User Profile
msExchangeDude
MicrosoftJoined Apr 23, 2019
User Widgets
Recent Discussions
Re: 401 Unauthorized
are you creating alot of new ps sessions or just a few? is exchangeserver1 a servername or is that an A record for a load balancer? are you on a terminal server that gets rebooted / logged out of often or are you connecting to a stale terminal server connection? Some of my initial thoughts.1.9KViews0likes1CommentRe: Should I expect AWS to respect Azure Information Protection (AIP) protected e-mails?
per your description of the issue, i would point to the display driver in use on the virtual machine and how the desktop is rendered as this may be a dependency for teams' ability to black out certain windows.2.3KViews0likes0CommentsRe: Should I expect AWS to respect Azure Information Protection (AIP) protected e-mails?
Joe Cistaro can you describe what is an AWS session? are you referring to the Amazon Chime application? The screen blocking is a function of the screen sharing application versus a function of the email. So while Teams may respect the information protection of emails, it sounds like you may be using an amazon product for your screen sharing which may not.2.4KViews0likes4CommentsRe: Email Address Policy
genkitkl in my tests you are correct, an account with peter and no last name but an EAP of first.last will default to peter@contoso.com as for users with no name, I didn't have a chance to test that out but it may default to userprincipalname. Do you believe you will have many users being created without name fields entered? input data validation is typically handled by an identity management team and software such as MIM: https://docs.microsoft.com/en-us/microsoft-identity-manager/ have a good day!766Views0likes0CommentsRe: Last Error Message deferred by categorizer agent
hello, how many exchange servers do you have in your environment? do you have shadow redundancy enabled (safetynet) ? (get-transportconfig | fl shadow*) can you test service health on the exchange transport server? test-servicehealth -server myEXCHSERVER0115KViews0likes3CommentsRe: Office 365 \ Exchange 2010 Hybrid upgrade
Johan Pauly - hi Johan. What are the mx records pointed to for each domain? (onprem or o365?) How many users need to be migrated to domain2.com? Also can you confirm you are using 2 separate o365 tenants or is this a single tenant with multiple domains? I believe if it is a low number, the best method would be to create empty mailboxes for them in o365, cutover the mx records, and wait for mailflow to go to their o365 accounts (TTL 1hr?) Then simply export the mailboxes to pst and perform a network upload to their corresponding mailboxes manually. This may not be viable if your user count is in the thousands, but for a small to midsize org it should avoid the complexities of connecting your onprem exchange organization to more than one o365 tenant.909Views0likes0CommentsRe: Exchange OnPremises mailflow issue ( Remote(ConnectionReset) )
env296 out of curiosity, are you using port 25 on the WAN ip of the 4g devices? Or do you establish VPN tunnels first and then tunnel the SMTP traffic? I would think a VPN tunnel would help you to bypass any port filters that might be imposed by the 4g cellular carriers.4.4KViews0likes1CommentRe: Difference between Usermailbox vs Office365 mailbox - Exchange Hybrid
like they mentioned, the mailuser object is created so that on-prem knows to put that object in the GAL for on-prem users and knows that it can accept mail for that address and forward it along to EOP to deliver it to O365.29KViews0likes2CommentsRe: Installing a pre-existing wildcard SSL certificate on Exchange 2013
Shaun Jennings -- Greg is right, you will need to go back to your server team to get the private key format of the certificate. A pfx or p12 format certificate is a bundled format certificate that includes the private and public keys (the private requiring a password to import).9.7KViews1like1CommentRe: How to Exchange can running on DC and DR ?
Tien Ngo Thanh the numbers in the 2:2 ratio mean 2 servers in one site, 2 in another, so really you just want a 4 node dag all in same site (4:0 DAG). In this case, you would only need the one FSW, he just helps break ties between even votes.2.1KViews0likes1CommentRe: Installing a pre-existing wildcard SSL certificate on Exchange 2013
Hey shaun, absolutely you can import wildcard certs on your exchange boxes without initiating a request, but without the request you will need the password for the pfx format cert. This script is written for Exchange 2010 so others viewing this may need to tweak the get-exchangeserver line, but otherwise this should get you to where you are going. Without the pending request, you will just need to know the password for the file, which you can supply in the script below. Script will -prompts you for the password -grabs all your cas servers (for ex 2010, on newer versions you may need all exchange servers) -imports the cert on each server -enables services on each server Best of luck! ######### #script begin <# .NOTES be sure to set the $servers variable as well as the full filepath to the pfx file on the server from where you are running the command #> $password = (get-credential).password $servers= get-exchangeserver|?{$_.serverrole -like "*clientaccess*"} foreach($server in $servers){ write-host "importing cert on $($server.name)..." -f yellow #import cert request $installed= Import-ExchangeCertificate -server $server.fqdn -FileData ([Byte[]]$(Get-Content -Path C:\Users\Admin\Desktop\Wildcard\contoso.com.pfx -Encoding byte -ReadCount 0)) -Password:$password -confirm:$false #enable services Enable-ExchangeCertificate -server $server.name -Thumbprint $installed.thumbprint -service iis,SMTP -confirm:$false } #close foreach server9.7KViews1like4CommentsRe: Windows can not access \\mainserver\userdata\administrator\desktop
Can you navigate to program files /exchange server/ scripts/ remotepowershell .ps1? Should let you initialize a session via the nearest exchange CAS. if that is your only exchange box, perhaps the local profile is corrupted. Was this server recently changed to another domain or had its local admin account renamed? Best of luck Josh963Views0likes0CommentsRe: Archive a 55GB Mailbox
Glad to hear it worked for you. If you are doing one year at a time, keep in mind the 12:00am default time on a date. So your content filter should be something like Sent -GT "01/01/2015" and Sent -LT "01/01/2016" If you set it to 12/31/2015, it will miss emails sent on 12/31. Good luck with your breakout!2.4KViews0likes0CommentsRe: How to Exchange can running on DC and DR ?
Tien Ngo Thanh What does DC and DR stand for? are those the names of your Active Directory Sites? It sounds like you want to run a simple 2:2 DAG which is perfectly acceptable, just remember that with an even number of nodes in the cluster, you will be using a file share witness to hold Quorum. Best of Luck!2.1KViews0likes3CommentsRe: Archive a 55GB Mailbox
TravisLaira Hello Travis. One method that I have used in the past to break up a large PST is to use a contentFilter to export only a few weeks or months at a time. For example look at the creation date on the mailbox get-mailbox myArchiveMailbox | fl *creat* or use best guess for how far back the mail data goes. then create mailboxexportRequests for each New-MailboxExportRequest -Mailbox myArchiveMailbox -ContentFilter {(Sent -gt "05/01/2019") -AND (Sent -lt "05/10/2019")} -filepath "\\myFileServer01\d$\breakout01.pst" -batchname "myArchiveBreakout" -baditemlimit 500 -acceptLargeDataLoss this would create a mailboxexport to breakout01.pst on fileserver myFileServer01, d: drive. for all mail sent from may 1st to may 10 (at 12:00am). without a time specified, it will equal 12:00am. I have used this method in the past to do exactly what you are asking, without 3rd party tools. You hopefully do not need to create too many of these but if you do, let me know and I can help you script out the creation of several hundreds of these (i.e. every 2 weeks for a 2 year process). Finally, with several dozen exports queued up, you can check the status with: get-mailboxexportRequest -batchname "myArchiveBreakout" and get-mailboxexportRequest -batchname "myArchiveBreakout" | get-mailboxexportRequestStatistics Best of Luck!2.6KViews0likes3CommentsRe: room-mailbox exchange online
gduchateau2020 hello gduchateau and congrats on your decision to go o365! In the on-prem environment, can you check if there is still an object for the mailbox that was moved? It sounds like after the migration, the mailuser object for the room mailbox may not have been created successfully. Consider creating a mailUser object in your onprem environment and setting a targetAddress property to match the room mailbox SMTP address. This should allow it to show in the onprem GAL for non migrated users. Good luck!1.4KViews0likes0CommentsRe: Move Offline AddressBook in Exchange 2013
Harpreet_Singh your oab is generated by an arbitration (system) mailbox. Get-Mailbox -Arbitration | where {$_.PersistedCapabilities -like "*oab*"} | ft name,database use this information to move the oab generating mailbox to the desired server (by moving it to a database mounted on the desired server).1KViews0likes0CommentsRe: How to shutdown all server exchange in site DC that not effect DAG
hello tien. what version of exchange are you running? from what it sounds like, you will want to run something like stop-databaseavailabilitygroup DAG01 -activedirectorysite "DC01", which will put the DC01 site servers in the stopped servers list when you run "get-databaseavailabilitygroup DAG01". Then you run a restore-databaseavailabilitygroup DAG01 to reform the DAG with only the DC02 site servers in the dag. for more information, search for "exchange datacenter switchover"3.5KViews0likes1Comment
Recent Blog Articles
No content to show