Troubleshooting Exchange Calendaring Integrations

Similar documents
Troubleshooting Exchange Calendaring Integrations

Troubleshooting Exchange Calendaring Integrations

Configuring Cisco Unified Presence for Integration with Microsoft Exchange Server

Configure the IM and Presence Service to Integrate with the Microsoft Exchange Server

Planning for Cisco Unified Presence Integration with Microsoft Exchange

LDAP Directory Integration

Configure the IM and Presence Service

SAML-Based SSO Configuration

Unity Connection Version 10.5 SAML SSO Configuration Example

Unified Communications Manager Version 10.5 SAML SSO Configuration Example

LDAP Directory Integration

Troubleshooting Single Sign-On

Troubleshooting Single Sign-On

Troubleshooting External Services (External Message Store, Calendar Integrations, Calendar Information for PCTRs) in Cisco Unity Connection 8.

Set Up Certificate Validation

Cisco TelePresence Management Suite Extension for Microsoft Exchange

Manage SAML Single Sign-On

Manage Certificates. Certificates Overview

Cisco TelePresence Management Suite Extension for Microsoft Exchange

Troubleshooting Web Inbox

Frequently Asked Questions: Cisco Jabber Voice 9.1(4) for Android

Managing CX Devices in Multiple Device Mode

Troubleshooting Cisco TelePresence Manager

Persistent Data Transfer Procedure

Microsoft Exchange for IM and Presence Service on Cisco Unified Communications Manager, Release 10.5(1)

VMware Horizon View Deployment

Setting Up the Server

SAML-Based SSO Configuration

Troubleshooting the Cisco Personal Communications Assistant (PCA) in Cisco Unity Connection 8.x

WatchGuard XCS and Outlook Web Access 2013

Configuring Cisco TelePresence Manager

Cisco TelePresence Management Suite Extension for Microsoft Exchange 5.5

Hypertext Transfer Protocol Over Secure Sockets Layer (HTTPS)

Cisco TelePresence Management Suite Extension for Microsoft Exchange 5.7

Quick Start Guide for SAML SSO Access

Deploy Hybrid Calendar Service for Microsoft Exchange

Verify that your operating environment meets all hardware and software requirements. For detailed requirements

Migrate All Mailboxes to the Cloud with a Cutover Exchange

Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS)

CHAPTER. Introduction

IM and Presence Service Network Setup

Push Notifications (On-Premises Deployments)

Microsoft Outlook Calendar Integration for the IM and Presence Service, Release 12.0(1)

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

Quick Start Guide for SAML SSO Access

Cisco Unified Communications Manager configuration for integration with IM and Presence Service

Pass Citrix 1Y0-306 Exam

Professional mailbox Setup Guide

General Information About Cisco TelePresence Manager

Cisco TelePresence Management Suite Extension for Microsoft Exchange 5.2

Using Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS)

Cisco WebEx Meetings Server Troubleshooting Guide for Version 2.5

Administering vrealize Log Insight. September 20, 2018 vrealize Log Insight 4.7

BlackBerry UEM Configuration Guide

Using VMware View Client for Mac

Applications. View All Applications. People. Contact Details

Applications. View All Applications. . Inbox

Configuration Guide. BlackBerry UEM. Version 12.9

Troubleshooting Guide for Cisco WebEx Meetings Server Release 3.0

Cisco TelePresence Management Suite Extension for Microsoft Exchange 5.4

Creating a Multi-data Center (MDC) System

Intercluster Peer Configuration

NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1

Microsoft Exchange Server 2013 and 2016 Deployment

Troubleshooting Cisco Personal Communications Assistant (PCA)

Workspace ONE UEM Notification Service. VMware Workspace ONE UEM 1811

Configuring Cisco TelePresence Manager

Configuring Cisco TelePresence Manager

Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.

Fasthosts Customer Support Software Setup Guide. Exchange 2013 Mailbox

GroupWise Coexistence Solution for Exchange Installation and Configuration Guide. December 2017

Unified Voice Mail Messaging 2011

Cisco VCS Authenticating Devices

Post-Installation Tasks

Unified Messaging Guide for Cisco Unity Connection Release 11.x

Troubleshooting IMAP Clients and ViewMail for Outlook

CLI users are not listed on the Cisco Prime Collaboration User Management page.

Configuration Guide. BlackBerry UEM. Version 12.7 Maintenance Release 2

Dell Wyse Management Suite. Version 1.1 Migration Guide

Installing the Cisco Unified CallManager Customer Directory Plugin Release 4.3(1)

Getting Started with Outlook Web App (OWA)

Manual Owa Exchange 2010 Not Working Externally

The information in this document is based on these software and hardware versions:

Troubleshooting Networking

Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.

Users. LDAP Synchronization Overview

INDEX. boot failure about A-1 restoring A-2

Configure Push Notifications for Cisco Jabber on iphone and ipad

SAML SSO Deployment Guide for Cisco Unified Communications Applications, Release 12.0(1)

SAML-Based SSO Solution

Arc Pro. Provisioning Wizard. User Guide. Version 6.1.0

Contents. Platform Compatibility. Directory Connector SonicWALL Directory Services Connector 3.1.7

Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Cisco TelePresence Device Authentication on Cisco VCS

SnapCenter Software 4.0 Installation and Setup Guide

MailEnable Connector for Microsoft Outlook

This Readme describes the NetIQ Access Manager 3.1 SP5 release.

Finding Support Information for Platforms and Cisco IOS Software Images

Contents. Platform Compatibility. Directory Connector SonicWALL Directory Services Connector 3.1.7

Transcription:

CHAPTER 6 Troubleshooting Exchange Calendaring Integrations Revised: November 30, 2012 Troubleshooting Exchange Server Connection Status, page 6-1 Troubleshooting SSL Connection/Certificate Status, page 6-2 Issues Known to Impact Microsoft Exchange Integrations, page 6-5 Troubleshooting Exchange Server Connection Status Exchange Server connection status displays in Cisco Unified Presence Administration after you configure the Exchange Presence Gateway for either a WebDAV or EWS calendaring integration (select Presence > Gateways). The Troubleshooter on the Presence Gateway configuration window reports the status on the connection between Cisco Unified Presence and the Exchange server. Note You can add, update or delete one or more EWS servers with no maximum limit. However, the Troubleshooter on the Presence Gateway window is designed to only verify and report status of the first 10 EWS servers that you configure.. Test Exchange Reachability (pingable) Exchange Reachability (unreachable) Status Description and Recommended Action Cisco Unified Presence successfully reached (pinged) the Exhange server. Cisco Unified Presence failed to ping the Exchange server. The server may not be reachable due to an incorrect field value or a possible issue with the customer's network, for example, cabling. To resolve this, ensure that the Presence Gateway field contains the correct value (FQDN or IP address) to reach the Exchange server over the network. Note that the UI does not require the Presence Gateway field value to be the Subject CN value. If you have connection problems with the Exchange server, also see the System Troubleshooter in Cisco Unified Presence Administration and implement the recommended solution. Select Diagnostics > System Troubleshooter. 6-1

Troubleshooting SSL Connection/Certificate Status Chapter 6 Troubleshooting SSL Connection/Certificate Status SSL Connection/Certificate Verification status displays in Cisco Unified Presence Administration when you configure the Exchange Presence Gateway for a either a WebDAV or EWS calendaring integration (select Presence > Gateways). The Troubleshooter on the Presence Gateway configuration window will indicate if there is a certificate Subject CN mismatch or a SAN mismatch. Note You can add, update or delete one or more EWS servers with no maximum limit. However, the Troubleshooter on the Presence Gateway window is designed to only verify and report status of the first 10 EWS servers that you configure. 6-2

Chapter 6 Troubleshooting SSL Connection/Certificate Status Test SSL Connection/Certificate Verification - Verified SSL Connection/Certificate Verification Failed - Certificate Missing From Chain Note These instructions describe the view of the customized Certificate Import Tool. If you are simply verifying connection status, the tool indicates the verified status but you do not have the option to Save. Status Description and Recommended Action Cisco Unified Presence verified the SSL connection with the Exchange server. Select View for the certificate details. One or more certificates that Cisco Unified Presence requires to establish a secure connection to the Exchange server are missing. The Certificate Viewer can provide details of the missing certificates. Complete these steps in the Certificate Viewer to display any missing certificates: 1. Select Configure to open the Certificate Viewer. 2. Check Accept Certificate Chain. 3. Select Save. 4. The certificate chain details display. Note any certificates with a status of Missing. 5. Close the Certificate Viewer. 6. To complete the certificate chain, you must: a. Download the missing certificates files from the Exchange server. b. Copy or FTP the missing certificate files to the computer that you use to administer Cisco Unified Presence. c. Use the Cisco Unified OS Administration to upload any of the required missing certificates. Troubleshooting Tips If the certificates are not available in the Certificate Viewer, you may need to manually download and install the missing certificates from the Exchange server, and upload these certificates in Cisco Unified OS Administration as follows: If required, go to Cisco Unified OS Administration and upload certificates to complete the certificate chain. Return to the Presence Gateway Configuration window in Cisco Unified Presence Administration, reopen the Certificate Viewer, and verify in the Certificate Viewer that all certificates in the certificate chain now have a status of Verified. You must restart the Cisco UP Presence Engine after you upload Exchange trust certificates. Select Cisco Unified Serviceability > Tools > Service Activation. Note that this can affect Calendaring connectivity. Select either Configure or View to launch the Certificate Chain Viewer where you can view the details of the certificate chain. The Configure button will display if there are any issues with the certificate chain that Cisco Unified Presence downloads from the Exchange server - for example, the missing certificates scenario described above. Once you successfully import and verify the certificate chain, the SSL Connection / Certificate Verification status will update to Verified and the View button will replace Configure. 6-3

Troubleshooting SSL Connection/Certificate Status Chapter 6 Test SSL Connection/Certificate Verification Failed- Subject CN Mismatch SSL Connection/Certificate Verification Failed - SAN Mismatch Status Description and Recommended Action The Presence Gateway field value must match the Subject CN value of the leaf certificate in the Certificate Chain. You can resolve this by entering the correct value in the Presence Gateway field. Verify that your entry in the Presence Gateway field is correct as follows: 1. Re-enter the correct Subject CN value in the Presence Gateway field. Cisco Unified Presence uses the Presence Gateway field value to ping the server. The host (FQDN or IP address) that you enter must exactly match the certificate Subject Common Name. 2. Select Save. Troubleshooting Tips Select either Configure or View to launch the Certificate Chain Viewer where you can view the details of the certificate chain. The Configure button will display if there are any issues with the certificate chain downloaded from the Exchange server - for example, the missing certificates scenario described above. Once you successfully import and verify the certificate chain, the SSL Connection / Certificate Verification status will update to Verified and the View button will replace Configure. The Presence Gateway field value must match one of the Subject Alternative Name (SAN) values of the leaf certificate in the Certificate Chain. You can resolve this issue by entering the correct value in the Presence Gateway field. Verify that your entry in the Presence Gateway field is correct as follows: 1. Re-enter the correct SAN value in the Presence Gateway field. Cisco Unified Presence uses the Presence Gateway field value to ping the server. The host (FQDN or IP address) that you enter must exactly match one of the entries in the certificate Subject Alternative Name. 2. Select Save. Troubleshooting Tips Select either Configure or View to launch the Certificate Chain Viewer where you can view the details of the certificate chain. The Configure button will display if there are any issues with the certificate chain downloaded from the Exchange server - for example, the missing certificates scenario described above. Once you successfully import and verify the certificate chain, the SSL Connection / Certificate Verification status will update to Verified and the View button will replace Configure. 6-4

Chapter 6 Issues Known to Impact Microsoft Exchange Integrations Test SSL Connection/Certificate Verification Failed - Bad Certificates SSL Connection / Certificate Verification Failed - Network Error SSL Connection/Certificate Verification Failed Status Description and Recommended Action Information in the certificate is incorrect, which renders it invalid. Typically, this occurs if the certificate matches the required Subject CN but not the public key. This could happen if the Exchange server regenerates the certificate but the Cisco Unified Presence server still maintains the old certificate. To resolve this, complete these actions: Select the logs to determine the cause of the error. If the error is due to a bad signature, you need to remove the outdated certificate from Cisco Unified Presence in Cisco Unified OS Administration, and then upload a new certificate in Cisco Unified OS Administration. If the error is due to an unsupported algorithm, you need to upload a new certificate that contains the supported algorithm in Cisco Unified OS Administration. Due to network issues, for example, a no-response timeout, Cisco Unified Presence cannot verify the SSL connection. We recommend that you verify the network connectivity to the Exchange server, and ensure that the Exchange server is accepting connections using the correct IP address and port number. Verification failed for a non-specific reason or because Cisco Unified Presence cannot perform the reachability test. We recommend that you review the debug log files for more information. Issues Known to Impact Microsoft Exchange Integrations The following section describes known issues that are common or specific to versions of Microsoft Exchange Server (2003, 2007, 2010) Scale Limitations for Calendaring Integrations, page 6-6 Calendaring State Does Not Update if a User Moves between Exchange servers, page 6-6 LDAP User Removal Takes At Least 24 Hours to Replicate on Cisco Unified Presence, page 6-6 Localization Caveat with WebDAV Calendaring Integrations, page 6-7 Exchange Server URL Must Contain Localized Word for Calendar, page 6-7 Verifying Presence Gateway Configuration on Cisco IP Phone Messenger-enabled Phones, page 6-8 Applying Microsoft HotFix KB841561, page 6-8 Calendar Integration Fails with HTTP 503 Service Unavailable Error from Exchange 2007, page 6-9 Support for Meeting Notifications and Cisco IP Phone Messenger, page 6-11 6-5

Issues Known to Impact Microsoft Exchange Integrations Chapter 6 Scale Limitations for Calendaring Integrations Cisco Unified Presence and Exchange calendaring integrations have been validated with up to X% of the users subscribing to calendar presence and with up to Y% of the users doing simultaneous calendar transitions (for example, joining or leaving meetings simultaneously). See Table 6-1 for percentage values pertaining to specific releases of Cisco Unified Presence Release. Table 6-1 Scale Limitations for Specific Cisco Unified Presence Releases Software Release % of Users Subscribing to Calendar Presence 8.5(1) 50 30 8.5(2) and later 100 50 % of Users Performing Sumultaneous Calendar Transitions Calendaring values for MCS-7825 platforms should not exceed the values specified for Cisco Unified Presence Release 8.5(1). Calendaring State Does Not Update if a User Moves between Exchange servers Problem If an Exchange administrator moves a user from one Exchange server to another in an Exchange integration, the calendaring state change will not update for that user. Cause The condition occurs because the Exchange server does not signal when a user is moved from one server to another. Solution The Cisco Unified Presence administrator or user must disable and then reenable calendar integration for that user after the Exchange administrator has moved the user from one Exchange server to another. LDAP User Removal Takes At Least 24 Hours to Replicate on Cisco Unified Presence Problem If a user is deleted from LDAP, the user state changes to Inactive on Cisco Unified Communications Manager and user authentication on client applications will subsequently fail. However, it has been observed during testing that once Cisco Unified Communications Manager synchronizes the change from LDAP, the user will not be removed for 24 hours after the synchronization occured (either by the Administrator forcing the sync or scheduling it to occur at a specific time). The Cisco UP Sync Agent on Cisco Unified Presence will not synchronize any user state change until the user is removed. In the interim period, that user still exists on Cisco Unified Communications Manager and all Cisco Unified Presence capabilities (including Exchange calendaring subscriptions) remain licensed for that user for 24 hours. This delay means that users who were signed into Cisco Jabber before the user was removed from LDAP are not signed out automatically. The user s pre-exisitng calendar state (Available, Busy) will persist for that user on Cisco Unified Presence until the user signs out of the client. 6-6

Chapter 6 Issues Known to Impact Microsoft Exchange Integrations Cause The condition occurs when Cisco Unified Communications Manager is set up and LDAP authentication is used. When a user is deleted from LDAP, calendaring subscriptions continue to be established and updated for that user on Cisco Unified Presence for a period of at least 24 hours. Solution If a user is removed from LDAP, you can manually remove the license for that user so that Cisco Unified Presence ends the Exchange calendaring subscriptions with immediate effect and signs the user out of the client application. Otherwise, be aware that there may be a 24 hour time delay. Localization Caveat with WebDAV Calendaring Integrations Problem If you set the default language (English) on the user's Exchange Mailbox when a different language/locale is installed on Cisco Unified Communications Manager, the Exchange server maintains the default calendar name (in English) and you cannot change the language/locale for that user. A 404 error returns for calendaring subscriptions. Cause This condition only occurs in localized Exchange 2003/2007 integrations over WebDAV. The issue does not affect EWS integrations. Solution To prevent this issue occurring, we recommend that you set languages correctly during the Exchange setup. Install the appropriate language/locale on Cisco Unified Communications Manager and select the appropriate language/locale on the Exchange server the first time the user signs in. If the language on the user's Exchange Mailbox is set to English when a different language/locale is installed on Cisco Unified Communications Manager, you must switch the language/locale on Cisco Unified Communications Manager back to English for that user. To do this, see Setting User Locales for Multilingual Calendaring Integration, page 4-9. Exchange Server URL Must Contain Localized Word for Calendar If you are localizing your Calendaring integration, verify that the Exchange server URL contains the localized word for "Calendar". Procedure Step 1 Step 2 Step 3 Step 4 Install the same language locales (load the locale installer) on both Cisco Unified Presence and the Cisco Unified Communications Manager. For more information about installing locales on Cisco Unified Presence, see [Optional] How to Configure Multilingual Support for Calendaring Integration, page 4-6. Restart the Cisco Unified Presence server, and sign into Cisco Unified Presence Administration. Find and delete the existing Exchange Presence Gateway that supports a different locale for calendaring (select Presence >Gateways). Add a new Exchange Presence (Outlook) gateway. Select Add New. 6-7

Issues Known to Impact Microsoft Exchange Integrations Chapter 6 Step 5 Step 6 Verify in the database (pebackendgateway table) that the 'localecalendarname' attribute is in whichever language locale you have installed. Ensure the user locale is set after the locale is installed on both the Cisco Unified Presence and Cisco Unified Communications Manager, toggling the user locale on the Cisco Unified Communications Manager, if necessary. Verifying Presence Gateway Configuration on Cisco IP Phone Messenger-enabled Phones If you correctly configure the Receive-As account credentials and certificate exchange, desk phones enabled with Cisco IP Phone Messenger will display the scheduled meetings of users. To verify that the Outlook Presence Gateway is configured correctly, perform these steps on an appropriately configured phone. Procedure Step 1 Step 2 Step 3 Step 4 Step 5 Select Services. Press PhoneMessenger. Sign into the IP Phone Messenger Service. Select 1 Today's meetings. Verify that the user s meetings for the day are listed. Applying Microsoft HotFix KB841561 Note that this issue is specific to Microsoft Exchange 2003 only. Apply Microsoft HotFix KB841561 if you encounter problems with the Exchange 2003 server and it returns a "500 Internal Server Error. Procedure Step 1 Uninstall SP2 for Windows Server 2003 and for Microsoft Exchange 2003. Step 2 Install SP1 for Windows Server 2003 and Exchange 2003. Step 3 Download and install KB841561 from the following URL: http://www.microsoft.com/downloads/details.aspx?familyid=050be883-11fc-4045-b988-c737e79c65d 0&displaylang=en Step 4 Install SP2 for Windows Server 2003 and for Microsoft Exchange 2003. 6-8

Chapter 6 Issues Known to Impact Microsoft Exchange Integrations Calendar Integration Fails with HTTP 503 Service Unavailable Error from Exchange 2007 Note that this issue is specific to Microsoft Exchange 2007 only. Problem Since Exchange 2007, Microsoft changed the Outlook Web Access URL from /exchange to /owa, which is the virtual directory that OWA uses to access mailboxes on Exchange 2007 mailbox servers. Cisco Unified Presence, however, always sends SUSCRIBE requests to the /exchange virtual directory, which is the URL that is still used for WebDAV integration with Exchange 2007. During testing with Exchange Server 2007 (SP1), it has been observed that if you change the http://<server>/exchange URL to redirect to http://<server>/owa URL, an error (HTTP 503 Service Unavailable) displays on the Internet Information Services (IIS) Manager console in Exchange 2007. Cause The condition occurs when Exchange 2007 SP1 is in use, and the Exchange virtual directory target address is modified to redirect to the default OWA directory for webmail. Solution If the 503 Service Unavailable" error message displays, perform the steps in this procedure: Procedure Step 1 Step 2 Step 3 From Administrative Tools, open Internet Information Services. Delete the Microsoft Exchange virtual directory in IIS. Review the warning that displays, and run the recommended cmdlet in the Exchange Management Shell (EMS) : 6-9

Issues Known to Impact Microsoft Exchange Integrations Chapter 6 Step 4 Step 5 Step 6 Step 7 Step 8 Step 9 Step 10 Run this cmdlet in the EMS to ensure that the Exchange virtual directory is set up correctly and to add the directory again in IIS. Syntax New-OwaVirtualDirectory -name exchange -OWAVersion Exchange2003or2000 -VirtualDirectoryType mailboxes Wait for the Exchange server to populate the virtual directory into IIS. Restart the IIS. Test your http://<server>/exchange/<user email address>/calendar URL, using the full target address for example, http://mail.contoso.com/exchange/user@contoso.com/calendar Ensure that you are prompted for a username and password. This indicates that WebDAV is enabled and configured correctly on the virtual directory. Enter your Active Directory credentials. Check the IIS logs that display for Cisco Unified Presence. If the logs indicate that there is a 401 authentication issue, add the domain to authenticate access. Step 11 Step 12 Step 13 Restart the IIS. Select Cisco Unified Serviceability > Tools > Service Activation and restart the Cisco UP Presence Engine. Check the IIS logs again and verify that the SUBSCRIBE messages are present and correct for your calendar. Troubleshooting Tips This procedure also applies to Apple MAC users who require WebDAV to view their emails using Microsoft Entourage 2008. 6-10

Chapter 6 Issues Known to Impact Microsoft Exchange Integrations Support for Meeting Notifications and Cisco IP Phone Messenger Note that the Meeting Notification and Cisco IP Phone Messenger features will only work if your network integration is over WebDAV. Therefore, this issue is specific to Microsoft Exchange 2003 or 2007 only. These features are not supported with EWS integrations. 6-11

Issues Known to Impact Microsoft Exchange Integrations Chapter 6 6-12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback