Home
%3CLINGO-SUB%20id%3D%22lingo-sub-604877%22%20slang%3D%22en-US%22%3EReleased%3A%20June%202016%20Quarterly%20Exchange%20Updates%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-604877%22%20slang%3D%22en-US%22%3E%3CP%3E%3C%2FP%3E%3CP%3EToday%20we%20are%20announcing%20the%20latest%20set%20of%20Cumulative%20Updates%20for%20Exchange%20Server%202016%20and%20Exchange%20Server%202013.%20In%20addition%20to%20normal%20fixes%20to%20customer%20reported%20issues%2C%20these%20releases%20also%20include%20updated%20functionality.%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3De7623423-438d-4404-8da8-4ead29fd19f0%22%20class%3D%22bold%22%20title%3D%22Download%20Exchange%20Server%202016%20Cumulative%20Update%202%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EExchange%20Server%202016%20Cumulative%20Update%202%3C%2FA%3E%20and%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3Db40b3af0-22d8-404b-8694-5772d3bafbe9%22%20class%3D%22bold%22%20title%3D%22Download%20Exchange%20Server%202013%20Cumulative%20Update%2013%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EExchange%20Server%202013%20Cumulative%20Update%2013%3C%2FA%3E%20are%20available%20on%20the%20Microsoft%20Download%20Center.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId-1562763065%22%20id%3D%22toc-hId-1563571234%22%3E.Net%204.6.1%20Support%3C%2FH3%3E%0A%3CP%3ESupport%20for%20.Net%204.6.1%20is%20now%20available%20for%20Exchange%20Server%202016%20and%202013%20with%20these%20updates.%20We%20fully%20support%20customers%20upgrading%20servers%20running%204.5.2%20to%204.6.1%20without%20removing%20Exchange.%20We%20recommend%20that%20customers%20apply%20Exchange%20Server%202016%20Cumulative%20Update%202%20or%20Exchange%20Server%202013%20Cumulative%20Update%2013%20before%20upgrading%20.Net%20FrameWork.%20Servers%20should%20be%20placed%20in%20maintenance%20mode%20during%20the%20upgrade%20as%20you%20would%20do%20when%20applying%20a%20Cumulative%20Update.%20Support%20for%20.Net%204.6.1%20requires%20the%20following%20post%20release%20fixes%20for%20.Net%20as%20well.%3CUL%20class%3D%22arrowlist%22%3E%0A%3CLI%3EWindows%20Server%202008%2F2008R2%20-%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fkb%2F3146716%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3146716%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3EWindows%20Server%202012%20-%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fkb%2F3146714%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3146714%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3EWindows%20Server%202012R2%20-%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fkb%2F3146715%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3146715%3C%2FA%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3C%2FP%3E%3CP%20class%3D%22note%22%3E%3CB%3ENote%3A%3C%2FB%3E%20.Net%204.6.1%20installation%20replaces%20the%20existing%204.5.2%20installation.%20If%20you%20attempt%20to%20roll%20back%20the%20.Net%204.6.1%20update%2C%20you%20will%20need%20to%20install%20.Net%204.5.2%20again.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--989393896%22%20id%3D%22toc-hId--988585727%22%3EAutoReseed%20support%20for%20BitLocker%3C%2FH3%3E%0A%3CP%3EBeginning%20with%20Exchange%202013%20CU13%20and%20Exchange%202016%20CU2%2C%20the%20Disk%20Reclaimer%20function%20within%20AutoReseed%20supports%20BitLocker.%20By%20default%2C%20this%20feature%20is%20disabled.%20For%20more%20information%20on%20how%20to%20enable%20this%20functionality%2C%20please%20see%20%3CA%20href%3D%22https%3A%2F%2Fblogs.technet.microsoft.com%2Fexchange%2F2015%2F10%2F20%2Fenabling-bitlocker-on-exchange-servers%2F%22%20class%3D%22bold%22%20title%3D%22See%20previous%20post%3A%20Enabling%20BitLocker%20on%20Exchange%20Servers%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EEnabling%20BitLocker%20on%20Exchange%20Servers%3C%2FA%3E.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId-753416439%22%20id%3D%22toc-hId-754224608%22%3ESHA-2%20support%20for%20self-signed%20certificates%3C%2FH3%3E%0A%3CP%3EThe%20%3CSPAN%20class%3D%22cmdlet%20lightyellow%22%3ENew-ExchangeCertificate%3C%2FSPAN%3E%20cmdlet%20has%20been%20updated%20to%20produce%20a%20SHA-2%20certificate%20for%20all%20self-signed%20certificates%20created%20by%20Exchange.%20Creating%20a%20SHA-2%20certificate%20is%20the%20default%20behaviour%20for%20the%20cmdlet.%20Existing%20certificates%20will%20not%20automatically%20be%20regenerated%20but%20newly%20installed%20servers%20will%20receive%20SHA-2%20certificates%20by%20default.%20Customers%20may%20opt%20to%20replace%20existing%20non-SHA2%20certificates%20generated%20by%20previous%20releases%20as%20they%20see%20fit.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--1798740522%22%20id%3D%22toc-hId--1797932353%22%3EMigration%20to%20Modern%20Public%20Folders%20resolved%3C%2FH3%3E%0A%3CP%3EThe%20issue%20reported%20in%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fkb%2F3161916%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3161916%3C%2FA%3E%20has%20been%20resolved.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--55930187%22%20id%3D%22toc-hId--55122018%22%3EChange%20to%20Get-ExchangeServer%20cmdlet%3C%2FH3%3E%0A%3CP%3EThe%20%3CSPAN%20class%3D%22cmdlet%20lightyellow%22%3EGet-ExchangeServer%3C%2FSPAN%3E%20cmdlet%20has%20been%20updated%20in%20Exchange%20Server%202016%20Cumulative%20Update%202%20to%20reflect%20the%20Exchange%202016%20ServerRole%20definitions%3B%20Mailbox%20or%20Edge.%20Due%20to%20the%20way%20Remote%20PowerShell%20(RPS)%20works%2C%20the%20ServerRole%20definition%20output%20will%20be%20based%20upon%20the%20version%20hosting%20the%20RPS%20session%2C%20e.g.%20%3CABBR%20title%3D%22Cumulative%20Update%202%22%3ECU2%3C%2FABBR%3E%20endpoints%20will%20report%20CU2%20ServerRole%20definitions%20for%20all%20servers%20in%20the%20org.%20Customers%20should%20use%20the%20properties%20assigned%20to%20a%20particular%20service%20on%20the%20Exchange%20Server%20object%20to%20determine%20capabilities%20of%20a%20server%2C%20if%20needed.%20For%20instance%2C%20customers%20with%20scripts%20relying%20upon%20ServerRole%20Output%20looking%20for%20ClientAccess%20to%20be%20installed%20will%20need%20to%20look%20for%20the%20%3CSPAN%20class%3D%22parameter%20lightyellow%22%3EIsClientAccessServer%3C%2FSPAN%3E%20property%20in%20the%20cmdlet%20output%20instead.%20An%20example%20follows%3A%3C%2FP%3E%0A%3CP%20class%3D%22code%22%3E%5BPS%5D%20C%3A%5CWindows%5Csystem32%26gt%3B%24MyServer%20%3D%20Get-ExchangeServer%20EXHV-9895%3CBR%20%2F%3E%3CBR%20%2F%3E%5BPS%5D%20C%3A%5CWindows%5Csystem32%26gt%3B%24MyServer.ServerRole%3CBR%20%2F%3E%3CBR%20%2F%3EMailbox%3CBR%20%2F%3E%3CBR%20%2F%3E%5BPS%5D%20C%3A%5CWindows%5Csystem32%26gt%3B%24MyServer.IsClientAccessServer%3CBR%20%2F%3E%3CBR%20%2F%3ETrue%3CBR%20%2F%3E%3CBR%20%2F%3E%5BPS%5D%20C%3A%5CWindows%5Csystem32%26gt%3B%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId-1686880148%22%20id%3D%22toc-hId-1687688317%22%3EInstalling%20from%20a%20mounted%20ISO%20displays%20English%20UI%20only%3C%2FH3%3E%0A%3CP%3EWe%20are%20aware%20that%20customers%20who%20mount%20the%20ISO%20image%20and%20install%20Exchange%20from%20the%20mapped%20drive%20will%20not%20receive%20a%20local%20language%20setup%20experience.%20For%20customers%20who%20desire%20a%20local%20language%20setup%20experience%2C%20the%20workaround%20is%20to%20copy%20the%20files%20from%20the%20mounted%20ISO%20to%20a%20local%20OS%20drive%20and%20execute%20Setup%20from%20the%20local%20OS%20drive%20instead%20of%20the%20mounted%20ISO.%20We%20are%20working%20to%20resolve%20this%20in%20a%20future%20cumulative%20update.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId--865276813%22%20id%3D%22toc-hId--864468644%22%3ERelease%20details%3C%2FH3%3E%0A%3CP%3EKB%20articles%20which%20contain%20greater%20depth%20on%20what%20each%20release%20includes%20are%20available%20as%20follows%3A%3CUL%20class%3D%22arrowlist%22%3E%0A%3CLI%3EExchange%20Server%202016%20Cumulative%20Update%202%20(%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2FKB%2F3135742%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3135742%3C%2FA%3E)%2C%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3De7623423-438d-4404-8da8-4ead29fd19f0%22%20class%3D%22bold%22%20title%3D%22Download%20Exchange%20Server%202016%20CU2%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EDownload%3C%2FA%3E%2C%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3D1bc019ab-a32a-4196-ba3f-1846a89faeda%22%20class%3D%22bold%22%20title%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3D1bc019ab-a32a-4196-ba3f-1846a89faeda%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EUM%20Lang%20Packs%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3EExchange%20Server%202013%20Cumulative%20Update%2013%20(%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2FKB%2F3135743%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EKB3135743%3C%2FA%3E)%2C%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3Db40b3af0-22d8-404b-8694-5772d3bafbe9%22%20class%3D%22bold%22%20title%3D%22Download%20Exchange%20Server%202013%20CU13%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EDownload%3C%2FA%3E%2C%20%3CA%20href%3D%22http%3A%2F%2Fwww.microsoft.com%2Fdownloads%2Fdetails.aspx%3FFamilyID%3Dc5d833cd-c999-4bd7-9db2-3bfc992c4c13%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EUM%20Lang%20Packs%3C%2FA%3E%3C%2FLI%3E%3C%2FUL%3E%0A%3C%2FP%3E%3CP%3EExchange%20Server%202016%20Cumulative%20Update%202%20does%20include%20updates%20to%20Active%20Directory%20Schema.%20These%20updates%20will%20apply%20automatically%20during%20setup%20if%20the%20permissions%20and%20Active%20Directory%20requirements%20are%20met%20during%20installation.%20If%20the%20Exchange%20Administrator%20lacks%20permissions%20to%20update%20Active%20Directory%20Schema%2C%20a%20Schema%20Admin%20should%20execute%20%3CSPAN%20class%3D%22command%20lightyellow%22%3ESETUP%20%2FPrepareSchema%3C%2FSPAN%3E%20before%20installing%20Cumulative%20Update%202%20on%20the%20first%20Exchange%20server.%20The%20Exchange%20Administrator%20should%20also%20execute%20%3CSPAN%20class%3D%22command%20lightyellow%22%3ESETUP%20%2FPrepareAD%3C%2FSPAN%3E%20to%20ensure%20%3CACRONYM%20title%3D%22Role-Based%20Access%20Control%22%3ERBAC%3C%2FACRONYM%3E%20roles%20are%20updated%20correctly.%3C%2FP%3E%0A%3CP%3EExchange%20Server%202013%20Cumulative%20Update%2013%20does%20not%20include%20updates%20to%20Active%20Directory%2C%20but%20may%20add%20additional%20%3CACRONYM%20title%3D%22Role-Based%20Access%20Control%22%3ERBAC%3C%2FACRONYM%3E%20definitions%20to%20your%20existing%20configuration.%20%3CSPAN%20class%3D%22command%20lightyellow%22%3EPrepareAD%3C%2FSPAN%3E%20should%20be%20executed%20prior%20to%20upgrading%20any%20servers%20to%20CU13.%20PrepareAD%20will%20run%20automatically%20during%20the%20first%20server%20upgrade%20if%20Setup%20detects%20this%20is%20required%20and%20the%20logged%20on%20user%20has%20sufficient%20permission.%3C%2FP%3E%0A%3CH3%20id%3D%22toc-hId-877533522%22%20id%3D%22toc-hId-878341691%22%3EAdditional%20information%3C%2FH3%3E%0A%3CP%3EMicrosoft%20recommends%20all%20customers%20test%20the%20deployment%20of%20any%20update%20in%20their%20lab%20environment%20to%20determine%20the%20proper%20installation%20process%20for%20your%20production%20environment.%20For%20information%20on%20extending%20the%20schema%20and%20configuring%20Active%20Directory%2C%20please%20review%20the%20appropriate%20%3CA%20href%3D%22http%3A%2F%2Ftechnet.microsoft.com%2Flibrary%2Fbb125224(v%3Dexchg.150).aspx%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3ETechNet%3C%2FA%3E%20documentation.%3C%2FP%3E%0A%3CP%3EAlso%2C%20to%20prevent%20installation%20issues%20you%20should%20ensure%20that%20the%20Windows%20PowerShell%20Script%20Execution%20Policy%20is%20set%20to%20%E2%80%9C%3CSPAN%20class%3D%22property%22%3EUnrestricted%3C%2FSPAN%3E%E2%80%9D%20on%20the%20server%20being%20upgraded%20or%20installed.%20To%20verify%20the%20policy%20settings%2C%20run%20the%20%3CSPAN%20class%3D%22command%20lightyellow%22%3EGet-ExecutionPolicy%3C%2FSPAN%3E%20cmdlet%20from%20PowerShell%20on%20the%20machine%20being%20upgraded.%20If%20the%20policies%20are%20NOT%20set%20to%20Unrestricted%20you%20should%20use%20the%20resolution%20steps%20in%20KB981474%20to%20adjust%20the%20settings.%3C%2FP%3E%0A%3CDIV%20class%3D%22note%22%20style%3D%22margin-bottom%3A1em%20!important%3Bmargin-top%3A1em%20!important%22%3E%3CH4%20style%3D%22margin-bottom%3A10px%22%20id%3D%22toc-hId--1871136944%22%20id%3D%22toc-hId--1870328775%22%3EReminder%20for%20customers%20in%20hybrid%20deployments%3C%2FH4%3E%0A%3CP%20style%3D%22font-size%3A.9em%22%3ECustomers%20in%20hybrid%20deployments%20where%20Exchange%20is%20deployed%20on-premises%20and%20in%20the%20cloud%2C%20or%20who%20are%20using%20Exchange%20Online%20Archiving%20(EOA)%20with%20their%20on-premises%20Exchange%20deployment%20are%20required%20to%20deploy%20the%20most%20current%20(e.g.%2C%20CU13)%20or%20the%20prior%20(e.g.%2C%20CU12)%20Cumulative%20Update%20release.%3C%2FP%3E%3C%2FDIV%3E%0A%3CP%3EFor%20the%20latest%20information%20on%20Exchange%20Server%20and%20product%20announcements%2C%20please%20see%20%3CA%20href%3D%22https%3A%2F%2Ftechnet.microsoft.com%2Flibrary%2Fjj150540(v%3Dexchg.160).aspx%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EWhat's%20New%20in%20Exchange%20Server%202016%3C%2FA%3E%20and%20%3CA%20href%3D%22https%3A%2F%2Ftechnet.microsoft.com%2Flibrary%2Fjj150489(v%3Dexchg.160).aspx%22%20class%3D%22bold%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3EExchange%20Server%202016%20Release%20Notes%3C%2FA%3E.%20You%20can%20also%20find%20updated%20information%20on%20Exchange%20Server%202013%20in%20What%E2%80%99s%20New%20in%20Exchange%20Server%202013%2C%20Release%20Notes%20and%20product%20documentation%20available%20on%20TechNet.%3C%2FP%3E%0A%3CP%20class%3D%22note%22%3ENote%3A%20Documentation%20may%20not%20be%20fully%20available%20at%20the%20time%20this%20post%20was%20published.%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22author%22%3EExchange%20Team%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Microsoft

Today we are announcing the latest set of Cumulative Updates for Exchange Server 2016 and Exchange Server 2013. In addition to normal fixes to customer reported issues, these releases also include updated functionality. Exchange Server 2016 Cumulative Update 2 and Exchange Server 2013 Cumulative Update 13 are available on the Microsoft Download Center.

.Net 4.6.1 Support

Support for .Net 4.6.1 is now available for Exchange Server 2016 and 2013 with these updates. We fully support customers upgrading servers running 4.5.2 to 4.6.1 without removing Exchange. We recommend that customers apply Exchange Server 2016 Cumulative Update 2 or Exchange Server 2013 Cumulative Update 13 before upgrading .Net FrameWork. Servers should be placed in maintenance mode during the upgrade as you would do when applying a Cumulative Update. Support for .Net 4.6.1 requires the following post release fixes for .Net as well.

Note: .Net 4.6.1 installation replaces the existing 4.5.2 installation. If you attempt to roll back the .Net 4.6.1 update, you will need to install .Net 4.5.2 again.

AutoReseed support for BitLocker

Beginning with Exchange 2013 CU13 and Exchange 2016 CU2, the Disk Reclaimer function within AutoReseed supports BitLocker. By default, this feature is disabled. For more information on how to enable this functionality, please see Enabling BitLocker on Exchange Servers.

SHA-2 support for self-signed certificates

The New-ExchangeCertificate cmdlet has been updated to produce a SHA-2 certificate for all self-signed certificates created by Exchange. Creating a SHA-2 certificate is the default behaviour for the cmdlet. Existing certificates will not automatically be regenerated but newly installed servers will receive SHA-2 certificates by default. Customers may opt to replace existing non-SHA2 certificates generated by previous releases as they see fit.

Migration to Modern Public Folders resolved

The issue reported in KB3161916 has been resolved.

Change to Get-ExchangeServer cmdlet

The Get-ExchangeServer cmdlet has been updated in Exchange Server 2016 Cumulative Update 2 to reflect the Exchange 2016 ServerRole definitions; Mailbox or Edge. Due to the way Remote PowerShell (RPS) works, the ServerRole definition output will be based upon the version hosting the RPS session, e.g. CU2 endpoints will report CU2 ServerRole definitions for all servers in the org. Customers should use the properties assigned to a particular service on the Exchange Server object to determine capabilities of a server, if needed. For instance, customers with scripts relying upon ServerRole Output looking for ClientAccess to be installed will need to look for the IsClientAccessServer property in the cmdlet output instead. An example follows:

[PS] C:\Windows\system32>$MyServer = Get-ExchangeServer EXHV-9895

[PS] C:\Windows\system32>$MyServer.ServerRole

Mailbox

[PS] C:\Windows\system32>$MyServer.IsClientAccessServer

True

[PS] C:\Windows\system32>

Installing from a mounted ISO displays English UI only

We are aware that customers who mount the ISO image and install Exchange from the mapped drive will not receive a local language setup experience. For customers who desire a local language setup experience, the workaround is to copy the files from the mounted ISO to a local OS drive and execute Setup from the local OS drive instead of the mounted ISO. We are working to resolve this in a future cumulative update.

Release details

KB articles which contain greater depth on what each release includes are available as follows:

Exchange Server 2016 Cumulative Update 2 does include updates to Active Directory Schema. These updates will apply automatically during setup if the permissions and Active Directory requirements are met during installation. If the Exchange Administrator lacks permissions to update Active Directory Schema, a Schema Admin should execute SETUP /PrepareSchema before installing Cumulative Update 2 on the first Exchange server. The Exchange Administrator should also execute SETUP /PrepareAD to ensure RBAC roles are updated correctly.

Exchange Server 2013 Cumulative Update 13 does not include updates to Active Directory, but may add additional RBAC definitions to your existing configuration. PrepareAD should be executed prior to upgrading any servers to CU13. PrepareAD will run automatically during the first server upgrade if Setup detects this is required and the logged on user has sufficient permission.

Additional information

Microsoft recommends all customers test the deployment of any update in their lab environment to determine the proper installation process for your production environment. For information on extending the schema and configuring Active Directory, please review the appropriate TechNet documentation.

Also, to prevent installation issues you should ensure that the Windows PowerShell Script Execution Policy is set to “Unrestricted” on the server being upgraded or installed. To verify the policy settings, run the Get-ExecutionPolicy cmdlet from PowerShell on the machine being upgraded. If the policies are NOT set to Unrestricted you should use the resolution steps in KB981474 to adjust the settings.

Reminder for customers in hybrid deployments

Customers in hybrid deployments where Exchange is deployed on-premises and in the cloud, or who are using Exchange Online Archiving (EOA) with their on-premises Exchange deployment are required to deploy the most current (e.g., CU13) or the prior (e.g., CU12) Cumulative Update release.

For the latest information on Exchange Server and product announcements, please see What's New in Exchange Server 2016 and Exchange Server 2016 Release Notes. You can also find updated information on Exchange Server 2013 in What’s New in Exchange Server 2013, Release Notes and product documentation available on TechNet.

Note: Documentation may not be fully available at the time this post was published.

Exchange Team

96 Comments
Not applicable
This is great news, Thanks.

Does Microsoft plan on ever releasing another Help (.chm) file for Exchange 2013 and 2016 ? The last one was released a very long time ago and the page has now mysteriously disappeared. (

http://www.microsoft.com/en-us/download/details.aspx?id=35395 ). Is it really that difficult to make these available for those of us who use them ?

Not applicable
So much stuff this time .

regarding below

Reminder for customers in hybrid deployments

****Customers in hybrid deployments where Exchange is deployed on-premises and in the cloud, or who are using Exchange Online Archiving (EOA) with their on-premises Exchange deployment are required to deploy the most current (e.g., CU13) or the prior (e.g., CU12) Cumulative Update release.****

Do you mean CU12 and CU13 are mandatory for any Hybrid (Exchange 2013) Deployment? So if a customer is on Exchange 2013 CU10 they must be at least CU12, right?

Not applicable
Yes, an E2013 customer must be on CU12 or CU13 for support in a hybrid deployment. Likewise, an E2016 customer must be on CU1 or CU2.
Not applicable
Link doesn't work for Exchange 2013 CU 13 if you click on the KB link. Does work for 2016 CU 2 though.
Not applicable
As noted in these update articles:

Documentation may not be fully available at the time this post was published.

Not applicable
Excellent work on resolving the PF issue, Now I can get those stalled migrations moving.
Not applicable
Great set of updates. Any word on if this includes the passive index rebuilding Greg Taylor mentions in his Mechanics videos? Where network utilization was to be dropped by 40%?
Not applicable
No, CU2 does not include this feature.
Not applicable
Awesome. Greg mentioned on Yammer that hopefully it will ship in CU3.
Not applicable
Gareth, we are completely committed to shipping this feature when it is ready. We simply need to ensure that we work out any unexpected issues. Things are looking very good for Cumulative Update 3 at the moment.
Not applicable
Great news. Looking forward to testing that feature.
Not applicable
2013 KB link appears to be broken.

Exchange Server 2013 Cumulative Update 13 (KB3135743)

https://support.microsoft.com/en-us/kb/3135743

Not applicable
Hello

How bout Exchange 2010 updates are covered here https://blogs.technet.microsoft.com/rmilne/2016/06/17/exchange-2010-sp3-ru14-released/

thank you

Not applicable
I wonder what percentage of the user base this even affects. It addresses people who installed Oracle products on their Exchange boxes.
Not applicable
I understand Oracle binaries are baked-in to OWA on Exchange 2007 [web-ready document viewing] - so installing UR20 should be considered to fix the security vulnerability.
Not applicable
Also Oracle libraries are baked-in to Exchange 2010 - see https://technet.microsoft.com/en-us/library/security/ms12-058.aspx - so install UR14 to cover this vulnerability
Not applicable
The Outside-In binaries from Oracle affect all currently supported versions of Exchange. Last week we shipped security updates for all products as part of the patch Tuesday release. We do not consider security releases to be bound by our quarterly release schedule which is why they are not called out in this blog announcement. Customer who move to Exchange Server 2016 Cumulative Update 2 or Exchange Server 2013 Cumulative Update 13 do not need to apply the updates released last week if they move to the Cumulative Updates released this week. All customers should choose a deployment path that allows them to address the security vulnerability in the Oracle products included with Exchange Server.
Not applicable
Also, don't forget to read Ross' article, DAG Activation Preference Behavior Change in Exchange Server 2016 CU2. https://blogs.technet.microsoft.com/exchange/2016/06/16/dag-activation-preference-behavior-change-in-exchange-server-2016-cu2/
Not applicable
Thanks both !

Good catch, technically that article from Ross at least could have a link on this CU release news - just my two cents :)

Not applicable
Should we need to apply cumulative update 1 ( https://www.microsoft.com/en-us/download/details.aspx?id=51497) before applying CU2 for Exchange server 2016?
Not applicable
Hi,

That's not necessary, because these are CUMULATIVE updates.

Sebastian

Not applicable
Cumulative Updates are cumulative, meaning that they include all changes introduced in prior updates. You do not need to apply CU1 in order to install CU2.
Not applicable
@sime3000 - The CHM file technology has been deprecated by Microsoft. We have no plans to produce further versions of this file. All product help documentation has been transferred to TechNet or is exposed in place within the product, e.g. Outlook on the Web or Exchange Admin Center.
Not applicable
Thanks Brent. So if we're at 40,000 ft on a long flight working with no Internet access or we're at one of our client sites where the Exchange servers have no Internet access and we need to get quick access to a TechNet Exchange subject or we need to get the syntax of a cryptic shell command, how would you suggest that we get that information without the use of a complied help file ?
Not applicable
CHM technology is deprecated and no longer produced for the Exchange Server products. Might I suggest if you find yourself at 40,000 feet (well above normal commercial flight limits BTW) you sit back and enjoy the in-flight entertainment, your favorite refreshment or just take a nap as an alternative. We are not going to produce an offline version of Exchange documentation for this or any other purpose.
Not applicable
@sime3000 It looks like there is a tool that you can use to make an offline copy of the Technet articles. It's called "Package This" and more info is at http://www.itworld.com/article/2769712/networking-hardware/how-to-download-the-entire-microsoft-technet-library-and-take-it-on-the-road.html.

But otherwise, I'd say if you're at 40,000 feet on a flight, you won't be working on an Exchange server. And if you are, you already have internet access. :) There's also the help command. For instance, "help get-mailbox" will give you an output of the syntax for the cmdlet. "get-help get-mailbox" gives you even more detailed syntax.

Not applicable
For me personally I will use the plane's wifi. If at a site without internet access I turn on internet sharing with my phone.

If I don't have access to TechNet and need the latest PowerShell syntax I first run the Update-Help cmdlet. Then I can use the Get-Help cmdlet. For example, "Get-Help Get-Mailbox". Or "Get-Help Get-Mailbox -Examples" works wonders as well.

Tab-completion also helps when remembering those cmdlets and parameters.

Hope this helps. :)

Not applicable
Not really. The question was specifically for Brent Alinger [MSFT] .
Not applicable
Hello Brent Alinger [MSFT]

Your condescending response is noted. It’s a common reaction I see from Microsoft reps at all levels when they can't handle a question. I'm reminded of The Emperor's New Clothes.

I've posted this simple CHM question several times in this blog. No one could be bothered to address it until now and when I posted the location of the last Exchange CHM file ( http://www.microsoft.com/en-us/download/details.aspx?id=35395 ) a while back, no one responded again but it magically disappeared. Nice.

You didn't answer my question re offline access to Exchange TechNet documentation (regardless of altitude), so I will take your condescending response to mean - "I don't know and I really don't care"

Not applicable
Brent Alinger [MSFT]

Hmmm. No Reply function under your June 24, 2016 at 9:07 am post.

"We absolutely care about our community" Is a nice sentiment however ...

I posted a simple query in this blog re the CHM file in February 2014 but no one from your group could be bothered to respond

https://blogs.technet.microsoft.com/exchange/2014/02/25/released-exchange-server-2013-service-pack-1/ . That might tend to indicate that your group really doesn't care.

I posted a simple query in this blog re the CHM file in September 2015 but no one from your group could be bothered to respond

https://blogs.technet.microsoft.com/exchange/2015/09/15/released-september-2015-quarterly-exchange-updates/ . That might tend to indicate that your group really doesn't care.

I posted a simple query in this blog re the CHM file in December 2015 but no one from your group could be bothered to respond

https://blogs.technet.microsoft.com/exchange/2015/12/15/released-december-2015-quarterly-exchange-updates/ . That might tend to indicate that your group really doesn't care.

I posted a simple query in this blog re the CHM file in March 2016 but no one from your group could be bothered to respond

https://blogs.technet.microsoft.com/exchange/2016/03/15/released-march-2016-quarterly-exchange-updates/ . That might tend to indicate that your group really doesn't care.

I posted a simple query re the CHM file in this particular June 2016 thread but I received what to me was an obviously condescending response advising how you thought I should spend my time while on a commercial airliner. That might tend to indicate that your group really doesn't care.

I posted a simple query in this particular June 2016 thread asking if Microsoft had a suggestion for an alternative to the CHM file for doing work offline. I didn't get a response to that specific question either from Microsoft. That might tend to indicate that your group really doesn't care.

Repeatedly posting this simple query and not getting a response after two+ years, other than a condescending one, has been a complete waste of my time. This definitely tells me that your group really does not care regardless of the nice sentiment.

Not applicable
This still works for saving TechNet sections into a .CHM file. Is it so hard to make it yourself if you insist on being stuck in the past?

http://packagethis.codeplex.com/

Not applicable
sime3000 - My failed attempt at humor was not intended to be condescending. My apologies if you interpret it otherwise. As to your no clothes comment, your view of the situation is not accurate from my point of view. We absolutely care about our community. As I indicated, the underlying CHM technology has been deprecated and is no longer supported. This is not an Exchange only position and should not be news to anyone using Microsoft products. Our plan is to provide support content online via TechNet and in product for OWA/EAC only. That statement should be clear that there is no plan to make this available in any other form. I believe this statement answers your question as to how this content is to be consumed now and in the future.
Not applicable
I missed the "Additional Information" about changing the Execution Policy on the March 2016 updates, but this was not a recommendation on the December 2015 updates as far as I can see, is this just for Exchange 2016 or all versions? also is the Recommendation post update to reset to "RemoteSigned"? ...Is there another reason this has been added that your not telling us about?
Not applicable
This applies to all versions.
Not applicable
What about support for PowerShell v5?
Not applicable
Does this fix the Edge valid recipient bug; https://support.microsoft.com/en-gb/kb/3152396 ?
Not applicable
This seems to be a pretty important bug fix for anyone running call ahead, did it make this release or is there an expected release that will include it?
Not applicable
Yes it does. Funny this doesn't get mentioned anywhere. ;)
Not applicable
According to Premiere, this bug was actually fixed in CU2. So apparently, the issue is that the CU2 release notes don't document this as being one of the items that were fixed. I have not tested to confirm that it is, in fact, fixed yet.
Not applicable
The recently updated Supportability Matrix at https://technet.microsoft.com/en-us/library/ff728623(v=exchg.150).aspx appears to indicate that Exchange 2013 RU13 does not support .NET Framework 4.6.1 while Exchange 2016 CU1/RTM does support it. That's incorrect, is it not ?
Not applicable
When evaluating .NET Framework 4.6.1 with E2016CU2 and Win2012 R2, KB3146715 displays a disclaimer about "PRE-RELEASE SOFTWARE":

MICROSOFT PRE-RELEASE SOFTWARE LICENSE TERMS

MICROSOFT .NET FRAMEWORK PRE-RELEASE

These license terms are an agreement between Microsoft Corporation [...]

Is that a mistake or this cumulative hotfix is really a pre-release ? looks like the .NET Framework 4.6.2 Preview somehow. Can we install or is there a misleading link in the KB article ?

Not applicable
Seems like a bug in the KB. Thanks for pointing this out we will follow-up with the .Net team. 4.6.2 is not yet supported against any version of Exchange. 4.6.1 is as high as we go currently.
Not applicable
As stated above, CU13 for E2013 supports .Net 4.6.1 (plus hotfix). The TechNet article will be corrected in the future.
Not applicable
Ross Smith IV

I assume that your comment is in response to my June 22, 2016 at 7:46 am post.

It appears that after my post some changes were made to the https://technet.microsoft.com/en-us/library/ff728623(v=exchg.150).aspx article to try and correct the misinformation but the .NET information in that article is still wrong...

Not applicable
I also see that Update Rollup 14 for Exchange Server 2010 SP3 was also released. I know it's a small update but it should also be posted here so we know. :)
Not applicable
In what was a terrifying moment on step 16 (finalizing setup), the DepedentAssemblyGenerator.exe crashed and left the setup incomplete. Luckily running setup again detected the incomplete previous setup and was able to successfully complete it, but man that was scary. I copied what was presented in case anyone wants it, and also submitted a crash report to Microsoft.

Error:

The following error was generated when "$error.Clear();

$dependentAssemblyGeneratorExePath = [System.IO.Path]::Combine($RoleInstallPath, "bin", "DependentAssemblyGenerator.exe");

$exchangeBinPath = [System.IO.Path]::Combine($RoleInstallPath, "bin");

$clientAccessPath = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess");

$sharedWebConfig = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess", "SharedWebConfig.config");

$a = &"$dependentAssemblyGeneratorExePath" -exchangePath "$exchangeBinPath" -exchangePath "$clientAccessPath" -configFile "$sharedWebConfig";

$a | % { if ($_.Length > 0) { Write-ExchangeSetupLog -Info "$_.ToString()" } }

Start-SetupProcess -Name "iisreset" -Args "/timeout:120"

" was run: "System.Management.Automation.RemoteException".

Error:

The following error was generated when "$error.Clear();

$dependentAssemblyGeneratorExePath = [System.IO.Path]::Combine($RoleInstallPath, "bin", "DependentAssemblyGenerator.exe");

$exchangeBinPath = [System.IO.Path]::Combine($RoleInstallPath, "bin");

$clientAccessPath = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess");

$sharedWebConfig = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess", "SharedWebConfig.config");

$a = &"$dependentAssemblyGeneratorExePath" -exchangePath "$exchangeBinPath" -exchangePath "$clientAccessPath" -configFile "$sharedWebConfig";

$a | % { if ($_.Length > 0) { Write-ExchangeSetupLog -Info "$_.ToString()" } }

Start-SetupProcess -Name "iisreset" -Args "/timeout:120"

" was run: "System.Management.Automation.RemoteException: Unhandled Exception:".

Error:

The following error was generated when "$error.Clear();

$dependentAssemblyGeneratorExePath = [System.IO.Path]::Combine($RoleInstallPath, "bin", "DependentAssemblyGenerator.exe");

$exchangeBinPath = [System.IO.Path]::Combine($RoleInstallPath, "bin");

$clientAccessPath = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess");

$sharedWebConfig = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess", "SharedWebConfig.config");

$a = &"$dependentAssemblyGeneratorExePath" -exchangePath "$exchangeBinPath" -exchangePath "$clientAccessPath" -configFile "$sharedWebConfig";

$a | % { if ($_.Length > 0) { Write-ExchangeSetupLog -Info "$_.ToString()" } }

Start-SetupProcess -Name "iisreset" -Args "/timeout:120"

" was run: "System.Management.Automation.RemoteException: ".

Error:

The following error was generated when "$error.Clear();

$dependentAssemblyGeneratorExePath = [System.IO.Path]::Combine($RoleInstallPath, "bin", "DependentAssemblyGenerator.exe");

$exchangeBinPath = [System.IO.Path]::Combine($RoleInstallPath, "bin");

$clientAccessPath = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess");

$sharedWebConfig = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess", "SharedWebConfig.config");

$a = &"$dependentAssemblyGeneratorExePath" -exchangePath "$exchangeBinPath" -exchangePath "$clientAccessPath" -configFile "$sharedWebConfig";

$a | % { if ($_.Length > 0) { Write-ExchangeSetupLog -Info "$_.ToString()" } }

Start-SetupProcess -Name "iisreset" -Args "/timeout:120"

" was run: "System.Management.Automation.RemoteException: System.UnauthorizedAccessException: Access to the path 'C:\Program Files\Microsoft\Exchange Server\V15\ClientAccess\SharedWebConfig.config' is denied.

at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)

at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)

at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)

at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share)

at System.Xml.XmlDocument.Save(String filename)

at Microsoft.Exchange.Management.DependentAssemblyGenerator.UpdateConfigFile(String configFilePath, IList`1 exchangeAssemblies, Int32& numAssembliesAdded)

at Microsoft.Exchange.Management.DependentAssemblyGenerator.Main(String[] args)".

Error:

The following error was generated when "$error.Clear();

$dependentAssemblyGeneratorExePath = [System.IO.Path]::Combine($RoleInstallPath, "bin", "DependentAssemblyGenerator.exe");

$exchangeBinPath = [System.IO.Path]::Combine($RoleInstallPath, "bin");

$clientAccessPath = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess");

$sharedWebConfig = [System.IO.Path]::Combine($RoleInstallPath, "ClientAccess", "SharedWebConfig.config");

$a = &"$dependentAssemblyGeneratorExePath" -exchangePath "$exchangeBinPath" -exchangePath "$clientAccessPath" -configFile "$sharedWebConfig";

$a | % { if ($_.Length > 0) { Write-ExchangeSetupLog -Info "$_.ToString()" } }

Start-SetupProcess -Name "iisreset" -Args "/timeout:120"

" was run: "System.Management.Automation.RemoteException:

".

Not applicable
Now that .NET 4.6 is on the supported list, is there any word on support for WMF5 / PowerShell 5 in Exchange? It'd be really nice to be able to standardise to that across the environment.
Not applicable
David, we are not going to support installing WMF packages that bring newer WMF versions down to older OS versions with Exchange server. Our plan is to only support the version of WMF which is installed natively with the OS. Interop of these versions will be supported if Exchange is deployed on different OS versions, but there is no plan to support standardization on WMF versions across different OS versions.
Not applicable
That's a bit sad to hear, since PowerShell v5 has brought many useful additions (thinking abut extracting archives for pointing one simple but helpful feature). It's in daily use where you realize when going back to pre-v5 PowerShell what you are missing.
Not applicable
Hello Exchange Team,

Why are some redirection functions apparently not working in the Exchange Management shell ? e.g. in Exchange 2013 CU13 if you run "Get-MailPublicFolder 3> output.txt" to redirect warning messages to a text file, any warning messages will be visible on the screen but the output file will be empty.