Test-Federation Trust says a certificate is expired but it isn't

June 12, 2020, 8:57 pm

≪ Previous: Exchange Databases Issue (Log File)

Recently replaced the Federation Trust Certificate on an Exchange 2010 SP3 server.

When running the Test-FederationTrust command the following output is shown:

RunspaceId : 9a7a44a8-##-92c5-7ae5f2f34979
Id : FederationTrustConfiguration
Type : Success
Message : FederationTrust object in ActiveDirectory is valid.

RunspaceId : 9a7a44a8-##-92c5-7ae5f2f34979
Id : FederationMetadata
Type : Success
Message : The federation trust contains the same certificates published by the security token service in i
ion metadata.

RunspaceId : 9a7a44a8-##92c5-7ae5f2f34979
Id : StsCertificate
Type : Success
Message : Valid certificate referenced by property TokenIssuerCertificate in the FederationTrust object.

RunspaceId : 9a7a44a8-##-92c5-7ae5f2f34979
Id : StsPreviousCertificate
Type : Success
Message : Valid certificate referenced by property TokenIssuerPrevCertificate in the FederationTrust objec

RunspaceId : 9a7a44a8-##-92c5-7ae5f2f34979
Id : OrganizationCertificate
Type : Error
Message : Certificate referenced by property OrgPrivCertificate in the FederationTrust object is expired.

However, the certificate referenced in the property for OrgPrivCertificate in the FederationTrust object isNOT expired. It is the newly created certificate.

Any suggestions please?

↧

Can't recover old account

June 13, 2020, 5:50 am

≫ Next: forwarding to 2 seaparate email addresses

≪ Previous: Test-Federation Trust says a certificate is expired but it isn't

Hi there. I used to have an old hotmail/outlook account with the following address: pedrohenriquebarros2010@hotmail.com

As you can see it is from 2010, and hotmail pretty much doesn't exist anymore. I tried to acess that e-mail and it said it doesn't exist. So i thought: "Ok, let's create it". I did create it again, but when trying to login i rceived this error:

X-ClientId: F41D9C7CC7944A9791F7252C651589E0
X-Auth-Error Microsoft.Exchange.Clients.Security.MailboxNotFoundException
X-FEServer RO1PR80CA0224
X-BEServer RO2P152MB3469
Date:13/06/2020 12:37:06
InnerException: Microsoft.Exchange.Data.Directory.CannotResolveTenantNameException

Is there a way i can have acess to my account again? Because i want to start playing and old game again that still working, but the game is asking to receive an e-mail for confirmation... Thank you!

↧

forwarding to 2 seaparate email addresses

June 13, 2020, 6:23 am

≫ Next: Difference between New Exchange server to 2nd Exchange Server

≪ Previous: Can't recover old account

Exchange 2013 with cu22

A user is asking me to forward her emails to separate accounts while she is away from the office. Can this be configured for her?

Thanks,

Alexis

↧

Difference between New Exchange server to 2nd Exchange Server

June 15, 2020, 12:12 am

≫ Next: Updating from CU2 to CU23, precautions

≪ Previous: forwarding to 2 seaparate email addresses

Hi Guys,

A client has exchange 2013 and wants to add 2nd 2016 Exchange server

are there any different instructions that i need to perform during the installation?

or can i treat it like installing a new exchange server (including pre-req scripts)?

↧

Updating from CU2 to CU23, precautions

June 5, 2020, 6:56 am

≫ Next: Mail box database size script

≪ Previous: Difference between New Exchange server to 2nd Exchange Server

Hello,

I recently took over the IT roles for 2 companies and am new to using Exchange. Through months of working on these servers I've learned enough to do the simple stuff. It recently came to my attention that they haven't been updated since 2013 (SERIOUSLY?!). Some users recently can't use the calendar on a computer (but on their phone it works fine), as well as OWA problems when searching for old emails. I'm hoping this cleans things up, among other things.

Anyways, what precautions should I take before updating these servers. They are both on-premise at a M-F site. I'm running a full backup using Carbonite and am cautious about this update leading to other problems. Also, about how long would this take? I'm planning on doing it over a weekend.

Thanks!

↧

Mail box database size script

June 15, 2020, 8:40 am

≫ Next: Updating from CU2 to CU23, precautions

≪ Previous: Updating from CU2 to CU23, precautions

Dear forum Exchange experts,

Is there a way available in exchange or script available where we have mailbox database with different sizes like 10gb 20gb 50gb depending and when any mailbox creation for higher manager is trigger it should select from db1 to db6 only and if second top manager is created then it should select from db7 to db10 and so on. i would like to automate this using some script and have to handle this via api. Is there way to achieve this.

↧

Updating from CU2 to CU23, precautions

June 5, 2020, 6:56 am

≫ Next: Exchange removes MIME preamble and breaks DKIM signature

≪ Previous: Mail box database size script

Hello,

Thanks!

↧

Exchange removes MIME preamble and breaks DKIM signature

May 15, 2020, 9:39 am

≫ Next: Backscatter issue with MS Exchange 2013

≪ Previous: Updating from CU2 to CU23, precautions

Hello,

I am sending a message to two recipients from an Exim 4.84_2 server. One of the messages is forwarded through an Exchange 2013 server while the other is delivered directly to the recipient's server. Exchange keeps removing the line "This is a MIME-formatted message. If you see this text it means that your E-mail software does not support MIME-formatted messages." from the message and this breaks the DKIM validation as the body's hash doesn't match with the one in the DKIM header.

The body of the message which is not forwarded through Exchange is this:

This is a MIME-formatted message.  If you see this text it means that your
E-mail software does not support MIME-formatted messages.

--=_soporte-17396-1589554417-0001-2
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
RT-Attach-Message: yes
X-RT-Original-Encoding: utf-8
X-Mime-Autoconverted: from 8bit to quoted-printable by reformime (maildrop 2.7.1)

Mensaje enviado por: jesusangel@local. =C3=A1=C3=A9=C3=AD=C3=B3=C3=
=BA


--=_soporte-17396-1589554417-0001-2
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit
X-RT-Original-Encoding: utf-8
X-Mime-Autoconverted: from 8bit to 7bit by reformime (maildrop 2.7.1)

Mensaje enviado por: jesusangel@local.

&aacute;&eacute;&iacute;&oacute;&uacute;
--=_soporte-17396-1589554417-0001-2--

While the body of the message forwarded through Exchange is this:

--=_soporte-17396-1589554417-0001-2
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
RT-Attach-Message: yes
X-RT-Original-Encoding: utf-8
X-Mime-Autoconverted: from 8bit to quoted-printable by reformime (maildrop 2.7.1)

Mensaje enviado por: jesusangel@local. =C3=A1=C3=A9=C3=AD=C3=B3=C3=
=BA


--=_soporte-17396-1589554417-0001-2
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit
X-RT-Original-Encoding: utf-8
X-Mime-Autoconverted: from 8bit to 7bit by reformime (maildrop 2.7.1)

Mensaje enviado por: jesusangel@local.

&aacute;&eacute;&iacute;&oacute;&uacute;
--=_soporte-17396-1589554417-0001-2--

As you can see, the only diference between the two messages is the missing first lines (the MIME preamble).

So you know how to avoid Exchange changing the message body?

Kind regards,

↧

Backscatter issue with MS Exchange 2013

June 19, 2020, 3:57 am

≫ Next: Outlook Error when Sharing Calendar with mixed environment

≪ Previous: Exchange removes MIME preamble and breaks DKIM signature

Hi all,
some days ago we have problem to send some e-mails:
We have seen using mxtoolbox.com that Microsoft Exchange public IP is listed inbackscatterer.org
After that I have checked Queue Viewer using Exchange Toolbox.There are many mails with empty "from address".

Does exist an Exchange solution to fight BackScatter?

Thanks
Federico

↧

Outlook Error when Sharing Calendar with mixed environment

June 19, 2020, 8:54 am

≫ Next: HTTP ERROR 503,unable to handle this request.

≪ Previous: Backscatter issue with MS Exchange 2013

Hi,

The background

We have a mixed estate and are moving users from Exchange 2013 to Exchange 365

When trying to share a calendar for a user on the onprem(2013) to a user that has been migrated I get this error message:

One or more users cannot be added to the folder access list. Non-local users cannot be given rights on this server.

Is this a know error and is there a fix?

Outlook 2013 being used if that makes a difference.

Cheers

↧

HTTP ERROR 503,unable to handle this request.

May 27, 2017, 1:21 pm

≫ Next: How to find root cause for same mail being sent 2 times from a application

≪ Previous: Outlook Error when Sharing Calendar with mixed environment

I am unable to login MS exchange adminECP and OWA url. Whenever i want login to bolth of the having 'HTTP ERROR 503,unable to handle this request'. Please help.

↧

How to find root cause for same mail being sent 2 times from a application

June 22, 2020, 7:51 am

≫ Next: Export all mailbox to pst using command

≪ Previous: HTTP ERROR 503,unable to handle this request.

We have a application that relays email through exchange 2010 CAS server (Hybrid setup).
We are seeing duplicate emails sent by the application for the same job.
According to the vendor the application only waits for 20 seconds (20000ms) for the mail to be sent. If no response is received from the exchange server in that window the application will think the job failed and try it another time. That's why application keep sending the same emails out.
This results in users getting same email 3-4 times on occasions.

I grabbed the header of one of the emails that was sent 3 times to user.
In header analysis I could only see a delay on the second hop (hop to mail.protection.outlook.com).
Would second hop matter from the application perspective?
My thought is that the smtp session is between the application server and the CAS server. So as long as the mail was handed over to the CAS server then the application doen't know what happens to the mail after that and thus the second hop should not matter.
But another engineer thinks that as we are consistently(about 40% of emails) seeing delay on second hop (upto 10 minutes on occasions), that could be affecting the application.
Is that correct?

And how can I troubleshoot why the application can't handover the mail to CAS server in 20 seconds and thus sends it second time?

↧

Export all mailbox to pst using command

June 22, 2020, 8:15 pm

≫ Next: The property can not be used for sorting or grouping results., Sort/GroupBy isn't supported for property IsRead.

≪ Previous: How to find root cause for same mail being sent 2 times from a application

Can you provide me an script or command by which i can export mailbox ( both inbox and sent item) for a particular date range.

↧

The property can not be used for sorting or grouping results., Sort/GroupBy isn't supported for property IsRead.

June 24, 2020, 7:48 am

≫ Next: active directory child domains and exchange server

≪ Previous: Export all mailbox to pst using command

Hello,

I have a service written for fetching emails from outlook using EWS. This code was written 3 years back and has run without any issues.

Today Morning all of a sudden there was this error:

Microsoft.Exchange.WebServices.Data.ServiceResponseException: The mailbox database is temporarily unavailable., Cannot open mailbox.

After that I started getting below error:

Microsoft.Exchange.WebServices.Data.ServiceResponseException: The property can not be used for sorting or grouping results., Sort/GroupBy isn't supported for property IsRead.
   at Microsoft.Exchange.WebServices.Data.ServiceResponse.InternalThrowIfNecessary()
   at Microsoft.Exchange.WebServices.Data.MultiResponseServiceRequest`1.Execute()
   at Microsoft.Exchange.WebServices.Data.ExchangeService.FindItems(FolderId parentFolderId, SearchFilter searchFilter, ItemView view)

Below is my code to fetch emails:

below first line is throwing the error.

FindItemsResults<Item> FindItemResults = service.FindItems(Customfolder.Id, new SearchFilter.SearchFilterCollection(LogicalOperator.And, new SearchFilter.IsEqualTo(EmailMessageSchema.IsRead, false)), new ItemView(999));

                        if (FindItemResults.Count() > 0)
                        {
                            service.LoadPropertiesForItems(FindItemResults, PropertySet.FirstClassProperties);

Any help is appreciated.

Thanks in advance.

↧

active directory child domains and exchange server

June 25, 2020, 12:08 am

≫ Next: Access Office 365 shared mailbox from onpremises via owa

≪ Previous: The property can not be used for sorting or grouping results., Sort/GroupBy isn't supported for property IsRead.

dears,

i have one domain: abc.com and one child domain: x.abc.com

i want to install exchange server.

my question can i install different exchange servers for each domain and child domain?

or am i enforced to use one single exchange organization?

i am checking i can i install exchange server just for the child domain users and exchange server for just the parent domain users

thank you

↧

Access Office 365 shared mailbox from onpremises via owa

June 30, 2020, 7:32 am

≫ Next: Cannot log into OWA

≪ Previous: active directory child domains and exchange server

After migration of Exchange 2013 shared mailbox to Office 365 in a full hybrid enviroment, only users in Office 365 with a license can open the shared mailbox from owa. All users can open the shared mailbox from Outlook 2016. Is this a normal behaviour?

Thanks!

↧

Cannot log into OWA

June 30, 2020, 8:40 am

≫ Next: Active Directory cross forest-migration enabled mailbox

≪ Previous: Access Office 365 shared mailbox from onpremises via owa

Hello. I have a new Exchange 2013 installation on a server 2012 r2 System. It is updated to update 23. I go to the OWA Page to enter my details and it seems to accept it but goes nowhere. If I enter a bad password it gives me that error saying that what was entered is not correct. Could someone here help me to get logged on? I would very much appreciate it and thanks in advance.

AL H

ALHusketh

↧

Active Directory cross forest-migration enabled mailbox

July 3, 2020, 3:20 am

≫ Next: Powershell Script to Bulk Create Exchange Mailbox (On Prem)

≪ Previous: Cannot log into OWA

i have a resources and account AD forest that contains both exchange 2013 and user accounts as well.

we are going to migrate user accounts and computers to the another forest B but mailboxes will stay in forest A.

so with moving SID history of users from forest A to forest B, will users be able to continue accessing to their mailboxes?

or should we create linked mailboxes for them in the resource forest, in this case should be extend the AD schema of the forest B with Exchange Binaries?

thanks in advance

↧

Powershell Script to Bulk Create Exchange Mailbox (On Prem)

July 3, 2020, 9:17 pm

≫ Next: Self signed certificate issue

≪ Previous: Active Directory cross forest-migration enabled mailbox

Hello!

I have a really old script that enables a mailbox for a single user. I am looking for one that will help me create a bulk at once. Below is the single user script that I use daily for exchange on prem. Any help is greatly appreciated.

Step 1:

$user = Read-Host 'Please enter new mailbox username'
Enable-remotemailbox -identity $user -primarysmtpaddress $user@company.com -remoteroutingaddress $user@company.com
Enable-remotemailbox -identity $user -archive
Write-Host "To complete mailbox creation run a DirSync"

Step 2: after waiting 10 minutes

$user = Read-Host 'Please enter mailbox username'
set-remotemailbox -identity $user -emailaddresses @{add="$username@company.com"}}

↧

Self signed certificate issue

July 6, 2020, 12:56 pm

≫ Next: Outlook app stops receiving emails but able to send

≪ Previous: Powershell Script to Bulk Create Exchange Mailbox (On Prem)

Exchabge 2013 current CU

Server 2012R2

My Self signed exchange server certificate expired. I renewed it with no issues

However, I get this at outlook open and it will not connect:

Now I cannot get to exchange admins shell.

I am restoring an image of the server taken today to restore mail access.

How do I clear this?

John Lenz

↧