
  Best Regards,
  Jambor
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Remote Server returned '530 5.7.1 Client was not authenticated'

  Hello,
  I migrating from Exchange 2007 to Exchange 2013.
  The Exchange 2007 infrastructure look like:
  -2 CAS ( Hub1 and Hub2)
  -2 MBX ( mbx1 and mbx2)
  We add Exchange 2013 in the mix
  2 CAS ( CAS-2K13-1 and CAS-2K13-2)
  2 MBX ( MBX-2K13-1 and MBX-2K13-2)
  All mailbox are curently on Exchange 2007. All inbound email pass by a SMTP Relay who forward the email to a NLB of Exchange 2013.
  The send connector (internet) forward email to the SMTP relay, and the source server are only 2K7 server.
  My problems is : if I replace the two 2K7 server from the source server for the 2K13 MBX, I receive this message:
  The following organization refuse your message: MBX-2K13-1.contoso.com
  Generation server :  MBX-2K13-2.contoso.com
  [email protected]
  MBX-2K13-1.contoso.com  
  Remote Server returned '530 5.7.1 Client was not authenticated'
  idea?

  Do you smarthost from the send connector to another SMTP gateway?
  Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.