RPC Encryption Required
Topic Last Modified: 2011-05-19
The Microsoft Remote Connectivity Analyzer queries the server that runs Exchange Server and tries to log on by using RPC over HTTP. If RPC encryption is required on the Exchange server, the following warning may be returned by the Analyzer tool:
Store logon returned ecNotEncrypted 2416. The Server requires RPC Encryption. |
By default, Microsoft Office Outlook 2007 is configured by having the Encrypt data between Microsoft Office Outlook and Microsoft Exchange option enabled. However, the default Microsoft Outlook 2003 configuration does not have this option enabled. If you use the Set-MailboxServer cmdlet on an Exchange server to force encrypted connections on users' mailboxes, and the Encrypt data between Microsoft Office Outlook and Microsoft Exchange setting is turned off in Outlook, users receive the following error message when they try to connect to their Exchange mailboxes:
Your Exchange Server administrator has blocked the version of Outlook that you are using. Contact your administrator for assistance. |
Outlook 2003 users who are connecting to Exchange may receive one of the following error messages:
Cannot start Microsoft Office Outlook. Unable to open the Outlook window. The set of folders could not be opened. |
Unable to open your default e-mail folders. The Microsoft Exchange Server computer is not available. Either there are network problems or the Microsoft Exchange Server computer is down for maintenance. |
The connection to the Microsoft Exchange Server is unavailable. Outlook must be online or connected to complete this action. |
Unable to open your default e-mail folders. The information store could not be opened. |
Outlook could not log on. Check to make sure you are connected to the network and are using the proper server and mailbox name. The connection to the Microsoft Exchange Server is unavailable. Outlook must be online or connected to complete this action. |
When Outlook 2003 is configured to use Cached Exchange Mode, Outlook does not display an error message. Instead, Outlook starts in the Disconnected state.
For More Information
To resolve this problem, do one or more of the following:
Determine whether RPC encryption is required by a Microsoft Exchange 2007 mailbox server. To do this, run the following command at the Exchange Management Shell:
Get-MailboxServer <ServerName>If MAPIEncryptionRequired is true, Outlook clients that connect to Exchange must have the Encrypt data between Microsoft Office Outlook and Microsoft Exchange option enabled.
Determine whether RPC encryption is required by a Microsoft Exchange 2010 client access server. To do this, run the following command at the Exchange Management Shell:
`Get-RpcClientAccess | fl Server,EncryptionRequired
If EncryptionRequired is true, Outlook clients that connect to Exchange must have the Encrypt data between Microsoft Office Outlook and Microsoft Exchange option enabled.
Verify that each Outlook profile has the Encrypt data between Microsoft Office Outlook and Microsoft Exchange option enabled. To do this, follow these steps:
Start the Mail item in Control Panel. Then, click E-mail Accounts.
Select the Exchange account, and then click Change.
Click More Settings, and then click the Security tab.
Click to select the Encrypt data between Microsoft Outlook and Microsoft Exchange check box, and then click OK .
Click Next, and then click Finish.
Alternatively, you may want to remove the Exchange requirement for encrypted RPC communications. To do this, follow these steps.
Note
By default, the requirement for RPC encryption is turned off in Exchange Server 2010 Service Pack 1 (SP1).
For an Exchange 2007 mailbox server, run the following command at the Exchange Management Shell:
Set-MailboxServer <ServerName> -MapiEncryptionRequired:$falseFor an Exchange 2010 client access server, run the following command at the Exchange Management Shell:
Set-RpcClientAccess -Server <ServerName> -EncryptionRequired $False
For more information about other issues that may cause the errors mentioned in this topic, see Microsoft Knowledge Base article 924625, When you use Outlook with an Exchange 2007 mailbox, you cannot connect to Exchange 2007, and you receive an error message.
For more information about Outlook 2003 connectivity with Exchange Server 2010, including additional remediation methods, see the Microsoft Knowledge Base article, Outlook connection issues with Exchange 2010 mailboxes because of the RPC encryption requirement.
For information about the Set-MailboxServer cmdlet and MAPIEncryptionRequired attribute, see Set-MailboxServer.
For more information about deploying Exchange 2010 with Outlook 2003 clients, see Concern: Is Having Outlook 2003 Clients Going to Prevent Me from Deploying Exchange 2010?.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for