locked
XMPP Gateway service crashing consistently....

    Question

  • We deployed an XMPP Gateway server this week.  It was very easy and within a short period of time we were federating with Gmail contacts.  But, since then I've found that I have to restart the "Office Communications Server XMPP Gateway" service periodically.

    My initial symptom was that I could no longer talk to Gmail contacts, and their presence information went away.  On my XMPP gateway server, the service was still running and there were no errors in the event log.  But, upon trying to recylcle the service, it fails to start.  And this error is logged in the OCS event log:

    Office Communications Server SIPXMPPTGW: Service TLS Listen has been failed.
    
    Message: Service Stopped
    Stack: Xmpp stack listening failed


    And again, repeatedly trying to start the service results in failure.  But, all I have to do is wait about five minutes and the service starts fine and I can federate with Gmail again.

    Is anyone else seeing this behavior?  My OS is Server 2008 R2 x64, and nothing else is on this server besides the gateway.
    Wednesday, October 07, 2009 2:28 PM

Answers

  • That blog which referenced Server 2008 R2 as a host OS is being corrected by the product team.  The XMPP Gateway falls into the same support umbrella that the other OCS 2007 R2 compoents do, meaning none are currently supported on Server 2008 R2.  Server 2003 and 2008 are the only supported host OSes for all OCS 2007 R2 services.
    Jeff Schertz, PointBridge | MVP | MCITP: Enterprise Messaging | MCTS: OCS
    • Marked as answer by Ed051042 Thursday, October 08, 2009 4:05 PM
    Thursday, October 08, 2009 12:37 AM
    Moderator
  • Ok, I (finally) figured it out.  I was trying to use the Certificates MMC to create a custom request to send to my AD certificate authority.  Getting the certificate was no problem, but the XMPP gateway just gave me the error when I tried to assign it to the SIP configuration.  So, what ended up working was creating a custom certificate request through my OCS front end server, using the Certificates wizard built into OCS.  Then, I submitted that custom request to the CA and installed the certificate on my OCS front end.  I then exported it with the private key and imported it into my XMPP gateway, and all was well.  Thanks all for the help.
    • Marked as answer by Ed051042 Thursday, October 08, 2009 4:05 PM
    Thursday, October 08, 2009 4:05 PM

All replies

  • I don't know why the service is just stopping, but I do know that restarting the XMPP gateway service is flakey sometimes.  If the service is running and I need to restart, I always stop it and then restart it separately.

    You might want to slap on a process monitor to see what's going on with the process.
    Wednesday, October 07, 2009 3:45 PM
  • Is WS 2008 R2 a supported OS for the XMPP Gateway?  None of the other OCS 2007 R2 products are supported yet on WS 2008 R2...and I've had lots of problems trying to get anything else workng on it.

    jon
    Wednesday, October 07, 2009 8:34 PM
  • The planning guide lists 2008 as a supported OS, but not R2 specifically.  I read a blog post from a MS person that listed R2, which is why I went with it.  I can't imagine why R2 could be causing the problem, but anything is possible.  Any MSFT people here that can confirm?
    Wednesday, October 07, 2009 11:20 PM
  • That blog which referenced Server 2008 R2 as a host OS is being corrected by the product team.  The XMPP Gateway falls into the same support umbrella that the other OCS 2007 R2 compoents do, meaning none are currently supported on Server 2008 R2.  Server 2003 and 2008 are the only supported host OSes for all OCS 2007 R2 services.
    Jeff Schertz, PointBridge | MVP | MCITP: Enterprise Messaging | MCTS: OCS
    • Marked as answer by Ed051042 Thursday, October 08, 2009 4:05 PM
    Thursday, October 08, 2009 12:37 AM
    Moderator
  • Thanks.  I reinstalled this morning as Win 2008.  While I'm at it, I'd like to follow the guide's best practices and not join the domain with this server.  But, how do I request a certificate that will work with TLS from my AD CA?  When I try to do so and get a certificate, the XMPP configuration screen says "Error while loading certificates".  When I do a "custom request" from the Certificates MMC, what fields do I need to check off under EKU, etc?
    Thursday, October 08, 2009 3:15 PM
  • Ok, I (finally) figured it out.  I was trying to use the Certificates MMC to create a custom request to send to my AD certificate authority.  Getting the certificate was no problem, but the XMPP gateway just gave me the error when I tried to assign it to the SIP configuration.  So, what ended up working was creating a custom certificate request through my OCS front end server, using the Certificates wizard built into OCS.  Then, I submitted that custom request to the CA and installed the certificate on my OCS front end.  I then exported it with the private key and imported it into my XMPP gateway, and all was well.  Thanks all for the help.
    • Marked as answer by Ed051042 Thursday, October 08, 2009 4:05 PM
    Thursday, October 08, 2009 4:05 PM
  • Ed,
    Care to share the setting you used for the cert? I am having the same problem where i get the "error loading certificates" when i select the sip cert.I have tried to run the Certifiacates wizard on my front end and export including the private key, but it doesnt seem to be helping any. Does it matter if i do an inle request vs an offline? Any help would be greatly appreciated.

    Jason
    Monday, December 21, 2009 5:07 PM