cd
$exscripts
.\install-AntispamAgents.ps1
Restart-Service
MSExchangeTransport
Set-TransportConfig
-InternalSMTPServers 10.0.1.10,10.0.1.11
Sunday, August 30, 2015
[EX2010] Change the OWA Language
Set-Mailbox -Identity "Katarina Larsson" -Languages
"fi-FI"
Set-MailboxRegionalConfiguration -Identity Tony -Language da-dk
-DateFormat "dd-mm-yyyy"
Set-OwaVirtualDirectory
-identity "Owa (Default Web Site)" -LogonAndErrorLanguage
<language code>
[EX2010] Corrupted Free/Busy Data
Some booking
issues are related to corrupted Free/Busy data. In these cases, best practices
are to update the Free/Busy information for the resource mailbox. To do this,
follow these steps:
- Load an Outlook profile for the resource mailbox in MFCMapi.
- Locate the Free/Busy folder for the mailbox in MFCMapi that is located above Top of Information Store.
- Delete the following two files:
- Local Data
- Sniffer
Find-BadCalendarItems.ps1
[EX2010] DB Recovery
A quick over view
of all the options for Microsoft Exchange’s ESEUTIL.
Eseutil /cc
Performs a hard recovery after a database restore.
Eseutil /d
Performs an offline compaction of a database.
Eseutil /g
Verifies the integrity of a database.
Eseutil /k
Verifies the checksums of a database.
Eseutil /m
Generates formatted output of various database file types. e.g. /mh
Eseutil /p
Repairs a corrupted or damaged database.
Eseutil /r
Performs soft recovery to bring a single database into a consistent or clean
shutdown state.
Eseutil /y Copies
a database, streaming file, or log file.
[EX2010] Virtual Directories
Default
Web site
Anonymous
Required
aspnet_client
Anonymous
authentication
SSL
required
Requires
128-bit encryption
Autodiscover
Anonymous
authentication
Basic
authentication
Windows
authentication
SSL
required
Require
128-bit encryption
ecp
Anonymous
authentication
Basic
authentication
SSL
required
Requires
128-bit encryption
EWS
Anonymous
authentication
Windows
authentication
SSL
required
Requires
128-bit encryption
Microsoft-Server-ActiveSync
Basic
authentication
SSL
required
Requires
128-bit encryption
OAB
Windows
authentication
Not
required
owa
Basic
SSL
required
Requires
128-bit encryption
Powershell
Anonymous
authentication
Not
required
Rpc
Basic
authentication
Windows
authentication
SSL
required
Requires
128-bit encryption
RpcWithCert
By
default, all authentication methods are disabled
Required
[EX2010] Uncomplete Installation
Check
if the "Watermark" and/or "Action" registry key exist in
the following paths:
HKEY_Local_Machine\Software\Microsoft\ExchangeServer\V14\ClientAccessRole
HKEY_Local_Machine\Software\Microsoft\ExchangeServer\V14\MailboxRole
HKEY_Local_Machine\Software\Microsoft\ExchangeServer\V14\HubTransportRole
If so,
delete it and re-run the Setup file.
[EX2010] Change Expired Passwords
1. Log on to the Client Access server.
2. Start Registry Editor (regedit).
3. Locate the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchange OWA.
4. Create the following DWORD value if it doesn't already exist: ChangeExpiredPasswordEnabled. The value type will be REG_DWORD.
5. Set the value of ChangeExpiredPasswordEnabled to 1.
6. Exit Registry Editor.
7. Restart the IIS (iisreset).
[EX2010] Update E-mail Address Policy
From Exchange 2003 to Exchange 2010
Get-EmailAddressPolicy | where {$_.RecipientFilterType –eq “Legacy”} |Set-EmailAddressPolicy –IncludedRecipients AllRecipients
Open ADSIEDIT. MSC
Go to :
CN=Default Policy,CN=Recipient Policies,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=xyz,DC=com
Then “Remove” MsExchMailboxManagerFolderSettings list
[EX2010] Delete Disconnected Mailboxes
Update the databases to show all disconnected
mailboxes
Get-MailboxDatabase
| Clean-MailboxDatabase
List all disconnected mailboxes in a database and
display DisconnectReason if its SoftDeleted or Disabled
Get-MailboxStatistics
-Database DATABASE | Where-Object {$_.DisconnectDate -Notlike $NULL} | ft
DisplayName, DisconnectDate, MailboxGuid, DisconnectReason –Wrap
Remove all SoftDeleted disconnected mailboxes from a
Database
Get-MailboxStatistics
-Database DATABASE | where {$_.DisconnectReason -eq "SoftDeleted"} |
foreach {Remove-StoreMailbox -Database $_.database -Identity $_.mailboxguid
-MailboxState SoftDeleted}
* Note
you will be prompted to confirm each deletion, type Y to each confirmation as
prompted. You can add the -Confirm switch to bypass confirmation prompt.
[EX2010] OoF Troubleshooting
Verify the OOF URL when AutoDiscover was successful
The
protocol group to look in is as follows:
When
using Outlook internally (or via VPN) with Outlook Anywhere disabled:
Protocol:
Exchange RPC
When
using Outlook internally (or via VPN) with Outlook Anywhere enabled:
Protocol:
Exchange HTTP (first block if there are 2)
When
using Outlook externally:
Protocol:
Exchange HTTP (second block if there are 2)
Now
log on to Outlook Web App (OWA) via your browser, type the OOF URL in the
Address Bar.
If the
OOF service is available at this URL, you should now get a page with XML
information or a service page.
If the
OOF service isn’t available at this URL, you’ll most likely get a “403
Forbidden” or “The page cannot be displayed” error.
Get-WebServicesVirtualDirectory
EWS Authentication Methods
Valid certificate
Clear OOF Rule in the mailbox:
========================
1.
Turn off OOF on a problem user and close Outlook
2. Use
MFCMapi tool to logon the problem user"s mailbox (by using Online Mode
profile)
3.
Expand Root Container->Top of Information Store
4.
Right click Inbox folder and click Open Associated contents table
5.
Delete following messages if exist:
a.
Message class == IPM.Rule.Message
0x65EB001E
== Microsoft Exchange OOF Assistant
0x65EC001E
== Microsoft.Exchange.OOF.InternalSenders.Global
b.
Message class == IPM.Note.Rules.OofTemplate.Microsoft
c.
Message class == IPM.Rule.Message
0x65EB001E
== MSFT:TDX OOF Rules
d.
Message class == IPM.Rule.Message
0x65EB001E
== Microsoft Exchange OOF Assistant
0x65EC001E
== Microsoft.Exchange.OOF. AllExternalSenders.Global
e.
Message class == IPM.Note.Rules.ExternalOOFTemplate.Microsoft
f.
Message class == IPM.ExtendedRule.Message
0x65EB001E
== Microsoft Exchange OOF Assistant
0x65EC001E
== Microsoft.Exchange.OOF.KnownExternalSenders.Global
6.
After that, please start Outlook and configure OOF for the user. Please check
whether the issue persists.
How to clean Out of Office
Rules using MFCMAPI
How to Remove an Invisible or Corrupted "Out of
Facility" message with MFCMAPI
[EX2010] Search-Mailbox
The Search-Mailbox
cmdlet returns up to 10000 results per mailbox if a search query is specified.
To return more than 10000 results, use the New-MailboxSearch cmdlet or the
In-Place eDiscovery & Hold console in the Exchange Administration Center.
[EX2010] MRSProxy Service Configuration
C:\Program
Files\Exchange Server\V14\Client Access\exchweb\ews\web.config
In the bottom of this file, you needed to change IsEnabled=”false” to IsEnabled=”true” then save the file and restart the Exchange MRS
service.
Set-WebServicesVirtualDirectory -Identity “EWS
(Default Web Site)” -MRSProxyEnabled $true –MRSProxyMaxConnections 100
[EX2010] EAS: 8MB attachment
Event ID 1008: "Maximum Request Length
Exceeded"
This is due to the Max
Request Length setting being 10MB by
default. So any message with an attachment that is around 8MB or so
will fail to send as the request is too big. The reason I say 8MB is that
we have to take into consideration the 33% MIME conversion bloat added to the
message after MIME conversion. Once that 33% is taken into account, we
will exceed the 10MB Max Request Length limitation. The iPhone will
continue to try and send the message until it is removed from the device.
To resolve this
issue with iOS devices, we typically recommend increasing the Maximum
Request Length parameter on the web.config file for ActiveSync on the
Client Access Server(s).
- On the CAS servers, browse to the web.config file (under the ClientAccess\Sync folder)
- Open the web.config file
- Modify the <httpRuntime maxRequestLength=”10240″/> parameter to a higher value to something higher, such as 15360 (15MB).
- Save the updated web.config file
- Restart IIS (IISRESET)
That's it.
Naturally if a larger value is needed then just follow the same steps to
increase the value that is required. We don't recommend getting too
carried away with this setting. Common recommendations are 15-20MB... and usually no higher than 50MB.
[EX2010] Upgrade Order
You should upgrade your Exchange 2010 server roles in the following order:
- Client Access
- Hub Transport
- Unified Messaging
- Mailbox
- Edge Transport
Upgrade your Exchange 2013 server
roles in the required order. First, upgrade Mailbox servers and then upgrade
Client Access servers.
Therefore,
it is important to upgrade your Client Access servers prior to upgrading your
Mailbox servers if you have multiple OAB generation mailboxes deployed in your
environment.
[EX2010] Collect Exchange version of all servers
$installpath
= "c$\Program Files\Microsoft\Exchange Server\V14\Bin\ExSetup.exe"
Get-ExchangeServer | ?{$_.admindisplayversion -like "*14*"} | %{
$Servername
= $_.Name
$role =
$_.serverrole
$Path =
"\\" + $Servername + "\" + $installpath
$fileversion
= (Get-Command $Path).FileVersionInfo |ForEach {$_.FileVersion}
$result =
$Servername + "|" +
$fileversion + "|" + $role
$result
$result
>> result.txt
}
[EX2010] RBAC - Helpdesk
Get-ManagementRole
"Distribution Groups" | New-ManagementRole "Distribution Groups
No Delete"
Get-ManagementRole
"Mail Recipient Creation" | New-ManagementRole "Mail Recipient
Creation No Delete"
Get-ManagementRole
"Mail Recipients" | New-ManagementRole "Mail Recipients No
Delete"
Get-ManagementRole
"Distribution Groups No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-DistributionGroup"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Distribution Groups No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-DynamicDistributionGroup"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailContact"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-Mailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailUser"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-RemoteMailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Add-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailboxPermission"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Get-MailboxPermission"} | Remove-ManagementRoleEntry
New-RoleGroup
"HD" -Roles "Distribution Groups No Delete", "Mail
Recipient Creation No Delete", "Mail Recipients No Delete"
-Members jen
New-ManagementScope
"Executive Users Exclusive Scope" -RecipientRestrictionFilter {
department -eq "Manager" } -Exclusive
New-ManagementRoleAssignment
-Name "Managers" -SecurityGroup "Organization Management"
-Role "Mail Recipients" -ExclusiveRecipientWriteScope "Executive
Users Exclusive Scope"
-----------------------------
Get-ManagementRole "Mail Recipient Creation" | New-ManagementRole "Mail Recipient Creation No Delete"
Get-ManagementRole "Mail Recipients" | New-ManagementRole "Mail Recipients No Delete"
Get-ManagementRole "Distribution Groups No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-DistributionGroup"} | Remove-ManagementRoleEntry
Get-ManagementRole "Distribution Groups No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-DynamicDistributionGroup"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailContact"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-Mailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailUser"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-RemoteMailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Add-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Get-MailboxPermission"} | Remove-ManagementRoleEntry
New-RoleGroup "HD" -Roles "Distribution Groups No Delete", "Mail Recipient Creation No Delete", "Mail Recipients No Delete" -Members jen
New-ManagementScope "Executive users exclusive scope" -Recipientrestrictionfilter { department -eq "manager" } -exclusive
New-managementroleassignment -name "managers" -securitygroup "Organization Management" -role "mail recipients" -exclusiverecipientwritescope "executive users exclusive scope"
Get-RoleGroup -Identity "organization*"
Get-RoleGroup -Identity "organization*" | fl
Get-RoleGroup -Identity "organization*" | Get-ManagementRole
Get-RoleGroup -Identity "organization*" | Get-ManagementRoleAssignment
Get-RoleGroup -Identity "organization*" | Get-ManagementRoleEntry
Get-ManagementRole
Get-RoleGroup -Identity "organization*" | fl -autosize
Get-RoleGroup -Identity "organization*" | ft -autosize
Get-RoleGroup -Identity "organization*" | ft -wrap
Get-RoleGroup -Identity "organization*" | Out-GridView
Get-RoleGroup -Identity "organization*" | fl | Out-GridView
Get-RoleGroup -Identity "organization*" | fl
Get-RoleGroup -Identity "organization*" | fl Roles
Get-RoleGroup -Identity "organization*" | fl RolesSelect-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Roles Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object Roles -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object Roles
Get-RoleGroup -Identity "organization*" | Select-Object Roles -ExpandProperty
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | fl name
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles
$g = Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles
($g).get(0)
New-ManagementRoleAssignment -SecurityGroup ALI -Role $g -ExclusiveRecipientWriteScope "executive users exclusive scope"
$g | New-ManagementRoleAssignment -SecurityGroup ALI -ExclusiveRecipientWriteScope "executive users exclusive scope"
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "ali" | Select-Object -ExpandProperty Roles | ft name
Get-ManagementScope -Exclusive:$true | fl
Get-ManagementRoleAssignment
Get-ManagementRoleAssignment managers
Get-ManagementRoleAssignment managers | Remove-ManagementRoleAssignment
[EX2010] DAG Maintenance Cmdlets
Cmdlets
Get-MailboxDatabaseCopyStatus
-id <dbname> -server <servername>
Test-ReplicationHealth
-server <servername>
Suspend-MailboxDatabaseCopy
-Identity <DB\MBX>
Resume-MailboxDatabaseCopy
-Identity <DB\MBX> -ReplicationOnly (After the copy is resumed, it
remains administratively blocked for activation.)
Update-MailboxDatabaseCopy
-Identity <DB\MBX> -SourceServer <MBX2> -DeleteExistFile: $True
-CatalogOnly -DatabaseOnly
.\CheckDatabaseRedundancy.ps1
-MailboxDatabaseName <DB>
.\StartDagServerMaintenance.ps1
-serverName <MBX>
.\StopDagServerMaintenance.ps1
-serverName <MBX>
Events
Event
Viewer -> Applications and Services Logs
-> Microsoft -> Exchange -> HighAvailability
HighAvailability
that contains events related to the startup and shutdown of the Microsoft
Exchange Replication service and all the components that run within it, and
events such as a database mount, log truncation or events related to the DAG's
underlying cluster;
-> Microsoft -> Exchange -> MailboxDatabaseFailureItems
MailboxDatabaseFailureItems
is used to log events associated with any failures that affect a replicated
mailbox database;
-> Microsoft -> Exchange -> Troubleshooters
Troubleshooters
is used by some Exchange troubleshooting scripts such as the Content Index
Troubleshooter (Troubleshoot-CI.ps1) to log warnings and failures.
-> Microsoft-Exchange-Troubleshooters/Operational
-> MSExchange Management
If a
database is in a “bad” state for over 20 minutes (in duration, not consecutive)
in the hour-long run of the script, an EventID 4113 is generated and logged
into the local server’s Application log. If the database is “ok” for 10
consecutive minutes, an EventID 4114 is logged.
[EX2010] Pre-requisites on 2008 R2
- Hub Transport
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Client Access Server
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Mailbox
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Unified Messaging
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Desktop-Experience
-Restart
- Edge Transport
Add-WindowsFeature
NET-Framework,RSAT-ADDS,ADLDS -Restart
- Typical (CAS/HUB/Mailbox)
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Client Access and Hub Transport
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Client Access and Mailbox
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Hub Transport and Mailbox
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
- Client Access, Hub Transport, Mailbox and Unified Messaging
Add-WindowsFeature
NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy,Desktop-Experience, RSAT-DNS-Server, GPMC, Telnet-Client
-Restart
[EX2007] Virtual Directories
Default
Web Site
Anonymous
authentication
SSL
required
Require
128-bit encryption
aspnet_client
Anonymous
authentication
SSL
required
Require
128-bit encryption
Autodiscover
Basic
authentication
Windows
authentication
SSL
required
Require
128-bit encryption
EWS
Windows
authentication
SSL
required
Require
128-bit encryption
owa
Basic
authentication
SSL
required
Require
128-bit encryption
Exchange
Basic
authentication
Windows
authentication
SSL
required
Require
128-bit encryption
Public
Basic
authentication
Windows
authentication
Not
required
Exchweb
Basic
authentication
Windows
authentication
SSL
required
Require
128-bit encryption
OAB
Windows
authentication
Not
required
UnifiedMessaging
Windows
authentication
SSL
required
Require
128-bit encryption
Microsoft-Server-ActiveSync
Basic
authentication
SSL
required
Require
128-bit encryption
Rpc
Basic
authentication
Windows
authentication
SSL
required
Require
128-bit encryption
RpcWithCert
By
default, all authentication methods are disabled
SSL
required
[EX2007] Cluster
1. Planning for
Single Copy Clusters
2. Installing a
Single Copy Cluster on Windows Server 2008
3. How to Create
a Windows Server 2008 Failover Cluster for a Single Copy Cluster
4. How to
Configure the Cluster Networks for a Single Copy Cluster
5. How to
Configure the Node and Disk Majority Quorum
6. How to
Validate a Failover Cluster Configuration for a Single Copy Cluster
7. How to Install
the Active Clustered Mailbox Role in a Single Copy Cluster on Windows Server
2008
8. How to Install
the Passive Clustered Mailbox Role in a Single Copy Cluster on Windows Server
2008
[EX2007] Remove delegates
Set-MailboxCalendarSettings
-Identity ConferenceRoom -ResourceDelegates $null
PowerShell:
Remove invalid delegates from mailboxes
[EX2007] Export Mailbox
To export the special folders and empty folders of the
mailbox to a folder in the destination mailbox, run the following command:
Export-Mailbox
-Identity <MailboxIdParameter> -TargetMailbox <MailboxIdParameter>
-TargetFolder <Folder_Name>
To export data to a .pst file, run the following
command:
Export-Mailbox
-Identity <MailboxIdParameter> -PSTFolderPath
<Path_Of_PST_Folder>\<File_Name>.pst
To export only data from the Sent Items folder, run
the following command:
Export-Mailbox
-Identity <MailboxIdParameter> -IncludeFolders '\Sent Items'
-TargetFolder <Target_Folder_Name> -TargetMailbox
<MailboxIdParameter>
To exclude folders from the export, such as excluding
items in the Junk E-Mail and Contacts folders, run the following command:
Export-Mailbox
-TargetMailbox <MailboxIdParameter> -TargetFolder
<Target_Folder_Name> -ExcludeFolders "\Junk
E-Mail","\Contacts"
Remove inherited permissions
“ADSIEdit.msc“
Choose
Action -> Connetc to …
In
the Connection point area, click ‘Select a well known Naming Context’ and
choose ‘Configuration’ from the Drop Down Menu.
Browse
down to Services\Microsoft Exchange\<Name of your Exchange
Organization>\Administrative Groups\Exchange Administrative Group
(FYDIBOHF23SPDLT)\Servers
Tuesday, August 25, 2015
[EX2007] Pre-requisites on 2008 R2
- Hub Transport
Add-WindowsFeature RSAT-ADDS,Web-Metabase,Web-Lgcy-Mgmt-Console, RSAT-DNS-Server, GPMC, Telnet-Client
- Client Access Server
Add-WindowsFeature
RSAT-ADDS,Web-Server,Web-Metabase,Web-Lgcy-Mgmt-Console,Web-Dyn-Compression,Web-Windows-Auth,Web-Basic-Auth,Web-Digest-Auth,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
- Mailbox
Add-WindowsFeature
RSAT-ADDS,Web-Server,Web-ISAPI-Ext,Web-Metabase,Web-Lgcy-Mgmt-Console,Web-Basic-Auth,Web-Windows-Auth, RSAT-DNS-Server, GPMC, Telnet-Client
- Unified Messaging
Add-WindowsFeature
RSAT-ADDS,Web-Metabase,Web-Lgcy-Mgmt-Console,Desktop-Experience
- Edge Transport
Add-WindowsFeature RSAT-ADDS,ADLDS
- Typical (CAS/HUB/Mailbox)
Add-WindowsFeature
RSAT-ADDS,Web-Server,Web-Metabase,Web-Lgcy-Mgmt-Console,Web-Dyn-Compression,Web-Windows-Auth,Web-Basic-Auth,Web-Digest-Auth,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
- Client Access and Hub Transport
Add-WindowsFeature
RSAT-ADDS,Web-Server,Web-Metabase,Web-Lgcy-Mgmt-Console,Web-Dyn-Compression,Web-Windows-Auth,Web-Basic-Auth,Web-Digest-Auth,RPC-Over-HTTP-Proxy, RSAT-DNS-Server, GPMC, Telnet-Client
Subscribe to:
Comments (Atom)