Hi,
May I have the syntax/process for creating Exchange Certificate requests with signature algorithm of SHA-2?
I need to generate certificate request for Exchange 2007, 2010, and 2013
Thanks!
↧
Exchange Certificate requests signature algorithm SHA-2
↧
Exchange 2013 Edge subscription
I have Exchange 2013 installed using a second site for resilience.
I am configuring Exch 2013 Edge servers at both locations.
Lets say Edge01 and Edge02 are in Santa Fe along with CAS and Mailbox servers,
Edge03 and Edge04 are in Minneapolis along with associated CAS and MB servers.
Santa Fe and Minneapolis are in different AD Sites.
For each edge server, I will need to create a subscription for each location, right?
Edge01 will require a subscription for Santa Fe and a separate subscription for Minneapolis.
And the same would go for each edge server.
Am I correct?
Tom
↧
↧
Exchange 2007 / 2010 / 2013 - Public folders in 2007 - can we import external 2013 public folders?
We are mid migration from 2007 / 2010 to 2013. Our public folders reside in Exchange 2007. We have a need to impoart public folders from an external Exchange 2013 system ( 2013 public folders ) into our environment.
- How can I go about getting hte 2013 PFs into 2007?
- Is export the 2013 PF to PST and import from the PST into 2007 a viable solution? The best solutions?
Tom.
↧
Exhcange 2003 on a 2003 server to exchange 2013 on a 2012 server - problems...
Hi
I removed my 2003 exhcange server physically and installed a 2012 server with exchange 2013 on it.
How do I get it to work? Where do I manage the exh 2013 server, through web interface only?
It installed, and worked for a few days (after i first had to remove the 2003 exchange server).
Now i only get "done" in the web interface after loggin in, outlook does'nt find the server when trying to connect to accounts and i can't access it through powershell (exchange management shell) and the Exchange Toolbox does not work neither... The
services are running though, but that's about it.
It won't uninstall cause there is mailboxes etc on the mailbox database..
My servers are on a standalone network, cut of from the internett..
How do I get a clean slate to install echange from scratch?? We only have a few users, so they won't mind..
Any help would be appreciated.. As of now, the server does nothing...
↧
exchange 2013 recipient filtering
I went through all the steps to enable recipient filtering in Exchange 2013 so that users who are not in the directory are outright rejected however using telnet, i can still relay mail to users that do not exist.
Set-RecipientFilterConfig -Enabled $true
Set-RecipientFilterConfig -BlockListEnabled $true
Set-RecipientFilterConfig -RecipientValidationEnabled $true
however:
telnet exchange.domain.com 25Trying xxxxxxxx...
Connected to xxxxxxxxx.
Escape character is '^]'.
220 xxxxxxxxx Microsoft ESMTP MAIL Service ready at Tue, 5 Mar 2013 08:02:40 -0500
helo joe 250 xxxxxxx Hello [xxxxxxx]
mail from:<xxxxxxxx>
250 2.1.0 Sender OK
rcpt to:<nouser@domain.com>
250 2.1.5 Recipient OK
↧
↧
An IIS directory entry couldn't be created. The error message is Access is denied.
We are migrating from Exchange 2010 to Exchange 2013. We completed the install of Exchange 2013 - CAS and MBX on two separate servers - without any issue. I was then able to create a mailbox on the new 2013 CAS via the ECP. However, when I try to edit my CAS server for Outlook Anywhere, I get the error "An IIS directory entry couldn't be created. The error message is Access is denied. HResult = -2147024891"
The same error shows up when I try to run "get-owavirtualdirectory" in EMS. Although it does show me the OWA from my 2010 server.
In virtual directories, I have a lot references to my current 2010 server.
Both the 2013 servers have Exchange Trusted Subsystem group added to their local Administrators group.
I've Googled this and I find a lot of references to Exchange 2007, but we don't have that in our environment. We do have an old server up that still has an old Exchange 2003 on it - but this has been inactive since we moved to 2010 and hasn't caused any issues at all. Should I try adding the Exchange Trusted Subsystem group to the local admins group of that server, or will that cause more issues?
Does anyone know what could be the issue here? Am I just missing some post-installation steps?
Thank you,
Sid
↧
ActiveSync Virtual Directory External URL
Data Center with new Internet pipe. Current ExternalURL is blank and InternalURL is set to local server https://dns-name/Microsoft-Server-ActiveSync. If we modify these entries to point to a load balanced published DNS name is a restart required for it to be applied?
↧
Configuring IIS and DNS for Exchange 2013 running on Second Win2012 R2 Server
Hi Folks,
I have a Windows 2012 R2 Server with Essentials role and I'm running a Hyper-V instance of Windows 2012 R2 with Exchange 2013 installed joined to domain. I have been through the wizards and the Exchange Server deployment wizard but I'm stuck with configuring DNS records correctly.
Currently I can browse to https://remote.contoso.com externally and internally which works as expected but not https://remote.contoso.com/owa or any other Exchange pages. All I get is 404 - File or directory not found. However if I browse internally to https://exchangeserver.domain.local/owa it works. So I'm guessing 404 is coming from the DC server not the exchange server. Hence I think its DNS.
Although I have noticed that IIS is on the DC and the Exchange server, showing different Sites. Does this have anything to do with the issue at hand. Also the guides are not perfectly clear on how to add the DNS CNAME records.
Would someone be so kind as to point me in the right direction.
Thank you
↧
Migrated (or New) 2013 Mailboxes Not Opening in Outlook
Hi,
I am working on our Exchange 2010-2013 migration and have come upon an issue after migrating test mailboxes. After migrating a mailbox to the 2013 database I am able to open it in OWA but when I try to open it via Outlook I get the error message "Cannot open your default e-mail folders. You must connect to Microsoft Exchange with the current profile before you can synchronize your folders with your Outlook data file (.ost)". I also get the same message when I create a new mailbox in the 2013 database and try to open it.
I have deleted and recreated the profile on the client. When I create the profile and let autodiscovery configure the information I get a message that the Ex2013 server is not available and the window comes up allowing me to enter the server and mailbox name. If I enter the Ex2013 server name I get the same error whether I enter the hostname of the server or the full DNS name. When I enter the Ex2010 server name it accepts it and converts it to the DNS name of the Ex2013 server but Outlook will still not open.
Both servers are single servers hosting all the roles. The Ex2010 server is using an internal certificate using the internal DNS. When I originally set up the Ex2013 server I did the same thing but have since purchased a SAN certificate based on our public DNS and installed that. The 2 names on the certificate are webmail.(xxxx).com and autodiscover.(xxxx).com. I was getting certificate errors on machines and now I have the SAN certificate that seems to have solved that problem.
I have a feeling I might have 2 problems, 1 with the autodiscover settings and another with the mailbox looking at the 2010 CAS rather than 2013. After doing some research I'm still a little lost in how I move forward on this one. Any help would be appreciated.
Peter Haase
↧
↧
Accepted domains in Exchange SAN certificate
Hi All,
I am having few queries please clarify me .
In my environment ,i having the accepted domains list like below
xyz.com
abc.com
All the users in my organisation is having the primary smtp address as nithya@xyz.com and secondary smtp address as nithya@abc.com
In my san certificate i am not having any of the above mentioned accepted domains.
Do i need to have all the accepted domains on the SAN certificate or else only primary smtp address domain suffix is enough ?
In case if don't have any of my accepted domains suffixes in SAN certificate what will happen ? Because why i am asking is i am not getting any certificate related errors ?
As an additional info , we are using the single namespace for exchange services like owa ,activesync ,pop/imap and outlook anywhere (both internal & external ) and that name is available in my SAN certificate.
Autodiscover namespace is also included in my SAN certificate .
Thanks S.Nithyanandham
↧
RBAC upgrade?
We've migrated users mailboxes from Exchange 2010 to Exchange 2013, and trying to resolve resting nuisances. One of them: now users can't change its membership in distribution groups (universal distribution groups) with Open MemberJoinRestriction / MemberDepartRestriction using Outlook.
Exploring RBAC role entries I discover that they keep reference to Exchange 2010, like this:
(Microsoft.Exchange.Management.PowerShell.E2010) Get-CalendarNotification -Credential -Debug -DomainController -ErrorAction -ErrorV
ariable -Identity -OutBuffer -OutVariable -ReadFromDomainController -ResultSize -Verbose -WarningAction -WarningVariable
Is it Ok Or I have to upgrade RBAC entries?
Dmitry
↧
Migrating Exchange 2007 to Exchange 2010 at a different physical location - Suggestions??
Hello! I have a domain in Canada that is running Exchange 2007. My company wants to consolidate this Exchange and migrate the mail to the USA based Exchange 2010 in NYC. Not only is it migrating from 2007 to 2010, it's also moving locations physically.
Does anyone have any thoughts on how to best approach such a situation?
↧
Retention Policy - Personal Tags Retention Active yet user not able to modify PRT's
Can you have Exch Policy running on Personal Tag's set by an application without providing user with PRT Admin function?
i.e.
Folder Policy is set for 180 days retention.
Outlook Add-In assigns a PRT (to "never delete") to an email item in this folder. This is triggered by a change to Item Message Class that has been changed to "...Classified".
Exch Retention policy processes retention deleting all emails in this folder excluding the email item with PRT of "never delete"
User does not have access to EAC (PRT Admin) to modify PRT's
↧
↧
Exchnage 2010 to 2013 plan to migrate
I have planned to migrate exchange 2010 to 2013 with co-existance
My Existing environment exchange 2010
3 servers DC (Primary site-2 DC’s and DR site-1DC)
3 servers mailbox(Primary site-2 mailboxes and DR site- 1 mailbox)
3 servers Cas & Hub(Primary site-2 servers DR site- 1 server)
For planned to build existing AD with new exchange 2013 environment
1 server (Cas & Mailbox) –Primary site
1 server (Cas & Mailbox) –DR site
My question is after installed and configured exchange 2013 server, user’s may connect through exchange 2013 servers virtual directory which is migrated 2010 to 2013 mailboxes users only not all users from internal/external.
Rest of the users that is existing in exchange 2010 environment users, they need to connect directly exchange 2010 CAS server’s(virtual directory) not via exchange 2013 CAS(virtual directory).
Is it possible way ?
Can anyone answer my question?
↧
Double Contacts Folder after Mailbox Migration
Here’s a new one for you… I’ve done a few Exchange 2007/2010 to 2013 migrations so far, and to my knowledge they’ve been successful… until now…
I migrated my own server from 2007 to 2013 over the weekend. Mailbox migration finished early Tuesday morning my time (Monday was a public holiday). Everything seemed to work just fine.
Yesterday (Tuesday) I noticed on my Win8.1 phone, that a large number of my contacts were missing. Digging deeper I found that my phone was missing the contacts from my main mailbox. I checked my iPad to see if the contacts were there – they were! I figured somethings up with my Win8.1 phone, so I removed the account and readded it – same problem. I added a user to the contacts on my Win8.1 phone and sync’d it. It showed up in the iPad no problems.
I then went to Outlook and switched the pane to Folder View – I could then see two contacts folder both at the root of my mailbox. The test user was in the first folder. If I try to expand the 2<sup>nd</sup> folder, it sends outlook into a massive loop and flickers between the two folders as if they are fighting one on one…
If however I switch the view to People – I see the two contacts folders as just fine and can look into each of them. In one of them I can see the Testuser. In the other folder I can see all my other contacts that are "missing"
But wait… it gets better still. In our office several months back, we migrated from Exchange 2010 to 2013. I wondered if others had seen the problem. From what I can see today, it appears that anyone with a Windows 8 phone has this duplicated contacts folder. They appear to have the exact same problem… right down to the flickering and crash of Outlook 2013…
I'm concerned now because this is now a couple of migrations that we've seen this on and I've no idea whats gone wrong.
I've checked event logs - nothing seems amiss there.
Any thoughts on how to troubleshoot this?
Wayne
Wayne Small
↧
exchange 2013 recipient filtering not RCF Compliant
Recipient filtering for Exchange 2013 not possible during rcpt-to phase ? This is not RCF compliant...
Does anyone has a solution?
↧
Ex BPA claims MSExchangeOWAAppPool is running under wrong identity, but that is not true.
The very first thing the Best Practices Analyzer says wrong is that Application pool 'MSExchangeOWAAppPool' on server 'EMAIL' is configured to run under the wrong identity. 'MSExchangeOWAAppPool' should run under the 'Local System' identity.
I would like to know where this tool is getting this information? I went into IIS and verified MSExchangeOWAAppPool is running under the LocalSystem identity.
What else do I need to do? The OWA virtual directory is attached to this app pool. Things look correct so why is the BPA saying that I have an error in the configuration?
↧
↧
Exchange 2003/SBS 2003 to Exchange 2010/SBS2011 public folder problems
I started a migration from SBS 2003 to SBS 2011 a few months ago (I have done this successfully several times in the last 3 years). I ran in to a problem with public folder migration, wherein the replicas would never move to the new server (and I mean never). This is a small installation with small public folders (i.e. the OAB has maybe 100 entries in it, not really anything else stored in the public folders).
I got tired of playing with it, and the new server was running OK with the old one still there, so I left it alone for 2 months. I picked it up again this week, and still can't get the public folders to move. I am running in to problems with the OAB not updating on the Outlook clients properly; if I try to download the OAB I get the following error:
Task 'Microsoft Exchange' reported error (0x8004010F) : 'The operation failed. An object cannot be found.'
I read several articles on forcing the Exchange 2003 box off the network, but I decided to try reinstalling Exchange on the old box first. That failed also, and now I can't start most of the Exchange services, and if I try to use SBS 2003 setup to repair Exchange, I get "Multiple components cannot be assigned the requested action(s) because: You cannot install this product on a computer running Windows Professional". If I try Remove, I get "Setup encountered an error while checking prerequisites for the component "Microsoft Exchange": 0X80072030 (8240): There is no such object on the server.
I just want to get this thing off the network and fix all of the Exchange components on the new server to take over. There is really nothing left on the old server that I want.
HELP!
↧
Unable to Install
Hi,
Trying to install Exchange 2013 Mailbox and Client Access roles but every time I do this I get the following error when it tries to install the mailbox role. I'm using the domain administrator account to install.
Error:The following error was generated when "$error.Clear();
if ($RoleIsDatacenter -ne $true -and $RoleIsDatacenterDedicated -ne $true)
{
if (Test-ExchangeServersWriteAccess -DomainController $RoleDomainController -ErrorAction SilentlyContinue)
{
$sysMbx = $null;
$name = "SystemMailbox{bb558c35-97f1-4cb9-8ff7-d53741dc928c}";
$dispName = "Microsoft Exchange";
Write-ExchangeSetupLog -Info ("Retrieving mailboxes with Name=$name.");
$mbxs = @(Get-Mailbox -Arbitration -Filter {name -eq $name} -IgnoreDefaultScope -ResultSize 1 );
if ($mbxs.Length -eq 0)
{
Write-ExchangeSetupLog -Info ("Retrieving mailbox databases on Server=$RoleFqdnOrName.");
$dbs = @(Get-MailboxDatabase -Server:$RoleFqdnOrName -DomainController $RoleDomainController);
if ($dbs.Length -ne 0)
{
Write-ExchangeSetupLog -Info ("Retrieving users with Name=$name.");
$arbUsers = @(Get-User -Filter {name -eq $name} -IgnoreDefaultScope -ResultSize 1);
if ($arbUsers.Length -ne 0)
{
Write-ExchangeSetupLog -Info ("Enabling mailbox $name.");
$sysMbx = Enable-Mailbox -Arbitration -Identity $arbUsers[0] -DisplayName $dispName -database $dbs[0].Identity;
}
}
}
else
{
if ($mbxs[0].DisplayName -ne $dispName )
{
Write-ExchangeSetupLog -Info ("Setting DisplayName=$dispName.");
Set-Mailbox -Arbitration -Identity $mbxs[0] -DisplayName $dispName -Force;
}
$sysMbx = $mbxs[0];
}
# Set the Organization Capabilities needed for this mailbox
if ($sysMbx -ne $null)
{
# We need 1 GB for uploading large OAB files to the organization mailbox
Write-ExchangeSetupLog -Info ("Setting mailbox properties.");
set-mailbox -Arbitration -identity $sysMbx -UMGrammar:$true -OABGen:$true -GMGen:$true -ClientExtensions:$true -MailRouting:$true -MessageTracking:$true -PstProvider:$true -MaxSendSize 1GB -Force;
}
else
{
Write-ExchangeSetupLog -Info ("Cannot find arbitration mailbox with name=$name.");
}
}
else
{
Write-ExchangeSetupLog -Info "Skipping creating E15 System Mailbox because of insufficient permission."
}
}
" was run: "Database is mandatory on UserMailbox.".
Error:
The following error was generated when "$error.Clear();
if ($RoleIsDatacenter -ne $true -and $RoleIsDatacenterDedicated -ne $true)
{
if (Test-ExchangeServersWriteAccess -DomainController $RoleDomainController -ErrorAction SilentlyContinue)
{
$sysMbx = $null;
$name = "SystemMailbox{bb558c35-97f1-4cb9-8ff7-d53741dc928c}";
$dispName = "Microsoft Exchange";
Write-ExchangeSetupLog -Info ("Retrieving mailboxes with Name=$name.");
$mbxs = @(Get-Mailbox -Arbitration -Filter {name -eq $name} -IgnoreDefaultScope -ResultSize 1 );
if ($mbxs.Length -eq 0)
{
Write-ExchangeSetupLog -Info ("Retrieving mailbox databases on Server=$RoleFqdnOrName.");
$dbs = @(Get-MailboxDatabase -Server:$RoleFqdnOrName -DomainController $RoleDomainController);
if ($dbs.Length -ne 0)
{
Write-ExchangeSetupLog -Info ("Retrieving users with Name=$name.");
$arbUsers = @(Get-User -Filter {name -eq $name} -IgnoreDefaultScope -ResultSize 1);
if ($arbUsers.Length -ne 0)
{
Write-ExchangeSetupLog -Info ("Enabling mailbox $name.");
$sysMbx = Enable-Mailbox -Arbitration -Identity $arbUsers[0] -DisplayName $dispName -database $dbs[0].Identity;
}
}
}
else
{
if ($mbxs[0].DisplayName -ne $dispName )
{
Write-ExchangeSetupLog -Info ("Setting DisplayName=$dispName.");
Set-Mailbox -Arbitration -Identity $mbxs[0] -DisplayName $dispName -Force;
}
$sysMbx = $mbxs[0];
}
# Set the Organization Capabilities needed for this mailbox
if ($sysMbx -ne $null)
{
# We need 1 GB for uploading large OAB files to the organization mailbox
Write-ExchangeSetupLog -Info ("Setting mailbox properties.");
set-mailbox -Arbitration -identity $sysMbx -UMGrammar:$true -OABGen:$true -GMGen:$true -ClientExtensions:$true -MailRouting:$true -MessageTracking:$true -PstProvider:$true -MaxSendSize 1GB -Force;
}
else
{
Write-ExchangeSetupLog -Info ("Cannot find arbitration mailbox with name=$name.");
}
}
else
{
Write-ExchangeSetupLog -Info "Skipping creating E15 System Mailbox because of insufficient permission."
}
}
" was run: "Database is mandatory on UserMailbox.".
Thanks
↧
creating dag gives error for witness share event id 5000 Failed to save admin audit log for this cmdlet invocation
I have a 2010/2013 environment.
I'm trying to create a DAG in 2013 but when i try to specify the fileshare witness directory(or leave it blank) i see this error in the 2013 mailbox server.
i currently only have 1 2013 cas server and 1 2013 mbx server.
i tried to point the witness directory to be the 2013 cas server.
Below is the event
Failed to save admin audit log for this cmdlet invocation.Organization: First Organization
Log content:
Cmdlet Name: Set-DatabaseAvailabilityGroup
Object Modified: DAG1
Parameter: WitnessDirectory = C:\ExchangeWitness
Parameter: Identity = DAG1
Caller: domain.com/Test_Items/2013admin
ExternalAccess: False
Succeeded: True
Run Date: 2014-09-18T14:27:18
OriginatingServer: 2013mbxserver1 (15.00.0995.012)
Error:
Microsoft.Exchange.Data.Storage.NotSupportedWithServerVersionException: The mailbox of user MsExchDiscoverye0dc1c29-89c3-4034-b678-e6c29d823ed9@leonmedicalcenters.com that is located on a server that is running version 14 can't be opened on a server that is running version 15.
at Microsoft.Exchange.Data.Storage.MailboxSession.InternalValidateServerVersion(IExchangePrincipal owner)
at Microsoft.Exchange.Data.Storage.MailboxSession.InternalCreateMailboxSession(LogonType logonType, IExchangePrincipal owner, DelegateLogonUser delegatedUser, CultureInfo cultureInfo, String clientInfoString, IBudget budget, Action`1 initializeMailboxSession, InitializeMailboxSessionFailure initializeMailboxSessionFailure, MailboxSessionSharableDataManager sharedDataManager)
at Microsoft.Exchange.Data.Storage.MailboxSession.CreateMailboxSession(LogonType logonType, IExchangePrincipal owner, DelegateLogonUser delegateUser, Object identity, OpenMailboxSessionFlags flags, CultureInfo cultureInfo, String clientInfoString, PropertyDefinition[] mailboxProperties, IList`1 foldersToInit, GenericIdentity auxiliaryIdentity, IBudget budget, Boolean unifiedSession, MailboxSessionSharableDataManager sharedDataManager)
at Microsoft.Exchange.Data.Storage.MailboxSession.ConfigurableOpen(IExchangePrincipal mailbox, MailboxAccessInfo accessInfo, CultureInfo cultureInfo, String clientInfoString, LogonType logonType, PropertyDefinition[] mailboxProperties, InitializationFlags initFlags, IList`1 foldersToInit, IBudget budget, Boolean unifiedSession, MailboxSessionSharableDataManager sharedDataManager)
at Microsoft.Exchange.Data.Storage.MailboxSession.OpenAsSystemService(IExchangePrincipal mailboxOwner, CultureInfo cultureInfo, String clientInfoString, Boolean readOnly)
at Microsoft.Exchange.ProvisioningAgent.XsoAuditLogger.LogLocal(IAuditLogRecord auditRecord)
at Microsoft.Exchange.ProvisioningAgent.AdminLogProvisioningHandler.WriteAuditRecord(Stopwatch stopwatch)
Also should I be able to ping the DAG ip address?
thanks in advance
↧