Quantcast
Channel: Exchange Server 2013 - General Discussion forum
Viewing all 13303 articles
Browse latest View live

Exchange server Hybrid Configuration issues with centralized mail routing option.

July 23, 2018, 11:49 pm
$
0
0

Infrastructure before Implementing Hybrid with SSO

All of the email were hosted on local exhchange server with multiple SMTPs as per requirement.When a user on the internet sends the email to any email user or the user which we intented to move to the cloud, according to the MX records it is directed towards our premiter Network which is consisted of 2 Cisco Iron port for email security, filtering, spoofing etc. There are 2 MX records on our DNS each poiting towards one of the Cisco Iron port. Cisco Iron port has then SMTP forwarder configured in it which detects the SMTP and send it to one of the CAS server (Not array it is load balanced through hardware device and Mailbox servers are configured with DAG) and from CAS to MailBox server. CAS server has no public IP on it so it does not face internet and this job is done by iron port. CAS server has send connector which contains IP of inbount network interface of ironport to forward emails to iron port and then iron port sends it to internet. As shown in the picture. Iron port has list of accepted domains and it only allows mail from inside for the domains which are in accepted list. If somene tries to spoof and send an email from internet with the same SMTP to our network, it is catagorized as spoof. This setup is working fine.

Desired infrastructure

The requirements demanded by management were as follows

  1. Students and faculty should be moved to cloud.
  2. SSO so that user can be controlled on premises but can login to cloud without any new user nam/password.
  3. All the emails should be route through our current applience i.e. Iron port (ESA)/ exchange.
  4. We will never move our all users to the cloud and it will be coexisted environment
  5. The users which we want to move to the cloud will also be some on cloud and some on local exchange for some time with same SMTP address so in nut shell some of the users with same SMTP will be on cloud and some on local. (Please note that none of these users will be controlled or created in cloud.
  6. Autodiscovery should also work as well as well if users Signin to local exchange, they should automatically redirected to cloud without sumbitting user name and password agin.

Steps done so far and Problems which are faced.

  1. As current domain was abc.local, UPN was added to make it routable on the internet. So far only one UPN added as other’s will be added in the future. (So for reference keep this noted that adding further UPNs and adding it AD azure connecte later will be an issue or not).
  2. DNS was added to O365 tenant and since we wanted our own DNS to control everything and emails through out on-premises setup, according to Microsoft documentation DNS was just verified by just txt and nothing more changed and DNS skip was selected and DNS errors were ignored.

  1. Custom domain was added and was set as dafault.
  2. Azure AD connect was installed with the hybrid exchnage and password hash selected. Users were successfully relected to O365 active users.
  3. Users were given license i.e. offce 365 and they were able to login to www.office.com by using AD local user name and password. But when this user when logs in to local exchange OWA, it allows it to loggin and gives a link to login to office365. Ideally it should not ask for user name and password again but it asks again on office365 means SSO not working correctly though it accepts users and password.
  4. Before running HCW utility user cloud@students.xyz.com (which were made on local AD and reflected to O365) were able to send and receive emails from any where except to and from those users which had same SMTP address but were hosted on local exchange e.g.  local@students.xyz.com.
  5. But when received email, it had email address like user1@abcuniversity.mail.onmicrosoft .com.
  6. After that HCW utility was run. During installation it did not ask for “Enable faderated trust” option and asked to add DNS token to out custom domain to verify the domain. It accepted the third party certificate and moved forward when asked for FQDN of CAS which is directly accessed by internet I was not sure and I given the FQDN of webservice which open local exchange OWA. E.g. xyz.com and address is like xyx.com/owa. After fininshing utility if gave warnings can be seen in the picture.

  1. After running HCW utility Now user on the cloud are not able to send mails anywhere except to those who’s mailboxes are hosted Office365.

10. Send and receive connector settings are like this on local exchange server

11. Connector setting in Office 365. We also made some changes in it. Changed the outbound connector setting to route email to our ironport. Also editedWhen do you want to use this connector? And set it to Only when email messages are sent to these domains and added some domains in it. Also edited the inbound connector and added IP address of our firewall from which emails will be sent to O365. After changing the outbound connector i.e. email from O365 to our Ironport, email from O365 users were started to bounce back because they were rejected by ironport. As soon as we released it from spoof capture, mails were delivered to recipients. This can be set on our side but now the problem is that user on cloud is not able to receive email from anywhere.

Issues and confusions

Email flow is not clear. Either all the emails will first to our gateway and then routed to EOP and then EOP will send next in case of centrlized email route is selected in HCW ?

If centrilized email is not selected what will be the flow of email like like only email to students.xyz.ac.ae will route via EOP or all of the exchange server’s domains will recv via EOP ?

What is IP address or URL will be added to send connector of local email exchange to enable it to send emails to Office365 ? If smart host then what is the URL of smart host of office 365. ?

*Address space: (local exchange outbound connector)Specify the address space or spaces to which this connector will route mail.?

What FQDN should be put in outbound connector of local exchange server?


Search

451 4.7.0 Temporary server error. Please try again later. PRX5

April 13, 2013, 11:15 am
$
0
0
I've noticed that on occassion when I connect to my Exchange 2013 CU 1 server, the server will respond with "451 4.7.0 Temporary server error. Please try again later. PRX5" after I submit an e-mail for delivery.  It accepts the sender, verifies the recipient, asks for data and fails only upon submission.  Trying again right after the failure usually takes care of the problem what that's not a fix.  What's causing the problem? Anyone else seen this?

Some Users Redirect to Old OWA

August 10, 2018, 10:40 am
$
0
0
We have a Exchange 2007/2013 environment. All of our users are on 2013. However, some users see the old OWA interface after logging in. Even some users who have new 2013 mailboxes see the old OWA. I don't really know where to start, and any help is appreciated.

Brody Kilpatrick

Rehome Public Folder Mailbox

August 10, 2018, 1:43 pm
$
0
0

We recently had a database on our Exchange 2013 Server fail. I worked with support and was able to create a new database and re-home users to it, followed by an import of PST files that were extracted from the damaged database using a 3rd party tool.

I'm currently working on deleting the failed database from Exchange and running into an issue where I can't delete it because a public folder mailbox still exists in that database. When I look at the AD configuration for that "user" account, I see that it's still set to use the damaged database as the HomeMDB.

The mailbox has been re-created in the new database, the data has been transferred (and is actually being converted to a Shared Mailbox, instead), but I can't seem to find a way to remove the pointers that are stopping me from deleting the old database. Before I take the drastic ADSIEdit route, I wanted to find out if there are any commands that can rehome the account to the new database properly.

A New-MoveRequest fails because the previous database is not mounted, nor can it be, so that's out of the question. Is there a way to force the move? Should I delete and re-create the "user" account? What options are there to completing this task?

Export bulk Email can Delete existing PST file

August 10, 2018, 11:20 pm
$
0
0

Dear All

I have exercise to take  Bulk email export in specific network folder, where all PST files successfully exported. as usual I started Bulk email export PST and PST successfully stored in a folder but , My colleague told me few Exported PST files are missing which previously existed in that folder. As per HR instruction  he deleted those Emails accounts in AD as well as Exchange 2016 server whose are resigned from company.  

In my knowledge Export option can not be deleted PST files. Kindly give me your experience what was happens in this scenario


Cross Forest Migration - Cached Calendar Items NDR

August 12, 2018, 2:30 am
$
0
0

I am in the middle of cross forest migration from Exchange 2010 (2000 Mailboxes) DomainA.com to Exchange 2013 Domain B.com.

Few hundred mailboxes are already moved.

I am facing issue with one migrated user(ProblemUser1), who has dozens of calendar items saved, that point to the old recipients emails. When he edits those calendar items or even replies to the old emails from those recipients he gets error of NDR "Remote Server returned '550 5.1.1 RESOLVER.ADR.ExRecipNotFound; not found'".

I have cleared Outlook cache and sending new email or creating new calendar item works without issue.

Some of these recipients are already migrated and some are still in the old domain, but still generating the NDR.

Any ideas will be appreciated.

My Blog: www.ADExchangeAdmin.com

Delete and Export People Contacts from OWA

August 12, 2018, 6:29 am
$
0
0

Dears,

We have Microsoft Exchange server 2013 in our environment, we are using OWA and some of the users wants to delete people contacts by selecting all and delete, but I can see any option to select all contacts, you should delete one by one which are taking too much times.

Second, how can we export all people contacts in OWA exchange server 2013 to outlook or any other places?

Best Regards,

IRM-Protected Messages percentage out of all emails in the organisation

August 12, 2018, 10:22 am
$
0
0

We are working on the feature which will be decrypting the RMS Encrypted messages from Office 365.

We have one performance related question in order to test our decryption capabilities in customer look like scenarios.

We would like to know, what could be the percentage of encrypted emails out of all emails in an organization per day/month/year?

Thanks for your help in advance!

Search

AttachmentTableTotalSize Increasing in Size for Journaling Mailbox Account

June 10, 2018, 8:53 pm
$
0
0

I've come across a weird instance where the journaling account we use to archive our email offsite has ballooned up the database but when you look at the mailbox statistics the mailbox size is normal but the AttachmentTableTotalSize is gigantic.  We have the mailbox policy set to purge Deleted Items every day but it doesn't seem to be clearing out attachments somehow.  I've tried googling what exactly the AttachmentTableTotalSize is but the results seem pretty limited.  Currently the only way I have been able to purge the mailbox is to migrate it do a different database and then migrate it back.  I'm running Exchange 2013 CU 20 and we first noticed the behavior back in CU 19.  I'm wondering if anyone else has come across this and has a better solution than just migrating the mailbox back and forth between databases.

DisplayName                                : Archive
ItemCount                                  : 4897
LastLoggedOnUserAccount                    :
LastLogoffTime                             : 
LastLogonTime                              : 
LegacyDN                                   :                                             
MailboxGuid                                : 
MailboxType                                : Private
ObjectClass                                : Unknown
StorageLimitStatus                         :
TotalDeletedItemSize                       : 0 B (0 bytes)
TotalItemSize                              : 760.8 MB (797,788,028 bytes)
MailboxTableIdentifier                     :
Database                                   : LOCAL MDB
ServerName                                 : 
DatabaseName                               : LOCAL MDB
IsDatabaseCopyActive                       : True
IsQuarantined                              : False
QuarantineDescription                      :
QuarantineLastCrash                        :
QuarantineEnd                              :
ExternalDirectoryOrganizationId            : 00000000-0000-0000-0000-000000000000
IsArchiveMailbox                           : False
IsMoveDestination                          : False
MailboxMessagesPerFolderCountWarningQuota  :
MailboxMessagesPerFolderCountReceiveQuota  :
DumpsterMessagesPerFolderCountWarningQuota :
DumpsterMessagesPerFolderCountReceiveQuota :
FolderHierarchyChildrenCountWarningQuota   :
FolderHierarchyChildrenCountReceiveQuota   :
FolderHierarchyDepthWarningQuota           :
FolderHierarchyDepthReceiveQuota           :
FoldersCountWarningQuota                   :
FoldersCountReceiveQuota                   :
NamedPropertiesCountQuota                  : 16384
MessageTableTotalSize                      : 39.25 MB (41,156,608 bytes)
MessageTableAvailableSize                  : 18.22 MB (19,103,744 bytes)
AttachmentTableTotalSize                   : 47.76 GB (51,282,247,680 bytes)
AttachmentTableAvailableSize               : 32.84 MB (34,439,168 bytes)
OtherTablesTotalSize                       : 87.22 MB (91,455,488 bytes)
OtherTablesAvailableSize                   : 1.469 MB (1,540,096 bytes)
DatabaseIssueWarningQuota                  : 1.899 GB (2,039,480,320 bytes)
DatabaseProhibitSendQuota                  : 2 GB (2,147,483,648 bytes)
DatabaseProhibitSendReceiveQuota           : 2.3 GB (2,469,396,480 bytes)
Identity                                   : 
MapiIdentity                               : 
OriginatingServer                          : 
IsValid                                    : True
ObjectState                                : Unchanged


List Users in delegation Shared Mailbox and export to csv file

August 5, 2018, 11:30 am
$
0
0

Hi Everyone,

I'm Managing over 1000 share Mailboxes in our Environment and I want write power shell script to list only Users in some Shared Mailboxes and Export them to CSV File. Please read my Question carefully! I do not want to list all Shared Mailboxes in my Environment but just some. I do appreciate if someone out there could help. Thank You


Room mailboxes and Autodiscover

August 14, 2018, 12:29 am
$
0
0

Hi,

I do have working setup on-premises with Skype 2015 and Exchange 2013. But - of course there is one but - now I found one issue, when testing the autodiscover service from the Skype it is working perfectly for regular users. But when I try to do the same for the room mailbox I get the error:

HTTP/1.1 401 Unauthorized
request-id: 85378a39-ba8d-4509-a22e-e62bad4fcb4b
x-ms-diagnostics: 2000005;reason="The MasterAccountSid doesn't match the SID claim.";error_category="invalid_user"
Cache-Control: private
Server: Microsoft-IIS/8.5
WWW-Authenticate: Bearer client_id="00000002-0000-0af1-cf00-0000000000", trusted_issuers="00000001-0000-0000-c000-000
000000000@8bedd60-0b36-4125-8224-ca9ae679e1f4,00000004-0000-0ff1-ce00-00000000000@doomain.com",
error=" invalid_token",Negotiate,NTLM,Basic realm="autodiscover.domain.com"

When looking for the room mailbox I can see it says:

LinkedMasterAccount                    : NT AUTHORITY\SELF

Skype do have a room mailboxes which are used for room devices, like Skype Room System.

Any good idea what is the correct way to get this fixed? Or is there a fix?

Petri

The operation couldn't be performed because object 'user' couldn't be found on 'server.PROD.OUTLOOK.COM'.

August 14, 2018, 6:08 am
$
0
0

We are an Office 365 Hybrid environment. One of our Help desk technicians incorrectly moved an active user to a non-synced OU in AD. The user only appeared on our local Exchange server as a Mail Contact. We moved the user object back to the same AD OU it was in previously, ran a dir-sync.  The user still  showed in 365 Deleted Users.  I chose the "Recover" option and ran through the wizard. The Recover wizard failed, but the user moved from showing in the Deleted users list to under the mailboxes list. The user currently shows the email address with 2013.onmicrosoft.com tacked on the end and when I select the user I get a yellow box on the right that says: The operation couldn't be performed because object 'user' couldn't be found on 'server.PROD.OUTLOOK.COM'.

How do I fix this user so he can access his mailbox?

Thanks Harold

PowerShell script to export user mailbox as .PST file from input.CSV

August 14, 2018, 10:24 pm
$
0
0

People,

I need some help in modifying the PowerShell script to export user mailbox as .PST from input file below:

The problem is that the input file is from the HR system as First Last name.
How to write the logs to .CSV file when the export failed?

#Import remote session with exchange on my laptop where Outlook is installed$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://PRDEX01-VM/Powershell/ -Authentication KerberosImport-PSSession $Session$ServerBackupUNCPath = "\\FILESERVER\OST\"$CSVPath = "C:\LOGS\users.csv"try{$AllMailboxes = Import-CSV $CSVPathforeach ($mbx in $AllMailboxes) { New-MailboxExportRequest -Mailbox $mbx -FilePath "$ServerBackupUNCPath$($mbx.Alias).pst" -baditemlimit 50 -acceptlargedataloss; while ((Get-MailboxExportRequest -mailbox $i | Where-Object { $_.Status -eq "Queued" -or $_.Status -eq "InProgress" })) { Start-Sleep 120 } }Write-Host"Processing...........$mbx.Alias................" -ForegroundColor Green}catch{Write-Host "Exception has occured processing....$mbx.Alias...." -ForegroundColor Red$_.Exception.Message# Export the list of the failed mailboxes to exportExport-Csv -Path C:\LOGS\FailedExport.CSV -NoTypeInformation}

Any help would be greatly appreciated.

Thanks

/* Server Support Specialist */

How to update value for msExchUserAccountControl for multiple user

April 6, 2015, 2:25 am
$
0
0

Hi,

I have issue where value for msExchUserAccountControl were reverted to 2 for some of the users. I found the cause and fixed it. But i need to update the value to 0 for all those users. 

I can do it using ADSIEDIT for each user. But since its for bulk users, i need command line help. Is there any script or command which can do this? Using set-aduser i cant find any parameter which can modify the msexch properties.

Thanks.

Sam

How to Check/Track who enabled Outlook web access to mailbox

August 15, 2018, 12:09 pm
$
0
0

Hi All,

Do we have any shell command to check who enabled Outlook Web Mail access to mailbox user?

i have used below command but its just shows enabled and disabled features but i want to know who enabled and disabled the features for specific user.

Get-CASMailbox <identity>

Thanks,

Mani L

Mani L

Search

command to find oldest email in mailbox

March 27, 2015, 3:18 pm
$
0
0
how to find oldest email date on a particular mailbox through exchange management shell command ?

Exchange 2013 - Rule question - Outside the organization

February 9, 2016, 1:20 pm
$
0
0

I created a simple role to process anything from Sender:Outside the organization to Recipient Contains:testdl@mycompany.com. It appears that theOutside the organization does not apply for some reason. Might this be because I pass messages to the FrontEnd Transport on my CAS servers before the HUB transport (from my gateway mail appliance). How does "Outside the organization" get applied?

Thanks

Outbound mails pile up in queue

October 12, 2016, 7:10 pm
$
0
0

Dear Sirs, 

My Exchange server went down, because the drive c where the mailbox store database went full.

I tried transferring the mailbox store to drive d: where it went well... but i cannot mount it.

i tried many times to mount a transferred mailbox store but still it wont mount...

and so i transferred back the mailbox store to the original drive c:... but this time the drive has only 480 mb left.

It mounted it is ok... my users can now receive emails...

but my outgoing is still a problem.... all outgoing mails are piling up....in the queue  and wont send...

my question is:

is it because my drive c is almost full that is why it wont send?

smtp out error... it says... a remote server wont respond to a connection attempt.

my successful incoming mails mean my public ip its config is ok... please help me...

thanks a lot.

sincerely, 

Ramon

Remote Connectivity Analyzer verification challenge always fails

December 12, 2016, 7:46 pm
$
0
0

I am trying to debug some connectivity issues related to accessing some on-prem mailboxes as well as some mailboxes that are being moved to Office 365.

I wanted to use the Remote Connectivity Analyzer but over the last couple of days I have been unable to get past the verification step so that I can actually run the tests.  I have tried using Edge, IE11 and Chrome on Windows 10, and Windows Server 2012R2. I have had people looking over my shoulder as I type in the verification code to be sure I am putting in the correct code and I keep getting the following message:

"testconnectivity.microsoft.com says: Verifying the challenge failed. Please refresh the page and try again"

The page specifically says that the code is NOT case-sensitive but I have tried it both ways and still get the error.

Anyone run into this?  Work arounds?  Any thought would be a help,

Thanks in advance,

Mike Askwith

TargetAddress Attribute

December 5, 2013, 8:42 am
$
0
0

Hi,

When migrating to Office 365, Exchange 2010 and 2013 do not support a staged migration because:

" In Exchange 2010 and Exchange 2013, the TargetAddress property can't be modified. This is the reason that staged Exchange migration doesn't support migrating Exchange 2010 and Exchange 2013 mailboxes to Exchange Online. "

http://technet.microsoft.com/en-us/library/jj898486%28v=exchg.150%29.aspx

And a response on expertsexchange (http://www.experts-exchange.com/Software/Office_Productivity/Office_Suites/MS_Office/Microsoft_Office_365/Q_28275069.html) says:

"

Because as part of the migration process, the staged migration wizard will populate the targetaddress attribute with the @domain.mail.microsoftonli

ne.com alias (routing address) for any migrated accounts. And changing the targetaddress is not supported in E2010/E2013"

My mailbox is hosted on an Exchange 2013 server and I can successfully set the attribute with adsiedit and forward mails elsewhere.

Can someone tell me:

1. What is meant by "the targetAddress property cannot be modified." - If we're talking about the AD attribute then it definitely can.

2. Is it correct that it's not supported to change this attribute? If so can someone provide me with a link to an MS article stating this as I've not been able to find one and also an explanation why.

3. May already be addressed by the answers to above but if not: Is there any harm in modifying this attribute?

Many thanks

Steve

Viewing all 13303 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>