Apr 20 2023 12:44 AM - edited Apr 20 2023 12:46 AM
I currently have a single Exchange 2016 server and planning to migrate to 365 by deploying an additional Hybrid server. Have a couple of questions with regards to Hybrid deployment and appreciate if anyone can shed some lights !
1. My current server has a Wildcard certificate with these SANs. Do I need a dedicated new certificate for the new Hybrid server or can I use the existing wildcard without any changes ?
SANS - *.abc.com , abc.com
2. Should I change any records to point to the new Hybrid server from the current mailbox server (autodiscover etc.. etc..) ? At which point should I change these? Just trying to make sure I follow the right steps to keep the mailflow running after executing the HCW.
Thank you all very much !
Apr 20 2023 05:07 AM
Apr 20 2023 04:43 PM
Apr 21 2023 01:03 AM - edited Apr 21 2023 01:05 AM
@Dan Snape,
Thanks for your response!.
A second server (dedicated for Hybrid) Is simply because the current server runs Windows Server 2012. Apparently the minimum supported Windows for Hybrid is 'Windows Server 2012 R2'. I just wanted to stay out of 'In-place upgrade' and a migration to a new server which takes even more effort.
Wildcard cert - Thanks for that Dan. Happy days then I can easily use the existing cert with no modifications to SANs given it covers the domain entirely.
Additional Question though - In terms of Autodiscover record, I should be able to leave it as is (continue to point to the current Mailbox server) and let the new server solely act as the Hybrid EndPoint for 365 connectivity, I suppose? should there be any DNS record level modifications o to point to the Hybrid Server in this scenario ?
Thank you so much again Dan !
Apr 27 2023 11:52 PM
May 01 2023 04:50 AM
>A second server (dedicated for Hybrid) Is simply because the current server runs Windows Server 2012.
>Apparently the minimum supported Windows for Hybrid is 'Windows Server 2012 R2'.
>I just wanted to stay out of 'In-place upgrade' and a migration to a new server which takes even more effort.
On what OS are you running Exchange 2016?
Supported OS are from 2008 R2 up to Windows Server 2022.
https://learn.microsoft.com/en-us/exchange/plan-and-deploy/system-requirements?view=exchserver-2016
The Problem would most likely be that the OS is running out of Support. The Extended Support for Windows Server 2012 R2 ends in October 2023.
https://learn.microsoft.com/en-us/lifecycle/products/windows-server-2012-r2
If you want to upgrade Exchange to a newer OS you will need to install a new Server with Exchange and make a Swing Migration from Exchange 2016 (with old OS) to Exchange 2016 (with new OS).
Don't be confused with "Hybrid Server" - such a Role does not exist. It's just a Configuration that applies to the whole Exchange Organization and makes sure Mailflow, Free/Busy and EWS Access (for Mailtips and Migration) are configured correctly.
Make sure you run a supported Version of AAD Connect
https://learn.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-version-history
And also make sure that all Servers have TLS1.2 enabled
Regards
Andres Bohren