Runs the administration client wizard to test connectivity to websites, Exchange server services, or LDAP server.

Note - This wizard saves its log messages in these files:

  • $CVPNDIR/log/AdminWizardLog.elg

  • $CVPNDIR/log/wizard.elg

  • $CVPNDIR/log/wizardDns

  • $CVPNDIR/log/wizardEstimation

  • $CVPNDIR/log/wizardLdap

  • $CVPNDIR/log/wizardProxy





      exchange_wizard <Exchange Server Address> <User Name> <Password> [<Options>]

      ldap <LDAP server>

      wizard <Web Site Address>

Important - On Scalable Platforms (Maestro and Chassis), you must run the applicable commands in the Expert mode on the applicable Security Group.




No Parameters

Shows the built-in help.


Kills the administration client wizard that already runs.


Estimates how many seconds the wizard will run.

exchange_wizard <Exchange Server Address> <User Name> <Password> [<Options>]

Tests the response from an Exchange server:


The parameters are:

  • <Exchange Server Address> - Specifies the Exchange server by its IP address or hostname.

  • <User Name> - Specifies the user name on the Exchange Server.

  • <Password> - Specifies the password on the Exchange Server.

  • <Options> - Specifies the test options.


The available test options are:

  • -t {as | ews | owa | all} - Specifies the services to test on the Exchange server:

    Note - To specify more than one service, separate them with a comma. For example: as,ews

    • all - Tests all of the services (default)

    • as - Tests ActiveSync

    • ews -Tests Exchange Web Services

    • owa - Searches for the Outlook Web Application (OWA) address of the Exchange server

  • -d <DNS Servers> - Specifies the DNS servers.

  • -x <Proxy Servers> - Specifies the Proxy servers.

  • -c <Username>:<Password> - Specifies the user name and password for Proxy server authentication.

  • -n - Allows only NTLM authentication instead of Basic and NTLM.

  • -m <Domain Name> - Specifies the user domain name.

  • -s <ActiveSync Path> - Tests a specified ActiveSync service path (Default: /Microsoft-Server-ActiveSync).

  • -e <EWS Path> - Tests a specified Exchange Web Services service path (Default: /EWS/Exchange.asmx).

  • -f <File Name> - Writes the test results to the specified file

  • -r - Sends a request with the configured Proxy, DNS, HTTP protocol, and authentication method.

    • If you also specify the "-n" option, then the NTLM authentication method is used.

    • If you do not specify the "-n" option, then only the Basic authentication method is used.

  • -v - Makes the HTTP requests verbose. The verbose result files are saved in the $CVPNDIR/log/trace_log/ directory.

  • -p - Validates the SSL certificate of the web server.

ldap <LDAP server>

Tests connectivity to the specified LDAP server.

You can specify the LDAP server by its IP address or hostname.

wizard <Web Site Address>

Tests connectivity to the specified URL.

Example 1 - Check URL accessibility of ''

admin_wizard wizard

Example 2 - Check accessibility to the LDAP server

admin_wizard ldap

Example 3 - Check accessibility for username 'user1' to ActiveSync and EWS on the Exchange server ''

admin_wizard exchange_wizard username user1 -t as,ews