Configuring Windows XP to use IIS w/ Kerberos

Similar Messages

• Need help on struts configuration with ColdFusion 10 using IIS

  We need help on struts configuration with ColdFusion 10 using IIS.
  Earlier we were using ColdFusion 8 with IIS 6 for one of our application.  This application internally calls struts. After upgrading to ColdFusion 10 struts calls are not loading. We get 404 error.
  In ColdFusion 8 struts were configured using  actions extension .do in IIS from this file-
  C:\ColdFusion8\runtime\lib\wsconfig\jrun_iis6.dll.
  But in ColdFusion 10 this file is not present as ColdFusion 10 uses Tomcat in place of Jrun.
  Also there is no information in ColdFusion log file.

  Duane wrote:
  doctormirabilis, Welcome to the discussion area!
  1) how can i configure the time capsule in order to operate as a remote base station synchronizing with the relay using the ethernet port?
  Configure the Time Capsule to act as a bridge (not distributing IP addresses). Also configure the Time Capsule to create an 802.11n wireless network with a unique network name (SSID). That's it.
  2) how can i avoid that my powerbook while accessing my wireless network does connect through the relay station instead of using the time capsule?
  Configure the Time Capsule to use a different network name than the WDS link between the 2 AirPort Express (AX). Configure the PowerBook to use the Time Capsule network.
  There are 2 pieces of information that you should be aware of...
  (1) None of the PowerBooks are capable of 802.11n.
  (2) The WDS link cuts your available bandwidth in half. So the wireless link to your neighbor's has a maximum potential of 27 Mbps.
  Let's for a minute assume that you have a Mac compatible with 802.11n. In your configuration the time you could take advantage of the 802.11n speed is when the Mac is sending/recieving data directly from/to the Time Capsule.
  There would be NO speed increase in Internet access. The speed of Internet access is going to be controlled by the slowest link in the path to the Internet. That is probably the connection to the ISP. The next slowest path is the WDS link to your neighbor's.
  Duane,
  I am in a similar situation, sharing internet with my neighbor. Do you think it would be plausible to hook up a vonage phone adapter to time capsule's ethernet port if time capsule is bridging from my neighbor's router in the configuration you have described? A check of my upload speed shows 1.67Mbps (powerbookG4 w/ airport extreme). Vonage reccommends 90kbps minimum upload speed. Am I going to lose some speed putting the Vonag adapter behind time capsule?
  Thank you

• Unable to login into BIP using IIS/Oc4j

  Hi ,
  we have configured SSO in OBIEE using IIS. and to configure oracle proxy for OC4J followed the steps at below url.
  http://gerardnico.com/wiki/dat/obiee/iis
  But getting the error when trying to browse the ulr
  http://localhost/xmlpserver/login.jsp
  Error: Internet Explorer cannot display the webpage
  any suggestion pls

  When I try:
  http://localhost:9704/xmlpserver/
  it direct me to BIP login page
  http://localhost
  Under Construction
  The site you are trying to view does not currently have a default page. It may be in the process of being upgraded and configured.
  Please try this site again later. If you still experience the problem, try contacting the Web site administrator.
  If you are the Web site administrator and feel you have received this message in error, please see "Enabling and Disabling Dynamic Content" in IIS Help.
  To access IIS Help
  Click Start, and then click Run.
  In the Open text box, type inetmgr. IIS Manager appears.
  From the Help menu, click Help Topics.
  Click Internet Information Services.
  http://localhost:9704
  It direct me to welcome page for OC4J
  any help please..
  when I try
  http://localhost/xmlpserver/login.jsp
  get the error please find the log:-
  12/06/12 13:36:22: [op_uri_map.c (129)]: Into op_uri_map_t::uri_map_alloc
  12/06/12 13:36:22: [op_uri_map.c (163)]: Into op_uri_map_t::uri_map_open
  12/06/12 13:36:22: [op_worker_list.c (37)]: op_worker_list_init: propfile=c:\proxy\proxy.conf p=0x010D4A60 l=0x010D24C0
  12/06/12 13:36:22: [op_worker_list.c (45)]: op_worker_list_init: numservers=1
  12/06/12 13:36:22: [op_worker_list.c (57)]: op_worker_list_init: inside loop, serverlist[0]=ias1
  12/06/12 13:36:22: [op_worker_list.c (73)]: op_worker_list_init: hostname=hrlvmdv1281.emea.hays.loc
  12/06/12 13:36:22: [op_worker_list.c (82)]: op_worker_list_init: port=9704
  12/06/12 13:36:22: [op_worker_list.c (160)]: op_worker_list_init: tablesize=3
  12/06/12 13:36:22: [op_worker_list.c (169)]: op_worker_list_init: lookuptable[0]=/xmlpserver/*, servlist[0]=ias1
  12/06/12 13:36:22: [op_worker_list.c (169)]: op_worker_list_init: lookuptable[1]=/xmlpserver oproxy.ias1.urlrule=/bioffice/*, servlist[0]=ias1
  12/06/12 13:36:22: [op_worker_list.c (169)]: op_worker_list_init: lookuptable[2]=/bioffice, servlist[0]=ias1
  12/06/12 13:36:22: [op_uri_map.c (193)]: op_uri_map_t::uri_map_open, rule map size is 3
  12/06/12 13:36:22: [op_uri_map.c (266)]: Into op_uri_map_t::uri_map_open, match rule /xmlpserver/=hrlvmdv1281.emea.hays.loc was added
  12/06/12 13:36:22: [op_uri_map.c (266)]: Into op_uri_map_t::uri_map_open, match rule /xmlpserver oproxy.ias1.urlrule=/bioffice/=hrlvmdv1281.emea.hays.loc was added
  12/06/12 13:36:22: [op_uri_map.c (301)]: Into op_uri_map_t::uri_map_open, exact rule /bioffice=hrlvmdv1281.emea.hays.loc was added
  12/06/12 13:36:22: [op_uri_map.c (313)]: Into op_uri_map_t::uri_map_open, there are 3 rules
  12/06/12 13:36:22: [op_uri_map.c (340)]: op_uri_map_t::uri_map_open, done
  12/06/12 13:36:22: [op_isapi_plugin.c (765)]: initialize_extension, success!
  12/06/12 13:36:22: [op_isapi_plugin.c (459)]: Start of HttpFilterProc
  12/06/12 13:36:22: [op_uri_map.c (363)]: Into op_uri_map_t::map_uri_to_host
  12/06/12 13:36:22: [op_uri_map.c (443)]: op_uri_map_t::map_uri_to_host, done without a match
  12/06/12 13:36:22: [op_isapi_plugin.c (553)]: HttpFilterProc [] is not a proxy url
  12/06/12 13:36:22: [op_isapi_plugin.c (459)]: Start of HttpFilterProc
  12/06/12 13:36:22: [op_uri_map.c (363)]: Into op_uri_map_t::map_uri_to_host
  12/06/12 13:36:22: [op_uri_map.c (443)]: op_uri_map_t::map_uri_to_host, done without a match
  12/06/12 13:36:22: [op_isapi_plugin.c (553)]: HttpFilterProc [] is not a proxy url
  12/06/12 13:36:22: [op_isapi_plugin.c (566)]: HttpFilterProc ==> SF_NOTIFY_LOG phase
  12/06/12 13:36:22: [op_isapi_plugin.c (566)]: HttpFilterProc ==> SF_NOTIFY_LOG phase
  12/06/12 13:36:23: [op_isapi_plugin.c (459)]: Start of HttpFilterProc
  12/06/12 13:36:23: [op_uri_map.c (363)]: Into op_uri_map_t::map_uri_to_host
  12/06/12 13:36:23: [op_uri_map.c (443)]: op_uri_map_t::map_uri_to_host, done without a match
  12/06/12 13:36:23: [op_isapi_plugin.c (553)]: HttpFilterProc [pagerror.gif] is not a proxy url
  12/06/12 13:36:23: [op_isapi_plugin.c (459)]: Start of HttpFilterProc
  12/06/12 13:36:23: [op_uri_map.c (363)]: Into op_uri_map_t::map_uri_to_host
  12/06/12 13:36:23: [op_uri_map.c (443)]: op_uri_map_t::map_uri_to_host, done without a match
  12/06/12 13:36:23: [op_isapi_plugin.c (553)]: HttpFilterProc [pagerror.gif] is not a proxy url
  12/06/12 13:36:23: [op_isapi_plugin.c (566)]: HttpFilterProc ==> SF_NOTIFY_LOG phase
  12/06/12 13:36:23: [op_isapi_plugin.c (566)]: HttpFilterProc ==> SF_NOTIFY_LOG phase

• Migration on windows server 2003 to 2012 r2 by using IIS 6.0 what are parameters are changed means supported and non suported parameters and configurations?

  In my project am going to migrate windows server 2003 to 2012 r2 by using IIS 6.0? what are the parameters are changed and what are the parameters are not supported and what are the modules need to change?
  Please give the related answer as soon as posssibule. that is more help for me?
  Thanks,
  vamsikrishna.

  1. This seems to be incomplete description.
  2. You can enable legacy technologies while installing roles and features.
  3. For application pool(s) you should consult respective developer/vendor team(s) for help.
  Regards
  Milos

• How do I set up and use IIS 7.5 in Windows 7

  I just bought a new machine and installed Windows 7 RC Ultimate and CS4 on it.
  I set up IIS (or at least I think I did) and Inetpub now shows in the directory listing, so it should be there.
  Only problem is that I cannot save any files to any site in the Inetpub directory even when logged in as administrator.
  I have to manage lots of web sites that use asp, and so need to have the Inetpub facility.
  Setting up IIS in Windows 7 is poorly documented, and seems quite complex.
  The instructions on Microsoft's technet site for accessing IIS do not work, and so I am at a loss.
  Am I to assume that the normal Dreamweaver method of storing files in inetpub/wwwroot/sitefolder is no longer valid?
  Whether or not, can anyone tell me how to set up a site in windows 7 that will run an asp site using IIS?

  http://forums.iis.net/t/1147354.aspx has the answer to providing acess to folders that are not usually accesible in Windows 7.
  Run the following command from an elevated command prompt (right click the "command prompt" icon and select "Run as Administrator").
  icacls %systemdrive%\inetpub /grant  %userdomain%\%username%:(OI)(CI)(F) /grant %userdomain%\%username%:F
  This command will add full access for your user account to the INETPUB directory.
  Now the Administrator privileges which you don't have don't matter anymore because your account and not Administrators grant you access.
  How obscure can you get?
  I assume that changing the folder name from inetpub to whatever other folder you need to access will have the same effect.
  All I have to sort out now is how to get the F12 key on my wireless keyboard to run a file when pressed in Dreamweaver - but that is another problem.

• Very simple question, how do you configure windows 8.1 to use a SF card as the default install location for software applications?

  Very simple question, how do you configure windows 8.1 to use a SD card / external drive as the default install location for software applications? Primarily interested in apps installed from the windows store. This should be available in the settings
  charm within the windows store. This must have been overlooked in the development of windows 8.1 or is a bug.
  Regards, Bill
  * update
  I've tried modifying this key and the path:
  “HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Appx”
  http://answers.microsoft.com/en-us/windows/forum/windows_8-windows_store/how-do-you-install-apps-in-windows-8-from-the/c4fbe2a8-fd3d-41c1-b9a6-6f881eed374f
  Also tried using symlinks as detailed here:
  http://social.technet.microsoft.com/Forums/windows/en-US/8eee52c2-db0f-4032-8c72-7cd999e8b41a/windows-8-apps-installing-to-secondary-drive?forum=w8itprogeneral

  Here's some links I've used to try to figure this out:
  http://social.technet.microsoft.com/Forums/windows/en-US/2dfc0cd9-7d1b-41de-abce-e03fb6a5a383/metro-apps-not-working-in-windows-8-pro-x64-after-moving-users-and-programdata-folders?forum=w8itproinstall
  http://social.technet.microsoft.com/Forums/windows/en-US/8eee52c2-db0f-4032-8c72-7cd999e8b41a/windows-8-apps-installing-to-secondary-drive?forum=w8itprogeneral
  http://social.technet.microsoft.com/Forums/windows/de-DE/f5e33ac9-beab-4b99-b3ca-7cb5e6f415e4/how-do-you-change-metro-apps-default-install-location?forum=w8itprogeneral
  Regards, Bill
  The registry method does not work with 8.1.  I found this out the hard way.  Doing it on 8.1 will leave you reinstalling the OS if you didn't do a SRP beforehand.

• Parser Error Message: It is an error to use a section registered as allowDefinition='MachineToApplication' beyond application level. This error can be caused by a virtual directory not being configured as an application in IIS.

  I've copied a .NET application from an older 2008 server running IIS 7.0.600.16386 to a newer 2008 R2 server running 7.5.7600.16385.  The .NET framework version is 4.0.30319.  I've setup an application pool and copied the wwwroot directory. 
  I've checked for nested web.config files and I've been reading a lot about converting the site to an application.  The older server running the application is still up and running and the configurations look identical.  If I convert the site to an
  application the icon changes and doesn't look like it does on the old server.  I'm new and still learning the basics of programming and publishing applications.  Can someone point me in the right direction?  I've been on google for a few days
  to no avail.  Thanks.
  Description:
  An error occurred during the processing of a configuration file required to
  service this request. Please review the specific error details below and modify
  your configuration file appropriately.
  Parser Error Message: It
  is an error to use a section registered as
  allowDefinition='MachineToApplication' beyond application level.  This error can
  be caused by a virtual directory not being configured as an application in IIS.
  Line 20:       <add path="Telerik.Web.UI.DialogHandler.aspx" type="Telerik.Web.UI.DialogHandler" verb="*" validate="false" />
  Line 21:     </httpHandlers>
  Line 22:     <authentication mode="Forms">
  Line 23:       <forms cookieless="UseCookies" loginUrl="~/AccessDenied.aspx" protection="All" name="TVHRFORMAUTH" timeout="180" slidingExpiration="true" />
  Line 24:     </authentication>

  Hi,
  I agree with Tim that we can ask for better help in the following IIS forum.
  IIS.NET forum
  http://forums.iis.net/
  Best regards,
  Frank Shen

• Configure CRS2008 to using AD and Kerberos with Java application servers.

  Hi All,
  I have configure CRS2008 to using AD and Kerberos with Java application servers. Domain Controller is installed on W2K3 Server. In addition, CRS2008 is installed on another W2k3 Server.
  I have create service account in domain controller: CMSACC
  I have create two user account: CRuser1 and CRuser2
  I have create domain group: CRSGroup
  After I had run the setspn in domain controller,I got the message at below:
  Registered ServicePrincipalNames for CN=CMSACC, OU=TEST, DC=BD, DC=com:
      BOBJCentralMS/BDMGTSRV.BD.com
  CMC Setting:
  AD Administration Name: BD\administrator
  Default AD Domain: BD.com
  Add AD Group(Domain\Group): secWinAD:CN=CRSGroup,OU=TEST,D=BD,DC=com
  Service principal name:BOBJCentralMS/CMSACCatBD.com
  I have create a WINNT folder in root directory.Moreover and save bcsLognin.conf and Krb5.ini at here.
  bscLogin.conf:
  com.businessobjects.security.jgss.initiate {
  com.sun.security.auth.module.Krb5LoginModule required;
  krb5.ini:
  [libdefaults]
  default_realm = BD.com
  dns_lookup_kdc = true
  dns_lookup_realm = true
  [realms]
  forwardable = true
  BD.com = {
  default_domain = BD.com
  kdc = BDMGTSRV.BD.com
  I have tested the Kerberos,using kinit CMSACCatBD.com password, and got error message at below:
  Exception: krb_error 41 Message stream modified (41) Message stream modified
  KrbException: Message stream modified (41)
          at sun.security.krb5.KrbKdcRep.check(KrbKdcRep.java:53)
          at sun.security.krb5.KrbAsRep.<init>(KrbAsRep.java:96)
          at sun.security.krb5.KrbAsRep.getReply(KrbAsRep.java:486)
       at sun.security.krb5.KrbAsRep.getReply(KrbAsRep.java:444)
       at sun.security.krb5.internal.tools.Kinit.sendASRequest(Kinit.java:310)
       at sun.security.krb5.internal.tools.Kinit.<init>(Kinit.java:259)
       at sun.security.krb5.internal.tools.Kinit.main(Kinit.java:106)
  My problem is failed to logon CMC and infoview and got error message at below:
  Account Information Not Recognized: Active Directory Authentication failed to log you on. Please contact your system administrator to make sure you are a member of a valid mapped group and try again. If you are not a member of the default domain, enter your user name as UserNameatDNS_DomainName, and then try again.
  Actually, I am sucessful to logon Business View manager with CRuser1. However, I fail to logon CMC and infoview and got the above error. Have you any suggestion to solve this problem?
  Ken.

  if you can logon with client tools then that should be an indication that the service account running the CMS IS working! Good news.
  So the problem is likely with the java portion (krb5/bsclogin or java options)
  If the files are in c:\winnt\ (if not copy them there) and perform c:\program files\business objects\javasdk\bin\kinit username
  then enter and password/enter again
  Probably get the same message. To note in your krb5.ini all domain info must be in CAPS (the .com appears to be in lower case)
  kinit works with just the krb5.ini, java SDK and AD (removing BO config and the service account from the picture). Once that works if your java options are specified properly you should be able to login to CMC/infoview.
  also 1 last point. Add udp_preference_limit = 1 to the krb5 lib defaults section
  libdefaults
  default_realm = BD.com
  dns_lookup_kdc = true
  dns_lookup_realm = true
  udp_preference_limit = 1
  Regards,
  Tim

• Indexing .cfm files using Indexing Service on windows server 2008 and IIS 7.0

  Hi All,
  Anyone knows why .cfm files would not get indexed by Indexing Service on windows server 2008 and IIS 7.0.  This is a coldfusion website using Indexing Service for site search.  There are a lot of cfm pages indexed as unknown files.   Any clues on how this can be fixed?
  Thanks!

  You might try editing your registry so that *.cfm, *.cfc, and other ColdFusion related files are treated as text files by the Windows search feature.  See link below.
  http://www.dougknox.com/xp/tips/xp_bad_search.htm
  Disclaimer: I am not a Windows system admin.  You might try posting this question to a Windows specific forum.

• "Windows Setup could not configure Windows to run on this computer's hardware" error using MDT

  Good day. I am using Microsoft Deployment Toolkit to deploy images to a group of ClearCube R3080D bladed PCs. Below are the server details:
  VMware virtual server with Server 2008 R2 Enterprise Service Pack 1
  Microsoft Deployment Workbench Version 6.1.2373.0
  Management Console 3.0 Version 6.1(Build 7601: Service Pack 1)
  Windows Deployment Services Version 6.1.7600.16385
  The image I am deploying to the blades is that of Windows 7 Enterprise x64 Service Pack 1 with Office 2010 and a few other third-party applications.
  I have pushed this image to literally hundreds of blades successfully. I had a problem with one blade and found that the HDD was faulty. I RMA’d that HDD and installed the replacement. I pushed the same image to the blade and it works fine to the very end
  then I receive the error ”Windows Setup could not configure Windows to run on this computer’s hardware.”
  I have checked the BIOS configurations on this blade and they are identical to those of several known good blades. In fact, I swapped HDDs between a known good blade and the blade in question. The problem seemed to follow the HDD. Therefore, I assumed that
  ClearCube sent a faulty HDD. I had the identical problems with a second HDD from ClearCube so I’m sure that the HDD is fine.
  I have read through http://support.microsoft.com/kb/2466753 
  as well as many other questions posed by other folks and I have yet to find a good solution.
  Again, this image works on all other blades that are of the same model and the HDDs are also of the same model. I'm quite confused!
  Tony

  Tony?
  What are you doing posting the same question 5 times, within 3 hours???
  http://social.technet.microsoft.com/Forums/en-US/67f72721-da1b-42bc-b373-9064fe1a8245/windows-setup-could-not-configure-windows-to-run-on-this-computers-hardware-error-using-mdt
  http://social.technet.microsoft.com/Forums/en-US/9e7ca626-5b67-4a3f-ade0-4bac767e060f/windows-setup-could-not-configure-windows-to-run-on-this-computers-hardware-error-using-mdt
  http://social.technet.microsoft.com/Forums/en-US/8c508acc-ad40-4608-911c-fbfbc5e293fe/windows-setup-could-not-configure-windows-to-run-on-this-computers-hardware-error-using-mdthttp://social.technet.microsoft.com/Forums/en-US/a8a98fce-0ddf-4a59-ba8a-9acab7de0c5e/windows-setup-could-not-configure-windows-to-run-on-this-computers-hardware-error-using-mdt
  If this post is helpful please click "Mark for answer", thanks! Kind regards

• Network Configuration Window Freezes When USB NDIS Internet Connection Sharing and Ethernet Port Are Used Simultaneously

  Current Setup:
  Asrock Extreme 4 Z77 mobo with built-in Broadcom NetLink (TM) Gigabit Ethernet.  Windows 8 Pro. Intel i5-3570k (using onboard Intel 4000 HD Graphics).  RAID0- 2 OCZ Vertex 4's.  
  I will refer to this setup as my tower.
  The Ethernet port works fine by itself.  When I use wired tethering with my Android phone (Droid 4 running on 4.0.4 Ice Cream Sandwich), it works fine when nothing is connected into the Ethernet port in the mobo.  
  The issue arises when I try to connect both simultaneously.  The network configuration window in windows basically freezes and I cannot really navigate it without a ~60 second delay at best.  
  I would like to be able to accept the internet from my Android via a USB tether and either bridge the connection or use the internet connection sharing service to route traffic through the unused Ethernet port on the mobo (either to another computer/xbox
  or more desirably a switch/router to spread to the entire home network).  I have extensively researched the issue of Windows 8 become slow and unresponsive when I attempt to do this and I have not found anyone with the exact problem.  I am able to
  do both the MAC bridge miniport (bridge 2 connections) and Internet Connection Sharing though a Windows Vista (home premium) Laptop I have. The difference between the laptop and the tower I am try to do this on is the laptop has a WIFI and Ethernet connection
  while the tower only has the on-board Ethernet. 
  Do I have all the necessary equipment to accomplish this, or do I need to buy a PCIe WIFI card?  If so could I get away with just getting a USB WIFI dongle?
  Any help would be very appreciated. 

  I had the same problem and came here by searching.
  Per Rosengren's method solved the problem, but he didn't say how to do it, so I'll try to explain step-by-step for anyone that may venture here.
  Open Device Manager (right click on Computer > Manage > on the left side, under System Tools choose Device Manager)
  Choose the problematic device in Network Adapters (for me it's called HTC Remote NDIS based device)
  Right click on it and choose Update Driver Software...
  Click Browse my computer for driver software
  Click Let me pick from a list of device drivers
  Uncheck the box Show compatible hardware
  For the manufacturer, choose Microsoft Corporation
  Now you will have two options:
  - Remote NDIS based Internet Sharing Device
  - Remote NDIS Compatible Device
  I chose the second one and it solved the problem, but if it doesn't work you could try the other one. In my case, the driver that was being used was neither of these, but a special driver from Android SDK ADT bundle.
  Pick one and click Next. If a dialog comes up, confirm by clicking Yes.
  Wait a few seconds for the connection to restart. If it doesn't work, try disabling and reenabling USB tethering on the phone, or reconnect the USB cable.
  I should also note that I'm using a custom Android ROM on HTC Wildfire S (unofficial Cyanogenmod). If you have a stock ROM with HTC Sense, maybe this method may not work and you'll need a proprietary HTC driver.

• BOE XI 3.1 using IIS

  We are building a new BOE XI 3.1 using IIS as the web server, windows AD authentication and Kerberos for SSO.  At this point we have run into two issues: 
  1. we can't configure Windows AD authentication for the CMC login.  We would also like to use SSO, but at this point would be happy getting WIndows AD working. 
  2.  SSO does not work for the desktop tools like Universe builder or designer.  Windows AD is working but would like to get SSO working as well.
  Please let us know if you have been able to configure either of the above in the environment that I describe.
  Best Regards,
  Kevin Geiger

  I don't think any type of SSO will work with the CMC cept maybe siteminder in XI 3.1. AD will work but you will have to configure java AD due to the CMC not running on .net.
  Now our Admin guide specifically states that using java kerberos and .net kerberos is not supported on the same server (not that it won't work). It just states that. So there are no docs that show how to set these both up at the same time.
  So the doc in the previous post should help with the .net part. Where are you running the CMC? WACS? or tomcat?
  Regards,
  Tim

• Lync Mobile unable to sign in using IIS ARR

  We have a deployment which currently has no issues using an Apache reverse proxy running on Ubuntu. I am working on switching over to a supported reverse proxy, so IIS ARR is the obvious choice. I have configured IIS ARR by following the steps at:
  http://uclobby.com/2013/08/02/configuring-arr-for-lync-server/
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  When I try to sign on externally using Lync 2013 Mobile, I get a message saying "An unknown error occured". The Lync Mobile logs show the following error:
  Caused by: java.net.ConnectException: failed to connect to /xxx.xxx.xxx.xxx (port 443) after 60000ms: isConnected failed: ECONNREFUSED (Connection refused)
  I have even gone as far as opening all the ports to the IIS ARR server on the firewall and disabling Windows firewall on everything.

  To fix issue "502 - Web server received an invalid response while acting as a gateway or proxy server.", you can refer below link
  http://support.microsoft.com/kb/2455129/en-us
  it's assume reverse proxy configuration issue, please check the following things:
  Please make sure your internal web service url and external web service url are not pointed to the same FQDN.
  Verify you have update the public certifcates including lyncautodiscover URL in the SAN entries for your reverse proxy server
  Check the authenticated delegation is set to "No delegation, but clients may authenticate directly"
  Please try to enable internal access and see if it works
  If still no luck,please enable Lync server logging tool and reproduce the issues,then use snooper to analyze the log for more specific information
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
  Mai Ali | My blog: Technical

• Using IIS ARR with one Leg

  Is it supported to use IIS ARR with server with one network card ?

  This one may help.
  http://www.iis.net/learn/extensions/configuring-application-request-routing-(arr)
  I'd also ask them over here about IIS issues.
  http://forums.iis.net/
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• BO XI R2: Cannot access CMC or Admin launchpad using IIS

  Greetings,
  I've reinstalled Crystal reports to use IIS rather than tomcat apache (also havenu2019t installed any java component as a web server component) to keep in line with another crystal reports installation we have up and running (both servers are windows 2003) with Windows NT authorization configured.
  I selected default web page, when i try to access the page:
  http://crystalinstall:8080/businessobjects/enterprise115/admin/en/admin.cwr
  The message "Internet Explorer cannot display the webpage" is displayed, further diagnosis from IE9 states "Remote device or resource wonu2019t accept the connection"
  I didn't have to configure ports so left it at 80:80 as was used by Apache Tomcat previous install, so Iu2019m ruling out the port number and IIS is running and so is the Word Wide Web publishing Service (view under Central Configuration Manager).
  I don't have permission to look at the IIS settings on the working server until the infrastructure person is available.
  There were no error written in the windows event viewer.
  Within IIS manager, I can see crystalreportviewrs115 and businessobjects under the Web Sites folder.
  Is further work required to set up IIS with Crystal reports?
  Any tips or advice what might be causing this issue?
  I had this previously working under Apache Tomcat, had to uninstall due to a company rule to always use IIS for all software and never to use tomcat.
  Thanks
  Rob
  Edited by: RobWhalley on Aug 29, 2011 10:17 PM

  Nothing appears in IE on the server when I access http://localhost/
  I know IIS is running, I think it maybe to do with the default website which I can see Crystal reports but I'm not 100% they're running or which one should be.
  More will be clear when the infrastructure team are back and can allow me to compare IIS settings between servers.