Monday, December 5, 2011

Exchange Server 2010, SP2 has been released !!!!

Exchange team has announced SP2 E210 , the highlights are

  • Hybrid Configuration Wizard,
  • Address Book Policies,
  • Outlook Web App Mini and
  • Cross-Site Silent Redirection, 

but not limited……Check it out if you have not seen I yet….

image

Here is download link

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Sunday, November 20, 2011

A source-side operation failed. Error An error occurred while performing the seed operation. Error: Failed to open a log truncation context to source server….

If you are trying to add mailbox database copy on your DAG member and un-able to do it, and also receiving fallowing errors , your remedy could be in this fallowing link.

http://blogs.technet.com/b/exchange/archive/2010/09/01/3410888.aspx

 

Error:

A source-side operation failed. Error An error occurred while performing the seed operation. Error: Failed to open a log truncation context to source server 'EX2.smtp25.org'. Hresult: 0xfffffae7. Error: The database was either not found or was not replicated.. [Database: DB4, Server: EX1.smtp25.org]

Failed to open a log truncation context to source server 'EX2.smtp25.org'. Hresult: 0xfffffae7. Error: The database was either not found or was not replicated.

Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.140).aspx?v=14.1.218.11&t=exchgf1&e=ms.exch.err.Ex4543D9

Exchange Management Shell command attempted:

Add-MailboxDatabaseCopy -Identity 'DB4' -MailboxServer 'EX1' -ActivationPreference '2'

Elapsed Time: 00:00:02

 

image

  • now from the link above

http://blogs.technet.com/b/exchange/archive/2010/09/01/3410888.aspx

Identify the GUID of the database that is being added using this command:

 

Get-MailboxDatabase DAG-DB0 | fl name,GUID

 

image

On the server specified in the add command, using the database GUID identified, remove the following registry key:
HKEY_LOCAL_MACHINE

  • SOFTWARE
  • Microsoft
  • ExchangeServer
  • v14
  • Replay
  • State
  • <db-guid>
  • DumpsterInfo

image

Now compare the GUID’s and delete the ones matches from registry as shown…

image

image

Save registry and exit. you should be able to add mailbox database copy now, if Data Bases added goes into suspended mode, just make right click and update DB copy, it will take some time depending upon how big is the DB etc.

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Friday, November 18, 2011

Setup wizard for update rollup 6 for Exchange server 2010 service pack 1 ended prematurely because of an error….

If you are attempting to install RU on Exchange 2010 server and receiving fallowing error, there is easy way to go around to get the install working without such issues.

image

Problem: Install attempt RU XX on Exchange 2010 server is failing with above or similar error

Solution: Run the setup file with Administrator privileges

Cause: Most likely UAC turned on ( no need to try to turn it off )

image

image

Now here is the big secret , in old days we were able to say copy and paste into CMD window without typing the full path of the install file, you will quickly realize this is not working on Windows 2008 and you are like come on (-:

on the install file hold “SHIFT” key down and left click to get option “ Copy as path”

image

Open CMD as administrator and “paste” will work now , Wowwww got to love this, whom ever though of making such improvement into Windows 2008,

image

Now install will work flawless.

Oz Casey , Dedeal

MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +

Http://smtp25.blogspot.com (Blog

Http://telnet25.spaces.live.com (Blog)

Http://telnet25.wordpress.com (Blog)

Monday, November 14, 2011

Disable permanently Outlook Team Calendar

Outlook 2010 introduced new future called “Team Calendar”. This future might be annoying or not acceptable in certain cases and un-ticking check mark to make it not seen might not be sufficient enough. If so and you are wondering how to disable this here is the solution.

Team Calendars , star popping up from people outlook. –Reason: the
AD Attribute called “Manager” is populated see picture
When manager is listed for given user,  outlook is automatically creating calendar in this format  Team: Name of the manager Calendar inside peoples outlook see picture

 image

Fire up reg edit on the problem workstation…..Drill down to fallowing directory

  • [HKEY_CURRENT_USER
  • Software
  • Microsoft
  • Office
  • 14.0
  • Outlook
  • Options
  • WunderBar

Create reg key if one does not exist “Value disablereportinglinegroupcalendar”

  • This policy setting prevents Reporting Line Group Calendar from appearing in the navigation pane.
    If you enable this policy setting, Reporting Line Group Calendar will not appear in the navigation pane.
    If you disable or do not configure this policy setting, My Reporting Line Group
    Calendar will appear in the navigation pane.

image

image

Before

image

After

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

The Microsoft Exchange Replication service failed to start the TCP listener Event ID:2121

If you are getting fallowing errors Event ID:2121 , Source: MSExchangeRepl and your Exchange services are not coming up with fallowing errors…



Log Name: Application
Source: MSExchangeRepl
Date: 11/13/2011 5:50:17 PM
Event ID: 2121
Task Category: Service
Level: Error
Keywords: Classic
User: N/A
Computer: MCCNPWINMBX3.smtp25.org
Description:
The Microsoft Exchange Replication service failed to start the TCP listener. Error: Microsoft.Exchange.Data.Directory.NoSuitableServerFoundException: The Microsoft Exchange Active Directory Topology service on server localhost did not return any suitable domain controllers.
at Microsoft.Exchange.Data.Directory.DSAccessTopologyProvider.GetConfigDCInfo(Boolean throwOnFailure)
at Microsoft.Exchange.Data.Directory.TopologyProvider.PopulateConfigNamingContexts()
at Microsoft.Exchange.Data.Directory.ADSession.GetConfigurationNamingContext()
at Microsoft.Exchange.Data.Directory.Recipient.ADRecipientSession.GetWellKnownExchangeGroupSid(Guid wkguid)
at Microsoft.Exchange.Data.Directory.Recipient.ADRecipientSession.GetExchangeServersUsgSid()
at Microsoft.Exchange.Cluster.Replay.RemoteDataProvider.StartListening()
Event Xml:







image
Possible solution: If topology service is not able to figured out what subnet the Exchange server belong too. Simple way to check and fix this will be adding the subnet for the Mailbox server into ADSITE and services. Perform IPconfig /all on the Exchange server figure out what subnet it is sitting on and add the subnet in ADSITE and services, you will need to reboot or , restart net logon and Exchange Services.
image
Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)http://telnet25.wordpress.com/ (Blog)

Wednesday, November 2, 2011

Exchange 2010 Database Size, EDB file Path etc.….

You might wonder what is the size of  your Exchange Server databases , and their path etc. In Exchange 2010 the task is pretty real easy.

Get-MailboxDatabase -Status | select ServerName,Name,DatabaseSize,EdbFilePath,LogFolderPath

image

  • Now here how the output would look like

image

  • to export this into CSV file add the fallowing at the end of PS
Export-Csv c:\scripts\DBSize.csv


  • Full Script would be like this




Get-MailboxDatabase -Status | select ServerName,Name,DatabaseSize,EdbFilePath,LogFolderPath | Export-Csv c:\scripts\DBSize.csv

image



  • Finally we will plug this into PowerGUI

image



  • Give it a name

image


image


Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Tuesday, October 4, 2011

Changes to the distribution list membership cannot be saved" error message when you try to remove members from an Exchange Server 2010 distribution!!!

If you are un-able to modify the membership for DL’s you own after migration to Exchange 2010 couple things you will need to do to get this working.

here is the message , you might be getting when you try to group membership within outlook.

image

Issue: Users no longer able to modify Distribution groups they own ( they are specified as the owner of the problem DL) , trying to add , remove users into member list within outlook generating above errors

Log on to your E210 Server , open EMS

image

New-RoleGroup DistributionGroupManagement -Roles "Distribution Groups"

 

Add-RoleGroupMember DistributionGroupManagement -Member dedealoc

image

* In my case I have converted the existed DL to “Mail Universal Distribution Group *

Related KB

http://support.microsoft.com/kb/982349

 

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Wednesday, September 21, 2011

Object is read only because it was created by a future version of Exchange: 0.10 (14.0.100.0). Current supported version is 0.1 (8.0.535.0).

Issue: Removing Exchange PF database fails with fallowing error on E07 Server

image

  • The public folder database 'SG02PF1' cannot be deleted.
  • SG02PF1
  • Failed
  • Error:
  • Object is read only because it was created by a future version of Exchange: 0.10 (14.0.100.0). Current supported version is 0.1 (8.0.535.0).

Solution:

Log onto Exchange 2010 Server use fallowing PS command

  • Server Name:WINCMS
  • Storage Group Name  SG02
  • Database Name: SG02PF1
Remove-PublicFolderDatabase -Identity "WINCMS\SG02\SG02PF1"

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Monday, September 19, 2011

After Exchange 2010 Migration , Distribution List owner unable to make changes to DL’s they own.

 

Issue: Distribution List owner unable to make changes to DL’s they own. You have start getting calls from users who are unable to make modification on the Distributions List they owned, and this worked fine prior to migration and yet working on Exchange 2010 Environment.

This is not actually a problems, or per say nothing is broken, as everything working as designed or suppose to be considering Exchange 2010….

image

 

  • The following error(s) occurred while saving changes:
  • Set-DistributionGroup
  • Failed
  • Error:
  • You don't have sufficient permissions. This operation can only be performed by a manager of the group.

here is what you need to fix this

How to Manage Groups that I already own in Exchange 2010?

image

1. Download “Manage-GroupManagementRole.ps1” from this link.

2. Place the script on the same directory as script folder on your Exchange 2010 server.

image

4. Run it from same directory per instructed and wait for changes to take affect and try once again.

Manage-Groupmanagmeentrole.ps1 -creategroup –removegroup

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Tuesday, September 13, 2011

The Term 'New-MailboxExportRequest' is not recognized as the name of a cmdlet, function, script file, or operable program

 

If you are trying to run the new MailboxExportRequest and getting above error here is what will help you to resolve the issue.

  • You can't use the Exchange Management Console (EMC) to create a mailbox export request. You must use the Shell. ( too bad I wish this was an option from GUI as well)
  • You have to install SP1 or newer on your Exchange 2010 Server
  • Create Shared folder with fallowing permissions “grant Exchange Trusted Subsystem read/write permission”
  • This is Simple File Sharing permissions ( NOT NTFS) see the picture
  • image
  • You have to run New-ManagementRoleAssignment first , otherwise you will get the error above
  • Once you run the commons close tour PS and re-open it

Example

Assign Role

******user name "BakinJM" change this to your own****

New-ManagementRoleAssignment –Role “Mailbox Import Export” –User “BakinJM”

Export Run

New-MailboxExportRequest -Mailbox BakinJM -FilePath "\\PC1\pst$\BakinJM.pst

Monitor Process

Get-MailboxExportRequest | Get-MailboxExportRequestStatistics

Clear the previous Request

Get-MailboxExportRequest | Remove-MailboxExportRequest

Import PST

New-MailboxImportRequest -Mailbox BakinJM -FilePath \\PC1\pst$\BakinJM.pst

The most comprehensive and easy to fallow  post in this regard IMO…..

Henrik Walther

  • A look at the Import/Export Mailbox improvements in Exchange 2010 Service Pack 1 (Part 2

Steve Goodman


  • Create a Mailbox Export Request

http://technet.microsoft.com/en-us/library/ff459227.aspx

  • Set Permissions for Shared Folders

http://technet.microsoft.com/en-us/library/cc726004.aspx

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Sunday, September 11, 2011

Backup DAG with Windows Backup

 

If you like to backup your Exchange server by using windows backup you need to make .reg changes on the DAG member host Active/passive database. Reg changes are very simple and does not need any reboot. Lets say you have 3 Exchange servers configured in DAG and all servers do have active/passive databases……….

Using Windows Server Backup on Database Availability Group MembersIf a server hosting the data being backed up is a member of a database availability group (DAG) and hosts both active and passive database copies, you must disable the Microsoft Exchange Replication service VSS writer. If the Microsoft Exchange Replication service VSS writer is enabled, the backup operation will fail.

http://technet.microsoft.com/en-us/library/dd876851.aspx

image

image

Navigate to

HKEY_LOCAL_MACHINE

  • Software
  • Microsoft
  • ExchangeServer
  • v14
  • Replay
  • Parameters.

Add a new DWORD value named EnableVSSWriter, and set its value to 0.Exit Registry Editor and then restart the Microsoft Exchange Replication service

See sky drive for creating backup……………

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Error: Active Directory operation failed on MCCNPWINADS02.smtp25.gov. This error is not retriable. Additional information: Insufficient access rights to perform the operation.

Are you moving mailboxes and getting similar errors if so here is quick way to fix this.

Error:

Active Directory operation failed on MCCNPWINADS02.smtp25.gov. This error is not retriable. Additional information: Insufficient access rights to perform the operation.

Active directory response: 00002098: SecErr: DSID-03150E8A, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

The user has insufficient access rights.

Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.141).aspx?v=14.1.218.11&t=exchgf1&e=ms.exch.err.Ex6AE46B

Warning:

When an item can't be read from the source database or it can't be written to the destination database, it will be considered corrupted. By specifying a non-zero BadItemLimit, you are requesting Exchange not copy such items to the destination mailbox. At move completion, these corrupted items will not be available at the destination mailbox.

  • Open up ADUC snap in, turn on Advance futures

image

image

  • Locate user, go to security tab , click advance and make sure the box cheeked in where is says “ Include Inheritable permissions from this object’s parent”

image

Try to move MB after this,,,,

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Error: Large BadItemLimit (1000) is specified. Please confirm your intention to accept a large amount of data loss by specifying AcceptLargeDataLoss

 

Are you moving databases from Exchange X to Exchange 2010 and receiving below warning ? if yes you need to check AcceptLargeDataLoss out in Exchange 2010.

The AcceptLargeDataLoss parameter specifies that a large amount of data loss is acceptable if the BadItemLimit is set to 51 or higher. Items are considered corrupted if the item can't be read from the source database or can't be written to the target database. Corrupted items won't be available in the destination mailbox

Replace the mail address to your own…… and run this from PS on your Exchange 2010 server. You can change the acceptable corrupted item number as you wish…

New-MoveRequest -Identity 'brooksja@smtp25.gov' -TargetDatabase "DB10" -BadItemLimit 10000 -AcceptLargeDataLoss

 

image

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/

Thursday, September 1, 2011

How to Find out Exchange What Exchange 2010 Version you are running on your Server.

Use fallowing  PS to figure out what version of exchange 2010 you are running.

[PS] C:\>Get-ExchangeServer | Format-Table Name, *Version*

image

image

http://social.technet.microsoft.com/wiki/contents/articles/exchange-server-and-update-rollups-builds-numbers.aspx

[PS] C:\>Get-help Get-ExchangeServer

image


[PS] C:\>Get-ExchangeServer | Format-List

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Wednesday, August 31, 2011

Unable to connect to Exchange Server via remote PS Unable to load assembly "Microsoft.Exchange.Configuration

 

IF you are trying to connect to your exchange server and failing with fallowing error, fallow the simple steps to fix the issue occurring

VERBOSE: Connecting to NPWINCAS03.SMTp25.gov

[npwincas03.SMTp25.gov] Processing data from remote server failed with the following error message: Unable to load assembly "Microsoft.Exchange.Configuration.O

bjectModel.dll" specified in "InitializationParameters" section. For more information, see the about_Remote_Troubleshooting Help topic.

+ CategoryInfo : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [], PSRemotingTransportException

+ FullyQualifiedErrorId : PSSessionOpenFailed

Open PowerShell

image

Enter fallowing PS command

$UserCredential = Get-Credential

Enter this one ( replace this to your own=npwincas03.smtp25.gov)





$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://npwincas03.smtp25.gov>/PowerShell/ -Authentication Kerberos -Credential $UserCredential

image





Import-PSSession $Session


Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)

Tuesday, August 30, 2011

TMG CAS 2007 ACTIVE SYNC Error, Status: 12309 The server requires authorization to fulfill the request. Access to the Web server is denied. Contact the server administrator.

If you are having fallowing probes with your TMG , Active sync publishing please have a look your firewall settings to possibly remedy the issue.

Denied Connection NPWINTMG1 8/29/2011 11:56:54 PM
Log type: Web Proxy (Reverse)
Status: 12309 The server requires authorization to fulfill the request. Access to the Web server is denied. Contact the server administrator. 
Rule: E210 CAS - Active Sync webmail.SMTp25.org

Source: 208.54.35.224:53699
Destination: 172.26.7.5:443

Request: OPTIONS http://webmail.SMTp25.org/Microsoft-Server-ActiveSync?Cmd=OPTIONS&User=dedealoc&DeviceId=androidc1734872834&DeviceType=Android
Filter information: Req ID: 0b5d481c; Compression: client=No, server=No, compress rate=0% decompress rate=0% ; FBA cookie: exists=no, valid=no, updated=no, logged off=no, client type=unknown, user activity=yes
Protocol: https
User: anonymous
Additional information
Client agent: Android/0.3
Object source: (No source information is available.)
Cache info: 0x8 (Request includes the AUTHORIZATION header.)
Processing time: 1 MIME type:

 

image

Open TMG, Drill down to FireWall Policy, locate the Active Sync rule you have and double click on it.

  • Authentication delegation
  • No delegation, but client may authenticate directly

image

  • Click on Users and set , this rule applies to request from fallowing user set
  • All users

image

Go to monitoring and make sure TMG servers ( if they are in Array) have been syncy, and test the rule.

Tips:

On the logs & Reports create filter to capture the authentication attempts etc.

image

Hopefully you will see everything green in the live logins and issues will get resolved (-:

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog)