Exchange 2010 IIS Settings

Similar Messages

• Exchange 2010 IIS Redirect not working

  Hi, this is our first time posting. Our http to https redirects in IIS seem to not want to work. Our setup before this happened consisted of the default website redirecting to "https://webmail.lsgnet.com/owa". This worked perfectly until the
  installation of our new certificate. We have tried both the standard http redirect option under default website as well as a rule in the URL rewrite module. neither seem to want to work for redirecting to https. The HTTP redirect seems to *want* to work as
  when its enabled, it successfully points "https://webmail.lsgnet.com" to https://webmail.lsgnet.com/owa". however it will not do the same for http (worked previously this way with old cert.) We attempted to disable the http redirect and instead
  use the URL rewrite module following the instructions here: http://www.jppinto.com/2010/03/automatically-redirect-http-requests-to-https-on-iis7-using-url-rewrite-2-0/ but that doesn't work period. Bindings have been removed and re-added multiple times. Any
  help would be greatly appreciated as we have scoured google and cannot find any solutions to this nor reasons why. Thanks much.

  Hi,
  From your description, I recommend you verify the following thing for troubleshooting:
  Open IIS Manager, click Default Web Site -> OWA -> SSL Settings, please make sure "Require SSL" option is unchecked.
  What's more, here is a thread for your reference.
  Exchange 2010 http://domain.com/owa redirect to
  https://domain.com/owa
  http://social.technet.microsoft.com/Forums/en-US/7326eebc-3162-4366-84a4-ba23755686e5/exchange-2010-httpdomaincomowa-redirect-to-httpsdomaincomowa?forum=exchange2010
  Hope it helps.
  Best regards,
  Amy
  Amy Wang
  TechNet Community Support

• Exchange 2010 to 2013 Migration: Authentication/Proxy Settings Issue

  I'm in the final stages of preparing for our Exchange 2010 to 2013 migration. I'm noticing minor authentication issues on mobile devices (android & ios) and proxy setting issues with Outlook that require user intervention. In an effort to make the migration
  as smooth as possible for our internal users, I'd like to get these settings ironed out before starting the migration.
  Symptoms:
  Outlook - I'm aware that internal Outlook usage has changed its connection protocol from RCP/TCP to RCP/HTTP, but it appears that Outlook isn't updating its settings in the "Microsoft Exchange Proxy Settings" after a users mailbox has been migrated
  from 2010 to 2013. Currently, 2010 users with Outlook 2013 have the following settings configured in Outlook's Exchange Proxy Settings:
  URL to connect to my proxy server for Exchange: webmail.domain.com
  Connect using SSL only: Checked
  Only connect to proxy servers that have this principal name in their certificates: Unchecked
  On fast networks, connect using HTTP first, then connect using TCP/IP: Unchecked
  On slow networks, connect using HTTP first, then connect using TCP/IP: Checked
  After migrating a user's mailbox from 2010 to 2013, the above settings remain the same in Outlook and their client disconnects from Exchange and isn't able to reconnect. After manually enabling the checkbox for "On fast networks, connect using HTTP
  first, then connect using TCP/IP", Outlook clients are able to connect to Exchange via their newly migrated mailbox.
  Is there a way to automatically updating these 2 proxy settings in Outlook during the migration instead of having to manually change each user's configuration in Outlook?
  Android & iOS - Currently, users on Android & iOS with Exchange 2010 mailboxes have the following configuration:
  domain: blank
  username: their AD username
  server: webmail.domain.com
  After migrating a mobile users mailbox from 2010 to 2013, neither OS (Android or iOS) is able to connect due to an authentication failure. On iOS, if I manually change the domain from blank to my company's domain, authentication succeeds and their 2013 mailbox
  begins to update. On Android, the option to change the domain name from null is grayed out, requiring the user to delete the Exchange profile and re-add it with the domain name intact. Is there a way to configure Exchange 2013 to not require the domain name
  for mobile users in the same way that it's been working for us with Exchange 2010?
  Please let me know if you require cmdlet print outs of my virtual directories to help troubleshoot the issue.

  Hi,
  Generally, when the user mailbox is moved from Exchange 2010 to Exchange 2013, the Autodiscover service would detect the changes and update the new configuration automatically.
  Please make sure the autodiscover service in your new Exchange 2013 is configured correctly. We can create a new mailbox in Exchange 2013 and check whether the new Exchange 2013 user can setup account successfully in Outlook or not. If the new user works
  fine, it indicates the autodiscover service in Exchange 2013 should be proper for internal user.
  Please restart the following Exchange service to have a try:
  Microsoft Exchange RPC Client Access
  Microsoft Exchange Mailbox Replication
  Restart IIS service by running IISReset in a Command Prompt window.
  Then check whether the Outlook client can connect to Exchange 2013 or not.
  As for Android & iOS issue, I suggest we can ask a question in ActiveSync forum for more suggestion:
  https://social.technet.microsoft.com/Forums/en-US/home?forum=exchangesvrmobility
  Regards,
  Winnie Liang
  TechNet Community Support

• Exchange 2010 Virtual Directory Authentication Settings

  Is it normal for authentication settings to be different in IIS Manager and Exchange 2010 Management Console? OWA and ECP are set to forms based in EMC, but IIS shows OWA and ECP as basic = enabled and everything else = disabled. IIS shows
  OAB as windows = enabled and everything else = disabled.

  Hi,
  Here is a reference about the default IIS authentication settings and default
  Secure Sockets Layer (SSL) settings for the Client Access and Mailbox server roles:
  http://technet.microsoft.com/en-us/library/gg247612(v=exchg.141).aspx
  It is recommended to manage your Exchange virtual directories authentication settings in Exchange Management Console or Exchange Management Shell instead of IIS manager. Some authentication changes in IIS require an IIS reset. If you are using Exchange management
  tools, you will see a warning that would tell you to reset IIS if needed.
  Thanks,
  Winnie Liang
  TechNet Community Support

• Bindings in IIS on Exchange 2010 causing Test-outlookwebservices to fail on Autodiscover

  Exchange 2010 is coexisting with Sharepoint 2013 Foundation.
  Exchange 2010 have 2 internal IP's (1 for Exchange and 1 for Sharepoint).
  Under IIS we had set up binding on port 443 to 1st IP, and second IP was used to bind it to 80 port for SharePoint. That kind of configuration gave as an error for: outlookwebservices, for Autodiscover, which is logical because both IP's have an A record
  which points to servername.domain.com.
  This are our configuration for EWS internal/external URL's and AUTODISCOVER internal/external URL'S:
  EWS URL's
  InternalUrl                     :
  https://mail.domain.com/ews/exchange.asmx
  ExternalUrl                     :
  https://mail.domain.com/ews/exchange.asmx
  AUTODISCOVER URL's
  InternalUrl                     :
  https://mail.domain.com/autodiscover/autodiscover.xml
  ExternalUrl                     :
  https://mail.domain.com/autodiscover/autodiscover.xml
  This are the error messages for: Test-outlookwebservices
  RunspaceId : 5ee30248-5bec-436f-808a-c56180a8a6d9
  Id         : 1113
  Type       : Error
  Message    : When contacting
  https://SRVNAME.domain.com:443/autodiscover/autodiscover.xml received the error Unable to
                read data from the transport connection: An existing connection was forcibly closed by the remote host.
  RunspaceId : 5ee30248-5bec-436f-808a-c56180a8a6d9
  Id         : 1113
  Type       : Error
  Message    : When contacting
  https://SRVNAME.domain.com:443/autodiscover/autodiscover.xml received the error An existi
               ng connection was forcibly closed by the remote host
  The "workaround" solution, because Sharepoint only goes thru PORT 80 on this server was chosing bindings 443 to all the ips (then Test-Outlookwebservices goes thru), but doing that we are unable to use anything else on port 443 on that server in
  the future.
  I was wondering if changing InternalNLBBypassUrl in our scenario would be a possible workaround or there would be no effect on this scenario?
  Set-WebServicesVirtualDirectory -Identity "Contoso\EWS*" -InternalNLBBypassUrl
  https://mail.domain.com/ews/exchange.asmx
  With best regards,
  bostjanc

  Hi Bostjan,
  This was working fine before, Is it the first time we are facing the problem.
  Make sure that all the exchange services are started.
  Did you select the proper certificate at the Organization level and check the permission settings.
  For the Autodiscover, please access
  https://localhost/Autodiscover/Autodiscover.xml on the CAS. The 600 error code will be displayed.
  Try to find the Error by running the Below cmdlets.
  Get-ExchangeCertificate | FL
  Get-WebServicesVirtualDirectory –Server ServerName | FL
  Get-AutodiscoverVirtualDirectory –Server ServerName | FL
  Get-ClientAccessServer 
  | FL 
  Than press Ctrl+right click the Outlook icon in the System Tray, select Test E-mail AutoConfiguration, uncheck Use Guessmart and Secure Guessmart Authentication, click Test button.
  If found the problem is related to web services and basic authentication than try with the below cmdlet and the
  Link
  Set-WebServicesVirtualDirectory -identity "BOXEDUC-EXC1\EWS (Default Web Site)" -externalurl https://mail.domain.com/ews/exchange.asmx -internalurl https://mail.domain.com/ews/exchange.asmx -BasicAuthentication:$True
  Mark as Answer/Helpful Post if it helps
  Regards.
  Naren Neelam, Messaging Consultant, ITBigBang (P) Ltd Www.ITBigBang.Com | Hire Us for Messaging Consulting

• How to reinstall PowerShell Virtual Directory in IIS 7.5, Exchange 2010 SP1?

  Hi, When reinstalling CAS role, accidently removed Powershell virtual directory in IIS and also the powershell folder under ClientAccess folder. Now EMC and EMS not working, all with Kerbrose error and WinRM error. How could I restore PowerShell virtual
  directory and make it fully functional without a fully reinstall of EX2010? I tried manually add it in IIS and copy the web.config from another EX2010 server but failed. Can't access its module settings in IIS. How to recreate them? Any Powershell script(but
  not the exchange one) can do the job?

  Hello, thanks for your help so far!
  I have a similar issue. But when hitting your 2 cmdlets in powershell, I obtain the following error:
  New-PowerShellVirtualDirectory : Web object 'IIS://<FQDN Server>/W3SVC/1/ROOT' can't be found.
  At line:1 char:31
  + New-PowerShellVirtualDirectory <<<<  -Name "PowerShell" -InternalURL "http://<FQDN Server>/powershell"
      + CategoryInfo          : NotSpecified: (0:Int32) [New-PowerShellVirtualDirectory], WebObjectNotFoundException
      + FullyQualifiedErrorId : 20F775D1,Microsoft.Exchange.Management.SystemConfigurationTasks.NewPowerShellVirtualDire
     ctory
  What am I doing wrong?
  The IIS Default website is running. Server is W2008R2 SP1. Exchange 2010 SP3 
  You know you're an engineer when you have no life and can prove it mathematically

• CMD=Ping&log query is taking long time-taken when checked in IIS logs.... Exchange 2010 SP3..

  Query regarding the ActiveSync and parameter time-taken from ActiveSync IIS logs.
  Here what I see for from the logs.
  [email protected] 45.101.90.185 Apple-iPad2C3/1202.410 200 0 0 1501129
  443 [email protected] 45.101.90.185 Apple-iPad2C3/1202.410 200
  0 0 22105
  443 [email protected] 45.101.90.185 Apple-iPad2C3/1202.410 200
  0 0 452
  443 [email protected] 45.101.90.185 Apple-iPad2C3/1202.410 200
  0 0 936
  443 [email protected] 45.101.90.185 Apple-iPad2C3/1202.410 200
  0 0 656238 
  In the above log, highlighted are the time-taken and I just want to check what is the ideal time-taken value, some value above should be causing some problem, like the one of the top 1501129 ?
  ?AND I see its for POST event and CMD=Ping&log query.......
  We have Mobile Iron in the environment and we are seeing few timeout errors on MobileIron server and for users intermittently. They usually see below error... However we don't see any end users issues, but just want to get rid of below error. MobileIron guys
  are pointing it to time-taken value which is high intermittently.
  IOException connection to server [email protected] -- java.io.IOException:
  awaitUninterruptibly was stopped by timeout
  @BALA

  Hi,
  To understand more about the issue, I’d like to confirm the following information:
  1. What’s your Exchange 2010 version? 
  http://support.microsoft.com/kb/2536517/en-us
  2. Do you install other software, like SQL, on the same Exchange Server?
  3. Change another admin account to access EMS.
  Thanks,
  Angela Shi
  TechNet Community Support

• Just updated to my macbook pro to 10.8.2. ical not synching with my Exchange 2010 server. Worked flawlessly prior to the upgrade. Settings set to auto discover. I matched settings of a partner in my who is still using 10.7.1 without issues. Help!

  Just updated to my macbook pro to 10.8.2. ical not synching with my Exchange 2010 server. Worked flawlessly prior to the upgrade. Settings set to auto discover. I matched settings of a partner in my who is still using 10.7.1 without issues. Help!

  Also - my battery has been telling me "service battery" for a LONG time and then it switched to "replace soon" som time ago. Can't really see what this has to do with anything but whatever.
  That could conceivably explain all the problems you're describing. Replacing a Mac's battery should not be postponed since a failed battery will cause other problems to occur. It is also possible that its hard disk has failed, which means the information on it may soon become unrecoverable.
  ... my latest TM back up was from April 2014, can I just run this when I have rescued everthing and then it might not be as slow?
  If that Time Machine backup remains intact, it may be the only viable means of recovering that Mac's information. I suggest you do not attempt to restore its contents to your ailing Mac.
  Given that you are having trouble creating a newer Time Machine backup you should stop using that Mac immediately and have it serviced as soon as you are able. Do not take it to anyone other than Apple or a service facility authorized by Apple, for the very reasons you explained. If there are no Apple Stores in your vicinity search for an Authorized Apple Service Provider using the Contact Us link below. Use one of the options that appear under Contact Apple Support. The language on that page will be different for your location.

• 550 5.7.1 NDR's as mail volume from IIS Virtual SMTP server to Exchange 2010 increases

  We have a virtual win 2008 server that has a Virtual SMTP server running via IIS. A separate application on this server drops emails in the pickup directory to forward to our Exchange 2010 environment and this works fine. The odd issue is that as the volume
  of messages being dropped in the pickup directory increases to over around 500 per minute we see a huge increase of bounced emails ending up in badmail directory on this server. The NDR we receive from our exchange environment states the following
  550 5.7.1 Anonymous clients does not have permissions to send as this sender
  As soon as we throttle this application the issue stops. And the same emails that bounced can be resubmitted with no issues
  This particular virtual SMTP instance sends to only a handful of mailboxes in our organization, but it does send a lot of messages
  We currently have a receive connector for all internal relay servers, and this server is called out in the accepted IP range and the message rate is sent to unlimited. Here are the edited version of the details of one of the internal relay receive connectors
  on one of our hub transport servers. Is there something we have setup on the these connectors that might be causing this?
  RunspaceId                             
  : 1e06e317-da65-4916-9b2c-e1253b4b550b
  AuthMechanism                           : None
  Banner                                  :
  BinaryMimeEnabled                      
  : True
  Bindings              
                   : {0.0.0.0:25}
  ChunkingEnabled                     
     : True
  DefaultDomain                          
  DeliveryStatusNotificationEnabled      
  : True
  EightBitMimeEnabled                    
  : True
  BareLinefeedRejectionEnabled           
  : False
  DomainSecureEnabled                    
  : False
  EnhancedStatusCodesEnabled             
  : True
  LongAddressesEnabled                   
  : False
  OrarEnabled                        
      : False
  SuppressXAnonymousTls                   : False
  AdvertiseClientSettings                
  : False
  Fqdn                   
                  : HT02.corp.com
  Comment                                 :
  Enabled                                 : True
  ConnectionTimeout                       : 00:10:00
  ConnectionInactivityTimeout            
  : 00:05:00
  MessageRateLimit                        : unlimited
  MessageRateSource                       : IPAddress
  MaxInboundConnection                   
  : 5000
  MaxInboundConnectionPerSource          
  : 100
  MaxInboundConnectionPercentagePerSource : 100
  MaxHeaderSize                 
           : 64 KB (65,536 bytes)
  MaxHopCount                             : 60
  MaxLocalHopCount                       
  : 8
  MaxLogonFailures                        : 3
  MaxMessageSize                    
       : 30 MB (31,457,280 bytes)
  MaxProtocolErrors           
             : 5
  MaxRecipientsPerMessage                
  : 200
  PermissionGroups                        : AnonymousUsers
  PipeliningEnabled                      
  : True
  ProtocolLoggingLevel                   
  : Verbose
  RemoteIPRanges                          : REDACTED
  RequireEHLODomain                      
  : False
  RequireTLS                              : False
  EnableAuthGSSAPI                
         : False
  ExtendedProtectionPolicy               
  : None
  LiveCredentialEnabled                  
  : False
  TlsDomainCapabilities                  
  Server                                  : HT02
  SizeEnabled                     
         : EnabledWithoutValue
  TarpitInterval                          : 00:00:05
  MaxAcknowledgementDelay                
  : 00:00:30
  AdminDisplayName             
  ExchangeVersion          
                : 0.1 (8.0.535.0)
  Name                    
                 : Internal Relay
  DistinguishedName                       : REDACTED
  Identity                     
            : HT02\Internal Relay
  Guid                                   
  : a1f5af2e-6d53-4cb9-80b6-d19aab6879b4
  ObjectCategory                 
          : REDACTED
  ObjectClass                             : {top,msExchSmtpReceiveConnector}
  WhenChanged                    
          : 6/20/2014 11:12:17 AM
  WhenCreated                    
          : 2/18/2011 10:15:58 AM
  WhenChangedUTC                  
         : 6/20/2014 3:12:17 PM
  WhenCreatedUTC                
           : 2/18/2011 3:15:58 PM
  OrganizationId                         
  OriginatingServer                       : dc04.corp.com
  IsValid                                
  : True

  Just to clarify, this is not a pickup directory on an Exchange server but on a Windows 2008 server running an SMTP Virtual server in IIS 6.0. The problem happens only when the message volume from this server to Exchange increases to over ~500 messages a
  minute. When that happens the messages get bounced from Exchange with the following info in the NDR
  550 5.7.1 Anonymous clients does not have permissions to send as this sender
  If we resubmit all the bounce messages at a lower volume per minute we do not see the issue. I'm still working on replicating the issue now that we have logging turned up on the receive connectors.
  In addition some messages are being bounced with the following NDR message
  554 5.6.0 Invalid message content
  These messages are always between 65-70KB and have around 200 recipients
  In the Exchange receive logs for the receive connector for these messages we see the following message (with different sizing)
  A parsing error has occurred:MIME content error:
  Singletext value size
  (32781)exceeded allowed maximum
  (32768).
  The messages dropped in this pick-up  directory can be anywhere from 1KB to 10MB, so it's not that it's viewing each batch as a single email but something different with this particular email. I've tried searching for where to increase this MIME value
  but can't find out where it is stored in Exchange.

• Using IIS AAR as a reverse proxy for Exchange 2010 & Lync 2013

  hi
  i am planning to use IIS AAR as reverse proxy solution for both Exchange 2010 & Lync 2013 . need clarifications on the below.
  Is it production ready proof solution of using IIS AAR as a reverse proxy solution , if yes what is the sizing considerations for the same.
  Can we have exchange reverse proxy and lync reverse proxy on the same IIS ARR server.
  Is there any special consideration(license/certificates/cal licenses) needs to be taken care while using this solution
    4.  Deployment Guide available?

  hi steve.. thanks for reply..
  1 have gone through that.. however having both exchange & lync reverse proxy on single server is unanswered and the reason for having this in exchange forum is to have consideration from exchange prospective as well ... 
  I am also wondering this.  Can both exist on the same set of proxy servers?  I also plan to have a load balanced solution.  Has anyone had any luck with doing that?

• Exchange 2010 - deleting IIS Advanced log entries

  Hi
  I am trying to increase the free space on the system drive of our Exchange 2010 servers.  Is it OK to delete the entries in
  inetpub - Logs - Advanced Logs?
  Thanks
  J.

  Hello,
  You can also use a scheduled script:
  https://social.technet.microsoft.com/Forums/systemcenter/en-US/d989b249-0159-41fc-b78c-1f1d91ce8bb3/inetpublogslogfilesw3svc1-getting-very-large?forum=configmgrgeneral
  Thanks,
  Simon Wu
  TechNet Community Support

• Copy UM settings and prompts from Exchange 2010 to Exchange Online

  When I migrated UM from Exchange 2007 to Exchange 2010, there is a script called "MigrateUMCustomPrompts.ps1"
  that would copy over all the customized greeting files.
  We are now migrating from Exchange 2010 to Exchange Online and will be using Exchange Online UM.  Is there a similar script to copy over the files just like
  the on-prem?

  Sorry, I don't share code examples in most cases because they're generally one-off customer-specific scripts and I'm not in a position to answer lots of follow-up questions about them.
  Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

• How to set default website for exchange 2010

  I'm unable to launch the Exchange Management Console, and then I read that it's necessary to set the default web site in a particular way, in order for Exchange 2010 Management Console to work:
  http://social.technet.microsoft.com/Forums/en/exchange2010/thread/4d396628-3867-4c95-9541-e0eb021e0135
  However, after setting up Sharepoint, I see that it has modified the default website, and I'd like to ask for specific settings on how the default web site bindings should look (for exchange). Could someone please advise what I need to do to correct it?
  I'm having trouble interpreting what Mike Crowley recommends in the linked post above, in terms of actual steps to the site binding information (which won't mess up what exists).
  Currently it says:
  Type           port         ip address        binding information
  net.tcp                                            
  808:*
  net.pipe                                          
  net.msmq                                         localhost
  msmq.formatname                            localhost
  http            80             127.0.0.1
  https          443            *
  http           80              *
  https          443            127.0.0.1
  It seems the line for http on port 80 is *, which I guess is equivalent to 'all unassigned'. Is the previous http port 80 binding to 127.0.0.1 causing the problem?
  But I'm also supposed to set a Powershell VDir in IIS. Can someone provide steps for that? 

  Regarding SharePoint on Exchange:
  It was not allowed earlier, as documented here:
  http://office.microsoft.com/en-us/sharepoint-portal-server-it/coexistence-and-interoperability-guide-for-sharepoint-products-and-technologies-HA001160777.aspx & here:
  http://support.microsoft.com/kb/825505 but there doesn't seem to be anything more recent than this.  I would work under the assumption it is not supported outside of
  SBS 2011 (which I am not very familiar
  with).
  Mike Crowley
  Check out My Blog!

• Exchange 2010 is suddenly unmanageable

  Hi --
  On a SBS 2011 box running Exchange 2010 SP2, Exchange has suddenly become unmanageable. I have no idea what happened overnight to cause this. But I've been trying to get this fixed for two hours already, with no luck.
  Nobody can open OWA. From anywhere. Including from the server itself. IE network diagnostics reveal that "The device or resource (whatever) is not set up to accept connections on port "https".
  The Exchange Management Console won't open. I get the error "The attempt to connect to http://server/PowerShell using "Kerberos" authentication failed: Connecting to remote server failed with the following error message: The WinRM client cannot process the
  request. The authentication mechanism requested by the client is not supported by the server or unencrypted traffic is disabled in the service configuration. Verify the unencrypted traffic setting in the service configuration or specify one of the authentication
  mechanisms supported by the server. To use Kerberos, specify the computer name as the remote destination. Also verify that the client computer and the destination computer are joined to a domain. To use Basic, specify the computer name as the remote destination,
  specify Basic authentication and provide user name and password. Possible authentication mechanisms reported by server: For more information, see the about_Remote_Troubleshooting Help topic."
  Opening an Exchange Management Shell results in the error:
  >>>>>>>>>>>>>>>>>>>>>>>>
  VERBOSE: Connecting to server.domain.local
  [server.domain.local] Connecting to remote server failed with the following error message : The WinRM client sent a
  request to an HTTP server and got a response saying the requested HTTP URL was not available. This is usually returned
  by a HTTP server that does not support the WS-Management protocol. For more information, see the about_Remote_Troublesh
  ooting Help topic.
      + CategoryInfo          : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [], PSRemotingTransportExc
     eption
      + FullyQualifiedErrorId : PSSessionOpenFailed
  VERBOSE: Connecting to server.domain.local
  [server.domain.local] Connecting to remote server failed with the following error message : The WinRM client sent a
  request to an HTTP server and got a response saying the requested HTTP URL was not available. This is usually returned
  by a HTTP server that does not support the WS-Management protocol. For more information, see the about_Remote_Troublesh
  ooting Help topic.
      + CategoryInfo          : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [], PSRemotingTransportExc
     eption
      + FullyQualifiedErrorId : PSSessionOpenFailed
  VERBOSE: Connecting to server.domain.local
  [server.domain.local] Connecting to remote server failed with the following error message : The WinRM client sent a
  request to an HTTP server and got a response saying the requested HTTP URL was not available. This is usually returned
  by a HTTP server that does not support the WS-Management protocol. For more information, see the about_Remote_Troublesh
  ooting Help topic.
      + CategoryInfo          : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [], PSRemotingTransportExc
     eption
      + FullyQualifiedErrorId : PSSessionOpenFailed
  Failed to connect to an Exchange server in the current site.
  Enter the server FQDN where you want to connect.:
  <<<<<<<<<<<<<<<<<<<<<<<<
  I have checked and double-checked bindings, Kerberos settings, and a slew of other things. I have reset IIS and rebooted the server multiple times. I can't get past this. Everything referenced in the following articles was checked and verified to be as the
  articles said they should be:
  http://blogs.technet.com/b/bshukla/archive/2012/05/04/exchange-management-shell-error-500-internal-server-error.aspx
  http://technet.microsoft.com/en-us/library/ff607221%28v=EXCHG.80%29.aspx
  http://support.microsoft.com/kb/2028305
  I installed and ran the EMTshooter script referenced in http://blogs.technet.com/b/exchange/archive/2010/12/07/resolving-winrm-errors-and-exchange-2010-management-tools-startup-failures.aspx. This it what it reported:
  >>>>>>>>>>>>>>>>>>>>>>>>
  Welcome to the Exchange Management Troubleshooter!
  We recommend that you run the troubleshooter after making changes to
  IIS to ensure that connectivity to Exchange Powershell is unaffected.
  Checking IIS Service...
  Checking the Exchange Install Path variable...
  Checking the Powershell Virtual Directory...
  Checking the Powershell vdir SSL setting...
  Checking the Powershell vdir path setting...
  Checking HTTP Port 80...
  Checking HTTP Port 80 Host Name...
  Testing for errors...
  VERBOSE: Connecting to server.domain.local
  [server.domain.local] Connecting to remote server failed with the following error message : The WinRM client sent a r
      + CategoryInfo          : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [], PSRemotingTransportExcep
      + FullyQualifiedErrorId : PSSessionOpenFailed
  The Exchange Management Troubleshooter successfully completed connecting to:
  server.domain.local
  Failed to connect to any Exchange Server in the current site.
  Problem found:
  Looking for error...
  These are the possible causes for this error:
  1. The default http binding has been removed from the Default Web Site. Exchange Powershell needs http to be configured
  so that the IP Address is "All Unassigned", the Port is "80", and the Host Name is "".  A common scenario for changing t
  his is if you are running multiple web sites, and attempting to set up a redirect to https://mail.company.com/owa by req
  uiring SSL on the Default Web Site, and creating another web site to do the redirect back to the SSL-enabled website. Re
  mote PowerShell requires port 80 to be available on the Default Web Site for all Internet Addresses. If you want to set
  up an automatic redirect to /owa and redirect http requests to https, you should follow the instructions located at:
  http://technet.microsoft.com/en-us/library/aa998359(EXCHG.80).aspx
  and follow the directions under the section:
  "For a Configuration in Which SSL is required on the Default Web Site or on the OWA Virtual Directory in IIS 7.0."
  2. The http binding on the Default Web Site has been modified, and the Hostname field configured. To correct this issue,
   you need to clear out the Hostname field under the port 80 bindings on the Default Web Site.
  After each error is resolved, close this window and re-run the tool to check for additional problems.
  <<<<<<<<<<<<<<<<<<<<<<<<
  However, the bindings on the Default Web site are correct (I've checked them multiple times).
  And the server's System, Security and Application logs are devoid of anything that could even begin to explain what is going on.
  And this was all working yesterday ...
  I have automatic replies to modify/remove and have no way to get to them. Outlook on the PCs won't pull up Automatic Replies, claiming that the server is unavailable. On the other hand, email is coming and going fine ...
  I need to get this fixed _now_. Does anybody know how to get to the bottom of this -- and what could have possibly happened to cause this in the first place?
  Thanks
  CL

  Hi --
  C:\Users\Administrator>winrm quickconfig
  WinRM already is set up to receive requests on this machine.
  WinRM already is set up for remote management on this machine.
  C:\Users\Administrator>winrm invoke Restore winrm/Config
  Restore_OUTPUT
  C:\Users\Administrator>winrm get winrm/config
  Config
      MaxEnvelopeSizekb = 150
      MaxTimeoutms = 60000
      MaxBatchItems = 32000
      MaxProviderRequests = 4294967295
      Client
          NetworkDelayms = 5000
          URLPrefix = wsman
          AllowUnencrypted = false
          Auth
              Basic = true
              Digest = true
              Kerberos = true
              Negotiate = true
              Certificate = true
              CredSSP = false
          DefaultPorts
              HTTP = 5985
              HTTPS = 5986
          TrustedHosts
      Service
          RootSDDL = O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GWGX;;;WD)
          MaxConcurrentOperations = 4294967295
          MaxConcurrentOperationsPerUser = 15
          EnumerationTimeoutms = 60000
          MaxConnections = 25
          MaxPacketRetrievalTimeSeconds = 120
          AllowUnencrypted = false
          Auth
              Basic = false
              Kerberos = true
              Negotiate = true
              Certificate = false
              CredSSP = false
              CbtHardeningLevel = Relaxed
          DefaultPorts
              HTTP = 5985
              HTTPS = 5986
          IPv4Filter = *
          IPv6Filter = *
          EnableCompatibilityHttpListener = false
          EnableCompatibilityHttpsListener = false
          CertificateThumbprint
      Winrs
          AllowRemoteShellAccess = true
          IdleTimeout = 180000
          MaxConcurrentUsers = 5
          MaxShellRunTime = 2147483647
          MaxProcessesPerShell = 15
          MaxMemoryPerShellMB = 150
          MaxShellsPerUser = 5
  C:\Users\Administrator>winrm enumerate winrm/config/listener
  C:\Users\Administrator>netstat -aon | find ":80"
    TCP    0.0.0.0:80             0.0.0.0:0              LISTENING       4
    TCP    0.0.0.0:808            0.0.0.0:0              LISTENING       4856
    TCP    192.168.214.20:80      192.168.214.20:15979   ESTABLISHED     4
    TCP    192.168.214.20:15979   192.168.214.20:80      ESTABLISHED     6336
    TCP    192.168.214.20:15980   192.168.214.20:80      TIME_WAIT       0
    TCP    192.168.214.20:15997   192.168.214.20:8014    SYN_SENT        8528
    TCP    [::]:80                [::]:0                 LISTENING      
  4
    TCP    [::]:808               [::]:0                 LISTENING      
  4856
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15926
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15973
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15978
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15982
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15984
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15989
    TIME_WAIT       0
    TCP    [fe80::adee:f7f8:e6f6:1f35%13]:80  [fe80::adee:f7f8:e6f6:1f35%13]:15990
    TIME_WAIT       0
  C:\Users\Administrator>
  PID 4 is c:\Windows\system32\ntoskrnl.exe
  PID 6336 is DataCollectorSvc.exe
  I'm still getting all the same errors.

• Problems with OWA after installing Exchange 2010 SP3

  Hi,
  I just installed Exchange 2010 SP3 on a SBS 2011 machine. The installation completed successfully, but after the installation OWA isn't working anymore. When I browse to OWA I get the following message:
  I did a reset for the OWA vritual directory, but nothing helps..
  Stack Trace: 
  [NullReferenceException: Object reference not set to an instance of an object.]
  Microsoft.Exchange.Clients.Owa.Core.Logon..ctor() +28
  ASP.auth_logon_aspx..ctor() +17
  __ASP.FastObjectFactory_app_web_9ficbu1h.Create_ASP_auth_logon_aspx() +30
  System.Web.Compilation.BuildManager.CreateInstanceFromVirtualPath(VirtualPath virtualPath, Type requiredBaseType, HttpContext context, Boolean allowCrossApp, Boolean noAssert) +137
  System.Web.UI.PageHandlerFactory.GetHandlerHelper(HttpContext context, String requestType, VirtualPath virtualPath, String physicalPath) +49
  System.Web.MaterializeHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +424
  System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +262

  Hi Alelieveld,
  When you reset a virtual directory, the virtual directory is removed and a new virtual directory with default settings is created.
  After you reset the VD, did you restart IIS?
  For more information, please see:
  Reset Client Access Virtual Directories
  http://technet.microsoft.com/en-us/library/ff629372(v=exchg.141).aspx
  Frank Wang
  TechNet Community Support