Troubleshooting OMA using SSL on Windows 2003 DC

Hi there,

I know, I shouldn't have, but it's done.  Microsoft Exchange 2003
OWA/OMA is running on a Win2k3 DC with SSL.  OWA works great, but OMA
is having a complete meltdown.

I've configured OWA to use forms-based authentication over SSL, and
even followed the KB 817379 article (Exchange ActiveSync and Outlook
Mobile Access errors occur when SSL or forms-based authentication is
required for Exchange Server 2003), and went through the elaborate
setup of duplicating the Exchange virtual directory, taking the SSL
requirement off of that, and making the registry change.  That didn't
seem to have any effect on OMA.

When accessing OMA over https, I get:

1=2E) The username/password prompt.

2=2E) Your standard .net "Server Error in '/OMA' Application." Runtime
Error Description: An application error occurred on the server... blah
blah blah... telling me to alter the web.config file to see a more
detailed error.

3=2E) When I modify the web.config file under the \OMA root directory and
make it look like:

<!-- Web.Config Configuration File -->

        <customErrors mode=3D"Off"/>

..=2E. I still don't see any different errors, but get the same exact .net
application error screen.  I even completely replaced the web.config,
and just had the entries above, and *still*, I didn't see any more
detailed errors.  I checked IE, and that's set not to give me the
simple errors, just incase.

I've also tried reinstalling .net using the aspnet_regiis.exe -i
command, as I read that it might help getting things working again,
with no luck.

In IIS, I tried using host headers, and took them off... both had no
effect.  Right now, I left the host headers on.

Here's a snippet of the logs:
2005-03-29 01:57:16 GET /oma/ - 443 -
401 2 2148074254
2005-03-29 01:57:16 GET /oma/ - 443 -
401 1 0
2005-03-29 01:57:18 GET /oma/oma.aspx - 443 domain\username
500 0 0

I looked in my event logs, but there is absolutely nothing
strange/weird looking worth mentioning.

Anyways, I'm stuck... OMA over SSL isn't working like I was hoping it
would.  Do you all have any other suggestions I can try?

Thanks very much!=20

OK... for anyone running into the same problem, I finally got it
figured out.  No website/google group had this info -- simply something
I tried out of sheer desperation... Hope you find it useful!

1.) In IIS Manager, expand your server -> application pools
2.) Right-click on ExchangeMobileBrowseApplicationPools -> Properties
3.) Click on the Identities tab
4.) Change the predefined application pool identity from the default
(network service) to the Local system account
5.) You will get a warning... say 'Yes', and OK out of everything...

You can now log into OMA configured on a Windows 2003 DC running SSL on
an alternate VDir (per KB817379).


4/25/2005 2:55:38 AM

Hi, I need to migrate my solution from sbs to std. I have 75 client, using file server, domain and exchange mailboxes. i have 2 new server with 2008 std r2 operating system. One for AD, other for Exchange 2010. Sbs server will be dismiss. Is possible migrate user account and mailboxs ? Is possible mantein the same domain name? (if not is not a problem) Have you a documents that explain step by step how to migrate ? Thank you very much Lorenzo Hi Lorenzo: By now there are thousands of references to various migration strategies listed in the various groups and els...