Quantcast
Channel: Exchange Server Development forum
Viewing all 7132 articles
Browse latest View live

Cross Forest Exchange 2010 to 2016 Migration

August 15, 2020, 6:20 am
$
0
0

Dear Folks,

A customer has multiple AD Forest for different business units, due to recent business restructuring they want to consolidate all IT services under single IT. For that, customer wants to have single new 2016 based AD forest with Exchange 2016 (all On-Premises environment).

Currently customer has 2008 R2 based AD Infrastructure as following.

IslandA.com with two child domains like City1.IslandA.com and City2.IslandB.com. Root Domain (IslandA.com holds Exchange 2010 and System center infrastructure too).

IslandB.com with three child domains like City1.IslandB.comCity2.IslandB.com and City3.IslandB.com. Root Domain (IslandB.com holds Exchange 2010, System center infrastructure and some other applications like Oracel, Dynamics etc).


Now, Customer wants to have new forest like Alpha.com based on Windows 2016 and all AD, Exchange infrastructure to be migrated under it.

Customer has around 10,000 user based infrastructure spanning in 5 countries. I would like to request you please help me to design best approach for this project. Some tips, third party tools and some design guidance would be appreciated. Thanks.

Thanks, Sheeraz

Search

Chrome 80 Samesite feature causing OWA login loop

August 15, 2020, 9:48 am
$
0
0

Have you encountered a login loop when using the latest version of chrome browser to access OWA ? This can occur in environments using SSL offloading:

Chrome OWA Client -------(https)--------[SSL offloader device]-------(http)----- Exchange 2016.

The issue can be solved by re-encrypting (SSL bridge) to the Exchange server but not all devices have this capability. Any thoughts ?

 

Anand_N




not setup for cleaning mailb0xes -- purging unwanted emails or emails sent in error

August 15, 2020, 10:21 am
$
0
0

i have loaded   ExchangeOnlineManagement  Script     ver   1.0.1 .  into powershell onto my system.    I cannot   run the module   new-compliancesearchaction - the error i get is not recognized as the name of a cmdlet


I recently installed ExchangeOnlineManagement ver 1.0.1    This version  of ExchangeOnlineManagement   does not appear to have the cmdlet for new-compliance search !

what must i dowload in terms of module to have the capabilties.  I need this comandlet so th i can delete rogue emails or sensitive emails that have been sent in error

Exchange Version Showing The Wrong CU After Upgrade

August 15, 2020, 11:44 am
$
0
0

I've run into an odd issue after performing an upgrade from Exchange 2016 CU14 to CU16.

I have two servers running and both successfully upgraded to CU16 with no errors, however I noticed that both are not showing the correct AdminDisplayVersion for each other.

Both servers are showing the correct build number for themselves (1979.3) when I check Get-ExchangeServer | fl AdminDisplayVersion

However if I run this command on EX01 it will show me that EX02 is on the wrong build version (1847.3) and vice versa if I run the command on EX02.

Programs and Features show the correct CU Version is installed.

I'm at a loss. Any ideas?

WinRM cannot compete the operations.

August 12, 2020, 2:59 pm
$
0
0

Hi Al,,

i am facing the below error.

Connecting to remote server test.contoso.com failed with the
following error message : WinRM cannot complete the operation. Verify that the specified computer name is valid, that
the computer is accessible over the network, and that a firewall exception for the WinRM service is enabled and allows
access from this computer. By default, the WinRM firewall exception for public profiles limits access to remote
computers within the same local subnet. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession -ConnectionURI "$connectionUri" -ConfigurationName Micr ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [New-PSSession], PSRemotin
   gTransportException
    + FullyQualifiedErrorId : WinRMOperationTimeout,PSSessionOpenFailed

i have already check the netsh proxy, winRM service is running, firewal is  off, time is sync. but unable to resolve.

Kindly guide to resolve the issue.

Regards

Muhammad Sajid Azeem

Delivery restriction check failed because the sender was not authenticated when sending to this group

August 12, 2020, 11:24 pm
$
0
0
Hi all, 

Greetings! Can you guide me on this issue:

I sent an email to SalesManagement-APAC @ solarwinds.com, from my email address(pingatwork @ mydomain.com)

then I received undeliverable notice email, said that : 

 Delivery has failed to these recipients or groups:SalesManagement-APAC @ solarwinds.com. Your message wasn't delivered because the recipient's email provider rejected it.

Diagnostic information for administrators:

Generating server: BN8PR11MB3667.namprd11.prod.outlook.com

SalesManagement-APAC @ solarwinds.com
Remote Server returned '554 5.7.0 < #5.7.133 smtp;550 5.7.133 RESOLVER.RST.SenderNotAuthenticatedForGroup; authentication required; Delivery restriction check failed because the sender was not authenticated when sending to this group>'

My questions: what should I do to fix this so that pingatwork@mydomain.com can send email to SalesManagement-APAC @ solarwinds.com?

Thank you


Mail from internal application still not being relayed to recipients of distribution group

August 16, 2020, 12:48 am
$
0
0

Need help for following issue.

Mail from internal application still not being relayed to recipients of distribution group

But if I changed the delivery management setting from "Only senders inside my organization" to "Senders inside and outside of my organization" and I was then able to telnet to exchange from the application server in question and send the email to the distribution group in question and I see it went out to all of the recipients in the DG.

Although it is working in this way, it's not ideal, as now anyone from the outside can also send email to that DG. 

So what is the better solution to this problem?  Adding the Exchange server permission to the SMTP Relay receive connector.

Thank sin advance.

NUR BD


Issue: Chrome 80 Samesite feature causing OWA login loop

August 15, 2020, 9:48 am
$
0
0

Encountered a login loop when using the latest version of chrome browser to access OWA. This can occur in environments using SSL offloading:

Chrome OWA Client -------(https)--------[SSL offloader device]-------(http)----- Exchange 2016.

Any patches for this or workaround ? I have the latest CU applied already (17).


 

Anand_N








Search

[Solved] SBS 2011

August 14, 2020, 2:33 pm
$
0
0

Hi Friends, before the Exchange Migration i wanted to set Outlook Anywhere to Ntlm on the SBS.

I also completed the prepare schema for exchange 2016 several hours before the change to ntlm.


Original State:
Get-OutlookAnywhere | Select-Object -Property SSLOfflading,ExternalHostname,InternalHostName,ExternalClientAuthentificationMethod,InternalClientAuthentificationMethod,IISAuthentificationMethods

SSLOffloading:False
ExternalHostName : mail.domain.com
InternalHostName:
ClientAuthentificationMethod:Basic
IIS AuthentificationMethods: {Basic)

After setting this command: Set-OutlookAnywhere -Identity 'SERVERNAME\Rpc (Default Web Site)' -SSLOffloading $true -ClientAuthenticationMethod NTLM -IISAuthenticationMethods Basic,NTLM

Nothing works anymore. Outlook can't connect.Creating a new profile is possible, but than again it won't connect.
Also can't export users to pst anymore or migrate to  another database.
But i can still create New Mailboxes and the Database is still there!
Owa Error:MapiExceptionCallFailed: Unable to make connection to the server.(hr=0x80004005, ec=5)

"Eventmrg:ASP.Net 2.0  Error 1309

User: domain\user
    Is authenticated: True
    Authentication Type: Basic
    Thread account name: NT-AUTORITÄT\SYSTEM
Thread information:
    Thread ID: 1
    Thread account name: NT-AUTORITÄT\SYSTEM
    Is impersonating: False
Stack trace:    bei Microsoft.Mapi.MapiExceptionHelper.ThrowIfError(String message, Int32 hresult, SafeExInterfaceHandle iUnknown, Exception innerException)
   bei Microsoft.Mapi.ExRpcConnection.Create(ConnectionCache connectionCache, ExRpcConnectionCreateFlag createFlags, ConnectFlag"

EventMgr:Ms Mailbox Replication isn't working, with the same owa error

Setting Back to SSL False and ClientAuthenticationMethod to Basic

Get-OutlookAnywhere | fl server,name,*hostname,ssl*,*auth*
Server: ServerName
Name : Rpc (Default Web Site)
ExternalHostname : mail.domain.com
SSLOffloading : False
ClientAuthentificationMethod: Basic
IISAuthenticationMethods : {Basic}

I noticed that in iis under RPC-->Authentification , the Windows Authentification is enabled with the options Ntlm and Negotiate.
It wasn't enabled before the changes.

I'm a little bit lost, something is blocking the access.The Remote MS Analyzer is still connecting.
Any ideas?HELP :-)





Problem after CU23 failed install

August 16, 2020, 4:46 am
$
0
0

hello

i tried to install CU23 on exchange 2013,

the error is :

error] unable to remove product with code 4934d1ea-be46-48b1-8847-f1af20e892c1. erreur irrécupérable lors de l’installation. error code is 1603.

finally i dont want to install this update, i think this impossible to remove previous product anyway.

but after this fail, i want to use exchange.

i have restart all  services ( disable by this update )

i can connect to ecp, owa, but can not send email

can not connect outlook to exchange

error i can find in log :

SmtpResponse:441 4.4.1 Error encountered while communicating with primary target IP address: ""421 4.3.2 Service not active.""
Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts,
or delivery failed to all alternate hosts.

is there something else to enable ?

thx



IMAP Configuration

August 16, 2020, 12:31 pm
$
0
0

Hi Team,

After migrating from exchange 2010 to 2016, I was recently asked by my head to setup IMAP configuration.

During migration when SSL cert was obtained I simply added a DNS name for IMAP like: IMAP.DOMAIN.COM and our Outlook Web APP URL is: WEBMAIL.DOMAIN.COM. Now after 1 year I\m configuring IMAP.

I started the IMAP services (frontend & backend) and set them to automatic and set the External Connection Settings to : "WEBMAIL.DOMAIN.COM:993:SSL, WEBMAIL.DOMAIN.COM:143:TLS". I checked the ports and they are open. I set the TLS Cert name to the public certificate to which IMAP Service is enabled and I followed the syntax to add it correctly. I advertised the IMAP & SMTP Settings and didn't configure Internal Connection Settings and left that to default for now, as no clients internally would use IMAP. I restarted IMAP & IIS Services on both Servers.

I'm facing issues when configuring IMAP profile externally using Outlook & Thunderbird Client. 

The thing that is crossing my mind is, should I use the name IMAP.DOMAIN.COM for external connection settings and then add a DNS Record in Public DNS to point to the WEBMAIL.DOMAIN.COM. Which task of configuration am I missing? Also, which is the right way to configure IMAP; Use a different URL or OWA URL?

While reading lot of blogs, I came across articles which said, Accounts must not use certain characters in passwords, and Administrator/Guest account is not enabled for IMAP and display name must be same as email address etc? are there any such limitations?

Fahad



how to enable TLS 1.2 for exchange 2010 sp3

August 17, 2020, 12:18 am
$
0
0

Hi all,

recently we are encountering certificate error when access OWA from Chrome (your connection is not fully secure , the site uses is outdated security configuration).

this error only appearing when used chrome browser.

in the the SMTP logs i found following:

"TLS protocol SP_PROT_TLS1_0_SERVER negotiation succeeded using bulk encryption algorithm"


Note: we are using exchange 2010 sp3 RU 30 in win 2008 R2 sp1

please advise me to resolve this issue.

 thank you 

Scheduled email sent after booked meeting room date/time :Exchange 2013

August 17, 2020, 1:36 am
$
0
0

Hello, 

Just wondering if anyone could help out. 

I need to send an email, after the date/time has elapsed for a meeting room booking. 

Ie Host Joe bloggs books meeting room A1 on monday at 12pm 

after the meeting has taken place, an email is then sent to the host joe bloggs.

Need this on an exchange 2013 server please if possible ? 

Thanks in advance 

OAuth for Sub-Domains

August 17, 2020, 2:44 am
$
0
0

Hello All,

I am running an Exchange 2016 on-prem environment with multiple domains and have an Office 365 tenant. I have setup OAuth connectivity between my Exchange and Office 365 environments already to allow access to services like Calendar application in Microsoft Teams.

These services are currently working fine with my primary domain, however it's not working with my subdomains. I have tried to add the sub-domains to exchange on-prem using the New-AuthServer commands with new names but it still says the value is the duplicate of the existing entries for the primary tenant. Any advice?

Will be grateful for your kind assistance

EXCHANGE 2010 SSL Certificate

August 17, 2020, 4:28 am
$
0
0

Good day Support Team

Background I have generated the CSR File in order to acquire the SSL Certificate for my Exchange 2010 server.

I have two domains linked to each other or receive emails from.

I wanted to ask what type of SSL Certificate do I need to acquire to cater for the below snapshot, Multi-domain or Wildcard SSL Certificate.

I addition, kindly send me information how to bind SSL Certificate in Exchange 2010.

Search

Issue sending bulk emails using EWS.

August 17, 2020, 5:49 am
$
0
0

We have encountered an issue when a third party web based system trying to send bulk emails using our Exchange server 2013 and its EWS function. Some emails will not be sent. It looks like the system hangs during the process. I tried make a new throttling policy with some unlimited parameters and add that to the specific mailbox user to investigate if the throttling limitations are the problem but without any luck.

Can someone please help me to pinpoint the reason for this?

Ulf Björklund

[Exchange 2019] Internal/external mail rules forwarding

August 13, 2020, 1:20 am
$
0
0

Hello

is it possible to create the following setup in exchange 2019?

-External incoming mail from  UserA@domain.com UserB@domain.com UserC@domain.com wil be forwarded to info@domain.com

-Internal mail wil normal delivered to  UserA@domain.com UserB@domain.com UserC@domain.com

so the user didnt receive personal mail from outside the office, but internal mailing is possible
Now i have a set a rule - mail with adress  UserA@domain.com UserB@domain.com UserC@domain.com forward to info@

but when they try to mail internal, the mail forward also to the info@

is there a solution to separate this internal/external option?



Litigation-hold value in Vb.Net

August 17, 2020, 7:21 am
$
0
0

Team,

We have one very old project written in Vb.net to set enable litigation hold for users, and its working fine

Dim setLitigationHold As New PSCommand

                 setLitigationHold .AddCommand("Set-Mailbox")
                    setLitigationHold .AddParameter("Identity", user)
                    setLitigationHold .AddParameter("LitigationHoldEnabled", True)
                    ps.Commands = setLitigationHold 
                    results = ps.Invoke()

However, the new requirement is to check the "litigationhold" status of the user whether its "True" or "False". How do i get that value and store in a variable, searched a lot on google but didn't find anything in Vb.net or C#.

Thanks

Outlook in Cached Exchange Mode not syncing inbox

August 14, 2020, 1:03 pm
$
0
0

I manage an on premise Exchange 2013 environment with a single server hosting all the roles and running the latest CU. There are 54 mailboxes in the environment. All user mailboxes are connected to using either Outlook 2013 32-bit or Outlook 2016 32-bit , mostly from Windows 10 machines of various build versions. There are still a handful of Windows 7 as well. All users have always used Outlook in Cached Exchange Mode since many years ago without experiencing this issue. Most users also use ActiveSync devices, mostly iPhone and some Android.

I have a single user that had an issue about three weeks ago where he noticed new emails would show up on his iPhone but not in Outlook. If I turned off cached mode they would show up instantly. I went through extensive different possible solutions which I'll list below. When none of them solved the issue I finally created a new Mailbox Database and moved his mailbox. It said there was one item corrupt item found:

A corrupted item was encountered: Folder property "Inbox" this is what I had hoped. I was hoping the issue was a corrupt item that would get left behind. The move succeeded and afterward Outlook began working correctly in cached mode again, on two different computers.  

Here's all the troubleshooting steps I had/have tried:

1. Disabled all Outlook Add-ins

2. Adjusted the Cache to only be for a few months instead of All.

3. Rebuilt his Outlook Profile (including OST)

4. Found that he has many, many, many folders and subfolders. Worked with him via archiving to PST and deleting older stuff to get it from 30GB mailbox with nearly 2,000 folders to a 10GB mailbox with 455 folders.

5. Tried setting up a profile on two other machines with different versions of Windows and Office, the issue followed.

6. Deleted old ActiveSync Devices from his OWA.

7. used MFCMapi to hard delete some subfolders from ExchangeSyncData which seemed to represent old Airsync devices.

This week, the issue started again. I'm really at a loss for what to do now. I've done some of the same testing from above and it seems to be the same issue all over again. Same user, not affecting anyone else. His mailbox is still on a separate database. I really don't know what to do now short of creating yet another Database and moving him again. But, that only seemed to solve the issue for about a week last time.

problem in exchange server 2019

August 17, 2020, 11:43 am
$
0
0

hello friend

i install a exchange 2019 in windows server 2019

but when i want login into admin section show this error :

400
Outlook Web App Options

There was a problem opening Options in Outlook Web App. Please click Sign out below, then sign in to Options in Outlook Web App again. If that doesn't work, sign out, delete browser cookies, and sign in again

i have no idea what happend,i need some advise to fix that.

Viewing all 7132 articles
Browse latest View live
Search