Exchange 2013 Outlook Anywhere (RPC) Settings

I’ve been having some issues with the default RTM install of Exchange 2013. I’ve not been able to get clients to connect via Outlook Anywhere (RPC over HTTPS).

Here is the output of the Exchange Connectivity Test

Attempting to ping RPC proxy mail.contoso.co.nz.
RPC Proxy can't be pinged.
Additional Details
A Web exception occurred because an HTTP 404 - NotFound response was received from Unknown.

The first thing Microsoft Looked at were the settings on the Outlook-Anywhere provider. They were as follows:

(get-outlookanywhere)

ExternalClientAuthenticationMethod : Negotiate
InternalClientAuthenticationMethod : Negotiate
IISAuthenticationMethods : {Negotiate}

This is the default install settings. These are however, incorrect. The settings should be as follows:

(set-outlookanywhere)

ExternalClientAuthenticationMethod : Negotiate
InternalClientAuthenticationMethod : NTLM
IISAuthenticationMethods : {basic, ntlm, negotiate}

Your Outlook providers also need their certificate set correctly. By default they are set as the following:

(get-outlookprovider)

Name                          Server                        CertPrincipalName             TTL
----                          ------                        -----------------             ---
EXCH                                                                                      1
EXPR                                                                                      1
WEB                                                                                       1

This needs to be set to your certificate name (assuming you are using a trusted SSL cert). In our case we were using a wild card certificate.

(set-outlookprovider)

Name                          Server                        CertPrincipalName             TTL
----                          ------                        -----------------             ---
EXCH                                                        msstd:*.contoso.co.nz         1
EXPR                                                        msstd:*.contoso.co.nz         1
WEB                                                                                       1

We have installed CU1 for Exchange 2013 and found it set the same settings. I’m not sure why the default authentication is not being set correctly when installing for the first time.

Outlook cached mode can cause problems…

Have you had the problem where Outlook sits there, forever, waiting to “update current folder”. I recently had this problem when changing an Outlook 2007 client to HTTP over RPC. After I made this change, weird stuff started to happen. No problem I thought. I will use scanpst.exe and attempt to scan the file. In the past, this has been where most of these sorts of problems lie. This was quite a large file, 3.5gb. After this had completed and still didn’t work, I started scratching my head a bit. What would cause this to happen?

After a bit of testing, I found that turning cached mode off let the folder update. I then proceeded to delete every file out of the Outlook folder (under local settingsapplication datamicrosoftoutlook) apart from the ost file and archive folders.

This fixed the problem. This is the first time I’ve come across this so I thought I’d share.