Quantcast
Channel: Exchange Server 2013 - Administration, Monitoring, and Performance 论坛
Viewing all 8719 articles
Browse latest View live

How to remove Orphaned SIDs for the 'Manage Full Access permissions' of a user mailbox

February 17, 2016, 10:41 am
$
0
0

In managing a large enterprise environment of 5400 mailboxes, Exchange Server 2010 SP3, i am running into the following problem. In reviewing the Manage Full Access Permissions for various mailboxes you will find Orphaned SID's from users long gone. I have been searching for quite a long time for a method to remove the Orphaned SID's from all the mailboxes.

I have already used the following 'RemoveBadSid.ps1' which does not touch these and only affects the bad SID's in AD not Exchange. I cleaned those up already.

Is there a simple tool to use ?

Any help would be appreciated.

Search

Exchange Queue issue

February 17, 2016, 6:18 pm
$
0
0

Exchange 2013 CU7

Mails in the Queue to specified DB has become so slow speed to reduce them.

It seems that stop the Active and do many retry due to following error.

432 4.3.2 STOREDRV.Storage; mailbox server is too busy; STOREDRV.Deliver.Exception:StorageTransientException.MapiExceptionRpcServerTooBusy; Failed to process message due to a transient exception with message The process failed to get the correct properties

Is that related to DB on disk performance?What's the error...

UnhealthyMailboxDeliveryAvailabilityMonitor

February 17, 2016, 6:44 am
$
0
0

Hello

In our Exchange 2013 deployment I can see on all Mailbox servers MailboxDeliveryAvailabilityMonitor reported as unhealthy

Name                    : MailboxDeliveryAvailabilityMonitor
TargetResource          :
HealthSetName           : MailboxTransport
HealthGroupName         : ServiceComponents
AlertValue              : Unhealthy

In the event log under Active Monitoring -> Probe Results are the visible errors like this:

   ResultId 117170212
 
   ServiceName MailboxTransport
 
   ResultName MailboxDeliveryInstanceAvailabilityProbe/MBX200-02
 
   WorkItemId 884
 
   MachineName XXXXX
 
   Error A TLS API failure occurred. Error = 0x80090301
 
   Exception Microsoft.Exchange.Net.ExSmtpClient.TlsApiFailureException: A TLS API failure occurred. Error = 0x80090301 at Microsoft.Exchange.Net.ExSmtpClient.SmtpSslStream.SmtpSslHelper.Encrypt(Byte[] bytesToEncrypt, Int32 offset, Int32 numberOfBytesToEncrypt) at Microsoft.Exchange.Net.ExSmtpClient.SmtpSslStream.SmtpSslHelper.Encrypt(Byte[] bytesToEncrypt) at Microsoft.Exchange.Net.ExSmtpClient.SmtpSslStream.Write(Byte[] buffer, Int32 offset, Int32 size) at System.IO.Stream.<BeginWriteInternal>b__11(Object param0) at System.Threading.Tasks.Task`1.InnerInvoke() at System.Threading.Tasks.Task.Execute() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(Task task) at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at System.IO.Stream.EndWrite(IAsyncResult asyncResult) at System.IO.Stream.<BeginEndWriteAsync>b__17(Stream stream, IAsyncResult asyncResult) at System.Threading.Tasks.TaskFactory`1.FromAsyncTrimPromise`1.Complete(TInstance thisRef, Func`3 endMethod, IAsyncResult asyncResult, Boolean requiresSynchronization)
 
   StateAttribute11 127.0.0.1
 
   StateAttribute12 2 latencies were above the standard deviation. Mean: 0 Standard Deviation: 1. STARTTLS (2, Two) BeforeConnect (1, One)  
 
   StateAttribute13 BeforeConnect=1;Connect=0;EHLO=0;STARTTLS=2;EHLO=0
 
   StateAttribute14 XXXXX.DOMAIN
 
   StateAttribute15 220 XXXXX.DOMAIN Microsoft ESMTP MAIL Service ready at Wed, 17 Feb 2016 15:20:44 +0100EHLO XXXXX.DOMAIN 250-XXXXX.DOMAIN Hello [127.0.0.1]X-ANONYMOUSTLS 220 2.0.0 SMTP server readyEHLO XXXXX.DOMAIN  
 
   StateAttribute16 475
 
   StateAttribute17 2
 
   StateAttribute21 System.Exception
 
   StateAttribute22 220 2.0.0 SMTP server ready  

   ResultType 4
 
   ExecutionId 54194945
 
   ExecutionStartTime 2016-02-17T14:20:45.0533096Z
 
   ExecutionEndTime 2016-02-17T14:20:45.0583101Z

   ExtensionXml [null]
 
   SampleValue 4.0004
 
   ExecutionContext [null]
 
   FailureContext Server 127.0.0.1 on port 475 did not respond with expected response (OK). The actual response was: 220 2.0.0 SMTP server ready .
 
   FailureCategory -1

This error is logged several times per minute.

Any idea?

Thanks

How to use get-mailbox with -filter

February 17, 2016, 7:51 pm
$
0
0

Hi all,

I want to search all mailboxes which have property AuditEnabled = True then change it to False
How can I do that with Get-Mailbox -Filter ? -ResultSize Unlimited | ForEach-Object { Set-Mailbox -Identity $_.sAMAccountName -AuditEnabled $False}

Thank you very much.

New-Mailbox throws exception

February 17, 2016, 1:58 am
$
0
0

If I try to create the a new mailbox with the following PowerShell-cmdlet:

New-Mailbox -Database 'MailboxDatabase' -OrganizationalUnit 'OU' -Name "ResourceName" -DisplayName "ResourceDisplayName" -Equipment -ResourceCapacity <Capacity>


it throws the following exception:

Parameter set cannot be resolved using the specified named parameters.    + CategoryInfo          : InvalidArgument: (:) [New-Mailbox], ParameterBindingException    + FullyQualifiedErrorId : AmbiguousParameterSet,New-Mailbox    + PSComputerName        : <mailserver>


Is this intended behaviour? It seems like a bug in the cmdlet.

Exchange setup:

AdminDisplayVersion: Version 15.0 (Build 1130.7)

ServerRole: Mailbox, ClientAccess

PowerShell setup:

NameValue

---------
PSVersion5.0.10240.16384
WSManStackVersion 3.0
SerializationVersion 1.1.0.1
CLRVersion4.0.30319.42000
BuildVersion10.0.10240.16384
PSCompatibleVersions {1.0, 2.0, 3.0, 4.0...}
PSRemotingProtocolVersion2.3

in-place eDiscovery & hold 'The request failed. The underlying connection was closed: An unexpected error occurred on a send.'

November 19, 2015, 5:24 am
$
0
0

Hi,

Hoping for some help with an Exchange Server problem I am having.

Everything else on the Server seems fine.

Build Number: 15.0.995.29 (CU6)

However when I use the ECP to try to do a Compliance Management / in-place eDiscovery & hold

This appears in the right hand column;

------------------------------------------------------------------------------

Search                    
Status:                                                Search Failed                    
Run by:                                             
Run on:                                             
Size:                        0 B                    
Items:                        0                    
Errors:                        
An unknown error occurred on the search server. Please contact your administrator for assistance. The message from the search server is 'The request failed. The underlying connection was closed: An unexpected error occurred on a send.'.
Statistics:                                           

Also in powershell;

-------------------------------------------------------------------------------------

[PS] C:\Windows\system32>new-mailboxsearch -name "test" -TargetMailbox "kev" -SearchQuery "'jean-pascal'"
Creating a new session for implicit remoting of "New-MailboxSearch" command...
The request failed. The underlying connection was closed: An unexpected error occurred on a send.
    + CategoryInfo          : NotSpecified: (:) [], DataSourceOperationException
    + FullyQualifiedErrorId : [Server=CCMAIL03,RequestId=fa226efb-fe18-4a12-8ea2-d36e23711d87,TimeStamp=19/11/2015 13:
   13:27] [FailureCategory=Cmdlet-DataSourceOperationException] 8029597E
    + PSComputerName        : ccmail03.carmel.local

-------------------------------------------------------------------------------------

Have checked as many obvious things as I can, sure it will be something blindingly obvious!

TIA!

Remove mail Contacts in bulk from Exchange

February 18, 2016, 8:53 am
$
0
0
Hello, 

I would like to know how to remove Mail contacts in bulk from Exchange. I have to remove like 100 mail contact from Exchange. I have a list of the mail contact that I need to remove. 

Thank you,

JC 


Hiding hierarchical address book groups from the GAL

February 18, 2016, 11:12 am
$
0
0

Hi,

Does anyone know if I can hide the groups created for hierarchical address books from the GAL? I want to use them as just address books.

Thanks in advance,

Shay


Search

Chkdsk on Installation volume

February 18, 2016, 12:38 am
$
0
0

Hi all

We're recovering from an issue whereby we had multiple databases become corrupt, as a result of an underlying NTFS issue. The latter of which is still being investigated by our storage vendor. This is a guest operating system in a VMWare environment.

Originally, the affected volume housed both the Exchange installation directory, as well as the individual databases. We've since recovered the existing databases from backups, and migrated all users on to freshly created databases on different volumes, but there is still corruption present on the original / current Installation volume.

All corruption is seemingly limited to the old Databases directory - examples include duplicate files, and folders that cannot be accessed or deleted. Background drive health processes have now marked this drive as dirty, and the Action Centre is reporting that the server needs to be restarted in order to repair it. 

All Exchange installation directories under Program Files -appear- to be healthy. Each night they are backed up fine, no errors reported. I can navigate them all easily as well, and Exchange has been running fine for a short while now. But my question is about the process that happens after a reboot. It's been a long, long time since I've run chkdsk, and I was just trying to get an idea of what to possibly expect. I don't mind if the obviously corrupted database directories / duplicated .edb files get deleted during this process, but am keen to preserve the exchange installation files. All other volumes are not marked as dirty.

Questions - 

a) Will chkdsk log in the event viewer the exact files it it deletes? My worry is that it may delete one or two single files from the Exchange Directory, and services will no longer start, and I'll be chasing my tail trying to identify what's actually missing.

b) Worst case scenario, if multiple exchange installed program files are deleted, or all of them - what is the best course for recovery? We have good backups in place, taken nightly, as well as longer term retention before all of this even begun. Or is a reinstallation of exchange with recovery mode on the same server the best course?

Cheers!

Exchange 2013 Disaster Recovery

February 18, 2016, 7:03 am
$
0
0
We have an Exchange 2013 Server that had a hardware failure that caused us to do a total restore from our Barracuda backup device. The server came up ok but we can not get the database file to mount and be usable from Exchange. Everything we tried has failed. Help!

Trouble sharing mailboxes

February 18, 2016, 4:41 am
$
0
0

I'm currently having issues sharing mailboxes with a single user.

Running Exchange 2007, Office 2013 (Office 365), and Windows 7 SP1

The user can access shared mailboxes anywhere except their laptop.

I'm getting a "Cannot expand folder" message, along with a  "Cannot display the folder. Microsoft Outlook cannot access the specified folder location. The operation failed. An object cannot be found" whenever I try to open it.

I've tried: assigning the mailboxes as delegates, giving - revoking - re'giving full access permissions via exchange management console, rebuilding outlook profile, even reinstalling office outright on their machine, all to no avail.

I've shared many different inboxes in the past w/o issue, and as I mentioned above, I've managed to share mailboxes with this user on every other machine except for theirs.

It is also worth mentioning that the user had mailboxes shared just fine before having their profile rebuilt recently due to another issue.


Looking for one-liner to list Mailboxes without All auditing options enabled.

February 18, 2016, 8:13 am
$
0
0

Powershell, trying to list mailboxes that dont have all the Auditing options enabled. My command doesnt work:

Get-Mailbox -Resultsize Unlimited|where {$_.AuditEnabled -ne '*True*' -Or $_.AuditAdmin -ne '*Update*' -Or $_.AuditAdmin -ne '*Copy*' -Or $_.AuditAdmin -ne '*Move*' -Or $_.AuditAdmin -ne '*MoveToDeletedItems*' -Or $_.AuditAdmin -ne '*SoftDelete*' -Or $_.AuditAdmin -ne '*HardDelete*' -Or $_.AuditAdmin -ne '*FolderBind*' -Or $_.AuditAdmin -ne '*SendAs*' -Or $_.AuditAdmin -ne '*SendOnBehalf*' -Or $_.AuditAdmin -ne '*MessageBind*' -Or $_.AuditAdmin -ne '*Create*' -Or $_.AuditDelegate -ne '*Update*' -Or $_.AuditDelegate -ne '*Move*' -Or $_.AuditDelegate -ne '*MoveToDeletedItems*' -Or $_.AuditDelegate -ne '*SoftDelete*' -Or $_.AuditDelegate -ne '*HardDelete*' -Or $_.AuditDelegate -ne '*FolderBind*' -Or $_.AuditDelegate -ne '*SendAs*' -Or $_.AuditDelegate -ne '*SendOnBehalf*' -Or $_.AuditDelegate -ne '*Create*' -Or $_.AuditOwner -ne '*Update*' -Or $_.AuditOwner -ne '*Move*' -Or $_.AuditOwner -ne '*MoveToDeletedItems*' -Or $_.AuditOwner -ne '*SoftDelete*' -Or $_.AuditOwner -ne '*HardDelete*' -Or $_.AuditOwner -ne '*Create*' -Or $_.AuditOwner -ne '*MailboxLogin*'}|fl identity

Also, this command will not work:

PS C:\> Get-Mailbox -ResultSize Unlimited|where {$_.AuditEnabled -ne '*True*'} |where {$_.AuditAdmin -ne '*Update, Copy, Move, MoveToDeletedItems, SoftDelete, HardDelete, FolderBind, SendAs, SendOnBehalf, MessageBind, Create*'}|where {$_.AuditDelegate -ne '*Update, Move, MoveToDeletedItems, SoftDelete, HardDelete, FolderBind, SendAs, SendOnBehalf, Create*'}|where {$_.AuditOwner -ne '*Update, Move, MoveToDeletedItems, SoftDelete, HardDelete, Create, MailboxLogin*'}|fl identity

Cannot configure my email account on laptop/smartphone

February 7, 2016, 12:55 am
$
0
0

Hello professionals, 

I have been trying to setup my email account on my smartphone and my laptop, but it fails every time. So I searched the TechNet forum and I found someone was recommending testing the connection with [https://testconnectivity.microsoft.com/]and I did follow the advise and tried the tool. 

The results show that I have few ports blocked on my exchange server 2013, I went to the firewall settings and I checked the ports, all were fine. Additionally I created 4 new inbound rules to allow any connections to 110, 143, 993, 995 ports. Yet I am still getting this same message from the test connectivity tool [https://testconnectivity.microsoft.com/].

What could I have missed to configure on my exchange server 2013?

Note 1: Outlook Web Access works perfectly on HTTP, and HTTPS ports. I've never encountered any issue.

Note 2: I tried with more than 2 different email accounts, therefore I'm sure the issue is not from a particular email account.

RedistributeActive Databases Script

February 18, 2016, 6:45 pm
$
0
0

Hey Guys,

I am trying to auto move the DBs using the RedistributeActiveDatabasesScript from one of the Exchange Management Server and everytime I run the script it says the below error and cannot convert the value of the DAGName. This is weird and I cannot figure out whats wrong. I am 100% sure the DAG names are correct and theats what listed under ECP too and upon doing the get-databaseavailabilitygroup i get the same DAG Name too.

PS] D:\Exchange Server\v15\Scripts>.\RedistributeActiveDatabases.ps1 -DagName DAG01 -BalanceDbsByActivationPreference

annot convert value "DAG01" to type
Microsoft.Exchange.Data.Directory.SystemConfiguration.DatabaseAvailabilityGroup". Error: "Cannot convert the
DAG01" value of type "Deserialized.Microsoft.Exchange.Data.Directory.SystemConfiguration.DatabaseAvailabilityGroup"
o type "Microsoft.Exchange.Data.Directory.SystemConfiguration.DatabaseAvailabilityGroup"."
t D:\Exchange Server\v15\Scripts\RedistributeActiveDatabases.ps1:2801 char:3
         $script:dag = Get-DatabaseAvailabilityGroup $DagName -Status
         ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ CategoryInfo          : MetadataError: (:) [], ArgumentTransformationMetadataException+ FullyQualifiedErrorId : RuntimeException

Log-Error : [02:40:33.145 UTC] Could not find DAG matching 'DAG01'!
t D:\Exchange Server\v15\Scripts\RedistributeActiveDatabases.ps1:2806 char:3
         Log-Error ($RedistributeActiveDatabases_LocalizedStrings.res_0089 -f $DagName) ...
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   + CategoryInfo          : NotSpecified: (:) [Write-Error], WriteErrorException+ FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Log-Error

Can anyone asssit what can be the problem

When i run theGet-DatabaseAvailabilityGroup I see Correct DAG Names. I have removed the Server names here for example

[PS] D:\Exchange Server\v15\Scripts>Get-DatabaseAvailabilityGroup

Name             Member Servers                                      Operational Servers
----             --------------                                      -------------------
DAG01
DAG02
DAG03
DAG04

Please assist and Thanks in Advance

Certificate import Issue

February 18, 2016, 1:55 am
$
0
0

Hi All


I get certificate from Thawte, imported to Server and trying to Assign to Services:


I'm tried to add certificate to Exchange Server and got error:

Get-ExchangeCertificate : A special Rpc error occurs on server %ServerName%: The certificate with thumbprint %Thumbprint% was found but is not valid for use with Exchange Server (reason: PkixKpServerAuthNotFoundInEnhancedKeyUsage).

in mmc cert looking good, i have private key and Server auth OID - how can i fix this issue?

Exchange 2013 CU10

Best Wishes, Andrew Golubenkoff

Search

Exchange server 2010 checklist for taking knowledge transfer from client

February 18, 2016, 9:36 pm
$
0
0
Question

Hello Everyone,

I have been assigned to get KT from a client for MS Exchange 2010 technology for a new project.

How to get Exchange 2010 Knowledge Transfer (KT) from a client & What information should I must get during KT process?  
What Documents or CHECK LIST should I follow to make sure that I will be able to get ALL INFORMATION related to Exchange 2010  from the client ?
Urgent requirement and quick reply with proper and actual exchange KT related documents & Checklist / Excel Sheets will be highly appreciated.

Thank you.

Sujitraj Sancheti

Thanks and Regards - Sujit

Thanks and Regards - Sujit

MS Exchange 2013 responses slow to Active Directory OU user changes

February 18, 2016, 10:33 pm
$
0
0

Hi all,

In MS Exchange 2013 we have shared mail which is delegated to Active Directory OU. User on that OU have access to shared mail.

However when user OU changed to another OU, then after some time changed back, user cannot open shared mail during 1-2 day.

So what to do in Exchange server, that it will react to AD changes immediately.

Thanks

How to prevent user select [From] pick random user, and send fake email to other user?

February 18, 2016, 10:51 pm
$
0
0

dear Sirs,

In our organization we have setup 03 mail server Microsoft Exchange 2010 SP3: 01 for Client Access and Hub transport, 02 Mailbox database. All email client using Outlook 2010 or Outlook 2013.

We have one issue about user fake the sender to send violent email to other. The scenario as follow: User A create New Email, and select [From] button, and then select user B, send to user C. User C receive the email with header is from User B. But exactly, this email send from User A.

Anybody have ever seen this situation, please teach me how to deal with it.

Thanks for read.

Monitoring Transport.ServerCertExpireSoon.Monitor property value

October 13, 2014, 10:05 pm
$
0
0

When using the following PowerShell command, what form does the "Property Value" parameter take:

Add-GlobalMonitoringOverride -Identity "HubTransport\Transport.ServerCertExpireSoon.Monitor" -ItemType Monitor -PropertyName SecondaryMonitoringThreshold -ApplyVersion "15.0.913.22" -PropertyValue ???

This monitor alerts 90 days out from expiry, and can't be configured in SCOM.  I want to try and set the "Monitoring Threshold" to 30 days and the "Secondary Monitoring Threshold" to 15 days.

Hide a user in GAL and show in Specific Address List

February 19, 2016, 11:18 am
$
0
0

Hi,

I need to hide a user in GAL and this user should only visible in a specific Address List. Is it possible?

 

Regards,

Anees

Viewing all 8719 articles
Browse latest View live
Search