Hello all,
I'm going to try to keep this as less confusing as possible :)
We recently just started co-existence with our 2007 Exchange servers and 2010 Exchange servers. Here is our environment:
- 1 2007 SP3 Mailbox Server
- 1 2007 SP3 CAS server
- 1 2007 SP3 HTS server
- 2 2010 MBX servers with 1 DAG
- 2 2010 HTS servers
- 2 2010 CAS server with casarray
- 1 HAProxy box with handles SSL offloading from the CAS servers and load balancing between the 2 servers.
Last week, we changed the SCP of the 2 CAS servers to point to the hostname of the HAProxy box. This host name is also going to be used for webmail, webservices, etc. Its the same for internal and external. We have not moved any mailboxes to the new system yet, just testing with some test mailboxes. Since changing the SCP's and OWA, ECP, Activesync, OAB, and Outlook anywhere address, we are getting 401 errors on our CAS servers, noticable in both the IIS logs and event viewer. For IIS logs, this is a sample of what we see:
2013-02-28 20:37:33 2010 CAS Server POST /Autodiscover/Autodiscover.xml - 80 user@company.com IP OF HAPROXY BOX Microsoft+Office/14.0+(Windows+NT+6.1;+Microsoft+Outlook+14.0.6129;+Pro) 401 1 1326 31.
Also, we see these errors:
2013-02-28 20:37:27 2010 CAS Server RPC_IN_DATA /rpc/rpcproxy.dll2007MBX server:6002 80 - HAPROXY IP MSRPC 401 1 2148074248 0
2013-02-28 20:37:27 2010 CAS Server RPC_OUT_DATA /rpc/rpcproxy.dll2007MBX server:6002 80 -HAPROXY IP MSRPC 401 1 2148074248 0
Not sure if that is a different issue.
Also in the event viewer, we are noticing audit failures for event ID 4625. Security ID: NULL SID.
I notice that the difference between audit failures is either account name: user@company (no.com) and account name: user and account name: no domain
One question is, how does the clients (outlook) choose the correct username? It seems like its doing an order until it gets the right one and then passes with a 200 Success.
Lastly, I noticed that when running a test email auto-configuration via outlook, after putting in my credentials, there are 4 401's , THEN I get a 200 under the log settings.
We want to fix these errors first before pointing traffic to our HTS's and start moving mailboxes. Any guidance would be great!
Thanks so much!
JFick