Saw my first movie at Studio Movie Grill. I didn't expect to sit on office chairs.
Last 5 bookmarks:Reference to Available PowerShell Cmdlets
Microsoft Courier's Swipes, Snips and Scribbles: The Leaked Interface
How to manually clean up a broken Silverlight installation
Disk2vhd
Disk2vhd is a utility that creates VHD (Virtual Hard Disk - Microsoft’s Virtual Machine disk format) versions of physical disks for use in Microsoft Virtual PC or Microsoft Hyper-V virtual machines (VMs).
Everyone Should Be Skeptical About Cloud Service Providers
Last 5 comments:- BP commented on KEMMAPI.dll error when starting Outlook
- Me commented on Configuring Server 2008 on HP EVA
- Theo commented on KEMMAPI.dll error when starting Outlook
- Rob commented on KEMMAPI.dll error when starting Outlook
- Tom commented on HP Network Configuration Utility for Server 2008 R2 (resolved)
Error logging in to Outlook Web Access (OWA) on Exchange 2007
28 October 2009 | exchange 2007 | No Comments
When we had completed our migration from Exchange 2003 to Exchange 2007, there were a couple of users that informed us that their Outlook Web Access wasn’t working anymore. The error they received was:
A problem occurred while trying to use your mailbox. Please contact technical support for your organization.
After expanding the error message, it showed the following:
Request
Request
Url: http://[owa servername]:80/owa/lang.owa
User host address: [user ip]Exception
Exception type: Microsoft.Exchange.Data.Storage.StoragePermanentException
Exception message: There was a problem accessing Active Directory.Call stack
Microsoft.Exchange.Data.Storage.ExchangePrincipal.Save()
Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchLanguagePostLocally(OwaContext owaContext, OwaIdentity logonIdentity, CultureInfo culture, String timeZoneKeyName, Boolean isOptimized)
Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchLanguagePostRequest(OwaContext owaContext)
Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.PrepareRequestWithoutSession(OwaContext owaContext, UserContextCookie userContextCookie)
Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.InternalDispatchRequest(OwaContext owaContext)
Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchRequest(OwaContext owaContext)
System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)Inner Exception
Exception type: Microsoft.Exchange.Data.Directory.ADOperationException
Exception message: Active Directory operation failed on [active directory servername]. This error is not retriable. Additional information: Insufficient access rights to perform the operation. Active directory response: 00002098: SecErr: DSID-03150A45, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0Call stack
Microsoft.Exchange.Data.Directory.ADSession.AnalyzeDirectoryError(PooledLdapConnection connection, DirectoryRequest request, DirectoryException de, Int32 totalRetries, Int32 retriesOnServer)
Microsoft.Exchange.Data.Directory.ADSession.ExecuteModificationRequest(ADRawEntry entry, DirectoryRequest request, ADObjectId originalId)
Microsoft.Exchange.Data.Directory.ADSession.Save(ADObject instanceToSave, IEnumerable`1 properties)
Microsoft.Exchange.Data.Storage.ExchangePrincipal.Save()Inner Exception
Exception type: System.DirectoryServices.Protocols.DirectoryOperationException
Exception message: The user has insufficient access rights.Call stack
System.DirectoryServices.Protocols.LdapConnection.ConstructResponse(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut, Boolean exceptionOnTimeOut)
System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout)
Microsoft.Exchange.Data.Directory.PooledLdapConnection.SendRequest(DirectoryRequest request, LdapOperation ldapOperation)
Microsoft.Exchange.Data.Directory.ADSession.ExecuteModificationRequest(ADRawEntry entry, DirectoryRequest request, ADObjectId originalId)
After searching around the web, I found a few posts that referenced this error. The users account needed to have the inheritable permissions option checked for their account.
To perform this,
1. Open Active Directory Users and Computers (ADUC).
2. Locate the user account and view the properties for the account.
3. Select the Security tab. NOTE: If you don’t see the security tab, you will have to enable Advance Features from the View menu.
4. Select the Advanced button.
5. Check the option box for “Allow inheritable permissions from the parent to propagate to this object…”
6. Click Apply and then OK to close out the properties for the user account.
Once this option is selected, the user was able to log in to OWA successfully.
Leave a Reply
You can follow the discussion through the Comments feed. You can also pingback or trackback from your own site.