Exchange 2007

Reinstall RPC over HTTP Proxy on SBS 2008

On This Page

• Remove and Reinstall the RPC Proxy
• Reconfigure Terminal Services Gateway
• Final Tasks

Remove and Reinstall the RPC Proxy

The RPC over HTTP Proxy feature on SBS 2008 is not in the default directory. Therefore if you have to remove the feature and reinstall it, it will not work correctly.

To get the feature to install in the SBS web site, do the following.

1. Remove the RPC over HTTP Proxy Feature using Features in Server manager and reboot. After the reboot the removal will complete.
   Verify that the RPC and RPC with Cert virtual directories have been removed IIS manager. If they have not, delete them and run IISRESET.
2. Open the registry editor and create the following key:
   
   HKLM\SOFTWARE\MICROSOFT\RPC\RpcProxy
    
3. Under this newly created key, create a new string value called Web Site and set "SBS Web Applications" as the data.
   
   Alternatively, copy and paste the following in to a notepad document. Save it to the server with the .reg extension. Then right click and choose merge. 

   Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\RpcProxy] "Website"="SBS Web Applications"
    

4. Close the registry editor.
5. Install the RPC over HTTP Proxy feature from Server Manager again.
6. When complete, check the two web sites. The RPC and RPC with Cert virtual directories should be absent from the Default Web Site and present in the SBS Web Applications web site.

Reconfigure Terminal Services Gateway

The reinstall of the RPC over HTTP Proxy component also breaks the Terminal Services gateway which is what provides remote desktop facilities in RWW. Therefore that will need to be installed again.

1. Add the Role using Server Manager. It is part of the Terminal Services role. TS Gateway is the Role Service that you want to select.
   DO NOT add any other parts of the Terminal Services role, just the Gateway.
2. During the wizard, select your SSL certificate.
3. You will then be asked to create connection and authorisation policies. Choose to create them later.
4. After the wizard has completed, open the Terminal Services Gateway Manager. Expand Policies under the server.
5. Under Connection Authorisation Policies, create a new Policy with the following settings:

   Name: General Connection Authorization Policy
   User Groups: Domain\Domain Users
   Supported Windows authentication methods: Password, Smart Card
    

6. Under Resource Authorisation Policies, create two policies.

   Name: General Resource Authorization Policy (1)
   User Groups: Domain\Domain Users
   Allowed Resources: Domain\Domain Controllers
   Port: 3389

   Name: General Resource Authorization Policy (2)
   User Groups: Domain\Domain Users
   Allowed Resources: Domain\Domain Computers
   Port: 3389

Final Tasks

Remember to enable Outlook Anywhere in Exchange management console after completing these tasks. The external URL is remote.example.com by default (where example.com is your external host name). It takes approximately 15 minutes for the feature to be enabled, and you need to run iisreset as prompted when you enable the feature.

If you want to enable it through the management shell then use the following command:

Enable-OutlookAnywhere -Server:sbs2008 -ExternalHostname:remote.example.com -ClientAuthenticationMethod:NTLM,Basic