O-Xchange Notes from the Field!

Wednesday, August 20, 2014

Cant delete message in OWA.
Error: Access is denied.
Solution: Insure EWS is enabled on mailbox

In Exchange Powershell run
         get-casmailbox mailboxname |select ewsenabled
if       EwsEnabled                 : False

then enable by running the following command.
         set-casmailbox mailboxname -ewsenabled $true

Manage another person's mail and calendar items - Outlook 2013

Applies to Outlook 2013

There are two ways to work with another person's Outlook folders — folder sharing and Delegate Access.

NOTE A Microsoft Exchange Server account is required.

Folder sharing enables another person to access one of your folders, perhaps while you are on vacation. However, it does not include permissions for one to act on behalf of the other. For example, a person who can access your folders can’t reply to email messages or respond to meeting requests for you.

Delegate Access is an Outlook feature that enables one person to act on behalf of another Outlook user. The most common scenario in which this feature is used is a manager and his or her assistant. The assistant might be responsible for maintaining the manager's schedule, such as creating and responding to meeting requests. Some assistants might also monitor a manager's Inbox and send email on behalf of the manager.

A less common scenario involving Delegate Access is when a user is assigned permission to send email on behalf of a group in your organization’s Address Book. In this scenario, if you have been assigned Send As permissions for a group in your organization’s Address Book, you can send email and it will appear to be sent from that group.

This article assumes that the manager has already granted Delegate Access to the delegate.

In this article

· Add another person's mailbox to your profile
· Open another person's folders
· Send or respond to meeting requests for another person
· Create or reply to an email message on behalf of another person
· Send an email message on behalf of a group
· Save sent items in another person's Sent Items folder


Add another person's mailbox to your profile
If you frequently work with someone else's Exchange folders, you probably will want to add the other person's Exchange mailbox to your Outlook profile. Doing so will automatically open the other person's mailbox every time that you open Outlook. The other mailbox appears in the Folder Pane underneath your Exchange mailbox folders.

NOTE The person who is sharing a mailbox must grant you Folder visible permission on the root folder of the Exchange mailbox.

Instructions for granting Folder visible permission

As the manager, do the following in Outlook:

1. Right-click the root folder of the Exchange mailbox, and then click Folder Permissions.
2. Click the name of the delegate.
3. Under Permissions, under Other, select the Folder visible check box.
4. Click OK.


As the delegate, do the following in Outlook:

1. Click File > Account Settings > Account Settings.

 2. On the Email tab, in the list, click the Exchange account type, then click Change and then click More Settings.
3. On the Advanced tab, under open these additional mailboxes, click Add, and then enter the mailbox name of the person whose mailbox that you want to add to your user profile. If you do not know the mailbox name, ask the person who granted you Delegate Access permissions.


Open another person's folders1. Click File > Open & Export > Other User's Folder. TIP To avoid this step in the future, see the instructions on how to add another person's mailbox to the Folder Pane in the Add another person's mailbox to your profile section of this article.
2. In the Name box, enter the name of the person who granted you Sharing or Delegate Access permissions, or click Name to select from a list.
3. In the Folder type list, click the folder that you want to open.


Send or respond to meeting requests for another person
To give the delegate sufficient permissions to accept meeting requests for the manager, the manager must do the following:
1. Click File > Account Settings > Delegate Access.
2. Click Add, then type or select, the delegate’s name, and then click Add.
3. Do one of the following:
· In the Delegate Permissions dialog box, give the delegate Editor (can read, create, and change items) permissions in the manager's Calendar folder.
· Click OK to close the Delegate Permissions dialog box, then select the check box at either My delegates only, but send a copy of meeting requests and responses to me or My delegates only.


To respond to meeting requests
1. Open the other person's Inbox if his or her meeting requests are not sent to you directly.
2. Open the meeting request.
3. Click Accept, Tentative, or Decline.


To send a meeting request
1. Open the other person's calendar.
2. On the Home tab, in the new group, click New Meeting.
3. Enter the attendees, subject, location, and start and end times as you ordinarily do.


Create or reply to an email message on behalf of another person
1. In Mail, click Home > New Email. Keyboard shortcut To create an email message, press Ctrl+Shift+M.

2. On the Options tab, in the Show Fields group, click from.
3. In the from box, type the name of the person on whose behalf you are sending the message. To select the name from a list in the Address Book, click from.
4. Add recipients, a subject, and the contents of the message as you typically do.


To reply to an email message
1. In the other person's mailbox, select the message that you want to reply to on behalf of your manager.
2. Click Home (If you have opened the message, click Message), and then click Reply, Reply All or Forward. Keyboard shortcut To reply to an email message, press Ctrl+R.

3. On the Options tab, in the Show Fields group, click from.
4. In the From box, type your manager's name. To select the name from a list in the Address Book, click From. If you don’t see the From button and box, click Options > From.
5. Add recipients, a subject, and the contents of the message as you typically do.


Send an email message on behalf of a group

If you have been assigned Send As permissions for a group in your organization’s Address Book, you can send email and it will appear to be sent from that group.

1. In Mail, click Home > New Email. Keyboard shortcut To create an email message, press Ctrl+Shift+M.

2. On the Options tab, in the Show Fields group, click from.
3. In the from box, type the name of the group on whose behalf you are sending the message. To select the group from a list in the Address Book, click from.
4. Add recipients, a subject, and the contents of the message as you typically do.



Save sent items in another person's Sent Items folder
When email messages and meeting requests are sent by a delegate on behalf of a manager, a copy of each item is saved in the delegate's Sent Items folder.

As an alternative, the manager can grant permissions to his or her Sent Items folder to the delegate. The delegate can then move or copy the items from his or her own Sent Items folder to the manager's Sent Items folder.

The manager should do the following:

1. In the Folder Pane, right-click the Sent Items folder.
2. Click Properties.
3. On the Permissions tab, click the name of the delegate.
4. Under Permissions, in the Permission level list, click Editor (can read, create, and change items).
5. Click OK.

If you have added the manager’s mailbox to your profile, the manager's Sent Items folder appears in the delegate's Folder Pane under Mailbox - manager.



Manage another person's mail and calendar items - Outlook 2010

Applies to Outlook 2010

There are two ways to work with another person's Microsoft Outlook folders — folder sharing and Delegate Access.

NOTE A Microsoft Exchange Server account is required.

Folder sharing enables another person to access one of your folders, perhaps while you are on vacation. However, it does not include permissions for one to act on behalf of the other. For example, a person who can access your folders cannot reply to email messages or respond to meeting requests for you.

Delegate Access is an Outlook feature that allows one person to act on behalf of another Outlook user. The most common scenario in which this feature is used is a manager and his or her assistant. The assistant might be responsible for maintaining the manager's schedule, including creating and responding to meeting requests. Some assistants might also monitor a manager's Inbox.

This article assumes that the manager has already given Delegate Access to the delegate.

In this article

· Add another person's mailbox to your profile
· Open another person's folders
· Send or respond to meeting requests for another person
· Create or reply to an email message on behalf of another person
· Save sent items in another person's Sent Items folder

Add another person's mailbox or Service Mailbox to your profile
If you frequently work with someone else's Exchange folders, you probably will want to add the other person's Exchange mailbox to your Outlook profile. Doing so will automatically open the other person's mailbox every time that you open Outlook. The other mailbox appears in the Navigation Pane underneath your Exchange mailbox folders.

NOTE The person who is sharing a mailbox must grant you Folder Visible permission on the root folder of the Exchange mailbox. The shared mailbox usually appears as Mailbox - user name.


Instructions for granting Folder Visible permission

As the manager, do the following in Outlook:

1. Right-click the root folder of the Exchange mailbox, and then click Change Sharing Permissions. The shared mailbox usually appears as Mailbox - user name.
2. Click the name of the delegate.
3. Under Permissions, under other, select the Folder Visible check box.
4. Click OK.


As the delegate, do the following in Outlook:

1. Click the File tab.
2. Click Account Settings, and then click Account Settings.

3. On the E-mail tab, in the list, click the Exchange account type, then click Change and then click More Settings.
4. On the Advanced tab, under Open these additional mailboxes, click Add, and then enter the mailbox name of the person whose mailbox you want to add to your user profile. If you do not know the mailbox name, ask the person who granted you Delegate Access permissions.

Open another person's folders

1. Click the File tab.
2. Click Open.
3. Click Other User's Folder. TIP To avoid this step in the future, see the instructions on how to add another person's mailbox to the Navigation Pane in the Add another person's mailbox to your profile section of this article.
4. In the Name box, enter the name of the person who granted you Sharing or Delegate Access permissions, or click Name to select from a list.
5. In the Folder type list, click the folder that you want to open.

Send or respond to meeting requests for another person
To give the delegate sufficient permissions to accept meeting requests for the manager, the manager must do the following:

1. Click the File tab.
2. Click Account Settings, and then click Delegate Access.
3. Enter the delegate's information and click Add.
4. Do one of the following:
· In the Delegate Permissions dialog box, give the delegate Editor (can read, create, and change items) permissions in the manager's Calendar or Tasks folder and at least Reviewer (can read items) permissions in the manager's Inbox.
· Click OK to close the Delegate Permissions dialog box, then select the check box at either My delegates only, but send a copy of meeting requests and responses to me or My delegates only.

5. Click any other tab to return to your file.

To respond to meeting requests
1. Open the other person's Inbox if his or her meeting requests are not sent to you directly.
2. Open the meeting request.
3. Click Accept, Tentative, or Decline.


To send a meeting request
1. Open the other person's calendar.
2. On the Home tab, in the New group, click New Meeting.
3. Enter the attendees, subject, location, and start and end times as you ordinarily do.

Create or reply to an email message on behalf of another person

To create an email message

1. In Mail, on the Home tab, in the New group, click New E-mail. Keyboard shortcut To create an email message, press Ctrl+Shift+M.
2. In the From box, type the name of the person on whose behalf you are sending the message. To select the name from a list in the Address Book, click From. If you do not see the From button and box, on the Options tab of the message, in the Show Fields group, click From.
3. Add recipients, a subject, and the contents of the message as you typically do.

To reply to an email message

1. In the other person's mailbox, select the message that you want to reply to on behalf of your manager.
2. On the Home tab (If you have opened the message, on the Message tab), in the Respond group, click Reply, Reply All or Forward. Keyboard shortcut To reply to an email message, press Ctrl+R.
3. In the From box, type your manager's name. To select the name from a list in the Address Book, click From. If you do not see the From button and box, on the Options tab, in the Show Fields group, click From.
4. Add recipients, a subject, and the contents of the message as you typically do.


Save sent items in another person's Sent Items folder

When email messages and meeting requests are sent by a delegate on behalf of a manager, a copy of each item is saved in the delegate's Sent Items folder. This behavior is by design.

As an alternative, the manager can grant permissions to his or her Sent Items folder to the delegate. The delegate can then move or copy the items from his or her own Sent Items folder to the manager's Sent Items folder.

NOTE To see another person’s folders in the Navigation Pane, see Add another person's mailbox to your profile.

The manager should do the following:

1. In the Navigation Pane, right-click the Sent Items folder.
2. Click Change Sharing Permissions.
3. On the Permissions tab, click the name of the delegate.
4. Under Permissions, in the Permission level list, click Editor (can read, create, and change items).
5. Click OK.

The manager's Sent Items folder appears in the delegate's Navigation Pane under Mailbox - manager.


Export or manually archive Outlook 2011 for MAC items


An easy way to reduce the size of your Inbox is to export — manually archive to an 'Outlook for Mac Data File' (.olm) on your Mac — your e-mail messages, contacts, and other items. You can still access this data at any time, and you can even transfer individual items, or the entire Data File, to Outlook for Mac on another computer.

NOTE   In Outlook for Windows, older Outlook items are archived automatically on a regular interval, also known as Auto Archive. This is not available in Outlook for Mac, but you can archive data automatically by setting up Time Machine.


Do any of the following:

Export to an Outlook for Mac Data File
When you export to an Outlook for Mac Data File, you can choose to filter information by category or by item type. For example, if you want to transfer networking information from your work computer to your home computer, you could export only items that you've assigned to the Networking category. Similarly, you might want to export all your contacts on your home computer and then import them on your work computer. During the export process, you can choose to keep the exported items in Outlook, or to delete them after they are exported.
1. On the File menu, click Export.
2. Click Outlook for Mac Data File.
3. Select an option to filter by category or item type. To export all items in Outlook, click Items of the following types, and then select all the check boxes.
4. Click the right arrow to continue, and then follow the instructions. The Outlook for Mac Data File uses the .olm extension.

NOTES
- If you have a Microsoft Exchange account or directory services account, contacts from the directory are not exported. Similarly, items that are stored in public folders are not exported.
- An Outlook for Mac Data File does not contain account settings or your Outlook preferences.

Export contacts in a tab-delimited text file
To transfer a set of contacts to another computer or application, you can export contacts as a tab-delimited text file, which can be opened by many other mail, spreadsheet, and database applications.
1. On the File menu, click Export.
2. In the Export Assistant, click Contacts to a list, and then follow the instructions. Tab-delimited files are saved with a .txt extension.

 NOTES
- If you have a Microsoft Exchange account or directory services account, contacts from the directory are not exported.
- When you export a contact, all the information in Outlook that is related to that contact — such as mailing addresses, birthday, and notes — is included. However, some mail applications might be unable to display the contents of certain fields such as "Spouse/Partner" and "Interests."
- Encryption certificates aren't exported.

Export individual items
You can also export single items as individual files, either to have as a backup or to use in other applications.
1. In the item list, select the item that you want to export. To select multiple items, hold down   as you click the items.
2. Drag the selection to the desktop or a folder in the Finder.

NOTES
- E-mail messages are exported as .eml files.
- Contacts are exported as vCard (.vcf) files.
- Calendar events and tasks are exported as .ics files.
- Notes are exported as .html files.



Outlook 2011 for MAC not receiving mail

Scenario: "I'm not receiving e-mail or other items in my Exchange account" for Outlook for Mac.
Cause1: Outlook is offline.
Solution1:    Verify that Outlook is online. On the Outlook menu, make sure that Work Offline is not checked. 

Cause2: Outlook is not connected to the server that is running Microsoft Exchange Server.
Solution2:    Check your Microsoft Exchange server connection.  On the Tools menu, click Accounts. Look at the Exchange account in the left pane. If there is a problem with the connection, the indicator icon will be orange.
If you successfully connected to the account before, try to connect to it from another Exchange application, such as Outlook Web App.


Cause3: Items from an Exchange account are stored in the Outlook cache. If this cache becomes corrupted, it may cause synchronization problems with the Exchange server.

Solution3:    Empty the cache in Outlook so that Outlook can download all the items from your Microsoft Exchange account again.

CAUTION   The following procedure deletes any information that is not synchronized with the Exchange server, including your contacts' mail certificate. Before emptying the cache, you may want to back up your Outlook information that is stored only locally on your computer. Make sure that your computer is connected to the Exchange server.

1.     In the navigation pane, press CONTROL and click the Exchange folder for which you want to empty the cache, and then click Folder Properties.

2.     On the General tab, under Empty Cache, click Empty.
After the folder is empty, Outlook automatically downloads the items from the Exchange server.


Manually downloading a copy of the Offline Address Book.

Scenario: You expect to see a user in the Offline Address Book, but you cannot find that user. The Offline Address Book is used when Outlook is in Cached mode.


Solutions:  Outlook is supposed to download the offline address book every 24 hours. Additions/Modifications made to users in the address book may not be seen by someone who is using an older version of the offline address book. We have seen a restart of the computer force Outlook to download it if Outlook has not updated for a while, but you can attempt to manually download a new copy of the Offline Address Book.

Outlook 2010/2013 

1. Click the Send/Receive Tab, click Send/Receive Groups, Select Download Address book.
2. Uncheck the box next to Download changes since last Send/Receive. In the Information to download section, select Full Details and in the Address Book section, choose \Global Address List. click OK.
3. The offline address book will start to download. A status window will open to indicate that the download is in progress and will close automatically when the download is complete.

Outlook 2007 

1. Click on Tools, highlight Send/Receive, select Download Address Book.
2. Uncheck the box next to Download changes since last Send/Receive. In the Information to download section, select Full Details and in the Address Book section, choose \Global Address List. Click OK.
3. The offline address book will start to download. A status window will open to indicate that the download is in progress and will close automatically when the download is complete.


Outlook 2011 on OSX

1.Fully exit Outlook 2011
2.Remove the ~/Library/Caches/Outlook/Main Identity directory
3.Restart Outlook 2011


If the user is not in the offline address book, verify you can find the user via Outlook Web App. 


Tuesday, August 19, 2014

Removing Bulk Exchange Mailboxes via Powershell

Scenario:  You have a list of mailboxes that you wish to remove in bulk.

Resolution:  We will use the Remove-Mailbox command-let in order to perform this task.  We will remove it via a loop by reading in a CSV file with the mailboxes.  Note:  The Remove-Mailbox will disable the mailbox and delete the AD account.  If you wish to leave the AD Account but only disable the mailbox, use the Disable-Mailbox instead.

Create a CSV file with the names of the mailboxes
  1. Open Notepad
  2. On the first line, type in name
  3. On the second line and down, paste the mailbox names (one mailbox per line).
  4. Save it as Mailboxes.csv to a location you will remember

Import the CSV into a Exchange Variable
  1. Open Exchange Management Shell
  2. Type in the following: (Make sure to use the .csv file path from above)
       $mailboxes = Import-Csv 'C:\mailboxes.csv'
  3.  Verify that your Exchange Variable has content by typing in:
       $mailboxes

Remove the Mailboxes via a loop in Exchange Management Shell.
  1. Type in the following:
       $mailboxes | %{Remove-mailbox $_.name -confirm:$false }
  2. The Mailboxes and AD objects are now removed.


Alternate Methods:

1. Remove a Single Mailbox:    
     Remove-Mailbox jdoe1 -confirm:$false
2. Remove multiple mailboxes that follow a pattern in the mailbox name quickly:
     Get-mailbox jdoe* | Remove-mailbox -confirm $false


     



Friday, August 15, 2014

Gathering Mailbox Counts in Exchange

Scenario:  You need to gather Mailbox Counts in your Exchange Environment.  You need to gather these types of counts: Total Mailboxes in your Exchange Organization, Total Mailboxes per Server, and/or Total Mailboxes per Database.


Run the following:
1. Total Mailboxes in the Exchange Organization
(Get-mailbox -resultsize unlimited).count

2. Total Mailboxes per Mailbox Server
Get-Mailbox -resultsize unlimited | Group-Object -Property:ServerName | Select-Object Name,Count

3. Total Mailboxes per Database
Get-Mailbox -resultsize unlimited | Group-Object -Property:Database | Select-Object Name,Count


If you know specific information for the server or database,  you can run the following:

Server:  (Get-MailboxServer MBX01| Get-mailbox -resultsize unlimited).count
Database:  (Get-MailboxDatabase DB01 | Get-mailbox -resultsize unlimited).count
You receive the following error when trying to import a pst file with a large message to an Exchange mailbox.

Error: This mailbox exceeded the maximum number of large items that were specified for this request.
Solution: Raise the -LargeItemLimit size above the default 35mb.

Example:
New-MailboxImportRequest -Mailbox Ben -LargeItemLimit 50 -AcceptLargeDataLoss -FilePath \\server\ben.pst

Wednesday, August 13, 2014

Users Mailbox is still quarantined after it should have been released automatically. Manually remove the quarantine.

scenario: User's mailbox was quarantined and couldn't access email via outlook, mobile device or OWA. User's mailbox was repaired using this powershell command:

New-MailboxRepairRequest -mailbox testmbox -corruptiontype Aggregatecounts,searchfolder,provisionedfolder,folder
view

To check to see if the repair request has completed, 
  1. Navigate to the Application Log in the Event Viewer:
  2. Filter the Log by:
      a. Event Sources:  MSExchangeIS Mailbox Store
      b. Include these Event IDs for the Repair Request: 10044,10045,01146,10047,10048,10049,10050,10051,10059,10062.

In Exchange 2010, the quarantined mailbox should have been released automatically after 6 hours. However, it was still quarantined after 15 hours.



Resolution: 

After verifying the mailbox repair completed successfully, perform the following:

1. Delete the quarantined mailbox GUID from the registry on the server:  HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MSEXCHANGEIS\<SERVERNAME>\PRIVATE-(DB GUID)\QUARANTINEDMAILBOXES\(MAILBOX GUID)

2. Dismount and Re-mount the database. 

The mailbox was now released from Quarantine

You can't search for admin audit log entries because the arbitration mailbox for the organization is located on a server that doesn't have Exchange 2013 installed.

Issue: You can't search for admin audit log entries because the arbitration mailbox
'SystemMailbox{e0dc1c29-89c3-4034-b678-e6c29d823ed9}' for the organization '' is located on a server that doesn't have Exchange 2013 installed. The mailbox must be moved to an Exchange 2013 server before you can search for admin audit log entries.

Resolution: Move arbitration mailbox to Exchange 2013

Get-Mailbox -Arbitration -Identity "SystemMailbox{e0dc1c29-89c3-4034-b678-e6c29d823ed9}" | New-MoveRequest -TargetDatabase <name of Exchange 2013 database>



Clear all completed Exchange Mailbox Move Requests in bulk

 In Exchange Power Shell, run one of the following:


The Variable Method:

$move = get-MoveRequest | Where {$_.Status –eq ‘completed’}
 Foreach($m in $move){Remove-MoveRequest $m –Confirm:$false}


Or

The One Liner:

get-MoveRequest | Where {$_.Status –eq ‘completed’} | Remove-moverequest -confirm:$false

Tuesday, August 12, 2014

User unable to login and receive email via Outlook, OWA or Mobile Device

Scenario:  User is unable to login and receive email via Outlook, OWA, or Mobile Device.

Outlook error: cannot open your default folders. You must connect with the current profile before you can synchronize your folders with your outlook data file (.ost).

Owa error: The custom error module doesn’t recognize the error.


Cause: The user’s mailbox was quarantined


Resolution:  Click on the link below and it will provide instruction for Mailbox Quarantining.

Quarantined Mailboxes



Exchange Script to combine output from multiple commands into a single CSV file.

Scenario:  You want to combine information from the output of different Exchange Shell commands into a single CSV file. The three commands I am going to combine are below.

get-user     (This holds user specific info)
get-mailbox      (This holds mailbox specific info)
get-mailboxstatistics      (this holds mailbox statistics specific info)

Script:

$mailboxes = get-mailbox -resultsize unlimited | Where Database -like "EXCHDB*"
$mailboxes = $mailboxes | Sort alias

$mailboxes | Foreach-Object{
    $user = Get-User $_.name
    $mbx = Get-Mailbox $_.name
    $mbxstat = Get-MailboxStatistics $_.name
    Write-Host $user

    New-Object -TypeName PSObject -Property @{
        FirstName = $user.FirstName
        LastName = $user.LastName
DisplayName = $user.DisplayName
Title = $user.title
Department = $user.Department
Office = $user.Office
Manager = $user.manager
Alias = $mbx.Alias
Database = $mbx.database
Servername = $mbx.servername
OrganizationalUnit = $mbx.organizationalunit
TotalItemSize = $mbxstat.totalitemsize
TotalItemSizeInMB = $mbxstat | Select {$_.TotalItemSize.Value.ToMB()}
PrimarySMTPAddress = $mbx.primarysmtpaddress

    }
} | Export-csv C:\output\MailboxAndUserInfo.csv

Wednesday, August 6, 2014

Updating Outlook 2013 even though the updates are not listed Windows Update

Scenario:  There are known updates for Outlook 2013 available, but are not listed in your Windows Update to download and install.  The option in Windows Update “Give me updates for other Microsoft products when I update Windows” is checked OR is not available.

Resolution:  

1. Determine which installed Office 2013 group you use:
a. Office 2013 installed through the new “Click to Run” method
b. Office 2013 installed from a disk / by running the MSI installer

To identify which one of them you are using, simply open Outlook 2013, go to File -> Office Account and look under the Product Information area: if there is an “Update Options” button, then you have the “Click to run” Office 2013 version.

2. Update Outlook 2013:
a. Office 2013 installed by Click to Run:  Go to File-->Office Account--> Update Options.  Click Apply Updates.
b. Office 2013 installed by disk/msi:  Download and run Microsoft Office Configuration Analyzer Tool (OffCAT). Click on “Start a scan” -> select Outlook -> type any name you want in the label section and click on “Start scanning”. Not only that the OffCAT tool will search for updates and fixes on your Outlook 2013 installation, but it will also scan your Outlook installation for other potential issues, as you can see on the OffCAT. To update Outlook 2013, simply navigate to All Issues --> Office Update: Installed Updates (Or look for relevant labels for updates) --> Expand “You do not have the most recent files for Outlook 2013″, then click on the “see possible solutions to this issue” link: it will open a new browser window with ALL your missing Outlook updates and their download links.
       

Reference

Prioritizing Move Requests in Exchange

Scenario:  You want to submit a move request with a higher priority over other pending move requests that are currently queued.  

Solution:  In Exchange Powershell, submit the move request with the -priority parameter.  The accepted values of the parameter are below.

Example:  New-moverequest jdoe1 -targetdatabase DB04 -priority High.

Accepted Values for -Priority Parameter:
Exchange 2010 SP2:  normal,high
Exchange 2013:  lowest, low, normal, high, highest

Notes:
1. By Default, all move requests have a Normal Priority.  
2. MRS will not respect an altered priority unless a move request is halted with the Suspend-MoveRequest cmdlet and then resumed with the Resume-MoveRequest cmdlet.
3. MRS does not halt processing normal-priority move requests when a high-priority mailbox move is initiated. The only time when priority is used is when MRS selects the next move request to process.
4. When MRS looks for new move requests that are waiting to be processed, it first sorts the requests by priority and then by LastUpdatedTimeStamp (a field indicating the last time that the move request was processed by MRS). High priority move requests are therefore selected by MRS before normal-priority move requests. The request priority is included in the msExchMailboxMoveFlags attribute.

Tuesday, August 5, 2014

Check ExSetup.exe file version information on all Exchange servers remotely

To check ExSetup.exe file version information on all Exchange servers remotely, use below one-liner.

Get-ExchangeServer | Sort-Object Name | ForEach{ Invoke-Command -ComputerName $_.Name -ScriptBlock { Get-Command ExSetup.exe | ForEach{$_.FileVersionInfo } } } | Format-Table -Auto

Reading a Memory .dmp File

Scenario:  A server performed a hard shutdown and restarted. You want to figure out the faulting process that cause this crash.

Steps:

1.  Make sure you have downloaded and installed BlueScreenView and WDK 8 (Windows Driver Kit).

2.  Open BlueScreenView.  If you have copied the dmp files to your computer, make sure you put them in C:\windows\minidump folder.

Click on the dmp file and it will tell you what driver caused the blue screen.  You can also change the lower pane mode in the Options menu to see the actual Blue Screen on the server or the drivers in the crash stack. This will give you somewhat of an idea of what caused the crash.



3.  To find more information in the crash dump file, use WDK. Open a Elevated Command Prompt and navigate to the following directory: C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\

4.  Copy the Dump file (.dmp) locally. On Server 2012, this is in the %SystemRoot%\MiniDump folder.

5. Type the following:
                a.  kd –z C:\Windows\memory.dmp (or the path to your .dmp file)
                b.  .logopen c:\debuglog.txt
                c.  .sympath srv*c:\symbols*http://msdl.microsoft.com/download/symbols
                d.  .reload;!analyze -v;r;kv;lmnt;.logclose;q

6. Review the results by opening c:\debuglog.txt.  Search for the Process_Name and other relevant information and it will tell you the faulting processes and information.


This message could not be sent. Try again later or contact your network administrator. Error [0x80004005-000000000-00000000]

Issue: This message could not be sent. Try again later or contact your network administrator. Error [0x80004005-000000000-00000000]

Scenario: Organization has throttling policy with recipient rate limit of 10,000 per day set for the organization. For this org, service mailboxes aren't throttled. User has 2 mailboxes (primary and service mailbox) opened in Outlook. User has send-as permissions to the service mailbox but as a group member.

User tries to send from outlook as service mailbox to multiple recipients but received error message. see error message below

Undeliverable: your message did not reach some or all of the intended recipients. This message could not be sent. Try sending message again later or contact your network administrator. Error is

[0x80004005-000000000-00000000].

Resolution: Advised user to send message using Outlook web Access. User needs to login to OWA and open the service mailbox. Messages can now be sent without throttling.


Alternatively, for a user that insist on using Outlook, user must be given explicit send-as permission to the service mailbox so as to be able to bypass throttling policy

Outlook: There is a problem with the proxy server's security certificate. The name on the security certificate is invalid or does not match the name of the site. Outlook is unable to connect to this server.

Issue: Error message from Outlook: There is a problem with the proxy server's security certificate, %s. The name on the security certificate is invalid or does not match the name of the site. Outlook is unable to connect to this server. (%s)
  
Finding/Resolution: Checked Outlook provider settings and saw that server and certificate was set to 2 dashes(--)

used this command to fix: set-outlookprovider EXPR -Server $Null and Set-Outlookprovider EXPR -CertPrincipalName $Null

The command will set outlook provider EXPR to Null(Blank). By doing so Outlook will rely on autodiscover to get the correct outlook anywhere settings


Get all messages from all transport servers by a specific sender starting on a specific day and export to CSV

Issue/Task: Get all messages from all transport servers by a specific sender starting on a specific day and export to CSV

Get-TransportServer | Get-MessageTrackingLog -sender:test@test.com -start 7/15/2014 -resultsize unlimited | export-csv c:\export.csv


After cancelling the install for Exchange 2013 CU5, users can no longer connect to IMAP.


Issue: The attempted install of Exchange 2013 CU5 was cancelled during the install process.  Afterwards users could not connect to the secure imap service.

Cause: CU5 for exchange 2013 install was attempted on these servers, hence they were put in maintenance state by CU5. Also found out that only the person/software that put the server in maintenance mode can take it off maintenance.

Troubleshooting/Resolution: From powershell type, Get-servercomponentstate servername. Found out Imap proxy was in an inactive state.

Resolution: This registry fix(though not recommended by microsoft) resolved the issue. go to
 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ExchangeServer\v15\ServerComponentStates\serverwideoffline

backup the servercomponentstates key
remove maintenance key
change functional key from 1:0:635407213073684026 to 1:1:635407212984929845 (Note that guid value is unique per server).


You are basically changing from 0 to 1 to make the server active. This activates all the inactive components





Message throttling policy created in Exchange 2013 not applying to Exchange 2010 mailboxes


Issue: In a coexistence environment, message throttling policy created in exchange 2013 not applying to exchange 2010 mailboxes


Resolution: Create message throttling policy in Exchange 2010 powershell. Apply separate throttling policy to Exchange 2010 mailboxes

Clients connecting to recently installed servers, but the clients have delayed/no connection

Issue
**************
Clients were trying to connect to servers that were recently installed, but currently offline for the process of completing setup, causing the clients to have delayed, or no connection at all.

Cause
*************
The servers were not set with the right URL, and once the servers are installed into a site, autodiscover will query AD to get the URL and other information, even if the servers are offline, the information is in AD and can be returned to users.
Once the users received the Internal URL for the offline servers, they would try to connect to that internal URL, and eventually timeout, then they would connect to the externally listed url, https://mail.test.com

Resolution
**************
We did a couple of things to try and prevent users from getting to the down servers
1.       We set the SCP autodiscover record to be mail.test.com on the 4 new servers
a.       Set-clientaccessserver –AutoDiscoverServiceInternalUri https://mail.test.com/autodiscover/autodiscover.xml
2.       We then went into ADSI edit and modified the internal URL for outlook anywhere on the 4 new servers as well
3.       We then restarted the app pool for autodiscover to clear the autodiscover cache
a.       This then allowed users to set the connection point to mail.test.com
4.       For clients, they may need to do a repair profile to remove the server FQDN from the outlook profile and restart outlook

Next Steps
************
When the 4 new servers are brought back up verify that the outlook anywhere settings are correct from powershell.
Get-outlookanywhere <NEW SERVER NAMES> | fl
Check internal URL and make sure it is mail.test.com

May want to change the Internal URL to the mobile. For all the servers, removing the internal FQDN


Also change the AutoDiscoverServiceInternalUri for the client access servers to mail.test.com, so users do not try to use an individual server name when they discover an SCP record.

Friday, August 1, 2014

X-OWA-Error: Microsoft.Exchange.Security.Authentication.TokenMungingException

Scenario:  When a user tries to access OWA, the receive the following error:

something went wrong
Sorry, we can't get that information right now. Please try again later. If the problem continues, contact your helpdesk.
X-OWA-Error: Microsoft.Exchange.Security.Authentication.TokenMungingException

Resolution: This is the result of the mailbox being a 'linked mailbox' and having a value in the 'linked master account'.

Run the following to view the value:
get-user batman15 | select linkedmasteraccount

Run the following to remove the value:
set-user batman15 -linkedmasteraccount $null