Quantcast
Channel: Exchange Server 2013 - Setup, Deployment, Updates, and Migration 论坛
Viewing all 7008 articles
Browse latest View live

The local domain needs to be prepared using Setup /PrepareDomain before server roles can be installed

September 25, 2014, 6:17 pm
$
0
0

Hello Everyone,

I've been installing Exchange servers since Exchange 5.5. I'm now installing Exchange 2013 with SP1 that will coexist with one Exchange 2010 SP3 server. I'm installing it on 2012 R2 Enterprise Edition. There is a root domain and one child domain. The Exchange Server is in the child domain.  Even though I've run the .\setup PrepareSchema, AD and domain and all were successful I still get the message below when running Exchange setup. If I look at what /preparedomain does it seems like it has done what is needed. I've run the /prepareschema, /preparead and /preparealldomains in the root domain & have even run /preparedomain over and over in the child domain. Like I said everytime I run these they are successful. Oh and my account belongs to all the right groups needed to run these. Any ideas would be appreciated!

The local domain needs to be prepared using Setup /PrepareDomain before server roles can be installed.

For more information, visit: http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.DomainPrepRequired.aspx
Search

Move linked mailboxes to source domain

May 12, 2015, 9:58 am
$
0
0

I'm responsible for two separate but related organizations. Prior to my arrival here, a single Exchange 2010 server was in place with the users of one domain assigned User Mailboxes, and users of the other domain assigned Linked Mailboxes. 

I'm trying to break this apart & have those linked mailboxes be user mailboxes in their source domains attached to the already existing users. I'm attempting to use the Prepare-MoveRequest.ps1 script to facilitate this, but get the following error:

The operation couldn't be performed because object '{DC/OU/CN}' couldn't be found on '{domain controller FQDN}'.

Cannot create mail enabled user because an existing object with type  already has the same proxy address/MasterAccountSid.

I've set the -UseLocalObject switch in the command, and I'm certain the user exists in the location returned by the error.

Exchange 2010 Service Pack 3 modify group policy

May 10, 2015, 8:12 am
$
0
0

After installation of Exchange 2010 service pack 3, my Windows Phone 8.1 require password on screen saver and ican'tdisable  password request becausethegroup policy.I researchedin domaingroup policybutthepolicyofpasswords onscreen saversisnotconfiguredinall branches.

CU7 and Public Folders broken again for Windows XP users?

December 11, 2014, 11:19 am
$
0
0
Went from SP1 -> CU7 and now XP users are getting the same error they had with CU3. Anyone else having the issue?

Installed Jetstress 2013 after installing exchange 2013

May 26, 2015, 1:17 pm
$
0
0

We are currently planning our migration  from Exchange 2010 to Exchange 2013 and we did not realize that we should run the jetstress tool and then remove it before you install Exchange 2013 because it can cause problems with performance counters. I read this in the Jetstress Field Guide. Exchange 2013 was installed previously, but it has not been configured yet. I would like to know if I can just remove Jetstress and configure Exchange or should I perform a reinstall of Server 2012 and Exchange 2013 and if so can I just wipe it clean and start from the beginning or does it have to be removed from AD as well.  Any advice would be greatly appreciated.  Thank you.

Jose

The term 'New-MailContact' is not recognized as the name of a cmdlet, function, script file, or operable program

May 26, 2015, 3:15 pm
$
0
0

Hello,  

I just updated Exchange 2013 CU5 to CU7 over the weekend.  Went well enough, no major issues noted and mail flowed throughout the upgrade.  Configuration: 2 Mailbox servers role in DAG configuration, 2 CAS servers using a 3rd party NLB.  

First business day after and I have a user requesting a Contact with an external email address.  

Went through the ECP and was unable to create the contact because the + sign indicating New is missing indicating from the Recipient Contacts area.

Went into Exchange Powershell. New-Mailcontact does not autocomplete when tabbed, typed out it returns this:

New-Mailcontact : The term 'New-Mailcontact' is not recognized as the name of a cmdlet, function, script file, or
operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try
again.

I can do a Get-MailContact and it returns the exiting Contacts.

For CU7 was the Get-MailContact eliminated?

I've researched the web.  Nothing indicates any issue with the release notes and not seeing anything on line about this.  I'm running Exchange Powershell so I'm not having to do the PS Session or Import modules and the other Exchange powershell cmdlets are working.  The only change that has been made was the CU7 update.  The existing Contacts were created using ECP and Powershell both.  I understand that it's a complete uninstall and reinstall of Exchange via the Upgrade to CU7 download.

Downloaded CU7 from the MX download site for CU7

Our workaround was to create the Contact in AD then follow the Enable-MailContact and then add the Contact to the account that wanted email forwarding to the contact.  

This is a time consuming workaround and shouldn't have to be done.

Myself and one other Exchange Admin both attempted this with the same result.  We are both Organization Admin roles.  RBAC permissions have been confirmed.  Mail recipients is an Assigned Role.

Has anyone else seen the issue post CU7 or has anyone resolved the issue with the New-MailContact cmdlet?

Any help greatly appreciated.

Dave Kreitel

Default Address book

May 26, 2015, 6:56 pm
$
0
0
This is a new Exchange 2013 deployment, and I'm a bit confused by the default address books. Rooms show up under all users and under all rooms, dynamic distribution lists show up under the top level (Directory), but not under groups.  Can someone help me out here?

Exchange 2013 MAPI/HTTP user password popup

May 26, 2015, 6:38 am
$
0
0

Hello!

Has anyone every ran into a problem, when implementing MAPI/HTTP network settings, Outlook 2013 clients are getting log in popups. Even when inserting username and password nothing happens, same popup reappears? Connection to the exchange server is lost after that. No obvious error event's are logged.

When changing connection back to RPC/HTTP Outlook clients work normally.

OWA and EAS continue to work in MAPI/HTTP, only Outlook 2013 dosent.

We have set the Authentication from NTLM to Negotiate and back, but nothing seems to help.

What helps, and only until you close Outlook, is new outlook profile. If you close Outlook the same password prompt comes back.

Have tried changing [HKLM\System\CurrentControlSet\Control\LSA] lmcompatibilitylevel=3 but didnt help.

Any thoughts appreciated.


Search

Exchange 2010 - EWS and disabling TLS 1.0

May 1, 2015, 7:43 am
$
0
0

Hi all,

Due to the POODLE vulnerability and TLS 1.0 showing as enabled on one of our external scans, we were informed that we would need to disable SSL 3.0 and TLS 1.0 on our Exchange server.

Apparently, this wouldn't even be possible until Update Rollup 9 was released on 3/16/15:

Rollup resolves:

KB 3029667 SMTP is not transported over TLS 1.1 or TLS 1.2 protocol in an Exchange Server 2010 environment

After installing this update, SSL 3.0 and TLS 1.0 were disabled and the servers rebooted (cross site, same domain, two Exchange servers).  After resolving some issues with certificates that apparently broke as a result of the changes, we found that EWS was not working - the log full of these errors:

Process 5776: ProxyWebRequest CrossSite from S-1-5-21-3895483984-2032760896-3917300074-1259 tohttps://mail.exchange.com:443/ews/exchange.asmx failed. Caller SIDs: NetworkCredentials. The exception returned is Microsoft.Exchange.InfoWorker.Common.Availability.ProxyWebRequestProcessingException: System.Net.WebException: The underlying connection was closed: An unexpected error occurred on a send. ---> System.IO.IOException: Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.

------------------------------------------------------

The EWS directory in IIS on both servers are set to use Anonymous and Windows Authentication.  The main issues observed outside of the above errors was that free/busy information could not be viewed.

After rebuilding the EWS virtual directory and a couple reboots later, we tried enabling TLS 1.0 on both servers, rebooted, and there were no more EWS errors to be found - free/busy was also working.

So it appears that although this rollup allows SMTP to use TLS 1.1 or 1.2, EWS is still attempting to use TLS 1.0, and I don't see that it is possible to change this

Setup voicemail for multiple countries

May 20, 2015, 6:36 am
$
0
0

Hi all,

we have Lync server 2013 in high availability mode.We have only 1 pool and everyone from each country is in there.We have 4 sip trunks in different countries,so far only 1 country has option to Call in (via mobile).

We tried to setup for Germany,but the Greetings are in English,they wish it in German.When they Call voicemail number that is defined in UM dial plan,they get error number not in use.

What is correct step for this setup (and rest of other countries)?

Thanks!

Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. Thank you! Off2work

Best Practice For Assigning Exchange Services to Certificates

May 6, 2015, 8:41 am
$
0
0

Good Morning Everybody,

I am in the process of doing an Exchange 2010 > 2013 migration and had a question about assigning Exchange services to server certificates.  In the current setup, all services are assigned to the third party (Entrust) certificate.  Is this best practice.  I have seen some posts where people state to keep the SMTP service assigned to a self-signed cert.  Just curious what the best practice is.  Any guidance would be greatly appreciated.

--Scott

Testing Mailbox acces via OWA

May 6, 2015, 4:26 pm
$
0
0

Exchange 2010 / 2013 Coexistence.

I have 2013 installed. Tested access to mailbox sitting on 2013 using OWA and Outlook client(using host file pointed to 2013 to test). Connection works. Emails flowing between mailboxes in 2010 and 2013.

Before moving mailboxes wanted to test redirection/proxy for mailboxes still on 2010. Using OWA on 2013 trying to access mailbox still on 2010, able to login but getting message: can't get info right now, try again later. Reversed process accessing 2013 mailbox from OWA 2010 also gives an error: server config temporarily preventing access to your account.

Client connection redirection does not seem to work between 2010 & 2013. Might be missing configuration/setting to allow/accept connections between servers??

Exchange 2010 ActiveSync, self-signed certificate

May 27, 2015, 8:57 am
$
0
0
Hello everyone, I'm setting up a mail system Exchange 2010 with SP3 and last RU.

I have thought to use for external connections with OWA, ActiveSync and IMAP4.
For internal client connections I will use OWA, Oulook (versions 2003/2007) and POP3.

In the installation, the system generates a self-signed certificate me, but not if this certificate is valid to configure ActiveSync connections.

Is the self-signed certificate installed by default on Exchange 2010 system is valid for customers configure connections with ActiveSync?

regards

Microsoft Certified IT Professional Server Administrator

Shutting down 2010 CAS/MBX/HUB server

May 27, 2015, 6:15 am
$
0
0

Hi.

I'm migrating our Exchange 2010 server (single server setup) to a 2013CAS+2013MBX server setup at the moment. The below list is completed.

- All mailboxes have been moved (also arbitrary and discovery).

- PF not being used (so I'll just delete it when uninstalling).

- All external access (owa, activesync, Outlook anywhere, SMTP) now goes to the 2013 CAS server.

- OABs and distribution of 'em are now on 2013

- 2010 server has been removed from the Internet send connector as the logs showed me that it hadn't sent any outgoing mail for the last 2-3 weeks.

- I've checked the IIS logs and only activity I can see in those is from the 2013 mailbox server and when I start EMS on the 2010 server, apart from that everything is quiet.

So I think that I'm about ready to shut it down for a week or so to see if everything still works as it's supposed to. But the RPC log still shows me that Outlook clients are connecting to the 2010 server and this worries me a bit.

My question is therefore if I can safely ignore the RPC connections and shut the 2010 server down? If "yes" should I get myself a maintenance window where I can make sure that no users are connected, or can I just shut it down and then users will automatically connect to the 2013CAS server. 

Thanks for your time

Best

Thomas

can all the servers get deleted if i delete an Exchange Server 2013 with ADSIEdit?

May 28, 2015, 12:23 am
$
0
0

We developed an Exchange Server 2013 in an Exchange 2007 environment to set the Exchange 2013 as CAS role and use this for hybrid migration to Office 365 in the future.

We noticed that the Exchange Server didnt install as it should, there was some .dll missed.

We tried to uninstall the server and after try some guides we deleted the Exchange Server 2013 with ADSIEDIT:

CN=configuration
DC=domain name,DC=com
CN=Services
CN=Microsoft Exchange
CN=Organization
CN=Administrative Groups
CN=(Groupname) 
CN=Servers

Deleted only the Exchange Server 2013 and execute the following command using command promt (run cmd as administrator): Setup.exe /mode:Uninstall /IAcceptExchangeServerLicenseTerms

After few hours We realized that the mail services was down and all servers on "CN=Servers" was deleted.

Any ideas how this happened? 

------

Bryan

Search

diskpart.ps1 script from e2013calc6.6 failing - not sure what I'm missing

May 21, 2015, 7:26 am
$
0
0

This has worked great for me in the past, but the difference this time is that we are separating out of logs to a separate volume. As such, we've created 12 LUNs (6 x 215GB, 6 x 10GB) for each of the three (3) MBX servers, added as raw device mappings via their individual VMware hosts.

For each MBX server, they are evenly distributed across 3 virtual SCSI controllers, interleaving the smaller and larger disks. Using the CSV files and PS scripts exported by the sizing calculator, we had an issue with diskpart.ps1 failing. I'm unsure how the diskpart.ps1 script understands which is the smaller disks but it seems to, which is great.

It seems to run Run-Diskpart and PrepareVolumes() functions without issue but runs into a snag during the PrepareDatabases() function. The result if that we're left with the formatted drives, but there are no mount points within the root directory specified in the companion Servers.csv file.

It notes that "the volume you selected is not valid or does not exist. There is no volume selected."
This is where it would normally create the database directory within the c:\ExchangeDatabases\ directory matching the corresponding database name and assign the c:\ExchangeVolumes\volumeName.

As a result it cannot create the enclosing subdirectories for databaseName.db and databaseName.log

An excerpt

Microsoft DiskPart version 6.3.9600

Copyright (C) 1999-2013 Microsoft Corporation.
On computer: PHCEX13MBX01

The volume you selected is not valid or does not exist.

There is no volume selected.
What if: Performing the operation "Create Directory" on target "Destination: C:\ExchangeDatabases\DAG1-2".
Diskpart /s select volume C:\ExchangeVolumes\ExVol3, assign mount="C:\ExchangeDatabases\DAG1-2",

Microsoft DiskPart version 6.3.9600

Copyright (C) 1999-2013 Microsoft Corporation.
On computer: PHCEX13MBX01

The volume you selected is not valid or does not exist.

There is no volume selected.
What if: Performing the operation "Create Directory" on target "Destination: C:\ExchangeDatabases\DAG1-2\DAG1-2.db".
What if: Performing the operation "Create Directory" on target "Destination: C:\ExchangeDatabases\DAG1-2\DAG1-2.log".
Diskpart /s select volume C:\ExchangeVolumes\ExVol4, assign mount="C:\ExchangeDatabases\DAG1-2\DAG1-2.log",

We can send along the full transcript and the sizing calculator files if it's helpful.
Otherwise, should we reach out to the Ross and co, at the contact address specified in the calculator?
-- strgcalc@microsoft.com


New-Migrationbatch

May 28, 2015, 9:32 am
$
0
0

New-MigrationBatch-Name "May28.Batch" -CSVData ([System.IO.File]::ReadAllBytes("c:\migration.batch\May28.Batch.csv")) -local -notificationemailsxxx@xxx.com -baditemlimit 100 I am getting:Warning: the subscription for the migration user xxx couldn't be loaded. the following error was encountered: couldn't find a move request that corresponds to the specified identity '5dc......'  I have found nothing which indicates it is the solution. Please I am going into migration and need some assistance.many thanks

 


Exchange cross-forest migration 2013 to 2010

May 29, 2015, 1:34 am
$
0
0

Are there any supported ways to do cross-forest migration where the source forest is Exchange 2013 and the destination forest is Exchange 2010?


Installed Security Update KB3040856 and broke some AD permssions

May 29, 2015, 9:35 am
$
0
0

Installed Security Update KB3040856 and went to a distribution group in eac to add send-as permissions and get a lovely AD error with the following message.

Active Directory operation failed on xyz.server.com. This error is not retriable. Additional information: Access is denied. Active directory response: 00000005: SecErr: DSID-03152612, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

After thought I went and tested this update in my testlab and found that it created the same issue. However In my testlab I was able to rerun setup.exe /PrepareAD /IAcceptExchangeServerLicenseTerms and was able to resolve this issue. I ran this in production and it didn't fix my issue. Anyone have any other suggestions. This issue didn't exists prior to installing this update.

PAM Question in AD

May 29, 2015, 8:17 am
$
0
0
Our Exchange 2010 DAG PAM DNS name is also registered in AD as a computer object.  Is this AD object needed or just DNS entry?
Viewing all 7008 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>