Quantcast
Channel: Exchange Server 2010 forum
Viewing all 8820 articles
Browse latest View live

RBAC not working correctly?

November 29, 2012, 7:58 am
$
0
0

I am currently operating in a 2010/2003 co-existance mode. I have attempted to assign RBAC permissions to a test "help desk" user. I have assigned them to the default "help desk" group. The "help desk" built-in RBAC group has the following assigned roles:

Mail Recipient Creation
Mail Recipients
User Options
View-Only Recipients

When I am logged in with this user and access Exchange Management Console or the ECP, my test user account has full permissions. The user is able to dismount and mount mailboxes, create groups, modify Organization Management group. Pretty much do everything a full exchange admin would be able to do.

Any ideas on why the restrictions aren't working correctly?

Search

Transport rule to send Bcc to mailbox when sender is from particular external mail domain?

August 5, 2011, 1:34 am
$
0
0

Hi,

 

is there a way to create a transport rule to send Blind carbon copy (Bcc) of email when the sender is from particular external mail domain? (i.e.: when sender isuser@ext.domain.com, send Bcc to ext.domain@int.domain.com mailbox)

 

Thanks.

 

(I have created a rule to send Bcc to ext.domain@int.domain.com mailbox when the recipient's address contains "ext.domain.com", but I can't find the way to do this for ext.domain.com senders.)

MCSA, MCTS

Distribution Groups in Exchange 2010

November 29, 2012, 8:27 am
$
0
0

Hi,

Out of habit I created a new distribution group in Active Directory instead of Exchange. The group has replicated to all the DCs but does not appear in Exchange and if I do a search in Exchange it doesn't find anything? Do I just need to wait over night for this to appear?

Thanks for your help,

Lisa

Message Tracking in web managment interface

May 8, 2012, 6:24 am
$
0
0

I have problem with Message Tracking in web managment interface, its giving me the owa home page but after putting the username and password it gave me the following error msg,so I tried to open Role Based Access Control user editor under tools,but again same error appers !!    

Any hepl on this please..

Sorry! Access denied
The page may not be available or you might not have permission to open the page. Please contact your administrator for the required credentials. For new credentials to take effect, you have to close this window and log on again.

Do you run Exchange 2010 UM and use call answering rules?

November 22, 2010, 7:03 pm
$
0
0

Hi,

I'm looking for someone else who uses this. In our environment we see this behaviour:

1. Default rule setup, no call answering rules setup. Call phone, hear greeting, don't need to press a key, hear a beep, leave voice message ok.

2. Default rule setup plus one or more call answering rules. For example, a call answering rule of "press 6 to be diverted to this number". Include the option to press # and leave a voice message in the rule. Call phone, hear the options. There is no default of leave a voice message if no key is pressed and no beep is heard after the greeting. If you wait, you hear "are you still there?" and the options are repeated.

My question for you is, do you see the same behaviour for number 2 above, or does UM default to "# leave a message" and you get a beep without hitting a key?

Thanks,

Rob

Size of online archive in Exchange 2010 SP1

November 29, 2012, 10:06 am
$
0
0

I can't seem to find a way to display user mailbox sizes for the online archive.  When you look at a user in the EMC, it lists the mailbox size BUT I don't know how much of that is in the online archive VS. their regular mailbox.  How do I check this in powershell?

Thanks in advance.

Powershell Script to display OU, display name, mailbox size, total items and the smtp address

November 29, 2012, 7:02 am
$
0
0

Hello,

could someone assist me with a script that will run on the domain level that will display the OU where the user is, the mailbox size , total items and the smtp address for that user?  I am using Exchange 2010 Sp2

Thanks

Outlook/Exchange Recoverable Items Behavior

November 28, 2012, 9:22 pm
$
0
0

Greetings,

A customer asked why in Outlook 2010 on Exchange 2010 they see all recoverable items regardless of which folder they open recover deleted items with. Previously with Outlook 2007 and Exchange 2007 each folder could be selected to show that folders recoverable items. I tried to find some documentation describing changes to recoverable items from Outlook 2007 to Outlook 2010 for this feature but came up empty handed. I understand there were changes to Outlook 2010 as well as Dumpster 2.0 in Exchange 2010. There are several articles on Dumpster 2.0 but I can't find many on the mailbox structure for "Dumpster 1.0". Does anyone have any information they could reference to me?

Search

Calendar issue

November 21, 2012, 2:49 am
$
0
0

Hi,

In my organization we are using PST as default and selected calendar under PST as defualt too. But we have observed that all calendar entries can be seen on both (mailbox & PST) calender which causes mailbox getting full.

How we can avoid such scenario so only PST calender can keep meeting entries?

Plesae help...

Cheers

Khalifey

list mailboxes with changed mailbox size from default policy

November 28, 2012, 12:05 pm
$
0
0

Hi,

we have couple default mailbox size policies. One default policy is for 1gb mailbox size, another for 2gb. Recently our mail databases started increasing by couple gb per day. I think that other administrators are changing default mailbox size for users without approval. I need to track this. How could I list all mailboxes that have diferent mailbox size from it's default mailbox policy?

thank you,

Activesync Password recovery not working

November 29, 2012, 10:16 am
$
0
0

Hello all,

My environment: Exchange 2010 SP2 Rollup 2.

Mobile client: Samsung Galaxy S2 running Android 4 ICS

I created a test policy and check the box "Enable Password Recovery".

Problems that I have:

My Admin account  could not see the recovery password in the EMC\Manage Mobile Phone

Running the Shell command doesn't show the recovery password either.

Get-ActiveSyncDeviceStatistics -Mailbox:"alias" -ShowRecoveryPassword:$true

I login to Outlook Web APP using the test account and the "show recovery password" is greyed out.

Did it miss anything? Do I have to enable anything else? Does it work with Iphones/Istuffs?

Please help

Thanks.

Exchange server backup

November 13, 2012, 3:36 pm
$
0
0

I have installed exchange 2010 on windows server 2008 R2.But this is the client of domain controller how I will take the backup of exchange server 2010?

George

Anonymous relaying second IP address - best method to do this? Second NIC or second IP on first NIC?

June 15, 2011, 3:13 pm
$
0
0

Just wondering how others perform this task when setting up an anonymous relay connector using the powershell command to allow anonymous relaying (the most restricive of the two methods - ie not setting it as externally secured).

The two IP addresses need to be set on the same subnet (eg 192.168.0.1 and 192.168.0.2).  Problem is as follows:

  • If you give the server a second NIC with the new IP address this isn't best practice as both NICs will be on the same subnet.  if you disable netbios on the second NIC is this supported for an Exchange set up though?
  • Second option is to set a second IP address on the primary NIC.  This would result in two DNS entries for the CAS server in DNS though unless you disable automatic DNS registration on the NIC.

What method do people use to have two DNS aliases for Exchange?  MAIL points to the normal receive connector and RELAY will point to the relay connector.  Do people just set the externally secured option and not bother with the more restrictive method which requires you to link the IP address to a receive connector rather than leaving it at "Use all available IP addresses"?

http://technet.microsoft.com/en-us/library/aa996395.aspx

Edge or Hub ? whose rules are applied ?

November 27, 2012, 9:08 pm
$
0
0

hi,

continuing my exchange 2010 study and lab, i have another question

assume we want some people not to receive emails from outside,

so we go to hub transport servers and create a rule :

these people (AD Security group) cannot receive emails from outside organization and return them the message "hey you cannot"

and we have edge server in the organization.

some times passes and edgesync is done ! and the rule works and as far as i remember, when somebody sends email to those people, they will get that message

so it seems that it is the hub not the edge blocking them

here is my question ?

1-how it is done ? does edge receives all emails, forward them and then the hub blocks them ?

2-if so, two question :

2-1: so what does really edge is doing here ? just relaying the messages to hub ?

2-2: i did not find AD objects on edge (which is normal, cause it is not joined to domain) but can we manage edge to do that filtering ?


EMC Initialization failed error after changing user logon name

November 7, 2012, 12:26 am
$
0
0

I had to change the logon name of a helpdesk account that was used to manage Exchange 2010 mailboxes for management reasons and now it's getting errors when trying to log into the EMC.

Error is as follows

The following error occurred when retrieving user information for 'DOMAIN\username':

The operation couldn't be performed because 'UBD\username' couldn't be found.

Just to point our, our NetBIOS name does not have a '.' and I've tried to use disk cleanup in the mmc console and deleting the old user profile. Logging into another machine does not work. Removing the user from the Exchange management roles group and adding it back doesn't help either.

I've tested this with the Exchange admin account and get the same error.

I've tested the rename on a different Exchange org and it works after a logon name change so I suspect it has something to do with the config.

Search

Adding New Account to Outlook requires using "old" Exchange server

November 19, 2012, 1:23 am
$
0
0

Hi there,

Scenario:  One Exchange 2007 server and one 2010 Exchange server co-existing.  All mailboxes have been migrated off of 2007 to the 2010 server.

In some cases, when adding an account to Outlook, the only way to add the account is to initially use the 2007 server.  Using the 2010 server at this time responds with an immediate resolution error.

If I use the 2007 server, the account will be added, and when I go in a look at the account settings in Outlook, the 2010 server is now listed.  If I delete the account and re-add it, I can then use the 2010 server to add the account.

My question is:  If I de-commission the 2007 server and at some point someone comes across the above problem, what is the work-around?  I imagine that I could delete the user account, recreate it, and then attach the mailbox to this user account, but I'm hoping someone has some experience with this and has some ideas on the best way to deal with it.

Thanks in advance for your help.

Best,

Kim 

get disabled users whole mailbox not located in DB

November 29, 2012, 2:01 am
$
0
0

I am looking for a exchange command to get all users who are in OU Test1 but their mailboxes are not located in Mailbox database "Disabled user DB".

something like this i am thinking of:

[PS] C:\Windows\system32>Get-Mailbox -OrganizationalUnit"OU=DisableUsers,DC=abc,DC=com" | ?{$_.database -ne "Dis
abled Database 1"}

Exchange 2010 Restrict sending email to all staff

November 27, 2012, 2:29 pm
$
0
0
I need to restrict sending email to allstaff distriction group. Only few internal staff and couple of external cleints need to send email to the AllStaff DL.
I have added the internal users to the message delivery restrictions-> Only senders from this list. I created mail enabled contacts for external clients and added them to message delivery restrictions-> Only senders from this list.
Works okay for internal staff but doesn't work for external clients

Malli Boppe MCITP Enterprise Messaging Exchange 2010

transport rule does not work for non-existing addresses

November 29, 2012, 1:44 am
$
0
0

Hi all,

I'm trying to create transport rule for specific non-existing address (ex-employee) - I want to bounce the custom DSN back to the sender informing him the user is gone with email address he can contact intead.

But the transport rule seems to ignore non-existing address - or something is generating the standard 5.1.1 DSN before the rule can match the email.

As conditions, I've tried these (always only single condition):

- RecipientAddressMatchesPatterns = {^nonexisting@contoso.com$}
- RecipientAddressContainsWords = {nonexisting@contoso.com}
- SentTo = {nonexisting@contoso.com}

When I use in any of the conditions above some existing address, the rule does correctly work

How should I set the transport rule to work as expected?

Thanks!

R.*




DAG and Failover Cluster Manager issues

November 22, 2012, 5:44 am
$
0
0

Hi, 

My current configuration: 2 Exchange 2010 SP2 servers hosting MBX/CAS/HUB roles in two different sites (x.x.1.0 and x.x.3.0/24 subnets with VPN between them) configured in a DAG. They have a secondary connection through LogMeIn Hamachi which uses 25.0.0.0/8 IPv4 network and IPv6 network as well. Currently the Hamachi network (listed as 2 subnets - the IPv4 and IPv6 ones) is marked as Internal. The 1.0 and 3.0 networks are listed as Enabled. 

When Hamachi isn't working (sometimes the network adapters of Hamachi just block and stop trasmitting and receiving data) I think nothing's working at all (although they have the VPN connectivity and should be able to communicate over the other network). The radio button do not allow cluster communication on this network is not enabled anywhere.

When I check the resources...

1) the cluster name is Offline (normally, considering the rest of the list)

2) the 3.x address is Offline. When I try to bring it online it says: "The operation failed because either the specified cluster node is not the owner of the resource, or the node is not a possible owner of the resource." In the properties of this address both servers are listed and checked as possible owners and I tried to bring it online on both nodes. Same thing.

3) the 25.x.x.x address of one of the servers is there and listed as Failed. When I try to bring it online it says that it can't be brought online on any node. 

4) the 25.x.x.x address of the other server is not listed at all.

5) there's an IPv6 address listed there, which is not an address that I can recognize (it doesn't belong to any of the nodes), it's also listed as Failed. My guess is that this should be the Hamachi address of the other server, but why it is IPv6 and why it's not the same as what I see on the networks page under the Hamachi address of the server in question I don't know... When I try to bring it online it also says that it can't be brought online on any node.

6) the 1.x address is Failed. When I try to bring it online it says: "The cluster resource could not be brought online by the resource monitor."

So all of my resources are either Failed or Offline.

Despite all the mentioned issues, the DAG is working when Hamachi's working. The database is switched over successfully on restart of one of the nodes and continues to function on the second one. 

I want to make it's working even when Hamachi is down and I want to stop seeing all kinds of errors.

The File Share Witness is shown there as Online, but from time to time it also gives errors that is not accessible (when it is...).

Any ideas on any of the issues would be highly appreciated.

Thanks.




Viewing all 8820 articles
Browse latest View live
Search