Quantcast
Channel: Exchange Server 2013 - Administration, Monitoring, and Performance 论坛
Viewing all 3457 articles
Browse latest View live

Broken mailboxes after moving to new domain - Exchange 2013

June 27, 2018, 7:00 pm
$
0
0

Hello Exchange world. I have a weird issue that i seriously can't figure out.

Our domain is like thus:

ad.domain - top of the forest

grp.domain - sub tier

We are looking to close down our sub domain trees and only use the ad.domain one. My boss used a migration tool to move the shared mailboxes as a pre step before we move the users. Also he has created users in the ad domain. So they all have a grp.domain login and a ad.domain one. They all all still using the grp ones because the ad ones do not connect to anything.

The issue we are having is after he migrated the shared mailboxes (and went on holidays -_-), I am finding the shared mailboxes seems to randomly lost permissions for like 5-15 minutes. In outlook, it asks for credentials that don't work. However if I log in via owa I get an error message, but if I refresh 1-3 times it seems to regig the account.

Also, we moved one of the users from the old to the new and that mailbox is displaying the following error for 5-15 minutes 1-3 times a day:

X-ClientId: ITBW - 0CMD - T0PA - NEHW
X-OWA-Error: SDServerErr;Microsoft.Exchange.Services.Core.Types.MissingEmailAddressForDistinguishedFolderException
X-OWA-Version: 15.0.1347.5
X-FEServer: MX1
X-BEServer: mx1.ad.domain
Date: 27/06/2018 05:56:40

I'm at the point of manually deleting and recreating each account one by one however I thought about asking if anyone else know what is going on here.

Cheers,

Scylon.

P.S.

this is the error in owa for shared boxes:

X-ClientId: JGCS - GTBW - ZEQH - NAGBWXQW X-OWA-Error: SDServerErr;Microsoft.Exchange.Services.Core.Types.NonExistentMailboxException X-OWA-Version: 15.0.1347.5 X-FEServer: MX1 X-BEServer: mx1.ad.doamin Date: 26/06/2018 23:25:44

Search

Find out what Sharedmailbox a user has access to

July 12, 2018, 5:58 pm
$
0
0

Hi What I'm trying to do is find out if a list of users in an csv file have either "Send As" or "Send on behalf" permission to a user mailbox or a sharedmailbox.

I found a few scripts that take care of getting the permissions for a user mailbox. But i'm stuck on getting a list for all shared mailboxes a user may have any type of delegation for.


Thanks

Items per page

June 9, 2015, 4:40 am
$
0
0

Hi

Is it possible to change default number of "items per page" in "Exchange admin center" (Exchange 2013)

Kind regards
Hans-Henrik

IP address and Domain restrictions for ECP

July 11, 2018, 9:51 am
$
0
0

So I did some reading and wanted to try this out. Restricting who gets to the ECP virtual directory by LAN  This seems pretty straight forward and I guess is maybe and IIS issue if needs to be removed.  I've enabled the feature, gone to the virtual directory and added my ip address to the allow.  Only thing that shows, then go to 'edit feature settings' and deny unspecified.  after IISreset my IP address is denied, if I reverse the feature settings i'm allowed, why does it not see my IP as white listed. In the logs I do not see my IP anywhere.

thoughts?

EDIT: if I read correctly the logs show the source IP as my exchange server....so I whitelist that and it appears to be working, problem would be then every request looks like the whitelisted exchange server and defeats the purporse of the of the deny unspecified no?   I've tested from 2 different subnets.

update cyle for GAL?

July 26, 2018, 7:49 am
$
0
0

Offline Address Book has a refresh cycle and you can change it with Set-OABvirtualDirectory and Set-OfflineAddressbook commands.

wondering whether such cycle exists for the Global Address List (GAL) as well and it there is, the mechanism to change the interval?

user cannot access Gal

July 26, 2018, 7:51 am
$
0
0
receive a "The bookmark is not valid" error when trying to access it in Outlook.

How do you add a contact into a specific GAL says if you have multiple GAL, like GAL1,GAL2...

July 26, 2018, 7:55 am
$
0
0

And make this specific contact not accessible by other GALs.

Playing with GAL recently, sorry if this is impossible. Thanks for your help/clarification.

ECP permissions changed but how / where

July 30, 2018, 7:41 am
$
0
0

This is probably not a mystery but I am confused and need to learn where this is. I built a 2nd exchange server last week (have not created DAG yet) but at this time for management.  OWA will be left open through the firewall on exch1, but I want ECP not going externally. Researching I found the cmdlet.

set-ECPVirtualDirectory -Identity "exch1\ecp (default web site)" -AdminEnabled $false

waited for a weekend reboot and what should happened does for myself, the ecp site no longer can administer users, just my own mailbox options are available.   Except only for myself, the other 3 administrators are getting a 403 access denied after entering their passwords to ECP.  Our AD groups match and haven't been changed, they were able to access exch1\ecp prior to the command and they can access exch2\ecp to correctly admin other users.  What permission in exchange could be different from me to them that would be affected by   'set-ecpvirtualdirectory'  ??


Search

Getting error "Search-AdminAuditLog : The attempt to search the administrator audit log failed. Please try again later." while running the Search-AdminAudit logs using powershell script.

October 24, 2016, 4:57 am
$
0
0

Hello,

While running the Search-AdminAuditLog cmdlet using the powershell script, we are getting below error.

Search-AdminAuditLog : The attempt to search the administrator audit log failed. Please try again later.
[FailureCategory=Cmdlet-AdminAuditLogSearchException] 5DE55415,Microsoft.Exchange.Management.SystemConfigurationTasks.SearchAdminAuditLog

We have exchange server 2013 setup on a single system that hosts Mailbox as well as ClientAccess roles. We have already enabled the adminaudit logs.

Can anyone please help?

Thanks,

Pratik

Exchange Server 2010 SP3 - Rollup update 20 (KB4073537) installation failed

July 24, 2018, 2:24 am
$
0
0

Hi,

We have exchange server 2010 SP3 on Windows Server 2012 R2 , currently roll up 17 & 18 are installed.

We are trying to install rollup 20 but its failing with the following error 


Deleting letter from all mailboxes Exchange 2013

July 31, 2018, 1:39 am
$
0
0

Hi all! I have a mail which was sent to all staff and now I must remove it via powershell. How can I do it? 

I previously tested the command (Search-Mailbox -Identity *** -SearchQuery 'Subject:"***"' -TargetMailbox "***" -TargetFolder "inbox" -DeleteContent) on the letter for one user but it did not retire. Could you help me? 

Shared Calendar provide access accross organisation and auto populate in outlook and outlook anywhere for all users

July 15, 2018, 12:16 am
$
0
0

We have a requirement, we want to assign users read only permission for shared calendar and this calendar should populate in each users calendar automatically in outlook and outlook anywhere

What I had tried and found to be working, if I create a security group and add all users in that group and then assign permission through Power Shell. Permission are getting affected on all users but still in outlook users has to open calendar manually, it is not getting populated automatically for all users. So require assistance for auto populating shared calendar in outlook.

Power-Shell command example: Add-MailboxFolderPermission -Identity nithesh@msclone.com:\calendar -User securitygroup@msclone.com -AccessRights Reviewer

nithesh@msclone.com: is the shared calendar.

securitygroup@msclone.com: security group created and all users added to this group

Search-AdminAuditLog shows mailbox GUID , how to convert

July 11, 2018, 6:02 am
$
0
0

Hi,

I exported mailbox from EAC and found the following command in exchange logs

New-MailboxExportRequest, parameters -Mailbox "fa9b9dfb-d497-43cb-96cc-73a9a647a0ae" -FilePath "\\ex01\c$\a.pst

but now when i check in Search-AdminAuditLog , it doesn't show mailbox and path which was used for export.

RunspaceId         : 68349c08-7a67-4d26-b6ca-970c0bbb445f
ObjectModified     : bde1ee4d-8c35-44bf-82f0-350a9567752a\f6ec6a77-6b8e-4bfa-b8f9-8192d483e3f5
CmdletName         : New-MailboxExportRequest
CmdletParameters   : {Mailbox, FilePath}
ModifiedProperties : {}
Caller             : domain.com/OU/User name
ExternalAccess     : False
Succeeded          : True

How do i find which mailbox exported.

Regards
Usman Ghani

Usman Ghani - MCITP Exchange 2010

Default user calendar permission

August 1, 2018, 8:44 am
$
0
0

Hi Gurus,

I have exchange 2010 (going to migrate soon) and im trying to set the default user calendar permission to reviewer for all the users.

When i use this command i can change it one by one:

Set-MailboxFolderPermission -Identity user@domain.com:\calendar  -User default -AccessRights reviewer

But im trying to use a PS script to change this to everyone so im using this one 

$mailboxes = get-mailbox -resultsize "unlimited"ForEach ($mailbox in $mailboxes){Set-MailboxFolderPermission -identity $Mailbox":\calendar" -User Default -AccessRights Reviewer}

When i try to run it on PS screen, it comes back as if its done and no errors but nothing changes and all the calendars permissions still the same.

Do i need to change anything on this one?

Thank You

Karim

Message delayed

March 8, 2018, 8:25 pm
$
0
0

Hi all,

My environment : Exchange server 2013 CU7 , Window server 2008 R2 OS .
Recently, we get problem when sending mail to 1 customer. Messages from user@mydomain.com to customer are stucked at our mail server queue and we get errors :
Remote Server atmx5.qatarairways.com.qa (78.100.138.179) returned '400 4.4.7 Message delayed'
3/6/2018 10:01:41 AM - Remote Server at mx5.qatarairways.com.qa (78.100.138.179) returned '451 4.4.0 Primary target IP address responded with: "421 4.4.1 Connection timed out." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts. The last endpoint attempted was 78.100.138.179:25'

Their IT said :

Kindly be informed that QR IT shall be disabling the insecure TLS v1 in our email systems effective tomorrow 05th March, 2018 1600hrs in order to protect our environment against cyber threats and also in line with the PCI-DSS mandates. Security standards require that TLS 1.0 can no longer be used for secure communications as it is vulnerable to several attacks that have been reported in the recent past.

The impact of this change would be that organizations using the outdated and less secure TLS v1 to send us emails, would be rejected by our email server (just like large emails that are rejected by our email server due to size restrictions). An email rejection notice would be sent from our email server to the senders email server. However, We would not be able to confirm that a bounce back message is received by the actual sender of the email as this configuration solely resides with the senders email servers. The solution to these email rejection is that email communications must be updated to the latest TLS versions by the sender.

Please note that email will not deliver to QR if sender is using  TLSv1.0.

Do I have to upgrade our Exchange 2013 to latest CU or disable TLSv1.0 somehow ?
Please give me some advices , thank you very much.

Search

How to tag internal and external email?

June 13, 2016, 8:49 am
$
0
0

Hello,

As a security measure I would like to insert a tag at the top of all emails identifying them to be external or internal. Is there a way to do this with transport rules? Any suggestions would be appreciated.

Clean up exchange database to gain more space

July 31, 2018, 12:45 am
$
0
0

Dear Forum, 

I have 3 exchange server running in DAG environment. i have facing some issue that exchange keep space bigger event we have disable mailboxes from exchange server already. i am looking for solutions that we can claim space from database back. please kindly advise idea. thank 

Sokneang SAM

Error in the Exchange 2013 Server event Viewer (under application log) after user is migrated to exchange online

August 3, 2018, 3:10 pm
$
0
0

Microsoft Exchange Information Store service encountered a corrupt AD object with ID (0b6794ea-24b7-42ae-aba5-4b6009401c71). Error text is (Mailbox Database attribute is null mailbox location type Primary for recipient 0b6794ea-24b7-42ae-aba5-4b6009401c71

LID: 57912

Correlation ID: 00000000-0000-0000-0000-000000000000

Build Number: 15.0.1210.3

Database GUID: 1961b2b4-0851-4778-aabe-90e265317320

Database Hash: -2127497748

Mailbox GUID: 0b6794ea-24b7-42ae-aba5-4b6009401c71

Mailbox Number: 1111

Operation source: Mapi

Client Type: MoMT

Hash Code: 634626396

Logged on User Identity: 00000000-0000-0000-0000-000000000000

Logged on User SID: S-1-5-21-1929992859-1953816288-324330573-205352

).

method to manually disconnect user mapi sessions

August 7, 2018, 9:00 am
$
0
0
on our exchange 2010 server, we are starting to get MAPI session limit errors (eventID: 9646).  I've read the articles about possibly increasing it or modifying the timealive properties in exchange, but is there a script or shell command that I can use to view and then disconnect individual MAPI sessions per a user?  we are currently moving the mail database from one copy to another to disconnect the user sessions.  thanks

Extract last logon time of mailboxes

July 23, 2016, 9:48 pm
$
0
0

Dear Exchange expert,

We are using exchange server 2010 and now we are on the migration to office 365.

Currently as the administrator, we are helping users to do the archiving before migration. currently, I am only able to extract the mailboxes of specific database with the size of each. may I know whether possible to extract with both mailboxes size and also the last logon time on those mailboxes and export to excel?

appreciate your advise.

Regards,

Viewing all 3457 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>