开发者社区> 余二五> 正文
阿里云
为了无法计算的价值
打开APP
阿里云APP内打开

Your session was ended… Error code:0-0-18100-2-0

简介:
+关注继续查看
Joachim Farla
The last couple of days I was working at a customer side to deploy OCS R2 EE Consolidated Topology, CWA R2 server and OCS R2 Edge. Starting of with OCS R2 EE without any problems. The OCS R2 Documentation is btw very nice to read and makes your OCS R2 deployment much more easier than ever before.
When installing the CWA R2 server the real problems begun. Strange enough this specific error was never seen before. And also search via bing on this specific error nothing useful returned. Not “bings” fault but the error is not seen quite often. Some Spanish and Russian site did write feedback in the OCS R2 forums but nothing useful and still not helping me resolving this issue.
Issue:
When setting up the CWA R2 server and installing the bits for CWA R2 and after that requesting my certificate with the following paramaters:
LcsCmd.exe /Cert /Action:Request /sn:im.contoso.com /san: im.contoso.com,download.im.contoso.com,as.im.contoso.com /ca:ca-server.contoso.com /OU:OCSServers /org:Contoso /country:US /city:Redmond
/state:WA /friendlyName:CWA_Certificate /exportable:TRUE
the webuser was still unable to connect to the pool (pool01.contoso.com). Error message:
Error code:0-0-18100-2-0
So I verified:
  • Can the CWA R2 server connect to the OCS R2 EE pool server? Start: cmd, nslookup, set type=srv, _sipinternaltls._tcp.contoso.com
  • Can I telnet to port 5061 on the pool server. telnet pool01.contoso.com 5061 (blank page returned)
  • Does it make sense when I change the default port 5061 back to 5060?
  • Does it make sense to enabling Server to Server compression on the Pool/Front End properties on the Compression tab?
  • Does it make sense to run the Logging Tool on the CWA R2 server?
  • Does the CWA R2 and OCS R2 server both share the correct Root Certificate Chain?
The last two options will be the best choice for investigating to resolve this issue. After some drill down’s in the CWA R2 Diagnostic Logging I saw some error saying:
<&lt;&lt;&lt;&lt; [UCWeb.exception] (endpoint)----- &lt;epid=15(sip:usera@contoso.com
UCWEB Failure: Code=OcsFailureResponse, SubCode=OcsOperationTimeout, Reason= 
Microsoft.Rtc.Internal.UCWeb.Utilities.UCWException: This operation has timed out. ---> Microsoft.Rt 
c.Signaling.OperationTimeoutException: This operation has timed out. 
   at Microsoft.Rtc.Signaling.SipAsyncResult`1.ThrowIfFailed() 
   at Microsoft.Rtc.Signaling.Helper.EndAsyncOperation[T](Object owner, IAsyncResult result) 
   at Microsoft.Rtc.Collaboration.LocalEndpoint.EndEstablish(IAsyncResult result) 
   at Microsoft.Rtc.Internal.UCWeb.UCWAuthenticatedEndpoint.OotyUserEndpointEstablish_callback(IAsyn 
cResult asyncResult)
and:
( 0000000002DCBCA1 )Endpoint unbound: <endpointId=15>, <SipUri=sip:usera@contoso.com>TL_WARN (TF_COMPONENT) UCWeb (UCWEndpointManager.UnBind:endpointmanager.cs(200))        [0]0DBC.0C44 
::05/28/2009-14:21:57.704.00000004 
    ( 0000000002DCBCA1 )Unbind: Endpoint not found: <endpointId=15>, <SipUri=sip:usera@contoso.co 
m>
For me this error was indicating that there was something wrong on the certificate side. When setting up the CWA R2 server, two different certificates are used. One certificate for MTLS usage and one certificate for public SSL web access. The first certificate is used for server-to-server encryption (server to server communication) and the second certificate is used as web server certificate used on your internal or external Virtual CWA R2 website.
In my specific case the CWA R2 server was used for public remote information workers connecting all over the world so we decided to request an third party certificate.
Resolution or workaround:
(Step 1)
Make sure the request a Web Server certificate from a Windows Server CA procedure is going well. So replace the lcscmd.exe command line to your specific configuration:
LcsCmd.exe /Cert /Action:Request /sn:im.contoso.com /san: im.contoso.com,download.im.contoso.com,as.im.contoso.com /ca:ca-server.contoso.com /OU:OCSServers /org:Contoso /country:US /city:Redmond
/state:WA /friendlyName:CWA_Certificate /exportable:TRUE
(Step 2)
Depending on your type of Windows CA (hopefully Windows Server 2008) issue the certificate if needed. Open the Certificate Authority MMC on the CA server en double click the certificate who is now under the folder “issued certificates” and export the entire certificate to a P7B extension.
(Step 3)
On the Communicator Web Access server, click Start, and then click Run. In the Run dialog box, type mmc, and then click OK.On the File menu, click Add/Remove Snap-in.In the Add/Remove Snap-in dialog box, click Add.In the list of Available Standalone Snap-ins, click Certificates. Click Add.In the Certificates Snap-in dialog box click Computer account, and then click Next.In the Select Computer dialog box, ensure that the Local computer: (the computer this console is running on) check box is selected, and then click Finish.Click Close, and then click OK. In the left pane of the Certificates console, expand Certificates (Local Computer), expand Trusted Root Certification Authorities, and then click Certificates. Right click the Trusted Root Certification Authorities and import the response file (P7B issued by your CA server). And confirm that the certificate is located in this folder.
(Step 4)
Make sure you also copy the certificate to your personal store in the same interface like step 3. Make sure the issuing CA root certificate is also there.
(Step 5)
Double clock the certificate you copied and make sure that the certification path is showing you both the CA server and the issued certificate used for MTLS.
Test your connection again by hitting the CWA URL and you will see that the problem is solved. Any questions please contact me if you want.









本文转自 tigerkillu 51CTO博客,原文链接:http://blog.51cto.com/chenyitai/344950,如需转载请自行联系原作者

版权声明:本文内容由阿里云实名注册用户自发贡献,版权归原作者所有,阿里云开发者社区不拥有其著作权,亦不承担相应法律责任。具体规则请查看《阿里云开发者社区用户服务协议》和《阿里云开发者社区知识产权保护指引》。如果您发现本社区中有涉嫌抄袭的内容,填写侵权投诉表单进行举报,一经查实,本社区将立刻删除涉嫌侵权内容。

相关文章
【解决思路】HTTP Status 500 Type Exception ReportMessage Request processing failed; 【已解决】
经常测试的一个网页,突然报错500。前面也没有发生过,但突然报错,只能先改错了,不然都没法进入页面。为什么会调用到存在bug的语句,而以前没有发生这种情况?这一问题没能想清楚,只能归咎于编译器了。
0 0
error code ELIFECYCLE
error code ELIFECYCLE
0 0
【微信小程序登录错误】"code":-1,"error":"ERR_GET_SESSION_KEY\n{\"code\":0,\"message\":\"\",\"codeDesc\":\"Succe
【微信小程序登录错误】"code":-1,"error":"ERR_GET_SESSION_KEY\n{\"code\":0,\"message\":\"\",\"codeDesc\":\"Succe
0 0
Whitelabel Error Page There was an unexpected error (type=Not Found, status=404). No message availab
Whitelabel Error Page There was an unexpected error (type=Not Found, status=404). No message availab
0 0
如何处理error message Invalid parametertype used at function XXXX
Created by Jerry Wang, last modified on Jan 08, 2015
0 0
SSH中使用延迟加载报错Exception occurred during processing request: could not initialize proxy - no Session
17:40:17,249 ERROR DefaultDispatcherErrorHandler:42 - Exception occurred during processing request: could not initialize proxy - no Session org.
1088 0
Fatal error: session_start()
今天用APMServ5.2.6测试国内的最土团购程序,出现如下错误: Fatal error: session_start() [function.session-start]: Failed to initialize storage module: files (path: ) in D:\APMServ5.2.6\www\htdocs\tuan\include\library\Session.class.php on line 15 出现该问题是session文件无法写入到临时目录,经过对比找到了原因,将下图中“PHP读写限制”设为空(不限制)即可。
647 0
SQL1159 Initialization error with DB2 .NET Data Provider, reason code 2;reason code 10
   解决方案: IIS7-> 应用程序池->你使用的程序池->高级设置->进程模型->标识-> 改"ApplicationPoolIdentity" 为"LoalSystem"  以下资料也许对你有用.
1437 0
Preverification failed with error code 1.
Error preverifying class com.sun.lwuit.animations.Transition3D VERIFIER ERROR com/sun/lwuit/animations/Transition3D.
1059 0
+关注
文章
问答
文章排行榜
最热
最新
相关电子书
更多
Substitution failure is not an
立即下载
Substitution failure
立即下载
低代码开发师(初级)实战教程
立即下载