Today i start to make ready a DR of exchange 2013, the installation of exchange Mailbox and CAS role was already done and after that the server was power off for couple of weeks.
after starting the server i found that the /ECP and OWA were not accessible and services were in starting state and the exchange management shell was also not connecting to itself and was trying to connect the PR Mailbox CAS servers and giving this error.
"VERBOSE: Connecting to MBXCAS.domain.com
New-PSSession : [MBXCAS.domain.com] Processing data from remote server MBXCAS.domain.com failed
with the following error message: The WinRM Shell client cannot process the request. The shell handle passed to the WSMan Shell function is not valid. The shell handle is valid only when WSManCreateShell function completes successfully. Change the request including a valid shell handle and try again. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession -ConnectionURI “$connectionUri” -ConfigurationName Microsoft.Excha"
In event viewer Application logs the following events were there.
Event ID 4027"
Process MSExchangeHMWorker.exe (ExHMWorker) (PID=8440). WCF request (Get Servers for Domain.com) to the Microsoft Exchange Active Directory Topology service on server (TopologyClientTcpEndpoint (localhost)) failed. Make sure that the service is running. In addition, make sure that the network ports that are used by Microsoft Exchange Active Directory Topology service are not blocked by a firewall. The WCF call was retried 3 time(s). Error Details
No Suitable Directory Servers Found in Forest Domain.com Site SiteName and connected Sites"
Event ID 2112
"
Process Microsoft.Exchange.Directory.TopologyService.exe (PID=4400). The Exchange computer DC1.Domain.com does not have Audit Security Privilege on the domain controller DC1.Domain.com. This domain controller will not be used by Exchange Active Directory Provider.
Event ID 2142
"
Process Microsoft.Exchange.Directory.TopologyService.exe (PID=4400) Forest domain.com Topology discovery failed, error details
No Suitable Directory Servers Found in Forest Domain.com Site SiteName and connected Sites.. "
after digging into it i came to know that this server computer object was not added in EXCHANGE SERVER group in active directory after adding into this group i restart the server and after restart everything was working fine. Exchange management shell start normally, all services was running normally.
But /ECP and OWA was not accessible.
i open IIS and go to SITE and right click Exchange Back End select Binding and select https and click on edit button and in SSL certificate Select "Microsoft Exchange" certificate but when click on View to check its property then on Certification path Tab this certificate status was inactive.
for this i went to local certificate store in Certificate MMC and went to this server local certificate store and check property "Servername.domain.com" on general tab its name was "Microsoft Exchange" in certificate Purposes i select option "Enable all porpose of this certificate" and click ok.
after this restart IIS and then /ECP and OWA were also accessible.
after starting the server i found that the /ECP and OWA were not accessible and services were in starting state and the exchange management shell was also not connecting to itself and was trying to connect the PR Mailbox CAS servers and giving this error.
"VERBOSE: Connecting to MBXCAS.domain.com
New-PSSession : [MBXCAS.domain.com] Processing data from remote server MBXCAS.domain.com failed
with the following error message: The WinRM Shell client cannot process the request. The shell handle passed to the WSMan Shell function is not valid. The shell handle is valid only when WSManCreateShell function completes successfully. Change the request including a valid shell handle and try again. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession -ConnectionURI “$connectionUri” -ConfigurationName Microsoft.Excha"
In event viewer Application logs the following events were there.
Event ID 4027"
Process MSExchangeHMWorker.exe (ExHMWorker) (PID=8440). WCF request (Get Servers for Domain.com) to the Microsoft Exchange Active Directory Topology service on server (TopologyClientTcpEndpoint (localhost)) failed. Make sure that the service is running. In addition, make sure that the network ports that are used by Microsoft Exchange Active Directory Topology service are not blocked by a firewall. The WCF call was retried 3 time(s). Error Details
No Suitable Directory Servers Found in Forest Domain.com Site SiteName and connected Sites"
Event ID 2112
"
Process Microsoft.Exchange.Directory.TopologyService.exe (PID=4400). The Exchange computer DC1.Domain.com does not have Audit Security Privilege on the domain controller DC1.Domain.com. This domain controller will not be used by Exchange Active Directory Provider.
Event ID 2142
"
Process Microsoft.Exchange.Directory.TopologyService.exe (PID=4400) Forest domain.com Topology discovery failed, error details
No Suitable Directory Servers Found in Forest Domain.com Site SiteName and connected Sites.. "
after digging into it i came to know that this server computer object was not added in EXCHANGE SERVER group in active directory after adding into this group i restart the server and after restart everything was working fine. Exchange management shell start normally, all services was running normally.
But /ECP and OWA was not accessible.
i open IIS and go to SITE and right click Exchange Back End select Binding and select https and click on edit button and in SSL certificate Select "Microsoft Exchange" certificate but when click on View to check its property then on Certification path Tab this certificate status was inactive.
for this i went to local certificate store in Certificate MMC and went to this server local certificate store and check property "Servername.domain.com" on general tab its name was "Microsoft Exchange" in certificate Purposes i select option "Enable all porpose of this certificate" and click ok.
after this restart IIS and then /ECP and OWA were also accessible.
This! After hours of Googling, this solved my issue.
ReplyDeleteDue note that after adding the mailserver to the "Exchange Servers" group under your AD you need to reboot your mailserver.
Then check all services running (Transportation could be failing and need to be done manually...).
Many thanks Nawaz!
Don Zalmrol
Thanks Don! Yes restart is the best option to resync everything. otherwise you may have to wait for undefined time. Thanks again it my help others as well.
DeleteThanks Nawaz! I was 3 days stuck due to this problem! Regards
ReplyDeleteThank you for your kind words Diego Zanette!
ReplyDeletethanks a lot you saved my life
ReplyDeleteWelcome Cygace!
Delete