Outlook 2010 "The server is unavailable" using smart card Exchange 2010
I have a XenApp 6.5 environment, that uses smart card authenication for login. All the office applications will open except for outlook. Outlook opens up and shows a prompt saying "Connecting" ...."Then server is unavailable".
If I removed the smart card authenication from the XenApp environment, User are able to open Outlook with no problem.
My question, is there something with exchange 2010 that needs to be turned on for smart card authenication?
Hi,
I suggest you remove any existing certificate-based credentials from the Credential Manager and use the
EnableSmartCard registry setting to check the result. The Outlook client may not be properly configured to work with saved smart card credentials.
Important
Follow the steps in this section carefully. Serious problems might occur if you modify the registry incorrectly. Before you modify it,
back up the registry for restoration in
case problems occur.
Remove existing certificate based credentials
The first step to prevent a PIN lockout is to delete any existing certificate based credentials that were saved by Outlook.
Open Control Panel.
Double-click Credential Manager.
See whether there is a Certificate-Based credential similar to the following:
@@BSUgiZQZ54Pf6cEtxKflWHH
Also, see whether there is a Generic credential similar to one of the following:
MS.Outlook.14:[email protected]:PUT
MS.Outlook.15:[email protected]:PUT
Note 14 indicates Outlook 2010 saved the credential and 15 indicates Outlook 2013.
If these are both present and were created or changed at the same time, they are likely smart card credentials saved from Outlook. Click the first credential to expand it and to show the details. Then, click Remove to delete the
credential from Credential Manager.
Repeat step 4 for each one of the credentials listed in step 3.
When you are finished, close Credential Manager.
Configure the EnableSmartCard registry setting
The second step to prevent a PIN lockout is to create the EnableSmartCard registry setting.
Outlook 2010
For Outlook 2010, the EnableSmartCard registry setting was introduced with the Microsoft Outlook 2010 hotfix package dated December 13, 2011 (KB2597028). We recommend that you install the most recent build of Outlook 2010. For more information
about the latest applicable updates for Outlook, click the following article number to view the article in the Microsoft Knowledge Base:
2625547 How to install the latest applicable updates for Microsoft Outlook (US English only)
To create the EnableSmartCard registry value, follow these steps:
Exit Outlook.
Start Registry Editor.
Create the following registry values at the specified locations:
Note Manually create any registry keys or values if they do not exist.
Key: HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Outlook\RPC
DWORD: EnableSmartCard
Value: 1
Exit Registry Editor.
For this question, if you need to get more information about Exchange 2010, I suggest you post the question in Exchange forum:
https://social.technet.microsoft.com/Forums/exchange/en-US/home?category=exchangeserver
Regards,
Melon Chen
TechNet Community Support
It's recommended to download and install
Configuration Analyzer Tool (OffCAT), which is developed by Microsoft Support teams. Once the tool is installed, you can run it at any time to scan for hundreds of known issues in Office
programs.
Similar Messages
-
When I configure the Outlook profile manually then receive warning "Your Automatic Reply Settings Cannot Be Displayed Because The Server Is Unavailable" when clicking "Automatic Replies (Out of Office)".
However if I use Autodiscover to configure the Outlook profile the above does not occur and "Automatic Replies (Out of Office)" works fine.
Client: Outlook 2013 Click-to-Run version 15.0.4551.1011 on Windows 7 Pro SP1.
Server: Exchange 2007 SP3 on Windows SBS 2008 SP2.Hi,
First of all, please make sure you have installed this Outlook 2013 hotfix package (December 10, 2013):
http://support.microsoft.com/kb/2825652/en-us
It may fix the issue.
If the hotfix doesn't help, please note, this problem can occur after your primary SMTP address changes. The problem occurs because your previous primary SMTP address is cached in the Windows registry under your Outlook profile and this information does
not get refreshed for 24-48 hours after the SMTP address change.
So please make sure you have configured smtp address correctly, or, we can find some workarounds from the link below:
http://support.microsoft.com/kb/2693800/en-us
Regards,
Melon Chen
TechNet Community Support -
One of our users is having problems setting replies from Outlook on his local PC. This is an SBS 2008 Server with Exchange 2007. The client PC is running Windows 8 with Outlook 2013. This issue doesn't seem to affect other users but this
is the only client with Outlook 2013.
When trying to set an automatic reply from within Outlook 2013 we get the "Your automatic reply settings cannot be displayed because the server is unavailable". Outlook seems to be connecting and working fine so connection to the server does
exist.
Trying this same operation from owa works without issue. Please let me know what we need to do to find a solution.
Thanks so much!Problem:
IMAP downloads inbox don't work after November patches.
If you install a fresh OS and O2K13 unpatched ,the IMAP works fine.
Fully patched O2K10 works fine too.
It worked for my customer until November patch Tuesday broke the IMAP sync.
Consultant opened case.
Response from Microsoft:
This is with regards to the issue faced by you due to regression caused by November security update. This is further to inform you
that fix is out and below is the download links for 32 bit and 64 bit of the office suites. You need to apply all 3 hotfix. The crash issue and IMAP issue would get resolved
immediately while the issue related to Free / Busy and OOF not getting set would take 24-36 hours to start working once the patch is
applied.
Below
are the KB articles:
Description
of the Outlook 2013 hotfix package (Outlook-x-none.msp): December 10, 2013:
http://support.microsoft.com/kb/2825652
Description
of the Word 2013 hotfix package (Word-x-none.msp): December 10, 2013:
http://support.microsoft.com/kb/2837674
Description
of the Office 2013 hotfix package ( 2013:
http://support.microsoft.com/kb/2849994
Description of the Office 2013 hotfix package ( December 10, 2013:
http://support.microsoft.com/kb/2849994
Issues that this hotfix package fixes
Consider the following scenario:
You have a SharePoint Server environment that has complex workflows.
You implement the ReceiveTimeOut registry entry to increase the global timeout to 90 seconds.
You click Open this task button to open a workflow task in Outlook 2013.
In this scenario, when you click any approval option from the popup dialog box, you receive the following error message:
This task could not be updated at this time.
When you reply or forward an email message by using inline replies, you cannot use the Close and Delete method of Outlook Visual Basic for Application. Additionally, you
receive the following error message:
Run-time error '-2147467259 (80004005)': This method can't be used with an inline response mail
item.
Consider the following scenario:
Assume that User A is located on an on-premises Exchange Server, and User B is located on Cloud.
Both the on-premises Exchange Server and the Cloud enables the Federation Trust.
User A share his own calendar to User B with Full Details permission, and send the sharing invitation to User B.
User B opens the sharing invitation from User A, click Open this Calendar, Outlook browses to the Calendar module and opens
the shared calendar.
In this scenario, the shared calendar does not show any content.
Consider the following scenario:
You install Outlook 2013 on Windows Server 2008 R2 or Windows Server 2012 with Terminal Server Role installed.
You implement the Use Cached Exchange Mode for new and Existing Outlook Profiles Group Policy settings and enable it.
In this scenario, when you open the Outlook Account Settings window, and double-click the Exchange
account, the Use Cached Exchange Mode check box is not checked in the popup dialog box.
Consider the following scenario:
You have an Exchange Server that has Public Folders.
You create the Outlook Security Settings folder under
All Public Folders.
You publish the AdminSecurityMode registry entry and set to a value of 1.
You configure Outlook 2013 to use cached mode.
In this scenario, when Outlook 2013 connects to Exchange Server, Outlook crashes.
Description of the Word 2013 hotfix package (Word-x-none.msp): December 10, 2013:
http://support.microsoft.com/kb/2837674
Assume that you open a meeting request in a separate window in Outlook 2013. When you click
Accept and then click
Send Reply Now, Outlook crashes.
Description of the Outlook 2013 hotfix package (Outlook-x-none.msp): December 10, 2013:
http://support.microsoft.com/kb/2825652
Issues that this hotfix package fixes
Assume that you have a recurring appointment that does not have a subject. You make some changes to one instance of the appointment and then save the instance. When you
try to open or delete the instance, Outlook may crash. Additionally, when you drag-and-drop one instance of the appointment to a different
time in the calendar, Outlook may crash.
When you reply or forward an email message by using inline replies, you cannot use the Close and Delete method of Outlook Visual Basic for Application. Additionally, you
receive the following error message:
Run-time error '-2147467259 (80004005)': This method can't be used with an inline response mail
item.
Consider the following scenario:
Assume that User A has a mailbox that is located on an on-premises Exchange Server, and User B has a mailbox that is located
on Cloud.
Both the on-premises Exchange Server and the Cloud enable the federation trust.
User A share his own calendar to User B with Full Details permission, and send the sharing invitation to User B.
User B opens the sharing invitation from User A, click Open this Calendar, Outlook browses to the Calendar module and opens
the shared calendar.
In this scenario, the shared calendar does not show any content.
Consider the following scenario:
You install Outlook 2013 on Windows Server 2008 R2 or Windows Server 2012 with Terminal Server Role installed.
You implement the Use Cached Exchange Mode for new and Existing Outlook Profiles Group Policy
settings and enable it.
In this scenario, when you open the Outlook Account Settings window, and double-click the Exchange
account, the Use Cached Exchange Mode check box is not checked in the popup dialog box.
Consider the following scenario:
You have an Exchange Server that has Public Folders.
You create the Outlook Security Settings folder under
All Public Folders.
You publish the AdminSecurityMode
registry entry and set to a value of 1.
You configure Outlook 2013 to use cached mode.
In this scenario, when Outlook 2013 connects to Exchange Server, Outlook crashes.
Consider the following scenario:
You have two Active Directory forests (Forest A and Forest B).
User A and User B have their mailboxes that are located on Forest A.
User A share his own calendar with User B with Full Details permission.
User B add the shared calendar and let it sync.
You move User B’s mailbox to Forest B.
In this scenario, the shared data in the shared calendar is removed every second time that User A restarts Outlook. And it is re-synced
when User A browses to the Calendar module.
Unfortunately TechNet isn't coming back, sorry folks :-(
The 3 patches above immediately fixed the issue for me!
Thanks so much! -
Hi Techys,
can you give me the suugestions for below error in sharepoint 2010.
Error: "The server is unavailable this is offline copy of the server workbook" error while opening the sharepoint library file.
User having the contribute permission.
as a admin i can open the document without any error.
user wants to open the document via online and VPN connection.
while the user seeing the document info the below error is indicationg .
Offline Copy, Work book is readonly Mode.
The server is unavailable this is offline copy of the server workbook" error while opening the sharepoint library file which was upto date.
Many Thanks,
MadhuMake sure that the user is able to access workstream from the site collection through VPN. If the user is able to access already, try to download the file locally and see if the data is getting loaded and upload again.
--Cheers -
"Server Message The Server is unavailable" with Oracle PreBuilt VM
I've downloaded and installed the Oracle Pre-Built VM for the Hands On Development located here:
http://www.oracle.com/technetwork/middleware/webcenter/portal/downloads/owcs-portalfw-vbox-284132.html
It WAS working for a while but it seems that an update to Oracle Virtual Box or the Extension pack started to cause the error intermittently at first and now I get the error all the time. When I start the severs using the VMCTL menu option I get an error in the log files. The root of the problem seems to be:
Caused by: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: 0:weblogic.common.ResourceException: Could not create pool connection. The DBMS driver exception was: IO Error: The Network Adapter could not establish the connection
at weblogic.jdbc.common.internal.JDBCUtil.wrapAndThrowResourceException(JDBCUtil.java:250)
at weblogic.jdbc.common.internal.RmiDataSource.getPoolConnection(RmiDataSource.java:352)
at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:369)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at intradoc.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:86)
at intradoc.common.ClassHelperUtils.executeIdcMethodConvertToStandardExceptions(ClassHelperUtils.java:406)
When I go into the WebLogic Server Console it shows the UCM server as "up" but when I try to access it via
http://127.0.0.1:16200/cs I get the message
=============================
Server Message_
The Server is unavailable.
Please contact the administrator of this site to report the problem.
Click here for server process administration.
===================================
If I click the link I get a http 404 error.
Everything is just as it came out of the pre-built VM with no tweaking. I've compared my network settings to a colleague who has the same VM and our network settings are exactly the same. Enable Network Adapter is checked. Attach To is set to NAT. No port forwarding is being done.
I'm running on Windows 7 with 8GB of memory in case that's important as well.The database is up. I use the VMCTL options and select the options from there. I've also tried starting the items individually just in case those scripts were messed up. Regardless of what is started or how I start it, I get the same error.
I can't emphasize enough that I downloaded this a while back and it worked. I went through the Hands On Labs in there and somewhere along the way the extension pack and then the Oracle VM got updated. It's at that point that things started misbehaving. I have since uninstalled, reinstalled, redownloaded, etc. and it just seems to be broken now. -
Not activate the iPhone 4s because the server temporarily unavailable . . What can I do?
There are 3 possible causes for this message:
1] activation server is down. Very rare occurrence but does happen.
2] iPhone is jailbroken or hacked
3] computer on which the iTunes is trying to activate the iPhone has been
used to hack or jailbreak iOS devices.
In scenario 1], retry the activation. If the server were down, it would be up in short order.
In scenarios 2] & 3], you are on your own. Google may provide some direction. Terms of Use
for this forum prohibit discussion of hacked or jailbroken iPhones. -
The server is unavailable and could not be accessed
Hello,
Our SharePoint Search stopped working on the weekend, and I still could not figure out the problem. I checked Event Viewer, and ULS Logs, they are all pointing to network issue. However, I can ping the web servers from application servers.
It does not navigate to SharePoint site though. I'm not sure what would be the problem. I read that it could be Kerberos, but it was working without any problems for a long time.
Can anyone help me please?
Context: Application 'Search_Service_Application_1', Catalog 'Portal_Content'
Details:
The server is unavailable and could not be accessed. The server is probably disconnected from the network. (0x80040d32)
The server xxxx is unavailable and could not be accessed. The server is probably disconnected from the network. Items from this server will be skipped by the crawl for the next 10 minutes
ThanksHi Danny:
I provide you three method for you, maybe you can try it.
Method 1 (recommended): Create the Local Security Authority host names that can be referenced in an NTLM authentication request.
To do this, follow these steps for all the nodes on the client computer:
Click Start, click Run, type regedit, and then click
OK.
Locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
Right-click MSV1_0, point to New, and then click
Multi-String Value.
In the Name column, type BackConnectionHostNames, and then press ENTER.
Right-click BackConnectionHostNames, and then click
Modify.
In the Value data box, type the CNAME or the DNS alias, that is used for the local shares on the computer, and then click
OK.
Exit Registry Editor, and then restart the computer.
Note Type each host name on a separate line.
Note If the BackConnectionHostNames registry entry exists as a REG_DWORD type, you have to delete the BackConnectionHostNames registry entry.
Method 2: Disable the authentication loopback check
Re-enable the behavior that exists in Windows Server 2003 by setting the DisableLoopbackCheck registry entry in the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa registry subkey to 1. To set the DisableLoopbackCheck registry entry
to 1, follow these steps on the client computer:
Click Start, click Run, type regedit, and then click
OK.
Locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Right-click Lsa, point to New, and then click
DWORD Value.
Type DisableLoopbackCheck, and then press ENTER.
Right-click DisableLoopbackCheck, and then click Modify.
In the Value data box, type 1, and then click
OK.
Exit Registry Editor.
Restart the computer.
Method 3: Check the hosts file
Remove sharepoint search server record. -
Hi all,
I have created a content source in Search service application for a particular site collection "http://spwebapp/sites".
I performed reset crawl index of Search service application and then performed a full crawl.
But i get errors on running crawl on this content source for most of the files. The error is "The server is unavailable and could not be accessed. The server is probably disconnected from the network." Though the site is accessible.
But before performing reset index the crawl was working fine on this content source. Crawl is working fine for other site collections. Only one site collection is facing this problem. Please let me know if what I can do to resolve this error.
Thanks in advance.Are you seeing any error messages in the URL related to the Gatherer? And in your content source, are there any site URLs that are no longer active or do you have any crawl rules set up that might be affecting access to the site collection?
I've seen this happen for a variety of reason, SSL issues, proxy issues, permissions issues. The Eventvwr and ULS logs should help you narrow down the real problem.
Sometimes this is an issue because the indexer and the site are sitting on the same box, you could try doing a disable loopback check to see if that resolves the issue and if it does then go through the hassle of setting up a specific LSA :
http://iedaddy.com/2009/04/sharepointdisable-loopback-check/
ieDaddy
Blog: http://iedaddy.com
Twit: @iedaddy -
Safari has just stopped opening PDF docs, it shows the message that I get on my PC when the server is unavailable etc. Foxbrowser opens them fine. Thanks I.M.
Hello kmanthie,
I just sent you a private message. If you are not sure how to check your forum messages, this post has instructions.
I worked on behalf of HP. -
im trying to update my iphone and now its saying the server is unavailable so try connecting to itunes, once this is done it then says no sim is fitted?any ideas?
Lots of ideas... starting with, try a search of the forums for the issues that are occurring.
-
Move existing Exchange 2010 server to new hardware and reinstalling Exchange 2010
Hi so as the title states I need to Install Exchange 2010 on a brand new 2008R2 Server and transfer everything from the old Exchange Server.
Couple things though.
Existing 2008R2 Server w/ Exchange 2010 is also a Domain Controller.
Exchange needs to be uninstalled completely once Exchange is setup and going on new hardware.
Existing 2008R2 Server needs to stay up and stay a domain controller.
Questions are how do I go about this step by step?
Am I going to have problems uninstalling Exchange from the Domain Controller? Will this mess up anything with the Schema?
Any how to guides would be great. New Server will of course have a different name than existing Domain Controller server.
Any questions let me know.
Thanks!Hi,
Here are the steps about moving the Exchange server to a new server which isn't a domain controller:
1.Install Exchange Server on a different computer.
2.Use Move Mailbox in the Exchange Task Wizard to move any existing mailboxes from the domain controller to the new Exchange server.
3.Rehome any public folders and roles held by the old Exchange Server computer to the new Exchange Server computer.
4.Uninstall Exchange Server from the domain controller.
http://technet.microsoft.com/en-us/library/aa997407(v=exchg.80).aspx
http://technet.microsoft.com/en-us/library/aa997060(EXCHG.80).aspx
If you have any question, please feel free to let me know.
Thanks,
Angela Shi
TechNet Community Support -
Disabling normal login and only using smart card login?
I've managed to setup login using BELPIC (Belgian Identity Card (smart card). However I can still login using username/password. Is it possible to restrict the system only using smart card login? (maybe via tweaking the authorize file?)
ThanksThe problem isn't with the provider part of the code - it has to do with security privleges. Java code running from the command line has full access to the file-system. Servlets running inside a container do not.
In order to access cryptographic keystores, the JVM must allow the servlet code to access local files (and through them, the device drivers to the crypto token). Servlet code running inside a web/application server container, by design, are restricted in their ability to access local files on the servlet container machine (other than configuration files and application code under the servlet context root).
In order to continue with my project, I had to temporarily provide the servlet full access to the machine's file-system in the java.policy file for your JVM, along the lines of the following:
grant {
permission java.security.SecurityPermission "authProvider.SunPKCS11-NSS", "getSignerPrivateKey";
I hope to go back and restrict this access so that only the specific security grants are available to the servlet to access the private key (the above is too lenient).
You will need to do something similar to your JVM's java.policy to allow the servlet to access the private key. Substitute the "authProvider.SunPKCS11-NSS" with the driver for your own token. -
How can I add the requester name in the To: field of the email generated when a Smart Card certificate is issued on his behalf.
I want to address the possibility of someone (Enrollment Agent) issuing a Smart Card certificate on behalf of a user, assign a PIN and use it without the user's knowledge.
There doesn't seem to be a way in the registry to define a variable to be used in a manner similar to the TitleArg & TitleFormat way of using %1.
Jamal Saket OSFI CanadaHi,
Thank you for your question.
I am trying to involve someone familiar with this topic to further look at this issue. There might be some time delay. Appreciate your patience.
Thank you for your understanding and support.
TechNet Subscriber Support
If you are
TechNet Subscription
user and have any feedback on our support quality, please send your feedback
here.
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
XML Signatures using Smart Cards
Hello guys,
I know this is not exactly a javacard topic, but I think this forum is where I 'll get the best replies.
We need to perform XML document signatures and verification using smart card stored certificates. The certificates are created using Microsoft Windows 2003 CA and stored in the cards using the cards' CSP.
I have a notion on the libraries that I am going to have to use:
- sun.security.pkcs11 for the smart card access,
- java.security.* for cryptography stuff (keystore, public-privateKey etc.),
- sun.security.cert.X509Certificate for the certificates,
- org.apache.xml for the xml documents.
Could you please verify that I am heading to the correct direction? I would be glad if you could suggest suitable starting points, similar scenarios etc. If you think that there is a more appropriate forum for my question please tell me so.
Thanks in advance for your help.yes you are moving towards right directiong actualy PKCS11 is a standard that is used for hardware cryptographic operations so it would be used for smart cards 2. I'll suggest u to use a wrapper and provider API given by IAIK it would help u a lot and will also ease ur work
-
I'm working on ForeFront Identity Manager 2010. I'd like to enable AD users to use Smart Cards to reset their passwords. I watched this video www.youtube.com/watch?v=b4aGLnZHZN4. From this video (minute 2), it's said that we could use smart cards to authenticate
to Self-service Password Reset instead of Q/A gate.
I looked at ForeFront Identity Manager Portal but I couldn't find where to configure to use Smart Cards for this purpose. I only found "SMS authentication gate" and "Question and Answer Gate". Can somebody help me?
Thanks,
HaiI am still interested in Clients or other Inquiries in this
Subject.
Maybe you are looking for
-
IPhone 3G and SMS Notifications
Hi, I just updated my iPhone 3G to the 3.0 firmware. I went into Settings > General > Messages and disabled auto-preview but kept "Repeat Alert" on YES. If I receive a text message while I'm away and my phone is on sleep mode, when I hit the power bu
-
Hi, im my active -active replication setup, today i'm getting the below error message , can you please help me to resolve this , 2011-06-15 13:30:09 GGS ERROR 101 Oracle GoldenGate Delivery for Oracle, REP_TAR2.prm: Must be IGNORE, DISCARD, ABEND, EX
-
Problem with the firstcup tutorial
Hi, I'm a developer that is new to Java. I walked through the "firstcup" tutorial using the netbeans 6.5.1 ide and glassfish 2.1 server. I thought I had successfuly completed all the code and xml config files. When I got to p14.html, "Building, Packa
-
Cannot find audit intersection in HFM 11.1.1.3
Hi all, CANNOT FIND AUDIT INTERSECTION FROM HFM DATAGRID more details: In order to install properly the audit intersection functionality, I've tried to follow the document "Single Sign-On and Drill-Back Setup from HFM into FDM" which, however, is int
-
This is a revenue impacting issue for out application. If customers are full screen they think our application's Upload your file" button is broken so we are being over run with support escalations for this issue. Is there a setting that we can advis