Quantcast
Channel: Exchange Server 2010 forum
Viewing all 15005 articles
Browse latest View live

We are moving to TLS 1.2 for encryption

August 6, 2018, 6:50 am
$
0
0

Hello,

Below notification is posted on the O365 dash board. We have Hybrid environment with exchange 2010 SP3 RU 22 on Windows 2008 R2 SP1. I just wanted to know what all patches/registry changes need to be installed to make it compliant for TLS 1.2.

_____________________________________________________________________________________________________

All client-server and browser-server combinations should use TLS version 1.2 (or a later version)

to ensure connection without issues to Office 365 services. This may require updates to certain client-server and

browser-server combinations. Action required by October 31, 2018.

Thanks

Suresh

Search

After rollup 22 from rollup 8 Mac osx and ecp stop working

August 7, 2018, 1:56 am
$
0
0

We did a major upgrade in July.

We installed 2010 sp 3 - rollup 22.

After installation ecp functions regarding phone connection and autoreply stopped working.

Mac os users cant connect to exchange anymore.

Have tried diffrent approach to this issues but without any success.


Exchange 2010 Public Folder Problem With Outlook2016

August 6, 2018, 11:26 pm
$
0
0

Hello

I Have Exchange 2010 Sp 3 CU 22  And   I Had Installed Recently New RDS 2016 And Install Outlook 2016 MSI

the problem the Users Can Access All their Public Folders From Old Terminal 2008 And outlook 2010 without any problem

but From New RDS 2016 Or From Windows 7  that had outlook 2016 MSI Installed They Can Access some Public Folders and Some Public Folders the Receive "No Item to display"

Like Example Public Folder name Master

they Can Access it content from Outlook 2010 without any problem and if they try to access it from Outlook 2016 they Receive No item to display And in Outlook Button Bar it showing the Folder has more than 2K items and in same time the  exchange show in Event Viewer Error in Public Folder Database

Below is the Event Viewer log that appear if i try to access the Public Folder from Outlook 2016 if i used outlook 2010 the below event doesn't show

database copy 'Public Folder Database ' on this server encountered an error. For more information, consult the Event log for "ExchangeStoreDb" or "MSExchangeRepl" events.

Public Folder Database : The database page read from the file "D:\Program Files\Microsoft\Exchange Server\V14\Mailbox\Public Folder Database \Public Folder Database .edb" at offset 2499674112 (0x0000000094fe0000) (database page 76283 (0x129FB)) for 32768 (0x00008000) bytes failed verification due to a page checksum mismatch. The expected checksum was [71d18e2e74b90f38:332233222aff7847:1bb5e44a9dff37b1:64ea9b1508ae7bb8] and the actual checksum was [8f6f8f6fe5a56de6:5050afaf83068c33:c5693a9618b4e34a:64ea9b1508ae7bb8]. The read operation will fail with error -1018 (0xfffffc06).  If this condition persists then please restore the database from a previous backup. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

AM' database copy 'Public Folder Database ' on this server appears to have an I/O error that it may be able to repair. To help identify the failure, consult the Event log on the server for other storage and "ExchangeStoreDb" events. Service recovery was attempted by failover to another copy. The failover was unsuccessful in restoring the service because of the following error: 'There is only one copy of this mailbox database (Public Folder Database ). Automatic recovery is not available..

 Thanks


Mailbox Role Failed

August 8, 2018, 3:14 am
$
0
0
Summary: 3 item(s). 1 succeeded, 1 failed.
Elapsed time: 00:00:05


Preparing Setup
Completed

Elapsed Time: 00:00:03


Mailbox Role
Failed

Error:
The following error was generated when "$error.Clear(); $arbUsers = @(get-user -Filter {lastname -eq "MSExchApproval 1f05a927-3be2-4fb9-aa03-b59fe3b56f4c"} -IgnoreDefaultScope -ResultSize 1); if ($arbUsers.Length -ne 0) { $mbxname = $arbUsers[0].name; $mbxs = @( get-mailbox -arbitration -Filter {name -eq $mbxname} -IgnoreDefaultScope -resultSize 1 ); if ( $mbxs.length -eq 0) { $dbs = @(get-MailboxDatabase -Server:$RoleFqdnOrName -DomainController $RoleDomainController); if ($dbs.Length -ne 0) { enable-mailbox -Arbitration -identity $arbUsers[0] -database $dbs[0].Identity; } } }" was run: "No provisioning handler is installed.".

No provisioning handler is installed.

Elapsed Time: 00:00:01


Finalizing Setup
Cancelled


Error when gathering ActveSync logs

August 8, 2018, 7:38 am
$
0
0
Hi, I'm trying to gather a log for an activesync user device. When I issue the command I get the error below. I tried to enable the activesync log for another user and I'm able to retrieve the log successfully. I'm sorry for the language displayed of the error (italian). Is there a way to clear the log for the user so it can start logging from scratch again? Thank you.

Francesco B.

Exchange server 2010 transport service error 5015 5016

August 8, 2018, 7:47 am
$
0
0

After installing patches at night the exchange server exhibits 2 errors which are 5015 and 5016. Have tried all the other fixes but all of them have to do with another old server causing a problem with the routing table. The only solution that works is restarting the server.

Thanks

Transport Server Redundancy Failing

August 8, 2018, 9:34 am
$
0
0
I am working in an Exchange 2010 environment that has three separate Transport servers. Essentially like this EX-HUB01, EX-HUB02, EX-HUB03. I am updating the servers one at a time and I was able to take EX-HUB02/03 offline without causing any issues. However when I try to take EX-HUB01 offline emails seemingly stop being delivered randomly. For Example, with EX-HUB01 offline, from my account I can send and receive email externally. However some, but not all distribution groups stop receiving email. So for example, with EX-HUB01 offline, I sent a test email from inside and another from outside to DistributionGroup1@domain.com and neither of them were delivered. I also, did not receive any kickback messages. Once I brought EX-HUB01 back online however, the emails were delivered. I do not currently understand why the system seems to fall apart if this one particular Hub Transport server goes offline. I'm hoping someone can point me in the right direction so I can get these Hub Transport servers all working together properly.

Vincent Sprague


CAS arrary failure

August 9, 2018, 2:43 am
$
0
0

We have one CAS server in a CAS array that is unable to serve client request and even making connection.

Let's show the infrastructure below.

Exchange 2010 standard with two CAS& two MBX to form a CAS array and a DAG group. DAG group is fine and second CAS is working if we direct the client to connect to such CAS.

Ex01 IP is 192.168.1.231

Ex02 IP is 192.168.1.232

Ex03 IP is 192.168.1.233

Ex04 IP is 192.168.1.234

CAS cluster IP is 192.168.1.235

DAG group IP is 192.168.1.236

Ex01 & Ex03 is a CAS array

Ex02 & Ex04 is a DAG group

Now, Ex01 is unable to service user's request. Using NLB manager, it shows the NLB cluster is fine and there are two nodes on the list (Ex01 & Ex03). It can ping Ex03 and access to files in Ex03 by using UNC path. That means almost all outgoing traffic is fine. in the contrace, the NLB manager in Ex03 just shows one cluster node Ex03 and is unable to connect to Ex01 by NLB manager and there is a error message "The RPC server is unavailable on the specified computer. ......". Also, it can't ping Ex01 from Ex03 & doesn't access files in Ex01 by using UNC path from Ex03. Actually i can ping the Ex01 and make RDP connection to EX01 from Ex03.

It seems that there is something to be blocked by firewall in Ex01. 

At the moment, i stop Ex01 node in NLB manager and let the client make connection to Ex03 only.

What can i do, the firewall in Ex01 i checked that is the same as Ex03. No any error message regarding NLB issue in windows event log in Ex01.


Search

Securing Remote Access to Exchange Server Using IPsec

August 9, 2018, 7:19 am
$
0
0

Hi All,

Good Evening !!

We have setup our TMG - Exchange connectivity for outlook anywhere with below given solution by Microsoft and now TMG is getting eol / running with extended support hence i am looking for an alternate solution which can bring simmilar functionality which we are currently getting with this solution.

download.microsoft.com/download/8/.../usingipsectosecureaccesstoexchange.docx

Securing Remote Access to Exchange Server Using IPsec

Highly appreciate if someone can suggest Microsoft replacement / 3rd party apps / device by I can achieve the same.

Transport rule is only working partially

August 10, 2018, 8:30 am
$
0
0

Hi,

I have 3 transport rules defined:

1. Redirect mails to receiverA or receiverB or ReceiverC to shared mailbox1 except mails inside this organisation;

2. Redirect mails to receiverD or receiverE or ReceiverF to shared mailbox2 except mails inside this organisation;

3. Redirect mails to receiverG or receiverH or ReceiverI to shared mailbox3 except mails inside this organisation;

Priority order is 0,1,2;

Strange thing is, that mainly these rules are working, but for some mails they don`t. We were not able to identify any system in the not working rules. Transport service has been restarted.

Any ideas or more drill down actions are welcome.

Exchange server 2010, 14.03.0399.000, AdminDisplayVersion : Version 14.3 (Build 123.4)

ProductVersion   FileVersion
--------------   -----------
14.03.0411.000   14.03.0411.000

Matthias

Raising forest & domain functional level

August 10, 2018, 11:54 pm
$
0
0

Hi,

We are currently having windows server 2012 R2 as our domain controller. (It was migrated from windows server 2008 to 2012 R2). We are using exchange 2010. Will there be any issue for exchange if the domain and forest functional levels are raised to windows server 2012 R2.

Any help would be highly appreciated.

Thanks

Item count difference between Get-MailboxStatistics and the result of New-MailboxExportRequest.

August 12, 2018, 11:24 pm
$
0
0

We need to backup the mail data with its item count for our task. Without doubt, I thought count of command result and the real mail (.eml) count are same.

For to do this, I performed the [ Get-MailboxStatistics "mail box" ] at the management shell. (exchange 2010 server)

Right after the result shows up, I captured the console and make the .pst files by running follow command.

    [ New-MailboxExportRequest -Mailbox "mail box" -Filepath "file path" ]

But, those result are not same. 

There is no possible to change of it because it is a resigner's mail box.

Why this happened? 

Thus, is there any method to backup data which is fixed(No changes while using the mail box) at time of run a command?





name could not be matched to a name in the address list

August 13, 2018, 12:51 am
$
0
0

Hi,

I am trying do add a new user mailbox to the exchange server 2010 from the outlook client autodiscovery.

It gives me the follow error message: name could not be matched to a name in the address list

Office 365 imap server

August 13, 2018, 9:47 am

User not in Offline Address Book

August 14, 2018, 1:09 pm
$
0
0
I have one user that, if we login into Outlook Web and open the address book, I am able to find the user.  If I open the Address Book with in Outlook, the user isn't there.  (I've waited over a week and updated the address book again.)  I've tried performing a send/receive then downloaded the latest address book.  Still doesn't show.  Whatever the fix is, it has to be something on the server.  We have 100,000 users.  I can't make changes at a PC level. 
Search

Retention policies not working on clients

August 14, 2018, 6:45 am
$
0
0

We have Exchange 2010 Enterprise.

Retention policies are applied to mailboxes from Exchange Server.

I see them applied on outlook policies tab. But not affected.

Eg: Deleted items folder and Junk mail folder will only keep items for 1 day, then these should delete. This is applied, but items are not deleted as per the policy.

I have run start-managedfolderassistant to start the MRM. Still the same issue exists. Please assist me.

Problems removing a stale federation

August 15, 2018, 11:54 am
$
0
0

We have had a federation in place for a while and it never really worked well. Now the certificate is expired and I just want to get rid of it. Foolishly, I thought I could just go into the Exchange Console and right click and select "Remove Federated Trust'. Well I tried that and got the error below. Names changed to protect the innocent. Anyway, what is an admin to do when the right click lets you down. I just want to get rid of the cert but I can't because its linked to the Federation which I can't remove.

Any help would be appreciated. Someone suggested the shell and the -Force switch. Sounds good to me if it doesn't break anything else.

Summary: 4 item(s). 1 succeeded, 2 failed.
Elapsed time: 00:00:21


Set-FederatedOrganizationIdentifier
Completed

Exchange Management Shell command completed:
Set-FederatedOrganizationIdentifier -OrganizationContact ''

Elapsed Time: 00:00:00


domain.com
Failed

Error:
The URI "domain.com" for domain "domain.com" on application identifier "0000000041045601" couldn't be released. Detailed information: "An error occurred accessing Windows Live. Detailed information: "Unable to connect to the remote server".".

An error occurred accessing Windows Live. Detailed information: "Unable to connect to the remote server".

Unable to connect to the remote server

A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond
Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.141).aspx?v=14.3.361.1&t=exchgf1&e=ms.exch.err.Ex1FCF67

Exchange Management Shell command attempted:
Remove-FederatedDomain -DomainName 'domain.com'

Elapsed Time: 00:00:21


domain1.com
Failed

Error:
Can't remove the account namespace "domain1.com" until all other domains have been removed.
Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.141).aspx?v=14.3.361.1&t=exchgf1&e=ms.exch.err.Ex5B946A

Exchange Management Shell command attempted:
Remove-FederatedDomain -DomainName 'domain1.com'

Elapsed Time: 00:00:00


Remove-FederationTrust
Cancelled

Accessing multiple Calendars on a mobile device

August 15, 2018, 3:46 pm
$
0
0

This question involves ActiveSync so not sure if it belongs here. Is there any way to download another users Calendar to a mobile device? I know you can create an additional profile for ActiveSync on a device but that downloads the entire mailbox, or at least the folders you want to sync.

Even when you do that, the default Calendar app always displays the primary mailbox and you have to use the Calendar app to toggle between Calendars with two ActiveSync profiles.

I have an EA that just want her bosses Calendar on his mobile device. We have Exchange 2010 SP3 and we use ActiveSync for mobile users. We do not allow publishing of Calendars to the Internet.

Issue with Active Sync

August 16, 2018, 2:29 am
$
0
0

Hello, we are currently having issues with users trying to access mail on their phones with active sync.

Can someone please help


Attempting the Autodiscover and Exchange ActiveSync test (if requested).
Testing of Autodiscover for Exchange ActiveSync failed.
Additional Details
Elapsed Time: 557 ms.
Test Steps
Attempting each method of contacting the Autodiscover service.
The Autodiscover service couldn't be contacted successfully by any method.
Additional Details
Elapsed Time: 557 ms.
Test Steps
Attempting to test potential Autodiscover URL https://coresystems.biz:443/Autodiscover/Autodiscover.xml
Testing of this potential Autodiscover URL failed.
Additional Details
Elapsed Time: 472 ms.
Test Steps
Attempting to resolve the host name coresystems.biz in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 77.104.149.206
Elapsed Time: 117 ms.
Testing TCP port 443 on host coresystems.biz to ensure it's listening and open.
The port was opened successfully.
Additional Details
Elapsed Time: 120 ms.
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Additional Details
Elapsed Time: 234 ms.
Test Steps
The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server coresystems.biz on port 443.
The Microsoft Connectivity Analyzer wasn't able to obtain the remote SSL certificate.
Additional Details
The certificate couldn't be validated because SSL negotiation wasn't successful. This could have occurred as a result of a network error or because of a problem with the certificate installation.
Elapsed Time: 216 ms.
Attempting to test potential Autodiscover URL https://autodiscover.coresystems.biz:443/Autodiscover/Autodiscover.xml
Testing of this potential Autodiscover URL failed.
Additional Details
Elapsed Time: 40 ms.
Test Steps
Attempting to resolve the host name autodiscover.coresystems.biz in DNS.
The host name couldn't be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.coresystems.biz couldn't be resolved in DNS InfoDomainNonexistent.
Elapsed Time: 40 ms.
Attempting to contact the Autodiscover service using the HTTP redirect method.
The attempt to contact Autodiscover using the HTTP Redirect method failed.
Additional Details
Elapsed Time: 10 ms.
Test Steps
Attempting to resolve the host name autodiscover.coresystems.biz in DNS.
The host name couldn't be resolved.
Tell me more about this issue and how to resolve it
Additional Details
Host autodiscover.coresystems.biz couldn't be resolved in DNS InfoDomainNonexistent.
Elapsed Time: 10 ms.
Attempting to contact the Autodiscover service using the DNS SRV redirect method.
The Microsoft Connectivity Analyzer failed to contact the Autodiscover service using the DNS SRV redirect method.
Additional Details
Elapsed Time: 32 ms.
Test Steps
Attempting to locate SRV record _autodiscover._tcp.coresystems.biz in DNS.
The Autodiscover SRV record wasn't found in DNS.
Tell me more about this issue and how to resolve it
Additional Details
Elapsed Time: 32 ms.
Checking if there is an autodiscover CNAME record in DNS for your domain 'coresystems.biz' for Office 365.
Failed to validate autodiscover CNAME record in DNS. If your mailbox isn't in Office 365, you can ignore this warning.
Tell me more about this issue and how to resolve it
Additional Details
There is no Autodiscover CNAME record for your domain 'coresystems.biz'.
Elapsed Time: 1 ms.

RU23 for Exchange Server 2010 Service Pack 3: Fix for CVE-2018-8302

August 20, 2018, 1:00 am
$
0
0

In case you missed this information, Microsoft has released RU23 for Exchange server 2010 Service Pack 3 to resolve the security vulnerability described in CVE-2018-8302.

Description of CVE-2018-8302:
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. An attacker could then install programs; view, change, or delete data; or create new accounts.

Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Exchange server.

The security update addresses the vulnerability by correcting how Microsoft Exchange handles objects in memory.

Download the RU23 for Exchange 2010 SP3(KB4340733):
https://www.microsoft.com/en-us/download/details.aspx?id=57219

PS: Keep in mind to Run the security update as administrator. We have received multiple reports that ECP and OWA stopped working after installing KB4340733, as the security update didn't correctly stop certain Exchange-related services.

References:
CVE-2018-8302 | Microsoft Exchange Memory Corruption Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8302#ID0EUGAC

Update Rollup 23 for Exchange Server 2010 Service Pack 3
https://support.microsoft.com/en-us/help/4340733/update-rollup-23-for-exchange-server-2010-service-pack-3

Please remember tomark the replies as answers if they helped.

Viewing all 15005 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>