Office Web Apps Server SSL Certificate

Similar Messages

• Office web apps server (2013) certificate issue

  If the name of the farm is different from the name of the individual office web apps server machine is there any way to deploy office web apps server with a single domain SSL certificate? 
  My office web apps server is working, but reporting itself unhealthy, apparently due to the fact that the SSL cert is for the name of the farm and that is different from the name of the machine. 
  Errors are 2004, 1004, 2156, 1156, "could not establish trust relationship for the SSL/TLS secure channel"
  Going to the farm's discovery URL in the browser works fine, but going to the machine name (plus /hosting/discovery) gives an SSL error because the name of the farm is not the same as the name of the machine. 
  Is there any way to make it use the farm's URL instead of the machine's URL in its own internal watchdog operations? Or any way to make it use a self signed certificate on the machine's URL for it's own health checks and still use the legitimate purchased
  SSL cert for user access? Or any other way you can think of to use a $5.99/yr single domain certificate instead of a $89.99/yr multiple domain certificate? 
  Bill Coulter

  I am experiencing this same issue.  The OWA server has sp1 installed.  In the OWA event logs I am getting health fails for 2 events and as best I can tell it seems to be related to this issue.
  We are also using a single godaddy certificate with a non machine name FQDN.  Both internal and external url's of the OWA farm are set to this same name.
  The problem only seems to occur with the 'Proofing Watchdog' (See events below).
  Has anyone got any update on whether this is supposed to be fixed ?
  <?xml version="1.0" encoding="utf-16"?>
  <HealthReport xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    <HealthMessage>ProofingWatchdog reported status for Proofing in category 'PositiveWeb'. Reported status: Spelling attempt exception for "good": System.Net.WebException: The underlying connection was closed: Could not establish
  trust relationship for the SSL/TLS secure channel. ---&gt; System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
  <?xml version="1.0" encoding="utf-16"?>
  <HealthReport xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    <HealthMessage>ProofingWatchdog reported status for Proofing in category 'NegativeWeb'. Reported status: Spelling attempt exception for "baad": System.Net.WebException: The underlying connection was closed: Could not establish
  trust relationship for the SSL/TLS secure channel. ---&gt; System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
     at System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken message, AsyncProtocolRequest asyncRequest, Exception 

• Office Web Apps Server Certificate For External

  Hi guys,
  I am requesting a DigiCert certificate for my environment Exchange 2013.
  Can I include the SAN name for Office Web Apps server, such as externalowa.domain.com in to the Exchange generated certificate?
  From theory wise it seems logic, but kind of uncertain.
  Thanks and Regards,
  Low.

  Hi Nithyanandham,
  Thanks for the prompt reply
  I will just list down what I did to be more clear.
  I generated a CSR from Exchange 2013 with the following
  Webmail.domain.com - for Outlook Web Access, Outlook Anywhere, ActiveSync
  Autodiscover.domain.com - for AutoDiscover purposes
  Can I include the externalowa.domain.com, which is for Office Web Apps server
  Reason is because the Exchange server and Office Web Apps server is located differently. Am I doing the correct way?
  Thanks and Regards,
  Low

• Office Web Apps server not working externally

  Hopefully someone with a functional OWA server can help.  When my users try to share a presentation, whiteboard, or poll as an external user or to an external user (coming through Edge), the content fails to share and this error occurs:
  "We can't connect to the server for presenting right now"
  The server functions internally fine and content shares perfectly.  The OWA server has a certificate from an internal CA and it is published through a TMG reverse proxy.  When I hit the discovery URL, it works fine and triggers the reverse proxy
  rule.  However, when I try to share content, it does not hit the rule.
  Thanks for your help!
  Jim

  Hi,
  Looks like the external lync clients can't connect the office web app server. So please check if you publish the web office app to internet correctly.
  Please refer this document about Publishing Office Web Apps Server Using a Reverse Proxy Server:
  http://technet.microsoft.com/en-us/library/jj204665.aspx
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
  Sean Xiao
  TechNet Community Support

• Office Web Apps server / Lync server 2013

  Hi I have installed a Lync 2013 Server and Office Web Apps Server. Configured Lync topology, Office Web Apps farm and certificates.
  However when i start the services i get this error message in the log saying Office Web Apps discovery failed.
  Event ID:      41033
  Description:
  Office Web Apps Server (WAC) discovery failed, PowerPoint content is disabled.
  Attempted Office Web Apps Server discovery Url:
  Received error message: Invalid Uri syntax for WAC configuration
  The number of retries: 1,
  Cause: Office Web Apps Server may be unavailable or network connectivity may have been compromised.
  Resolution:
  Check HTTPS connectivity from this box to the Office Web Apps Server deployment using the discovery Url.
  I can access the OWAS server Url from Lync Server
  Connecting to the HTTPS discovery URL is working fine, and brings up the XML-page (after i click "show all content").
  The two servers are located on the same internal network, DNS resolves fine both ways, and no firewall rules blocks any connections between the two. Can anyone please help me figure this out?
  Only identical problem found online is here (Invalid Uri syntax for WAC configuration):
  http://blogs.technet.com/b/dodeitte/archive/2012/09/10/office-web-apps-server-amp-lync-server-2013.aspx
  He resolved the problem by assigning a new OAuthTokenIssuer certificate. This however did not fix the problem in my case.
  Regards
  Sverre A. Veel

  Hi,
  In addition, please make sure you have restarted front end and office web apps server after reissuing the certificate.
  Kent Huang
  TechNet Community Support

• Using Office Web Apps Server 2013 without SharePoint, Lync, or Exchange

  I'm trying to use the Office Web Apps Server 2013 as an online viewer of Office documents (using the Online Viewer). I've set up a New-OfficeWebAppsFarm with editing disabled, no UNC paths, and an external URL with SSL Offloaded to my Load balancer.
  I don't want to use it with SharePoint, Lync or Exchange. Just use it to view documents online (similar to Google Docs Viewer).
  However, when I point the Office Web Apps Server to a remote file online (e.x. a DOC hosted on a website), I get an error opening it.
  I've checked the health statuses of my OWA Servers, and it says Healthy.
  When I check the Event viewer of my OWA Server, I see 501 WOPI errors:
  Could not contact WOPI End Point. Error details - 'NotImplemented url - https://sample-owa-url.com/oh/wopi/files/@/wFileId?wFileId=http%3A%2F%2Fwww%2Eimr%2Esandia%2Egov%2Fimrtemplate%2Edoc&access_token=1&access_token_ttl=0'.
  It seems OWA is trying to connect to the path /oh/wopi/files....  but the server is responding NotImplemented.
  What do I have to get this to work?
  Thanks for any help!

  Did you ever find an answer? I have the exact same Issue.
  I have 2 WAC servers behind a load balancer with SSL offloaded to the LB. Both servers report healthy with Get-OfficeWebAppsMachine
  Works fine with SharePoint 2013.
  When I use it with a remote file, served using HTTP with no authentication (anonymous), I get a generic "Sorry there was a problem and we can't open this document..." error.
  In the ULS and event viewer, I see the WOPI error and 501 which basically says:
  Could not contact WOPI End Point. Error details - 'NotImplemented url - https://sample-owa-url.com/oh/wopi/files/@/wFileId?wFileId=http%3A%2F%2Fwww%2Blah%2Ecom%2FWordDocument%2Edocx&access_token=1&access_token_ttl=0'.
  I also sometimes see this:
  <HealthMessage>WordViewerWfeWatchdog reported status for WebWordViewer in category 'WfeRedirect'. Reported status: /default.aspx returned a 404, which means that we didn't have where to redirect.</HealthMessage> 
  The very interesting part s that I have a dev server, with OWA (WAC) installed, thats not going through a LB and does not use SSL, that works just fine with the same public url word document.

• OWA Blank Attachment Preview with Office Web Apps Server

  Environment:  Exchange 2013 CU3 / Office Web Apps Server 2013
  OS:  Windows Server 2012 R2
  After implementing Office Web Apps server per the Integration with Exchange 2013 instructions, attachment previews in OWA show up as blank windows.  The pop up says Opening your mailbox, then goes blank.  I have the WAC endpoint configured in Exchange,
  I can access the discovery URL from the Exchange servers, and I am seeing event 142.  Some forums say that these events should be in the CAS application logs.  I am seeing mine in the Mailbox server app logs.  Has anyone seen a similar issue.
   I have also attempted to view the ULS logs on the Office Web Apps server, but I don't see anything that looks like a rendering request.  But, I also don't know what that request would look like.  The Exchange and Office Web Apps server are
  in the same network with no firewall in between them The local firewalls have also been turned off, so any type of blockage should not be the issue.

  I dont want to be happy too soon, but i think for me this did the trick:
  from time to time, this event appeared in the application eventlog:
  Source: MSExchange Certificate Deployment
  Event ID: 2005
  Task Category: General
  Level: Warning
  Keywords: Classic
  Description:
  Federation or Auth certificate not found: ED2C3E86EBE821AAC2C0DEA85CAB5787E2CAC5F3. Unable to find the certificate in the local or neighboring sites. Confirm that the certificate is available in your topology and if necessary, reset the certificate on the Federation
  Trust to a valid certificate using Set-FederationTrust or Set-AuthConfig. The certificate may take time to propagate to the local or neighboring sites.
  The solution was found here: http://community.spiceworks.com/topic/512374-missing-the-microsoft-exchange-server-auth-certificate
  1. New-ExchangeCertificate -KeySize 2048 -PrivateKeyExportable $true -SubjectName "cn= Microsoft Exchange Server Auth Certificate" -DomainName "*.yourdomain.com" -FriendlyName "Microsoft Exchange Server Auth Certificate" -Services smtp
  Do not accept to replace the SMTP certificate when prompted
  2. Note the thumbprint of the new certificate. Let us assume it is 7A39541F8DF58D4821967DD8F899B27410F7C081
  3. $a=get-date
  4. Set-AuthConfig -NewCertificateThumbprint 7A39541F8DF58D4821967DD8F899B27410F7C081 –NewCertificateEffectiveDate $a
  Accept to continue despite the fact that the certificate effective date is not 48 hours into the future
  5. Set-AuthConfig –PublishCertificate
  6. Make sure to remove any potential reference to the previous certificate (which might not exist anymore) by doing Set-AuthConfig -ClearPreviousCertificate
  Maybe this helps some of you too.

• Using Office Web Apps Server with SharePoint Foundation 2013

  I want to know whether I can configure Office Web Apps server to edit Excel documents on a SharePoint Foundation 2013 site.
  I came across a TechNet article that states that "When used together with SharePoint Server 2013, Office Web Apps Server provides updated versions of Word Web App, Excel Web App, PowerPoint Web App, and OneNote Web App".
  However, later in the same article, it states "If your organization licenses Office 2013 through a Volume Licensing program, you can enable Office Web Apps editing for SharePoint 2013 on-premises" (without mentioning Foundation or Server).

  Hi Lemesnil,
  The Office Web App server should support the Edit licenses for SharePoin Foundation 2013, Office Web App is free to
  download, you can also try installing and configuring in a test environment, see more from the below article applied to SharePoint Foundation 2013.
  http://support.microsoft.com/kb/2886404/en-us
  http://blogs.technet.com/b/speschka/archive/2012/12/31/enabling-licensing-and-editing-for-office-web-apps-in-sharepoint-2013.aspx
  Anohter useful article aobut how to license Office Web App server, you can take a look.
  http://blogs.technet.com/b/volume-licensing/archive/2013/05/22/how-to-license-office-web-apps-server.aspx
  Thanks
  Daniel Yang
  TechNet Community Support

• Installing Office Web Apps Server 2013 fails with app-crash during install.

  Hi Folks,
  I am trying to install Office Web Apps Server 2013 with SP1 on Server 2012 R2.  The installation gets half way through then crashes (it just says a problem has occurred).
  The Event log only contains the message:-
   MsiExec.exe version .5.09....
  Faulting module name: Kernelbase.dll
  Exception Code 0x306d7363, Faulting process id: 0x774.
  Does anyone know how to install this product on Server 2012 R2?

  Hi,
  I’m afraid that this case is off-topic in this forum, About installation of Office Web Apps Server 2013, I suggest you posting your case to
  SharePoint 2013 - Setup, Upgrade, Administration and Operations .
  Regards,
  Marvin
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Office 365 instead of Office Web Apps server?

  We don't have an Office Web Apps server deployed. We'd really like to share Powerpoints in Lync with the full user experience, but we don't want to install a standalone server just for Office Web Apps since we wouldn't use it for anything else.  We
  use Office 365, is there a way to use an FQDN from Office 365 and point to that in topology builder as our Office Web Apps server?  We area always loading PowerPoint from the cloud anyways.  Is there any way to get around installing a stand alone
  OWAS server?
  Thanks,
  Brandon

  No as of today I believe that with Lync server 2013 on premise you do need office web app server on premise 
  Please remember, if you see a post that helped you please click ;Vote As Helpful" and if it answered your question please click "Mark As Answer" Regards Edwin Anthony Joseph

• Office web apps "Server error in '/wv' Application"

  Hi, I successfully installed office web app for sharepoint 2013. However, when I tried to open documents, it shows the preview but once view/edit in browser, I got this error. What seems to be the problem?
  Server error in '/wv' Application.
  Unable to determine zone from request

  Hi  ,
  According to your description, my understanding is that you encountered the error “Server error in '/wv' Application. Unable to determine zone from request” when you open document using Office Web Apps.
  Are you using  https:// to access the Office Web Apps server? Is the default zone of your web application in Alternate Access Mappings using http:// ?
  If so, you can change the default zone 
  of your web application in Alternate Access Mappings to use https:// .
  Or  set AllowOAuthOverHttp to true:
  $config = (Get-SPSecurityTokenServiceConfig)
  $config.AllowOAuthOverHttp = $true
  $config.Update()
  Reference:
  http://social.technet.microsoft.com/Forums/office/en-US/de49617c-4b0a-4aa9-9877-8f085f48abc2/sharepoint-2013-sp1-and-office-web-apps-sp1-not-working-using-http?forum=sharepointadmin
  http://social.technet.microsoft.com/Forums/sharepoint/en-US/f7be5f88-8c98-464e-8596-60956b5e98fd/sharepoint-2013-office-web-apps-problem-unable-to-openviewedit?forum=sharepointgeneral
  Best Regards,
  Eric
  Eric Tao
  TechNet Community Support

• Office Web Apps Server to One Webapplication

  having a farm with 2 WebApplications -> WebApp1 and WebApp2 
  I would like to have only WebApp2 to utilize the Office Web App server and not the WebApp1 ..
  Is this possible? 

  Office Web apps gets registered to the whole farm, but you can modify the settings on all the site collections in Wb App 2 so they don't open in browser by default.  With that setting documents will open on the desktop client and not in Office Web Apps.
   Here's an article that discusses how to change the setting.
  http://technet.microsoft.com/en-us/library/ee837425(v=office.15).aspx
  Paul Stork SharePoint Server MVP
  Principal Architect: Blue Chip Consulting Group
  Blog: http://dontpapanic.com/blog
  Twitter: Follow @pstork
  Please remember to mark your question as "answered" if this solves your problem.

• Office Web Apps Server , Excel Web Apps , Error , Event ID 5226

  There is an environment of install Office Web Apps 2013 for SharePoint 2013 – with PDF Preview.
  Having been able to use it without any problems.
  One day, a preview of the Excel does not work properly.
  Error or do not know the contents of the following, a solution to solve this issue anyone?
  ERROR,
  2014/XX/XX XX:55:30,
  Excel Web App,5226,
  Unable to create or access workbook cache at
  C:\ProgramData\Microsoft\OfficeWebApps\Working\waccache\XXXX\Images.
  Excel Services Application is unable to function without a workbook cache.

  If you have not followed instructions according to the following article. You need to reconfigure office web apps for sharepoint
  http://technet.microsoft.com/en-us/library/jj966220(v=office.15).aspx 
  "Applying Office Web Apps Server updates by using the automatic updates process isn’t supported with Office Web Apps Server. This is because updates to an Office Web Apps Server must be applied in a specific way, as described in this article"

• Office Web Apps Server - Access is denied

  Hello,
  I was able to create an Office Web Apps server and was able to create a new farm for that server all without any issues, everything works great.
  Unfortunately right after creating the farm, when attempting to run any other related powershell commands such as:
  Get-OfficeWebAppsFarm
  Remove-OfficeWebAppsFarm
  I get this error in powershell:
  Get-OfficeWebAppsFarm : Access is denied.
  At line:1 char:1
  + Get-OfficeWebAppsFarm
  + ~~~~~~~~~~~~~~~~~~~~~
      + CategoryInfo          : NotSpecified: (:) [Get-OfficeWebAppsFarm], SecurityAccessDeniedException
      + FullyQualifiedErrorId : System.ServiceModel.Security.SecurityAccessDeniedException,Microsoft.Office.Web.Apps.Adm
     inistration.GetFarmCommand
  Although everything is actually working on the server, I'd like to be able to use those other commands in the future so I can check configurations, use "Remove" for running updates, etc... Unfortunately it appears as though this Access is
  denied error may interfere with those activities.
  Has anyone seen this before?
  Thank you

  Hi,
  According to your post, my understanding is that you failed to run any other related powershell commands after creating the farm for Office Web Apps server.
  If the account trying to get  OfficeWebAppsFarm does not have local admin access on the machine you will simply get an “Access is denied”.
  Please make sure you have the permission to run the commands.
  More information:
  http://www.wictorwilen.se/office-web-apps-2013-securing-your-wac-farm
  Thanks,
  Linda Li                
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Linda Li
  TechNet Community Support

• Office Web Apps Server IIS site disappeared?

  I deployed an Office Web Apps server on a dedicated VM to be used for Lync 2013. After the initial installation / set up, I confirmed the discovery URL. It worked fine.
  However, after one point in time, PowerPoint Presentations stopped working. When trying to share a PPT presentation, the Lync client popped up a message saying "Sorry, we couldn't upload <ppt file name> because we're having trouble connecting
  to the service. If this keeps happening, try contacting your support team". I've done many many Lync and Office Web Apps install myself previously, and never had a message pop up like the one I saw in this case.
  I tried going to the Web Apps discovery URL again, and it didn't get anywhere. I got on the Web Apps server and all the IIS sites were wiped.
  I tried uninstalling the Office Web Apps server and reinstalling, but from that point on, IIS sites for Web Apps just would not appear under IIS manager.
  Has anyone had similar issue with Office Web Apps?
  Thanks,
  Andrew Shin, TechNet Forum replies

  Hello,
  Maybe the windows update is active and configured to Automatically download and installed update of Office Web Apps and this behavior just breaking your setup.
  Try
  remove the farm of WAC
  Install SP1  
  and start new deployment of farm.
  Link SP1
   http://www.microsoft.com/en-us/download/details.aspx?id=42547
  How update your farm Office Web Apps
   http://technet.microsoft.com/en-us/library/jj966220(v=office.15).aspx
  Hugs[]s
  Robson Hasselhoff - Follow me @Robk9e