Hi All,
We are currently migrating from a single Exchange 2010 to a 2 016 DAG composed of 2 server.
All was working fine, we were about to migrate users in bulk, then ECP on one of our 2016 server stop working.
Outlook connection,OWA, Autodiscover and active sync are ok. It's only ECP access.
At the beginning it was an Access Denied, even with user member of rightfull Groups
We did the following :
-Check that computer Object have no ms-Exch-EPI-Token-Serialization right
https://docs.microsoft.com/fr-fr/exchange/troubleshoot/client-connectivity/error-occur-ems-eac-owa
-Change certificate for Back End WebSite in IIS with a valide One
https://letsexchange.blogspot.com/2017/05/an-error-occurred-while-using-ssl.html?m=0
-Verify authentication method for owa and ECP and switch from true to false to true + iis reset
-Recycle Apppool
-Test with internal/external URL, localhost, IP
-Delete/recreate VirtualDirectory for front and back end
-Delete ExchCanarydata0 in ADSI Edit
https://ril3y.wordpress.com/2014/03/25/exchange-2013-owa-and-ecp-logins-fail-with-500-error/
-Verified if there was a double entry in RemoteDomains.xaml
https://moh10ly.wordpress.com/2015/08/03/exchange-2013-ecp-admin-panel-page-fails-with-500-unexpected-error-after-running-hybrid-configuration-wizard-with-office-365/
None f this worked...
We are thinking of restoring from the last backup when all was ok 2 days ago or doing a fresh install. But I'd like to know what's happenning...
In the Event log we have now the following event:
Niveau Date et heure Source ID de l’événement Catégorie de la tâche
Erreur 04.06.2021 15:37:59 MSExchange Control Panel 4 General "Current user: 'domain/OU/user'
Request for URL 'https://Exch2016:444/ecp/default.aspx?exchclientver=15(https://Exch2016.domain/ecp/?exchclientver=15)' failed with the following error:
System.Web.HttpUnhandledException (0x80004005): Une exception de type 'System.Web.HttpUnhandledException' a été levée. ---> Microsoft.Exchange.Management.ControlPanel.CannotAccessOptionsWithBEParamOrCookieException: Un problème est survenu lors de l'ouverture des options dans Outlook Web App. Cliquez sur Se déconnecter ci-dessous, puis reconnectez-vous aux options dans Outlook Web App. Si cela ne fonctionne pas, déconnectez-vous, supprimez des cookies du navigateur et reconnectez-vous.
à Microsoft.Exchange.Management.ControlPanel.HttpContextExtensions.ThrowIfViewOptionsWithBEParam(HttpContext context, FeatureSet featureSet)
à Microsoft.Exchange.Management.ControlPanel._Default.InitFeatureSetAndStartPage()
à Microsoft.Exchange.Management.ControlPanel._Default.OnLoad(EventArgs e)
à System.Web.UI.Control.LoadRecursive()
à System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à System.Web.UI.Page.HandleError(Exception e)
à System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à System.Web.UI.Page.ProcessRequest()
à System.Web.UI.Page.ProcessRequest(HttpContext context)
à System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
à System.Web.HttpApplication.ExecuteStepImpl(IExecutionStep step)
à System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
à System.Web.UI.Page.HandleError(Exception e)
à System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à System.Web.UI.Page.ProcessRequest()
à System.Web.UI.Page.ProcessRequest(HttpContext context)
à System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
à System.Web.HttpApplication.ExecuteStepImpl(IExecutionStep step)
à System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
Microsoft.Exchange.Management.ControlPanel.CannotAccessOptionsWithBEParamOrCookieException: Un problème est survenu lors de l'ouverture des options dans Outlook Web App. Cliquez sur Se déconnecter ci-dessous, puis reconnectez-vous aux options dans Outlook Web App. Si cela ne fonctionne pas, déconnectez-vous, supprimez des cookies du navigateur et reconnectez-vous.
à Microsoft.Exchange.Management.ControlPanel.HttpContextExtensions.ThrowIfViewOptionsWithBEParam(HttpContext context, FeatureSet featureSet)
à Microsoft.Exchange.Management.ControlPanel._Default.InitFeatureSetAndStartPage()
à Microsoft.Exchange.Management.ControlPanel._Default.OnLoad(EventArgs e)
à System.Web.UI.Control.LoadRecursive()
à System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
à Microsoft.Exchange.Management.ControlPanel.HttpContextExtensions.ThrowIfViewOptionsWithBEParam(HttpContext context, FeatureSet featureSet)
à Microsoft.Exchange.Management.ControlPanel._Default.InitFeatureSetAndStartPage()
à Microsoft.Exchange.Management.ControlPanel._Default.OnLoad(EventArgs e)
à System.Web.UI.Control.LoadRecursive()
à System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
Flight info: Features:[[Global.DistributedKeyManagement, False],[Global.FrontdoorDefaultURL, False],[Global.GlobalCriminalCompliance, False],[Global.MultiTenancy, False],[Global.PopulateGroupMasterSid, False],[Global.WindowsLiveID, False],[Eac.AllowMailboxArchiveOnlyMigration, True],[Eac.AllowRemoteOnboardingMovesOnly, False],[Eac.AllowSender, False],[Eac.AntiSpamBulkThresholdUI, False],[Eac.AntispamTenantAllowBlockLists, False],[Eac.AtpPolicyForO365, False],[Eac.BulkPermissionAddRemove, True],[Eac.CaseHoldQuery, False],[Eac.CaseHoldSearch, False],[Eac.CmdletLogging, True],[Eac.ComplianceAllPublicFolderSearch, False],[Eac.ComplianceAllPublicFolderSearchForHold, False],[Eac.ComplianceCase, False],[Eac.ComplianceCaseClosing, False],[Eac.ComplianceCaseSources, False],[Eac.ComplianceExportIndividualMessageFormat, False],[Eac.ComplianceExportZipFormat, False],[Eac.ComplianceMnc, False],[Eac.ComplianceNewValidator, False],[Eac.ComplianceSearchRefiners, False],[Eac.ComplianceSearchStatistics, False],[Eac.ConditionCards, False],[Eac.ConditionCardsForCaseHoldQuery, False],[Eac.ConvertMailboxUI, False],[Eac.CrossPremiseMigration, False],[Eac.CustomizableMaxMsgSizeUI, True],[Eac.CutomizableSenderAuthenticationInNewDistributionGroup, False],[Eac.DefensibilityReport, False],[Eac.DeleteMessage, False],[Eac.DeleteQuarantineMessage, False],[Eac.DevicePolicyMgmtUI, False],[Eac.DiscontinueSafetenantConnectorUI, False],[Eac.DiscoveryDocIdHint, False],[Eac.DiscoveryMultiHoldSearch, False],[Eac.DiscoveryMultiQuerySearch, False],[Eac.DiscoveryMultiQueryV2Export, False],[Eac.DiscoveryPFSearch, True],[Eac.DiscoverySearchStats, False],[Eac.DiscoveryV1Export, True],[Eac.DistributionToUnifiedGroupMigrationEac, False],[Eac.DKIMSigningConfigUI, False],[Eac.DLPBlockForUnifiedCompliance, False],[Eac.DlpFingerprint, False],[Eac.DlpPolicyDetailsAndError, False],[Eac.DLPUnifiedCompliancePreview, False],[Eac.DLPWarnForUnifiedComplianceAvailability, False],[Eac.EACClientAccessRulesEnabled, False],[Eac.EacConciergeControl, False],[Eac.EacFeedbackControl, False],[Eac.EacPswsProxy, False],[Eac.EDiscoveryEacDecommisionExemption, True],[Eac.EdiscoveryExportPaging, False],[Eac.EdiscoveryExportV2AnalyzeWithZoom, False],[Eac.EdiscoveryExportV2ClientExportToolLiteEngine, False],[Eac.EdiscoveryExportV2General, False],[Eac.EdiscoveryHold, False],[Eac.EdiscoveryPreviewSearchUI, True],[Eac.EdiscoverySearchUI, False],[Eac.EDiscoverySPOMultiGEOEnabled, False],[Eac.EnableForInternalSendersInUI, False],[Eac.ExportDedupe, False],[Eac.ExportReportOnly, False],[Eac.FileFilter, False],[Eac.GeminiShell, False],[Eac.GrantSendOnBehalfToForSharedMailbox, False],[Eac.GroupsBulkUpgradeWizard, False],[Eac.GroupsInOutlookPromotionBanner, False],[Eac.HoldForModernGroups, False],[Eac.InactiveMailboxForCaseHold, False],[Eac.InactiveMailboxPickerEmailAddress, True],[Eac.InactiveMailboxSearch, False],[Eac.IsDedicatedTenant, False],[Eac.ManageMailboxAuditing, False],[Eac.ModernGroupCreateOnBehalfOf, False],[Eac.ModernGroupDelegatedUserSupport, False],[Eac.ModernGroupDomainSelectionSupport, False],[Eac.ModernGroupEnableDeliveryManagement, False],[Eac.ModernGroupManagement, False],[Eac.ModernGroupMoreEditOptions, False],[Eac.ModernGroupNonMailboxUserSupport, False],[Eac.ModernGroups, False],[Eac.ModernGroupsAllowAddingGuestInO365GroupMembership, False],[Eac.ModernGroupsAllowCreationByNonAADAdmin, False],[Eac.ModernGroupsPromotion, False],[Eac.ModernGroupsPromotionV2, False],[Eac.ModernGroupsSendOnBehalfOf, False],[Eac.ModernGroupsSkipVerifyOwnerLimit, True],[Eac.NewAuditingOptInUIOptIn, True],[Eac.NewAuditingReportUIOptIn, True],[Eac.NonExchangeWorkloadsUI, False],[Eac.Office365DIcon, False],[Eac.OrgIdADSeverSettings, False],[Eac.PreviewQuarantineMessage, False],[Eac.PreviewQuarantineMessageAdvanced, False],[Eac.PreviewSnapshotSearchUI, False],[Eac.PromoteProtectionCenter, False],[Eac.ProtectionCenterForceRedirect, False],[Eac.ProtectionCenterOptIn, False],[Eac.ProtectionCenterOptOut, False],[Eac.PublicFolderHoldManagement, False],[Eac.QuarantineMalware, False],[Eac.RemoteDomain, False],[Eac.RestoreUnifiedGroup, False],[Eac.RetentionPoliciesEacDecommisionExemption, True],[Eac.RetentionTagsEacDecommisionExemption, True],[Eac.RmsDecode, False],[Eac.SafeAttachments, False],[Eac.SafeAttachmentsDynamicDelivery, True],[Eac.SafelinkConvergedView, True],[Eac.SafeLinks, False],[Eac.SafeLinksBlockListFlexibleUrlPattern, False],[Eac.SafeLinksDoNotRewriteUrlByFlexibleUrlPattern, False],[Eac.SafeLinksScanUrls, True],[Eac.SelectivelyExportItemsById, False],[Eac.SetAtpPolicyForO365CmdletWACOption, False],[Eac.ShowExternalStorageWarningInGCC, False],[Eac.SingleFolderExport, False],[Eac.SPOPickerSearchAllTenantContent, False],[Eac.SupervisoryReview, False],[Eac.SupportAdfsIdentityInEcpProxy, False],[Eac.TestTransferToE164Extension, False],[Eac.ToggleABQWarning, False],[Eac.UCCAlertsReportingUI, False],[Eac.UCCAuditReports, False],[Eac.UCCIngestionUI, False],[Eac.UCCPermissions, False],[Eac.UCCTestProbeUI, False],[Eac.UnifiedAuditPolicy, False],[Eac.UnifiedAuditReportUI, False],[Eac.UnifiedComplianceCenter, False],[Eac.UnifiedDlpGA, False],[Eac.UnifiedPolicy, True],[Eac.UnifiedRetention, False],[Eac.UnlistedServices, True],[Eac.UseDoNotRewriteUrlsParamInSafeLinksPolicyCmdletAndUI, False],[Eac.WorkloadUIInUrlTraceTab, False],], Flights:[], Constraints:[[LOC, FR-CH],[MACHINE, EXCH2016],[MODE, ENTERPRISE],[PROCESS, MSEXCHANGEECPAPPPOOL],[USER.USER^A, TRUE],[USER.USER^ADOMAIN, TRUE],[USERTYPE, BUSINESS],], IsGlobalSnapshot: False"
Any help would be appreciated ;)
THanks a lot in advance,
