O-Xchange Notes from the Field!

Monday, December 27, 2010

Exchange 2010 server unable to join the DAG

Issue: Exchange 2010 server unable to join the DAG
Cause: IPV6 wasn't fully disabled via registry. Also, DNS was configured for the replication NIC
Resolution: Disable DNS configuration for replication NIC so that it doesn't register in AD DNS. Properly disable IPV6 in the registry by doing this:

Launch Regedit.exe
Go to HKLM\System\CurrentControlSet\Services\TCPIP6\Parameters and Create a new DWORD value named DisabledComponents
Edit DisabledComponents to have a Decimal Value of 4294967295
Reboot the server. When the server comes up, try adding the server to the DAG

Removing hiberfil.sys to recover space

Issue: In windows vista, 7 or 2008, hiberfil.sys takes up large disk space on your Root drive. The more memory you have, the the larger the file gets
Synopsis: Hiberfil.sys is used to store contents of RAM when the computer hibernates. It's typically the same size as the the total RAM. It's a hidden system fileResolution: If you don't need to hibernate your system, you can safely remove the the file by following these steps: Click Start -> All Programs -> Accessories
Right-click Command Prompt
Select Run as administrator
In this privileged command prompt window, enter: powercfg -h off

Instantly, hiberfil.sys is gone. The space recovery is instant as well

Command line switches for Outlook

The following links are to articles detailing the available command line switches for Outlook 2007 and 2010, along with descriptions of what the switches do.
 
These switches can help resolve a number of issues, from renamed default folders (sent items, deleted items, etc.), to clearing client and/or server side rules.
 
 
 

Friday, December 10, 2010

User receives NDR with SMTP 550 5.2.0 Storedrv error

If a user receives a NDR with the following in the diagnostic data, establish a TeamViewer session with the user's PC and deactivate unapproved third-party add-ins, such as Snag-it:
 
#550 5.2.0 STOREDRV.Deliver: The Microsoft Exchange Information Store service reported an error. The following information should help identify the cause of this error: "MapiExceptionNamedPropsQuotaExceeded: . . .
 
Many, if not all, Outlook add-ins add named properties, or X-headers to messages in Outlook. Exchange assigns IDs to the named properties. When the named properties IDs are exhausted, Outlook cannot map the named property, and the message cannot be delivered. Not all messages are affected, only those utilizing the add-in that cannot be mapped by the affected database.
 

Friday, October 29, 2010

Firefox users can only display 20 search results from OWA GAL

Issue: Firefox users can only display 20 search results from OWA GAL
 
Resolution: While in firefox, go to options, click drop-down box next to Number of items to display per page, and change the number to desired # of results to display per page
 

Wednesday, October 13, 2010

Hiding mailbox from the GAL. Blackberry and Outlook Scenarios

Background: Customer wants his mail account hidden from the Exchange GAL

Test Objective: To determine and confirm any difference in  Blackberry and Outlook operations after hiding the mail account from the GAL

Tests performed by: Obi and Brandon

Devices and software used: Blackberry Torch(same device customer uses) and Outlook 2010

Findings:

Outlook Scenarios:

1.       Customers can do a checkname ONLY with full email address
2.       Free-busy lookup works ONLY with full email address
3.       President can still send and receive email
4.       Appointments can be made on president’s calendar
5.       Meeting requests can be sent(again with full email address)
6.       New profiles can’t be created. However this can be mitigated by unhiding the mailbox and creating the profile. It can be hidden afterwards.


Blackberry scenarios:

1.       After hiding from the GAL, free busy is blacked out for the president on the blackberry
2.       President can see other people’s availability
3.       Can send and receive email from blackberry
4.       Can lookup contacts
5.       Can view his calendar and any updates to his calendar
6.       Can’t  send or receive meeting requests from his device
7.       Can’t  post, delete appointments or meeting requests


Webmail Scenarios:  
1 President can see his free busy and others
2 Works just as well as Outlook
3. webmail customers can do free-busy with president’s account using full email address
  
Conclusion:

Given the following:

a.      customer has staff that actively manages his calendar activities,
b.      That his/er blackberry calendar is just for viewing updates and not to add or delete calendar items,
c.       That his/her staff and associates know to use his full email address to do meeting requests, free-busy and checkname,

Then it will be correct to say that customer's mailbox can be hidden from the GAL.

Disabling creation of PST in Outlook

Issue: Customer was getting this error message upon launch of Outlook "Outlook cannot add the folder because creating a new Personal Folder(.pst) isn't allowed
 
Cause: Customer had sharepoint connection in their Outlook, but commvault(no pst) was installed. Commvault(no pst) installation set DisablePST key in the registry to 1, hence the error
 
Resolution: Set the DisablePST key in the registry to 2. This allows sharepoint pst to be created but disabled pst creation feature of Outlook.
 
to correct the configuration, launch registry editor and go to
2007HKLM\Software\Microsoft\Office\12.0\Outlook
 
for Outlook 2003, 2003HKLM\Software\Microsoft\Office\11.0\Outlook

Wednesday, October 6, 2010

Changing the scope so you can view the entire domain in Powershell

Issue: The requested search root 'Domain/Microsoft Exchange SecurityGroups' is not within the scope of this operation
. Cannot perform searches outside the scope 'Domain Name'.
    + CategoryInfo          : NotSpecified: (0:Int32) [Get-RoleGroup], ADOperationException
    + FullyQualifiedErrorId : 1A950E45,Microsoft.Exchange.Management.RbacTasks.GetRoleGroup
 
Resolution: 
for exchange 2007 = $AdminSessionADSettings.ViewEntireForest = $true
For exchange 2010 = Set-AdServerSettings -ViewEntireForest $True

Friday, September 17, 2010

Accessing Attachments that are blocked by Outlook

A user had an issue whereby she was unable to access attachments in migrated messages. Upon opening a message with attachments, Outlook displayed a banner that stated that the 'potentially harmful' attachments had been blocked. By right-clicking the message and scrolling down to 'Attachments', Outlook displayed the path to the location in which the attachment was stored. In this instance, the path was:
 
C:\Program Files\Qualcomm\Eudora\Attach
 
All of the user's attachments from her previous email client are stored in this folder.

Thursday, September 16, 2010

Removing the 'Here you have' virus from Outlook Outbox

We have seen numerous instances of users whose PCs are supposedly cleaned of the virus continuing to send the message. This is due to Outlook being configured to use Cached Mode. While the virus was active, it filled the cached Outbox, which gets dumped as soon as the user opens Outlook. In addition to this, the virus prevents the users from deleting the infected messages in the Outbox. To resolve this, follow these instructions:

1.       Disconnect the computer from the network.
2.       Change the user’s Outlook profile so that Cached mode is NOT used.
3.       Restart Windows in Safe Mode, and log in as the local administrator.
4.       Open My Computer, and navigate to:
1.       Windows XP: C:\Documents and Setting\%username%\Local Settings\Application Data\Microsoft\Outlook.
2.       Windows 7: C:\Users\{username}\AppData\Local\Microsoft\Outlook
 NOTE: it may be necessary to change the folder view to show hidden files and folders. Be sure to change this setting back when done with this process.
5.       Shift-Delete the OST file with the name of the user’s profile so that it is permanently deleted.
6.       Restart Windows in normal mode and have the user log in.
7.       Rescan using the Symantec removal tool.
8.       Notify the Exchange Team so that the send limit can be removed.
9.       Open Outlook and verify that everything appears normal.
10.   The user’s Outlook profile may be put back in Cached mode. NOTE: Putting Outlook in cached mode will require the Windows Indexing service to re-index the mailbox. Re-indexing can take as long as several hours, and searches within Outlook may return incomplete or no results until the indexing is complete.

Wednesday, September 8, 2010

Migrating Frequent Contacts File in Outlook

Frequent contacts are stored in a file called profilename.nk2

Migrating .NK2 Files XP/Vista/7/03/08

Here are the locations for Outlook 2003/2007 .NK2 files.

Windows XP/Server 2003

C:\Documents and Settings\{username}\Local Settings\Application Data\Microsoft\Outlook

Windows Vista/7/Server 2008

C:\Users\{username}\AppData\Roaming\Microsoft\Outlook

Tuesday, August 10, 2010

User cannot send or reply when using OWA

If a user is unable to send or reply when using OWA from home (browser stops responding), make sure they are using the IE icon created by Windows, and not an icon created by an installation program from their ISP (i.e. Earthlink).
 
If that is not the cause of their issue, you can determine if it's due to an add-in (toolbars, etc.) by using the No Add-ons mode of IE. This can be found by clicking Start -> All Programs -> Accessories -> System Tools -> Internet Explorer (No Add-ons), or by running iexplore.exe -extoff from the run line.
 
More info on troubleshooting add-ons can be found here:http://blogs.msdn.com/b/ie/archive/2006/07/25/678113.aspx

Monday, August 2, 2010

How to find objects in Active Directory with duplicate SMTP address.

How to find objects in Active Directory with duplicate SMTP address.

The Active Directory Users and Computers snap-in can be used to search for the address. To do this, follow these steps:
  1. Run Active Directory Users and Computers.
  2. Right-click the domain object and choose Find from the context menu. This will bring up the Find Users, Contacts, and Groupswindow.
  3. In the Find drop-down list, choose Custom Search.
  4. Click the Advanced tab and in the Enter LDAP query: field, enter smtp alias, for eg:proxyaddresses=smtp:user@domain.com
  5. Click the Find Now button.

Tuesday, July 27, 2010

Sharing calendar in Entourage

To use Entourage 2008 to share your calendar, do the following:
  1. Open Entourage 2004 or Entourage 2008.
  2. Click Calendar in the upper left corner of the window.
  3. Ctrl-click (or right-click) on your Exchange calendar in the list on the left.
  4. Select Sharing from the pop-up menu.
  5. Click Add User....
  6. Type the name or ULID of the person you want to share your calendar with, and click Find.
  7. Select the name from the search results and click OK.
  8. Select the name you just added. Right now, the Permission Level isNone.
  9. To change it, click the Permission Level: drop-down menu. Reviewer and editor, two common permission levels (types of sharing), are described above.
  10. When you are done, click OK.

Monday, June 7, 2010

Configuring Entourage 2008 Web services edition for Exchange Server 2010

Configuring Entourage 2008 Web services edition for Exchange Server 2010
System Requirements
  • Mac OS X version 10.4.9 or later (The latest version of Mac OS X, available through Software Update, is recommended.)
  • Account on Exchange server
  • Internal network connection or any access to Internet
  • Entourage 2008(web services edition) or Outlook 2011


Configuring Entourage 2008, Web services edition
  1. Launch Microsoft Entourage 2008.
  2. On the "Welcome to Entourage" screen, click Start Using Entourage without importing anything.
  3. Click the right arrow.
  4. Click the check box "My Account is on an Exchange server" and click the right arrow.
  5. In the "Password" field, type your password.
  6. Select "Save password in my Mac OS keychain" if you wish.
  7. On the "Select a Kerberos ID", click OK.
  8. On the "Account Setup Assistant has failed" screen, clickConfigure Account Manually.
  9. On the Account Settings tab, deselect "Use Kerberos authentication".                
11.  Click the Advanced tab.

  1. In the Exchange Server field, typehttps://mail.domain.com/ews/exchange.asmx
  2. Select "This server requires a secure connection (SSL)".
  3. Click Ok.

Monday, May 10, 2010

How do I find out if Exchange Search is working for a particular Mailbox user or enabled on a Mailbox Database?

  • To test whether Exchange search is working for a particular user’s mailbox, run the following command (needs perms to write to the mailbox)
Test-exchangeSearch <mailbox name>
  • To see which Mailbox databases are enabled for Exchange Search, run the following command:
Get-MailboxDatabase |select name, indexenabled

Wednesday, April 28, 2010

How to renew self-signed certificate on Exchange 2k7 server

To renew a self-signed certificate, use this pshell command:
 
Get-ExchangeCertificate -Thumbprint 67455EECD51C972C2DFDAE56CF927B8851C73048 | New-ExchangeCertificate

To remove the old certificate use this command
Remove-ExchangeCertificate with the thumbprint value of the old certificate for eg:

Remove-ExchangeCertificate -Thumbprint  E3ED4FE364679696969AF93148A024669AE4CF4E

Monday, April 26, 2010

Configuring Address Book for MAC Snow Leopard

Configuring Address Book for MAC Snow Leopard
 In Snow Leopard, Mac-Mail, Address Book and i-cal now uses web services to connect to Exchange server 2007. This is more reliable and robust.
Follow these steps to configure your MAC Address Book to use the Global Address List in Exchange server 2007
 
1. Launch Address Book
2. Click on Address book, preferences, Accounts
3. Click on +Sign to add an account.
4. For Account type, Choose Exchange 2007
5. Type your full name, primary email address, and password
6. Type your username
7. Click next. Ensure your account information is correcty displayed in Account summary. Also check the boxes next to Mail and iCal calendars if you haven't configured those aleady.
8. Click on create
9. Open new mail window and confirm entries are showing up in the gloabol address book
 

Monday, April 19, 2010

Track messages with message id

Message tracking is easier and faster with message id. This message can be retrieved from Ironport. So if you can get message id from Ironport, hand-off server name and time, the search will go better and quicker. While in Exchange powershell, use the command below to find the message status and export to CSV file.
 
 
get-messagetrackinglog -Server "ServerName" -MessageID "<BE2BA0B06D1DF24AA8FBE8319637DC3F051EB07205@MAIL1.TEST.org>" -Start "4/12/2010 1:06:0
0 PM" -End "4/12/2010 1:26:00 PM" | export-csv c:\april.csv

Thursday, April 15, 2010

user gets error code BE-326B trying to login Webmail

Issue: customer called and complained getting error code BE-326B
trying to login to webmail via https://OWAExternalURL/owa
 
synopsis: This error is security related. Customer is likely logged in from multiple systems/browsers. In trying to login again, the siteminder detects multiple IP addresses for the sasme login. That triggers a security alert whichi gives the BE-326B error.
 
 
resolution: Inform user to close browser and open it again. That resolves the issue

Tuesday, April 13, 2010

Large Textfile viewer

Notepad isn't built for large text files. To open large log files, I recommend using: http://www.swiftgear.com/ltfviewer/features.html

Thursday, April 8, 2010

How to upgrade Entourage to Web services edition

THe link below will take you to download entourage web services edition for Entourage 2008. It's a free upgrade from Microsoft and will be required to use Exchange server 2010
 
It uses web services instead of webdav to retrieve your emails, calendar, etc
 
 
Prior to installing the web services update, ensure that you download and apply this update: Office 2008 for MAC 12.2.8 update
 
 
In summary,
 
step 1: Ensure your mac OS is Snow leopard with all the updates
 
step 2: Apply Office for MAC 12.2.8 update. Link is given above
 
Step 3. Apply Web services update for Entourage
 
Step 4. After installation, launch entourage. Say yes to import your identity from old entourage.

Monday, April 5, 2010

unable to upgrade exchange 2007 SP1 to SP2

error message:
exchange 2007 sp2 setup previously failed while performing the action install.you cannot resume setup by performing the action buildtobuild upgrade
Resolution:
Go through the following registry keys and delete all the "Watermark" and "Action" items. The install will proceed successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\AdminTools
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\ClientAccessRole
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\HubTransportRole
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\MailboxRole
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\UnifiedMessagingRole
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Exchange\v8.0\ClusteredMailboxServer

Thursday, April 1, 2010

spell checker not working in Outlook 2007

Issue: Customer called and reported that Outlook 2007 does not do spell check, even though spell checking is enabled
 
Resolution:
 
while in Outlook 2007, click on Tools, Trust center
Click on Add-ins
At the bottom of window, where it say Manage, change it to Disabled items and click Go
 
If you see "spellcheck-en" enable it
 
Exit and try typing in a new mail to test the spell check

Wednesday, March 31, 2010

preparing Active directory for Exchange 2010

Follow the steps below to prep your AD for exchange 2010. you will need enterprise admin rights to perform this.
 
From a command prompt, and using setup.com(from exch2010 cd), run as follows and in order:
 
run this, if you still have remnants of exch2003 in your organization
setup.com /PrepareLegacyExchangePermissions
 
setup.com /PrepareSchema
 
setup.com /prepareAD
 
 
setup.com /preparedomain

Thursday, March 18, 2010

Working with disconnected mailboxes

Working with disconnected mailboxes

Deleted mailboxes will appear in disconnected mailbox list, but it will not reflect immediately. Typically,You have to wait for online maintenance to run and complete.
If you accidentally delete a mailbox, you will not be able to find it in Disconnected Mailbox immediately. You have to  run Clean-MailboxDatabase to get the deleted mailbox. * If it is not appearing in the disconnected mailbox view run one of the following commands from powershell
To Clean Database of Individual Store, run
Clean-MailboxDatabase \servername\SGName\Store
 
To clean all databases on a specific server
Get-Mailboxdatabase | Where{ $_.Server –eq “servername”}| clean-MailboxDatabase

  
 To Clean all the database in the Organization 
Get-Mailboxdatabase | Clean-MailboxDatabase
 
To Clean all the database on a specific server
Get-Mailboxdatabase | Where{ $_.Server –eq “servername”}| clean-MailboxDatabase
 
To Clean all the Database which matches the specific name given in Databasename
Get-Mailboxdaatabase | Where{ $_.Name –eq “<DatabaseName>”}| clean-MailboxDatabase

To find Disconnected mailboxes on a particular server:
Get-MailboxStatistics -Server servername | where { $_.DisconnectDate -ne $null } | select DisplayName,DisconnectDate
 
 
To connect a user id to a disconnected mailbox:
Connect-mailbox –database <mailbox database name> –Identity <disconnected mailbox name> –User <User to connect to>

Wednesday, March 17, 2010

Understanding AutoArchive Settings

What do AutoArchive settings mean?
AutoArchive helps manage the space in your mailbox or on the e-mail server that you are using by automatically moving items to an archive location. Depending on the options, AutoArchive completes one or both of the following actions:
A. Moves items from their original location, generally one of your active folders, to an archive folder.
B. Permanently deletes items that have passed their aging periods

Note If you choose to have items deleted, they are not archived. If you choose to have items archived, they cannot be deleted by an AutoArchive. Once items are archived, they can only be deleted manually.
Aging periods of Outlook items
Any Outlook item that has exceeded its aging period is included in the next AutoArchive, unless the item has been specifically marked to be excluded. The default aging period for each Outlook folder is as follows:
Folder
Aging period
Inbox and Drafts
6 months
Sent Items and Deleted Items
2 months
Outbox
3 months
Calendar
6 months
Tasks
6 months
Notes
6 months
Journal
6 months
Note Folders that you create that contain the same type of items as the Inbox, Calendar, Tasks, Notes, or Journal have the same default, six-month aging period. For example, a mail folder that you create for status reports received from a co-worker or a contact folder you create for personal contacts.
Determine the age of an item
Item type
When the aging period starts
E-mail message
The received date/time or when you last changed and saved the message, whichever is later.
Calendar meeting, event, or appointment
The date when you last changed and saved the item, whichever is later. Recurring items are not AutoArchived.
Task
The completion date or when you last changed and saved the task. Tasks that are not marked complete are not AutoArchived. Tasks assigned to other people are archived only if marked complete.
Note
When you last changed and saved the note.
Journal entry
The date the Journal entry was created or when you last changed and saved the entry.
Contact
Contacts are not archived by default. However, you can manually archive them.
AutoArchive settings and options
See the following descriptions for the settings and options that you can apply when customizing AutoArchive.
Run AutoArchive every n days Choose how often AutoArchive runs. Archiving many items at the same time might slow your computer's performance. Therefore, it is better to use AutoArchive more frequently to reduce the number of items porocessed.
To turn off the AutoArchive feature, clear the Run AutoArchive every n days check box.
Prompt before AutoArchive runs Choose whether you want a reminder message to appear before AutoArchive processes your Outlook items. When prompts appear, you can click No on the reminder message to cancel that AutoArchive session.
Delete expired items (e-mail folders only) This option is off by default. Select this check box to delete messages after their aging period has passed.
Archive or delete old items Choose this option if you want to set or change the settings that follow. If this check box is cleared, AutoArchive runs using default settings.
Show archive folder in folder list Select this check box to have the Archive folder listed with your other working folders in the Navigation Pane. If you do not use this option, you can still open your archive folder — click the File tab, then on the Open tab, click Open Outlook Data File.
Clean out items older than Specify the age at which you want items to be archived, in days, weeks, or months. You can configure a period of one day up to a maximum of 60 months.
Move old items to Select this check box to archive old items instead of automatically delete them. The default folder appears in the box. To use a different folder, enter the folder location in the box or click Browse. Selecting this option clears selection of the Permanently delete items option.
Permanently delete items This option deletes any expired items. They are not moved and no archive copy is kept. Selecting this option clears selection of the Move old items to option.
Apply these settings to all folders now This option applies the AutoArchive settings, including your changes, to all folders. To specify unique settings for one or more folders, do not choose this option. Instead, right-click the folder, click Properties and then go to the AutoArchive tab. Changes made to a folder affect only that folder.