CAS Server Returned in Autodiscovery Information
Hi,
I’m in the process of designing a new Exchange 2013 implementation for our business and I’m trying to get my head around something that I’m hoping someone here may be able to clarify for me.
My design will consist of multiple AD sites with a single CAS and MBX (collocated) in each. In regards to autodiscovery process I understand that the autodiscovery site scope parameter will/should point Outlook to a local CAS to retrieve the autodiscover
information. However the bit I don’t understand is what CAS server/s will be returned in the autodiscovery information (XML) that Outlook will then use to connect to. Will it be a local (site where Outlook client is located) CAS server?
Please note the InternalURL for the CAS servers will be their FQDN, there is no plan to use high availability for the CAS servers.
Thanks,
Ben
Hi Winnie,
Thanks for your reply and your description on how Autodiscovery works.
I understand how Outlook connects to the Autodiscovery service, though the piece of information that I was after was in relation to WHAT information is returned in the XML file to Outlook. I presume that the URLs for all CAS’s are returned regardless of
what AD site they (CAS) are located at? If so then how does Outlook know which CAS server to connect to when it wants to talk to the mailbox server?
Thanks,
Ben
Hi,
Based on my knowledge, when the Autodiscover service connect to a CAS server successfully, an HTTPS response with an XML file would be returned. It includes the connection settings and URLs for the available Exchange services. Outlook uses the appropriate
configuration information and connection settings to connect to your Exchange messaging environment.
Generally, the Autodiscover service returns the following information to the client:
1. The user’s display name
2. Separate connection settings for internal and external connectivity
3. The location of the user’s Mailbox server
4. The URLs for various Outlook features that govern functionality such as free/busy information, Unified Messaging, and the offline address book
5. Outlook Anywhere server settings
For example, if the user in Site1 setup the Exchange account in Outlook. The Outlook would connect to CAS1 with Autodiscover service and retrieve all other services settings from CAS1 instead of CAS2 in Site2. When this user sends a service
request, the autodiscover would return service URL from CAS1. CAS1 will proxy the request to the local Exchange 2013 Mailbox server.
Regards,
Winnie Liang
TechNet Community Support
Similar Messages
-
Exchange 2013 CAS server returned '500 Message rejected'
Hi, all.
Exchange 2013 with CAS server and 2 mailbox servers. Health checks are all 100% healthy.
One of our users cannot receive email from an external user. Our CAS server keeps rejecting the message. I can trace the message and see that it did indeed hit our servers, and was rejected. But I cannot find out WHY it was rejected.
Here is the Delivery Report from the EAC:
Delivery Report for NAME ([email protected])
Failed
3/30/2015 1:41 PM <CAS servername>
The message couldn't be delivered.
[{LRT=};{LED=500 Message rejected};{FQDN=};{IP=}]
The external user gets this NDR:
<our local CAS servername> gave this error:
Message rejected
In the Diagnostic information for administrator section:
<our local CAS servername> returned '500 message rejected'
followed by the Original message headers. I think I'm looking for some more verbose logging to see what rule or configuration rejected the message. Any help would be greatly appreciated!
Thanks!
DanMy main question: how can I see what triggered my CAS server to reject this message with error 500?
Our user can receive email from other external senders ok. It seems to be just this one sender having trouble.
Our transport rules are not complex, and I see no rules that would block this sender or domain.
We use Exchange Online Protection. The message gets through EOP and hits our CAS server. The CAS server rejects the message - it never gets to the Client.
The CAS server gives the error 500 - but that's all I can find. I need a command or somewhere to look to see what triggered the 500 error.
I've posted the NDR received by the sender and scrubbed our identifying information.
Rcn.com looks like the sender's online forwarding host - the spf record for senderdomain.net points back to rcn.com. I've run an spf record check and it passes, so I do not believe that is the issue.
Here is the NDR:
From: [email protected]
To: [email protected]
Sent: Monday, March 30, 2015 1:41 PM
Subject: Undeliverable: Hello from FirstName
CAS1.our_internal_domain.local rejected your message to the following email addresses:
FirstName LastName ([email protected])
A problem occurred while delivering your message to this email address. Try sending your message again. If the problem continues, please contact your email admin.
CAS1.our_internal_domain.local gave this error:
Message rejected
Diagnostic information for administrators:
Generating server: BY1PR0501MB1112.namprd05.prod.outlook.com
[email protected]
CAS1.our_internal_domain.local
Remote Server returned '500 Message rejected'
Original message headers:
Received: from BLUPR05CA0049.namprd05.prod.outlook.com (10.141.20.19) by
BY1PR0501MB1112.namprd05.prod.outlook.com (25.160.103.146) with Microsoft
SMTP Server (TLS) id 15.1.118.21; Mon, 30 Mar 2015 17:40:54 +0000
Received: from BL2FFO11FD027.protection.gbl (2a01:111:f400:7c09::115) by
BLUPR05CA0049.outlook.office365.com (2a01:111:e400:855::19) with Microsoft
SMTP Server (TLS) id 15.1.125.19 via Frontend Transport; Mon, 30 Mar 2015
17:40:54 +0000
Received: from smtp.rcn.com (69.168.97.78) by
BL2FFO11FD027.mail.protection.outlook.com (10.173.161.106) with Microsoft
SMTP Server (TLS) id 15.1.130.10 via Frontend Transport; Mon, 30 Mar 2015
17:40:54 +0000
Return-Path: [email protected]
X_CMAE_Category: , ,
X-CNFS-Analysis: v=2.0 cv=PMSNCIWC c=1 sm=1 a=gRQJo8bc1j9+0GSSRogFxg==:17 a=NTyKUL13AAAA:8 a=ML7w5Z3_AAAA:8 a=3H5rcUylbt2uBKgiyYQA:9 a=wPNLvfGTeEIA:10 a=XQfDMMe_SRUA:10 a=SEXQnC1BqQAA:10 a=7ZjHjvgxCjAA:10 a=Wcs1mLwGzyUA:10 a=sBa8ZLUje9YA:10 a=k-GqB2yPh3IA:10
a=N4kHG9ehtKzd7-3o534A:9 a=_W_S_7VecoQA:10 a=gRQJo8bc1j9+0GSSRogFxg==:117
X-CM-Score: 0
X-Scanned-by: Cloudmark Authority Engine
X-Authed-Username: ZHAtZm1hQHJjbi5jb20=
Authentication-Results: smtp02.rcn.cmh.synacor.com
[email protected]; sender-id=neutralourdomain.com; dkim=none
(message not signed) header.d=none;ourdomain.com; dmarc=pass action=none
header.from=senderdomain.net;
Authentication-Results: smtp02.rcn.cmh.synacor.com [email protected]; spf=neutral; sender-id=neutral
Authentication-Results: smtp02.rcn.cmh.synacor.com smtp.user=sender; auth=pass (LOGIN)
Received-SPF: neutral (smtp02.rcn.cmh.synacor.com: 69.72.92.252 is neither permitted nor denied by domain of senderdomain.net)
Received: from [69.72.92.252] ([69.72.92.252:2689] helo=FirstNameLastName)
by smtp.rcn.com (envelope-from <[email protected]>)
(ecelerity 3.6.2.43620 r(Platform:3.6.2.0)) with ESMTPA
id 58/6E-17115-4AA89155; Mon, 30 Mar 2015 13:40:53 -0400
Message-ID: <011A7DBF0D954F62987032D45778AF29@FirstNameLastName>
From: FirstName LastName <[email protected]>
To: FirstName LastName <[email protected]>
Subject: Hello from FirstName
Date: Mon, 30 Mar 2015 13:40:49 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0007_01D06AEF.223E4A60"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5931
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157
X-EOPAttributedMessage: 0
Received-SPF: Pass (protection.outlook.com: domain of senderdomain.net designates
69.168.97.78 as permitted sender) receiver=protection.outlook.com;
client-ip=69.168.97.78; helo=smtp.rcn.com;
Authentication-Results: spf=pass (sender IP is 69.168.97.78)
[email protected];
X-Forefront-Antispam-Report:
CIP:69.168.97.78;CTRY:US;IPV:NLI;EFV:NLI;SFV:SKN;SFS:;DIR:INB;SFP:;SCL:-1;SRVR:BY1PR0501MB1112;H:smtp.rcn.com;FPR:;SPF:None;LANG:en;
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test:
BCL:0;PCL:0;RULEID:(601004);SRVR:BY1PR0501MB1112;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
X-OriginatorOrg: ourdomain.onmicrosoft.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Mar 2015 17:40:54.1243
(UTC)
X-MS-Exchange-CrossTenant-Id: c92ecf05-92f8-42f4-a246-24bee4988793
X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR0501MB1112
Dan -
How to Verify That I Need Another CAS Server
We have one CAS server and I am thinking we need a second and to set up some load balancing. However, mgmt wants to know what the threshold is for one CAS server before introducing a second is needed. What do I need to be measuring or can someone point
me towards some documentation of what the limits are for a single CAS server before you need a second one?Hi,
As far as I know, we can use performance monitor to check the client access server counters.
If most counters are over the expected value, we can add a new CAS server.
For more information about the proper value of the counters, you can refer to the following article:
http://technet.microsoft.com/en-us/library/ff367877(v=exchg.141).aspx
If you have any question, please feel free to let me know.
Thanks,
Angela Shi
TechNet Community Support -
Wrong Autodiscover Server returned in XML
We are trying to migrate to new Exchange 2013 CAS servers, however the autodiscover xml information they handing out still has the old server name in it
X-CalculatedBETarget: old server
X-DiagInfo: old server
X-BEServer: old server
Persistent-Auth: old server
X-FEServer: old server
When we stop the services on the old server as a test Autodiscover fails even though dns etc points to the new server, we are not seeing any other issues, owa etc all works.
If I look at CN=autodiscover in ADSI there is no mention of the old server.
We are migrating from a single server to a loadbalanced pair, what entry should we use to ensure autodiscover doesn't fail in the even one server is down?Hi Winnie, thanks for the response, in answer
Have the problematic user been moved to Exchange 2013? What’s the mailbox server version for the problematic user?
It's all the users and their mailboxes are actually on office 365, we are running hybrid mode as we have non Exchange\AD mail systems.
Please check the
Keywords
and
ServiceBindingInformationService attributes in the Service Connection Point (SCP) object in the following location of ADSIEdit:
It's not just the SCP record as non domain joined users get the same information returned when using dns to resolve autodiscover
The serviceBindingInformation is set as the dns name for the loadbalanced address of the front end servers
https://autodiscover.domain.com/autodiscover/autodiscover.xml
If you want to force all the old mailbox server users to connect to Exchange 2013 CAS server, please run the following command to have a try:
Get-ClientAccessServer | Set-ClientAccessServer -AutodiscoverServiceInternalUri
https://Exch13.domain.com/autodiscover/autodiscover.xml
Again AutodiscoverserviceInternalURI is already set to the load balanced front end server address.
https://autodiscover.domain.com/autodiscover/autodiscover.xml
Regards -
error while executing script for sharepoint online (office 365) - the remote server returned an error: (503) server unavailable.
I am creating many site collections reading records from sharepoint list using powershell in sharepoint online tenant (office 365).
Few site collections are created and then getting above error so this error record will be skipped then few succeeding record processed then again getting error.
pattern is like:
success
success
success
success
Error
success
success
success
success
success
success
error
successHi,
As it is an online environment, to troubleshoot this issue in an easier way, I suggest you contact Office 365 Support to see if there is any useful information in
the log files in the server side:
https://support.office.com/en-us/article/Contact-Office-365-for-business-support-32a17ca7-6fa0-4870-8a8d-e25ba4ccfd4b?ui=en-US&rs=en-US&ad=US
Best regards
Patrick Liang
TechNet Community Support -
Can i use same certificate on 2 different CAS Server across sites
Hi All
I have a question I have been playing with for a few days,
I have the following setup,
2 sites connected via a VPN and a DAG configured between sites.
Site 1-Head Office
2 exchange 2010 servers,
1 running CAS and Mailbox (this server is entry point to all clients for owa etc.)
1 running Hub, CAS, Mailbox. (this is the main server and a DAG Member)
We have a UNC certificate associated with all records pointing to remote access and its installed on both servers.
** Everything in this site works fine.
** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
Site 2.
1 exchange 2010 servers,
1 running Hub, CAS, Mailbox. (this is the main server for this site, a DAG Member and no entry point at this time but we intend to use it for redundancy)
** Currently all BD are on server in site 1.
** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
My questions are as follows:
1 on site 2’s the cas server can I use the same certificate I’m using onsite 1. in other words all clients currently use mail.domain.com which has an IP pointing to site 1, can I use that same certificate in site 2 and associate
it with the CAS server there? (in the event of a failover I just change the records IP)
2 All smtp traffic come through site 1, when I test moving active databases to site 2, all email stay in the ques of exchange server in site one, they don’t get delivered. (I have not set AD replication through smtp so don’t know
if this is a factor)
3 When I do set the active databases to site 2, webmail and remote services stop working, I get the infamous error when logging onto webmail, service unavailable because it’s been moved. I have read a lot about this being an internal
external url issue.
All these issues im starting to think they all interlinked, and would like some help.
CheersAnswers to your questions:
Yes. Understand that until you swap your external DNS so it points to Site 2, the mail.domain.com won't be accessed, but it will be there for when you want it to be.
AD replication is not the issue, so don't try to set it to use SMTP. If you have hub servers in both sites, your inbound Internet email should be delivered from the Site 1 hubs to the Site 2 hubs. We may need more information before we can give
you a good answer for this question. However, you may check the following TechNet article (and its links) for assistance.
http://technet.microsoft.com/en-us/library/aa998825(v=exchg.141).aspx
Web access requires that the CAS you connect to be either externally accessible and in the same site as your mailbox server, or that the CAS in the inaccessible Windows site needs to be configured as internal only and the accessible CAS needs to be configured
to proxy connections. For this, make sure you have followed the directions in the following TechNet article.
http://technet.microsoft.com/en-us/library/bb310763(v=exchg.141).aspx
HTH ... -
Hi,
Any help appreciated!!
I'm getting this error: "The remote server returned an error: (401) unauthorised when I debug a provider-hosted app. I get the error on this line:
HttpWebResponse response = (HttpWebResponse)request.GetResponse();
See code below
I created a high trust development environment following the instructions provided here:
http://msdn.microsoft.com/en-us/library/office/fp179901(v=office.15).aspx and
http://msdn.microsoft.com/library/office/fp179923
I created a provider-hosted app with the intent to:
create a SharePoint list in the appweb
Use self-signed certificate, tokenhepler.cs and sharepointcontext.cs to retrieve current user context and access on SharePoint. (No changes were made to tokenhelper.cs and sharepointcontext.cs)
retrieve list items from the SharePoint list in a button click event handler on a default.aspx of the remote web
What happens:
The app is deployed successfully to the Dev site
The SharePoint feature is deployed and activated
The default.aspx page of the remote web loads
The error (see image) is returned on clicking of the button
My environment is an on-premise SharePoint 2013 with AD and my dev box is standalone windows 8.1 running Visual Studio Professional 2013 Update 3.
The code block below is a copy of the default.aspx code-behind
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using Microsoft.SharePoint.Client;
using Microsoft.IdentityModel.S2S.Tokens;
using System.Net;
using System.IO;
using System.Xml;
using System.Data;
using System.Xml.Linq;
using System.Xml.XPath;
namespace Idea.GeneratorWeb
public partial class Default : System.Web.UI.Page
SharePointContextToken contextToken;
string accessToken;
Uri sharepointUrl;
protected void Page_PreInit(object sender, EventArgs e)
Uri redirectUrl;
switch (SharePointContextProvider.CheckRedirectionStatus(Context, out redirectUrl))
case RedirectionStatus.Ok:
return;
case RedirectionStatus.ShouldRedirect:
Response.Redirect(redirectUrl.AbsoluteUri, endResponse: true);
break;
case RedirectionStatus.CanNotRedirect:
Response.Write("An error occurred while processing your request.");
Response.End();
break;
protected void Page_Load(object sender, EventArgs e)
//// The following code gets the client context and Title property by using TokenHelper.
//// To access other properties, the app may need to request permissions on the host web.
var spContext = SharePointContextProvider.Current.GetSharePointContext(Context);
//var spContext = new ClientContext("MySPDevInstance");
//spContext.Credentials = new NetworkCredential("username", "password");
//using (var clientContext = spContext.CreateUserClientContextForSPHost())
// clientContext.Load(clientContext.Web, web => web.Title);
// clientContext.ExecuteQuery();
// Response.Write(clientContext.Web.Title);
string contextTokenString = TokenHelper.GetContextTokenFromRequest(Request);
if (contextTokenString != null)
// Get context token
contextToken = TokenHelper.ReadAndValidateContextToken(contextTokenString, Request.Url.Authority);
// Get access token
sharepointUrl = new Uri(Request.QueryString["SPAppWebUrl"]);
accessToken = TokenHelper.GetAccessToken(contextToken, sharepointUrl.Authority).AccessToken;
// Pass the access token to the button event handler.
Button1.CommandArgument = accessToken;
protected void Button1_Click(object sender, EventArgs e)
// Retrieve the access token that the Page_Load method stored
// in the button's command argument.
string accessToken = ((Button)sender).CommandArgument;
if (IsPostBack)
sharepointUrl = new Uri(Request.QueryString["SPAppWebUrl"]);
// REST/OData URL section
string oDataUrl = "/_api/Web/lists/getbytitle('Diagrams In Idea Generator')/items?$select=Title,Diagram,SharingStatus";
// HTTP Request and Response construction section
HttpWebRequest request = (HttpWebRequest)HttpWebRequest.Create(sharepointUrl.ToString() + oDataUrl);
request.Method = "GET";
request.Accept = "application/atom+xml";
request.ContentType = "application/atom+xml;type=entry";
request.Headers.Add("Authorization", "Bearer " + accessToken);
HttpWebResponse response = (HttpWebResponse)request.GetResponse();
// Response markup parsing section
XDocument oDataXML = XDocument.Load(response.GetResponseStream(), LoadOptions.None);
XNamespace atom = "http://www.w3.org/2005/Atom";
XNamespace d = "http://schemas.microsoft.com/ado/2007/08/dataservices";
XNamespace m = "http://schemas.microsoft.com/ado/2007/08/dataservices/metadata";
List<XElement> entries = oDataXML.Descendants(atom + "entry")
.Elements(atom + "content")
.Elements(m + "properties")
.ToList();
var entryFieldValues = from entry in entries
select new
Character = entry.Element(d + "Title").Value,
Actor = entry.Element(d + "Diagram").Value,
CastingStatus = entry.Element(d + "SharingStatus").Value
GridView1.DataSource = entryFieldValues;
GridView1.DataBind();
Any ideas what I might be doing wrongHi ,
Use the below code
Public string GetAccessToken(){
string sharePointSiteUrlHost = Page.Request["SPHostUrl"].Tostring();
string AccessToken = tokenHelper.GetS2SAccessTokenWithWindowsIdentity(sharePointSiteUrlHost, Request.LogonUserIdentity);
return accessToken;
Than initialize the ClientCOntext with the below Method
private static ClientContext GetClientContextWithAccessTokenString(string targetUrl, object accessToken)
ClientContext clientContext = new ClientContext(targetUrl);
clientContext.AuthenticationMode = ClientAuthenticationMode.Anonymous;
clientContext.FormDigestHandlingEnabled = false;
clientContext.ExecutingWebRequest +=
delegate(object oSender, WebRequestEventArgs webRequestEventArgs)
webRequestEventArgs.WebRequestExecutor.WebRequest.UserAgent = "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)";
webRequestEventArgs.WebRequestExecutor.RequestHeaders["Authorization"] =
"Bearer " + accessToken;
return clientContext;
use this clientCOntext and it will work.
Do not use
SharePointContextProvider
Whenever you see a reply and if you think is helpful,Vote As Helpful! And whenever you see a reply being an answer to the question of the thread, click Mark As Answer -
Hello,
I have a lightswitch web-application in development, which I need to copy from one computer to the other. I have tried doing it both through Git and by simply copying the solution and opening the project on another machine. The project builds without errors,
but when I try to debug it, it opens a web-browser, loads to 100% and pops up an error - Load operation failed for query 'GetAuthenticationInfo'. The remote server returned an error: NotFound.
Now, I have tried repairing Visual Studio on my machine, reinstalling .NET framework and setting <basicAuthentication enabled="false" /> in web.config, yet it still does not run.
When using Fiddler, it shows an error while loading the application - "HTTP/1.1 500 Internal Server Error" , which I honestly don't know what it means.
The application uses ComponentOne and Telerik modules, but they are both installed on both machines.
The application does run perfectly on the original machine, but it is not working on any other one.
Both machines are using Win 8.1 and Visual Studio 2013 Update 4.
I have tried to look this up online, but most people's problem are when they are deploying the app, not just debugging. I would be really happy for any help with this issue.
Thanks!I have the same problem on one of my development machines. Whenever I create a new project, the System.IdentityModel.Tokens.Jwt nuget package is not referenced properly. The project compiles correctly but you are not able to debug as I get the same error
as you.
If you open up your references and there is an error next to any of your references make sure that you correct them. In the case of the jwt reference error, I have to remove the jwt reference and then add it back from the packages folder.
This may not be your problem but could point you in a direction? -
When I connect to the SharePoint site that contains the lists I need to build my query from , Power Query enumerates the list and displays them in the tool. I can click on the system tables and view the records but any table
in the list I created returns this error.
I can connect fine with InfoPath
[DataSource.Error] SharePoint: Request failed: The remote server returned an error: (500) Internal Server Error. (An error occurred while processing this request.)
thank you for your help
Andrew
Hi Andrew. In order for us diagnose this issue, you'll need to capture some network traces using a tool such as Fiddler and share them by sending a Frown.
To capture a trace using Fiddler, start Fiddler, enable the Tools > Fiddler Options > HTTPS > Decrypt HTTPS traffic option, start the capture, reproduce your issue, then stop and save the capture. You can find more information here.
Once you've done that, please send a Frown through the Power Query ribbon and attach the traces.
Thanks,
Ehren -
I created a web app with claims based authentication ,
basiclly i follwe this blog
http://donalconlon.wordpress.com/2010/02/23/configuring-forms-base-authentication-for-sharepoint-2010-using-iis7/
but when i login it throws 503 error
Server Error in '/' Application.
The remote server returned an error: (503) Server Unavailable.
Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.
Exception Details: System.Net.WebException: The remote server returned an error: (503) Server Unavailable.
Source Error:
An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.
Stack Trace:
[WebException: The remote server returned an error: (503) Server Unavailable.]
System.Net.HttpWebRequest.GetResponse() +1126
System.ServiceModel.Channels.HttpChannelRequest.WaitForReply(TimeSpan timeout) +81
[ServerTooBusyException: The HTTP service located at http://localhost:32843/SecurityTokenServiceApplication/securitytoken.svc is too busy. ]
System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) +10258154
System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) +539
Microsoft.IdentityModel.Protocols.WSTrust.IWSTrustContract.Issue(Message message) +0
Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst, RequestSecurityTokenResponse& rstr) +61
Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst) +36
Microsoft.SharePoint.SPSecurityContext.SecurityTokenForContext(Uri context, Boolean bearerToken, SecurityToken onBehalfOf, SecurityToken actAs, SecurityToken delegateTo) +26062081
Microsoft.SharePoint.SPSecurityContext.SecurityTokenForLegacyLogin() +270
Microsoft.SharePoint.IdentityModel.SPWindowsClaimsAuthenticationHttpModule.GetSecurityTokenFromWindowsIdentity(WindowsIdentity windowsIdentity, HttpContext httpContext) +21
Microsoft.SharePoint.IdentityModel.SPWindowsClaimsAuthenticationHttpModule.AuthenticateRequest(Object sender, EventArgs e) +1176
System.Web.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +80
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +171
any thoughts?
thanks in advance!
Share Knowledge and Spread Love!Hi ,
I was also facing the same issue on changing my credentials. This effects the ServiceTokenApplicationPool and other pools related to the Web applications
To resolve this follow these :
1. Open IIS Manager , under Connection section you can see the Name of your site collection(as
siteCollectionName(Username))
2. Open SiteCollection , select Application Pools. A new window with your Web application pool names would open.
3. Right click on web app, select Advance Setting... , under Process Model select Identity
4. check for Custom account , click set and enter your Credentials and click
OK
Atlast Refresh the IIS manager.
Thank you.
Under application pools Do select the ServiceTokenApplicationPool also and follow steps 3 and 4 -
I have access to sharepoint site and I have tested this by manually creating the lists and announcements in the sharepoint site.
now the same thing when I try to do it through the c#.net code it always gives me the following :
"An unhandled exception of type 'System.Net.WebException' occurred in
Microsoft.SharePoint.Client.dll Additional information: The remote server returned an error:
(401) Unauthorized."
My code looks like below:
string userName = "[email protected]";
SecureString password = new SecureString();
foreach (char c in "abc123".ToCharArray()) password.AppendChar(c);
using (var context = new ClientContext("https://sharepoint.partners.extranet.adlabs.com/sites/UniTest"))
context.Credentials = new SharePointOnlineCredentials(userName, password);
context.Load(context.Web, w => w.Title);
context.ExecuteQuery();
KrrishnaHi Krrishna,
You code is used to access SharePoint Online, if you are use SharePoint 2007, we can use SharePoint web service or custom web service to achieve your requirement.
Lists Web Service
http://msdn.microsoft.com/en-us/library/lists(v=office.12).aspx
Creating a Custom Web Service
http://msdn.microsoft.com/en-us/library/ms464040(v=office.12).aspx
About SharePoint 2007(MOSS 2007), you can also post it to the forum below, you will get more help and confirmed answers there.
https://social.technet.microsoft.com/Forums/en-US/home?forum=sharepointdevelopmentlegacy
Thanks,
Dennis Guo
TechNet Community Support
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected]
Dennis Guo
TechNet Community Support -
Exchange 2013 - Prevent Outlook Clients From Connecting To A CAS Server In A Different AD Site
Hi all,
I could really do with your help!
We have 3 physical sites, A, B & C, with sites A & B having a really fast low latency links between them, so from an AD point of view they are 1 site. Site C has links to both sites A & B, but the link is a lot slower.
We have an exchange design with 3 servers (one located at each physical site) that will form a DAG spread over the 3 physical sites. Ideally we will separate the CAS and mailbox server roles out and have them controlled by a hardware load balancer,
however we can have both roles on the same server if required.
What we want, is to prevent is a situation where an outlook client in site C connects to a CAS server in site A/B with the mail being hosted on a mailbox server in site C therefore traversing the network twice to get its mail.
From doing the Microsoft training course, my understanding is that in Exchange 2013, the CAS server only proxy's the request on to the mailbox server and does not redirect the request to the CAS server in the site where the mailbox server resides.
I have seen information online stating that a single namespace is the way to go as long as your site links/network bandwidth is good, but nothing to help with our scenario.
Has anyone else come across this situation and how did you get round it?
Thanks in advance :)Hi Johnson,
Based on my knowledge, Outlook Client will connect to the CAS server which in local first.
Please check whether the CAS server that in site C is healthy.
If the CAS server in site C is healthy, please disable the CAS Load Balance for testing.
Also found a useful blog for your reference:
Exchange 2013 Client Access Server Role
http://blogs.technet.com/b/exchange/archive/2013/01/25/exchange-2013-client-access-server-role.aspx
Thanks
Mavis
Mavis Huang
TechNet Community Support -
Content-Type is net being set in HTTP header. Server returns 400 Bad Request error.
Hi,
I am trying to access an XML WebService. This service requires the content type of the request to be set to "text/xml". As you can see in the source code, I am setting the req.ContentType property to "text/xml".
However, this content type seems not to be added to the HTTP headers. The server returns a 400 Bad Request error as can be seen in the log.
I've attached a System.Net.trace log and it states:
[Public Key]
Algorithm: RSA
Length: 2048
Key Blob: 30 82 01 0a 02 82 01 01 00 bc 09 30 8a 1e 03 4d 7a ea 16 d3 a8 5e d8 5b 00 c4 8a c5 9f 26 bd 7d d6 cb 8b d0 db bd 93 2d 2b 3b 84 f6 20 79 83 34 67 51 37 21 ea 56 5e 18 d8 a3 db 72 43 0e 14 77 e2 64 cb 07 b6 2a 81 c7 f5 16 dd 19 c7 d9 68 0b 3a 81 5c f0 05 c9 ed 2b 37 00 31 41 37 8b 3a 73 4a 4d ab d7 d8 87 79 35 82 01 97 e3 3c be bb 84 e5 94 bb 87 52 e3 9f b5 fb 3e 33 38 c3 eb 73 42 ee ba 1e c5 4a 33 18 a1 0d 8a d2 10 a8 c5 3....
System.Net Information: 0 : [26780] SecureChannel#31884011 - Remote certificate was verified as valid by the user.
System.Net Information: 0 : [26780] ConnectStream#26966483 - Sending headers
API-VERSION: 1
Host: test.myhost.com
Content-Length: 329
Expect: 100-continue
Connection: Keep-Alive
System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=100, StatusDescription=Continue.
System.Net Information: 0 : [26780] Connection#3888474 - Received headers
System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=400, StatusDescription=Bad Request.
System.Net Information: 0 : [26780] Connection#3888474 - Received headers
0: Content-type
1: text/xml
X-Debug-Token: a810dc
X-Debug-Token-Link: /service/_profiler/a810dc
Connection: keep-alive
Content-Length: 3440
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Date: Tue, 14 Apr 2015 11:07:11 GMT
Server: Apache
...and here's the implementation of the web request:
private void ButtonSend_Click(object sender, EventArgs e)
WebHeaderCollection whCol = new WebHeaderCollection();
whCol.Add("API-VERSION", "1");
//whCol.Add("Content-Type", "text/xml; charset=UTF-8"); <-- That doesn't work in .NET. Content-Type has to be set on the ContentType-Property
string msg = _textBoxReq.Text;
HttpWebRequest req = (HttpWebRequest)WebRequest.Create(_textBoxURL.Text);
byte[] data = Encoding.UTF8.GetBytes(msg);
req.Method = "POST";
req.ContentType = "text/xml; charset=UTF-8";
req.ContentLength = data.Length;
req.Headers = whCol;
req.GetRequestStream().Write(data, 0, data.Length);
string xml = "";
try
using (HttpWebResponse resp = (HttpWebResponse)req.GetResponse())
using (System.IO.StreamReader sr = new System.IO.StreamReader(resp.GetResponseStream()))
xml = sr.ReadToEnd().Trim();
catch (WebException we)
using (System.IO.StreamReader sr = new System.IO.StreamReader(we.Response.GetResponseStream()))
xml = sr.ReadToEnd().Trim();
_textBoxRes.Text = xml;
Can anyone help?
Thanks,
MiRiHi _MiRichter,
Well Done!
Thank you very much for sharing the solution to us.
Best Regards,
Amy Peng
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey. -
hi
am using below code to get the byte array
byte[] myDataBuffer = client.DownloadData((new Uri(sourceUrl)));
for source of type .txt/.jpg no problem with accessing.but the file type with .master/.wsp/.cs
it is returning "The remote server returned an error: (403) Forbidden error for some file types" Error.how can i get rid of this.please help me
Thanks in AdvanceHi,
It seems there is something wrong with your code, from your code the account and key are the same, because their appsetting name are the same.
string account = ConfigurationManager.AppSettings["StorageAccountName"];
//string account = CloudConfigurationManager.GetSetting("StorageAccountName");
//string key = CloudConfigurationManager.GetSetting("StorageAccountAccessKey");
string key = ConfigurationManager.AppSettings["StorageAccountName"];
string connectionString = String.Format("DefaultEndpointsProtocol=https;AccountName={0};AccountKey={1}", account, key);
return CloudStorageAccount.Parse(connectionString);
If you use CloudConfigurationManager.GetSetting, please consider set azure project as the startup project, if not, this value will be null, this resulted in solution being started as a web project that didn't run inside the Azure emulator. Since CloudConfigurationManager.GetSetting
tries to get setting by contacting Azure (or Azure emulator in this case), and it is not running, it returns null.
Best Regards,
Jambor
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey. -
Remote Server returned '530 5.7.1 Client was not authenticated'
Hello,
I migrating from Exchange 2007 to Exchange 2013.
The Exchange 2007 infrastructure look like:
-2 CAS ( Hub1 and Hub2)
-2 MBX ( mbx1 and mbx2)
We add Exchange 2013 in the mix
2 CAS ( CAS-2K13-1 and CAS-2K13-2)
2 MBX ( MBX-2K13-1 and MBX-2K13-2)
All mailbox are curently on Exchange 2007. All inbound email pass by a SMTP Relay who forward the email to a NLB of Exchange 2013.
The send connector (internet) forward email to the SMTP relay, and the source server are only 2K7 server.
My problems is : if I replace the two 2K7 server from the source server for the 2K13 MBX, I receive this message:
The following organization refuse your message: MBX-2K13-1.contoso.com
Generation server : MBX-2K13-2.contoso.com
[email protected]
MBX-2K13-1.contoso.com
Remote Server returned '530 5.7.1 Client was not authenticated'
idea?Do you smarthost from the send connector to another SMTP gateway?
Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.
Maybe you are looking for
-
Interval Since Last Panic Report: 60371 sec Panics Since Last Report: 8 Anonymous UUID: 06ECCE65-63A8-33F9-8D38-09F5093ACCC7 Wed Sep 26 00:42:40 2012 panic(cpu 0 caller 0xffffff8012251c07): "IOGMD: not wired for the IODMA
-
Pass internal table from program to another program
hi, how do i pass an internal table from program to another program, then read it. tnx, laure
-
Document sizes and jpeg compression / quality
In relation to Photoshop, in the status bar at the bottom it displays what it calls "document sizes". Would someone be able to clarify can this be used to determin the quality of a jpeg file ? For example if I open up a jpeg with no compression (fil
-
Where can i find javax.servlet.http.httpServletRequest in weblogic jars
Hi, i'm migrating from weblogic 8 to weblogic 10.3. in my java codes, i use import javax.servlet.http.httpServletRequest. Previously this package can in found in weblogic.jar in weblogic 8. However weblogic.jar for 10.3 does not have this package. Wh
-
If your looking for a case I recommend the Belkin one..
Picked it up at Best Buy today. Its clear so you can still see the coolness of the iphone and its sturdy at the same time. The best part of it is that it doesn't make it bulky looking like some of the other cases.