Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

EV OWA : Items can't be opened from external

Created: 18 Apr 2014 | 6 comments
LBI's picture

Hello,

We just enabled OWA from external connections.

Everything is working fine with OWA from internal connections (Icons, contextual menus, items retrieve, etc).

But from "outside", archived items can not be opened. And icons are not showing.

===========

Configuration:

EV version : 10.0.4 (one server)

EV server OS : Windows Server 2008 R2

Exchange version : 2010

Exchange server OS : Windows Server 2012

===========

I followed all the troubleshooting docs I could find but I can't find what is missing.

We use Exchange as a proxy, so I added EnterpriseVault_ExternalIPAddresses value for our reverse proxy IP into web.config file

When I run EVORT (v2.0.0.1023), I have this error :

Test module: CheckVirtualDirectories => Failed Test failed to complete

Status : Failed

Fail reason : Invalid query

Any help much appreciated.

Thank you to all of you.

Operating Systems:

Comments 6 CommentsJump to latest comment

JesusWept3's picture

have you enabled logging in the web.config that may shed some light?

LBI's picture

Here is a part of the log file. Tell me if you need more information.

I read it but did not find any "error" or "exception".

Thank you a lot.

#############################################################

4/22/2014 3:31:20 PM [2064,12] Request processing started

4/22/2014 3:31:20 PM [2064,12] Url: https://mail.[MySociety].com/owa/forms/basic/BasicReadMessage.aspx?ae=Item&t=IPM.Note.EnterpriseVault.Shortcut&id=RgAAAACpKBxJMj4UQ5buL9zko562BwA2c6hen3jkRqAVnZqChLOvAAACdEe7AAA4vdKbTChxSa2p9dEMO641AAAPLnA7AAAJ

4/22/2014 3:31:20 PM [2064,12] RawUrl: /owa/?ae=Item&t=IPM.Note.EnterpriseVault.Shortcut&id=RgAAAACpKBxJMj4UQ5buL9zko562BwA2c6hen3jkRqAVnZqChLOvAAACdEe7AAA4vdKbTChxSa2p9dEMO641AAAPLnA7AAAJ

4/22/2014 3:31:20 PM [2064,12] Query String parameters:

4/22/2014 3:31:20 PM [2064,12] ae: Item

4/22/2014 3:31:20 PM [2064,12] t: IPM.Note.EnterpriseVault.Shortcut

4/22/2014 3:31:20 PM [2064,12] id: RgAAAACpKBxJMj4UQ5buL9zko562BwA2c6hen3jkRqAVnZqChLOvAAACdEe7AAA4vdKbTChxSa2p9dEMO641AAAPLnA7AAAJ

4/22/2014 3:31:20 PM [2064,12] Cookies

4/22/2014 3:31:20 PM [2064,12] OutlookSession: a114185e43644f268cc07be235e0042f

4/22/2014 3:31:20 PM [2064,12] PBack: 0

4/22/2014 3:31:20 PM [2064,12] cadata: "0Qox7W90z/bcTuwZDFaVn9jVLudhtiqjrd/5uaQUqCMgOiUL1p9RpBVJFRZxQ5Hu1jUlxdJwXXuYaDrEgpWfieSJz1khsP0CCX04eUfuNB1E="

4/22/2014 3:31:20 PM [2064,12] sessionid: 742372ce-efc0-4c06-bd6f-d9dac8b14d0a

4/22/2014 3:31:20 PM [2064,12] UserContext: onV-phDZLEa-8TcVCKB4NzYShVDGMdEIdA9aa6-7YCRQgh3hubzUpXQhlCB_ULMtTMmhoTNnVi0.

4/22/2014 3:31:20 PM [2064,12] tzid: Romance Standard Time

4/22/2014 3:31:20 PM [2064,12] Form:

4/22/2014 3:31:20 PM [2064,12] OWA Session details

4/22/2014 3:31:20 PM [2064,12] User agent: Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) CriOS/33.0.1750.21 Mobile/11B554a Safari/9537.53

4/22/2014 3:31:20 PM [2064,12] Authentication type: Basic

4/22/2014 3:31:20 PM [2064,12] Authenticated user: [MySociety\MyLogin] 4/22/2014 3:31:20 PM [2064,12] Client IP Address: [ReverseProxy IP]

4/22/2014 3:31:20 PM [2064,12] Server IP Address: [Internal Exchange Server IP] 4/22/2014 3:31:20 PM [2064,12] Host: mail.mysociety.com

4/22/2014 3:31:20 PM [2064,12] Primary SMTP Address: username@mysociety.com

4/22/2014 3:31:20 PM [2064,12] Explicit Logon: False

4/22/2014 3:31:20 PM [2064,12] Explicit Logon Address: owa

4/22/2014 3:31:20 PM [2064,12] EV Extensions DLL version: 10.0.4.0

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager::StartImpersonation] Entry: Current user: NT AUTHORITY\SYSTEM

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager::StartImpersonation] Entry: Impersonation Level: None

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager::StartImpersonation] Impersonating logged on user

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager::StartImpersonation] Exit: Current user: [MySociety\MyLogin]

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager::StartImpersonation] Exit: Impersonation Level: Impersonation

4/22/2014 3:31:20 PM [2064,12] [EVContext::Initialise] EVContext intialised at 4/22/2014 3:30:32 PM

4/22/2014 3:31:20 PM [2064,12] [EVContext::Initialise] Hidden settings loaded at 4/22/2014 3:30:32 PM

4/22/2014 3:31:20 PM [2064,12] [EVContext::IsValidBrowser] Returning: False

4/22/2014 3:31:20 PM [2064,12] [ImpersonationManager:StopImpersonation] Stopped impersonation

4/22/2014 3:31:20 PM [2064,12] Request processing finished

GabeV's picture

Hi LBI,

Could you provide more info in the Exchange servers config? Is a CAS > Firewall > CAS > EVSrv configuration, Firewall > CAS > EVSrv confg, etc?

Also, in this entry:

4/22/2014 3:31:20 PM [2064,12] Url: https://mail.[MySociety].com/owa/forms/basic/BasicReadMessage.aspx?ae=Item&t=IPM.Note.EnterpriseVault.Shortcut&id=RgAAAACpKBxJMj4UQ5buL9zko562BwA2c6hen3jkRqAVnZqChLOvAAACdEe7AAA4vdKbTChxSa2p9

Is mail.[MySociety].com an external or internal DNS record?

“Success is not final, failure is not fatal: it is the courage to continue that counts.”–Winston Churchill

LBI's picture

Thank you,

I think it is a Firewall > Reverse Proxy > CAS > EVsvr config.

We have 3 Exchange servers but Reverse Proxy sends data to only one of them.

Our URL mail.[MySociety].com is an external DNS record but it is resolved both internally and externally.

LBI's picture

Actually, internally, the URL mail.mysociety.com maps the internal IP for the Exchange CAS server.

Externally, I think it maps the firewall.