Quantcast
Channel: Exchange Server 2013 - Administration, Monitoring, and Performance 论坛
Viewing all 8719 articles
Browse latest View live

After applying CU 22, EWS virtual directory Exchange.asmx 'landing page' continuously prompts for credentials

$
0
0

After installing CU 22 for Exchange 2013 Standard, our third-party Symantec Mail Security product can no longer carry out antivirus scans.  That product is installed directly on the server.  The vendor examined the server, and observed that when https://mail.customername.com/ews/exchange.asmx is accessed from a web browser on the Exchange server, the browser prompts for credentials to authenticate over and over, even when valid credentials are specified (we tried 2 different usernames/passwords).  Eventually, a blank page loads.  

If that same URL is accessed from a browser on another computer on the network, the authentication succeeds and the default "Service--You have created a service.  To test this service [...]" landing page loads. Again, we used two different sets of valid credentials to confirm.

Checked the EWS virtual directory, it's https://mail.customername.com/ews/exchange.asmx for both internalURL and externalURL, as it should be.

Back on the server, the vendor had us configure their product to use https://servername.local/ews/exchange.asmx instead of https://mail.customername.com/ews/exchange.asmx, and Symantec started working again.  Sure enough, if you browse to https://servername.local/ews/exchange.asmx on the server, and authenticate when prompted, you get right through to the test page.  Using the other URL still fails.

Here's why I'm pointing to CU 22 as the possible culprit: we restored a month-old backup of this Exchange server, running CU 20, and browsing to https://mail.customername.com/ews/exchange.asmx and authenticating lets us right in to the landing page, no problem.

It's probably obvious since we do manage to get prompted for credentials, but I should note that the server with CU22 is able to resolve the URL that doesn't work in DNS, so it's not a DNS issue.

Exchange 2013 CUs can't be rolled back--what should I do to correct this?  Symantec characterized their solution as a 'workaround', and said we should investigate whether something went wrong with the CU.

Thanks!



Import OST file to Exchange

$
0
0

Hi

If I have OST file and I want to import this file to a mailbox user

what should I do 


Mahmoud

Event 4525 - An account failed to log on

$
0
0

I would appreciate some help here as I am getting a lot of event 4625 from one of my 2010 CAS/Hub server. The account was from an old domain account which the compliance team used to do the email journaling but the account was deleted, actually the whole domain was decommissioned. I'm stuck trying to find the actual reason why it was giving us so much of the error. Thanks a lot

An account failed to log on.

Subject:
Security ID: NETWORK SERVICE
Account Name: EXCHANGE04$
Account Domain:GLONET
Logon ID: 0x3e4

Logon Type:8

Account For Which Logon Failed:
Security ID: NULL SID
Account Name: kersmtp_ej
Account Domain:ker-id

Failure Information:
Failure Reason:Unknown user name or bad password.
Status: 0xc000006d
Sub Status: 0xc0000064

Process Information:
Caller Process ID:0x11d4
Caller Process Name:D:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\PopImap\Microsoft.Exchange.Imap4.exe

Network Information:
Workstation Name:EXCHANGE04
Source Network Address:-
Source Port: -

Detailed Authentication Information:
Logon Process:Advapi  
Authentication Package:Negotiate
Transited Services:-
Package Name (NTLM only):-
Key Length: 0

This event is generated when a logon request fails. It is generated on the computer where access was attempted.

The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).

The Process Information fields indicate which account and process on the system requested the logon.

The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.

AD Lockout coming from Exchange HUBCAS

$
0
0

I have several account lockout issues in AD and I have traced the lockout and its coming from our Exchange HUBCAS server.

How I trace the lockout:

1. I used the Account lockout status tool to check which server it is getting bad password.

2. In DC server I check the security logs and found a 4771 event ID. In the Network Information of the log, The Client Addess is pointing in our Exchange HUBCAS server.

---------

Now from this, I tried to check the security log of this HUBCAS but I cannot find any related information pointing to that account. In exchange side, are there other logs I can check to validate this lockout account?

Calendar issue

$
0
0
cannot generate room list for particular one shared mailbox calendar. it's showing none.

Exchange 2010 free busy issue within organization.

$
0
0

Hello Experts,

We have issue that exchange 2010 sp3 free busy issue within organization. i will try to explain our infrastructure.

1 we have setup one forest multiple domains.

2 We have installation exchange server in two location. will consider that location as A & B

Now we have a issue that  When B location users wants to see free busy information of A location users. It will show the information some time & some time it will not.

If A location users wants to see B users information there is no issue.

Could you please help me with the same.

Thank you

Ganesh Daskan

Exchange 2013 databases doesn't want to mount

$
0
0

Hi

My name is Lebogang, I have a problem of mounting the databases of exchange 2013 but still no luck. The problem started after the storage on the server become crowded but I only managed to create a space of 350 MB.

Kindly help.

Regards

Gift


Unable to Change Profile photo

$
0
0

Hi All,

We have Exchange 2013 and we can not change profile photo of users from exchange ECP console. We only can change photos for users whose my account page looks like attached snapshot. Kindly help.

Regards,

Gaurang Dhanak

SME


IT security analyst

Health Mailboxes not created after restarting Microsoft Exchange Health Manager

$
0
0

HI All 

My first foray into the forums.

have a 3 exchange 2013 mailbox and 2 CAS servers.  at CU22.  I am using these as Test servers.

1. Stopped the Health service, Disabled the Health Mailboxes. Then deleted all the accounts in the Monitoring Folder in AD.

2. Restarted the Microsoft Exchange Health Manager service. - Nothing 

3. Restarted the Server- Nothing

4. Tried setting the 'Microsoft Exchange Health Manager service' to use a username and p/w still the health mailboxes do not appear.

5. tried running an ADprep and domain prep to no avail. 

system32>Get-ServerHealth srvmbx01 | where {$_.alertvalue -ne "Healthy"}

State           Name                 TargetResource       HealthSetName   AlertValue ServerComp
                                                                                    onent
-----           ----                 --------------       -------------   ---------- ----------
NotApplicable   ClusterNetworkMon... srvMBX01          Clustering      Unknown    None
NotApplicable   OwaTooManyWebAppS... OWA                  OWA             Unknown    None
NotApplicable   ELCPermanentMonitor  Compliance           Compliance      Unknown    None
NotApplicable   UMGrammarUsageMon...                      UM.Protocol     Unknown    None
NotApplicable   owaUsersLockedOut... owa                  UserThrottling  Unknown    None
NotApplicable   MailboxDeliveryAv...                      MailboxTrans... Disabled   None
Online          Transport.NDRForU... HubTransport         HubTransport    Disabled   HubTran...
Online          TransportLogGener...                      HubTransport    Disabled   HubTran...
Online          TransportCategori...                      HubTransport    Disabled   HubTran...
Online          FederatedDecrypti...                      HubTransport    Disabled   HubTran...
Online          TransportDelivery...                      HubTransport    Disabled   HubTran...
Online          TransportDelivery...                      HubTransport    Disabled   HubTran...
NotApplicable   TransportDelivery...                      MailboxTrans... Disabled   None
Online          IsMemberOfResolve...                      HubTransport    Disabled   HubTran...
Online          IsMemberOfResolve...                      HubTransport    Disabled   HubTran...
Online          Transport.DomainS... HubTransport         HubTransport    Disabled   HubTran...
Online          Transport.DomainS... HubTransport         HubTransport    Disabled   HubTran...
Online          TlsDomainClientCe... HubTransport         HubTransport    Disabled   HubTran...
Online          Transport.DomainS... HubTransport         HubTransport    Disabled   HubTran...
Online          Transport.DomainS... HubTransport         HubTransport    Disabled   HubTran...
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None
NotApplicable   DiscoveryErrorRep...                      FfoMonitoring   Disabled   None

One of the mailbox servers was still at CU21 so I upgraded that to CU22 as well, did not help.

Any help to get these Health Mailboxes up will be appreciated

Thanks Anil

Outlook is removing [EXT] while replying or forwarding

$
0
0

Hi,

We have set the rule for appending [EXT] for all incoming external emails and its working fine. However, We want to remove [EXT] while replying or forwarding to that email address.

One thing, I noticed that Outlook strips the [EXT] while clicking reply or forward for hotmail.com and outlook.com but not for other domains. No Macro is in use and checked on other Outlook as well with a different user.


Ankit Singh

Exchange Break after windows update.

$
0
0

Hello Cool People,

We had install windows update  to our MS Exchange 2013 server and after the reboot, one of the MDB is not starting up and with a failed status. Accessing OWA gives this error:


X-OWA-Error: SDServerErr;Microsoft.Exchange.Data.Storage.MailboxOfflineException
X-OWA-Version: 15.0.1367.9
X-FEServer: JTBOSEXCHMAIL01

ECP can be access though.  I hope someone can shed some light on this issue. 

Best,


Verify which fields in Exchange are syncing from Active Directory

$
0
0

It may not be an issue, but I updated a users title in AD on Thursday and today (monday) it had not updated in the GAL or in ECP. I updated the users profile information manually in ECP, but I wonder if there is a way to validate what information is syncing from active directory into exchange, and what that interval is.

(i might have just needed to wait longer, but I know the default is 24 hours).

Our exchange 2013 is on premises, but we do have Office365 (just not for mail...yet)

W3wp.exe High CPU Exchange 2013

$
0
0

Hello,

We are having an issue where IIS worker process (W3wp.exe) is using high CPU and server is struggling. In IIS, it's pointing out to MSExchangeRPCProxyAppPool. Users are then having issues with Outlook client as it freezes or keeps downloading emails. This mainly happens on our MB servers, and now occasionally CAS servers. If we put all traffic on one MB, then that MB suffers, so ended up putting tier one databases on a MB server that does not have high CPU. Our CPU usage used to average 30-40% and one Monday morning it just shot to 100%. Nothing was changed from our side, no updates, no new installations, nothing in event viewer pointing to this. We have tried recycling the MSExchangeRPCProxyAppPool, rebooting the servers, investigating layer 2 network, upgrading from CU19 to 22 and still we cannot find the reason from our investigations. Here is our setup:

- Exchange Server 2013 CU22, 96GB RAM, 12 processors @ 2.60 GHz

- Windows Server 2012

- 2 CAS servers

- 2 Live MB in two different locations in a DAG

- 3 Archive MB in two different locations in a DAG

Any help is greatly appreciated.

Received mail all users from domain name syz.com but except one users

$
0
0

please help me to closed it our all exchange users receive mail from syz.com but expect to one users . we are using exchange 2016  in DAG  and our mail scan solution trend micro.


Service smtp on is not OK

$
0
0

Hello Team,

We are running Exchange 2010 server and getting the SMTP service failure on one server and the XYmon tool is saying the error below,

Service <g class="gr_ gr_16 gr-alert gr_spell gr_inline_cards gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="16" id="16">smtp</g> on <Server Name> is not OK<g class="gr_ gr_49 gr-alert gr_gramm gr_inline_cards gr_run_anim Style replaceWithoutSep" data-gr-id="49" id="49">,</g><g class="gr_ gr_49 gr-alert gr_gramm gr_inline_cards gr_disable_anim_appear Style replaceWithoutSep" data-gr-id="49" id="49">Service</g> unavailable (connect timeout)

I am aware that there is no separate SMTP service in Exchange 2010 and it's inbuild with Exchange Transport Service. 

1. Checked the telnet that time the telnet is not working within/outside the server. 

2. Firewall is fine. 

Please let me know what I need to check further and is there any way to monitor using the script?

Regards,

Rajaji




need help in locating who deleted a user mailbox in Exchange.

$
0
0

Hello,

I need help in locating who deleted a user mailbox in Exchange.

The AD logs show that the user was deleted by Exchange Mailbox server. I want to know how and where to check the logs in exchange side to trace who deleted that user mailbox.

I have hunch that the mailbox was deleted in EAC but I do not know where exactly to check.

Thanks in advance!

owa signature and outlook

$
0
0

Dear All, 

I created a signature using owa in exchange 2016 and enable the option "Automatically include my signature on messages I send". Its work fine when i use owa to compose any email or send email my signature is added without any issue. But this is not the case with outlook client 2016, i am not getting any signature when i try to send or compose via Outlook 2016. Is owa signature is enough to sync with outlook 2016 or there is something different way to handle signature for outlook.  

Event ID 3028 MSExchangeApplicationLogic

$
0
0

Hi,

I have a problem where Event ID 3028 Source MSExchangeApplicationLogic is beeing logged every 6 hours with 4 same type of events. Here is the log:

Scenario: ProcessKillBit. Failed to read killbit list file because of exception System.IO.IOException: The process cannot access the file 'C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\owa\prem\15.0.995.29\ext\killbit\killbit.xml' because it is being used by another process.
   at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
   at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
   at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share)
   at System.IO.File.Open(String path, FileMode mode, FileAccess access, FileShare share)
   at Microsoft.Exchange.Data.ApplicationLogic.Extension.KillBitHelper.TryReadKillBitFile(Int32& refreshRate, DateTime& lastModifiedTime)

The environment is single virtual MS Exchange 2013 server running on Windows 2012 R2. DC is running on a separate server.

I can't seem to find any articles or blogs relating to this issue.

Thanks for any help.

Hybrid Exchange User creation

$
0
0

Hi,

We deploy, manage and maintain Hybrid Exchange environments for a number of customers. Some are 2013 based, some are 2016.

In most cases new users are created correctly using either the New-RemoteMailbox or Enable-RemoteMailbox cmdlets with the On-premises Exchange Shell.

However, from time to time somebody accidentally creates a Cloud only user using the Office 365 Admin Center, and then creates a local on-premises AD user with a soft match occurring at the next Azure AD Connect sync cycle. After a couple of weeks somebody else usually realizes the error was made due to some calendaring or global address list issues, and the accounts are removed and recreated from scratch. Email data has to be exported to PST and re-imported to the new correctly created mailbox. The end user at the customer end is often inconvenienced due to the error and subsequent rework.

I've been able to work around this in the past using ADSIEdit and attribute editor. This article suggests a similar technique to correct this - http://www.expta.com/2016/05/creating-remote-mailbox-in-exchange.html?m=1

I'm curious to get feedback from Microsoft whether soft matching the accounts, running Enable-RemoteMailbox and updating the ExchangeGUID of the remote mailbox on-prem to match the ExchangeGUID of the Cloud mailbox is a supported technique to recover from the incorrect creation of the mailbox.

Feedback from non-Microsoft forum members is obviously welcome too.

Cheers

Viewing all 8719 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>