Default frontend receive connector settings exchange 2013 hybrid edition?

Similar Messages

• FIXED - Exchange 2013 - Can I Recreate Default Frontend Receive Connector SAFELY?

  Hi
  I'm need of some urgent assistance please.
  I had a fully functional Exchange 2013 server and decided to create a receive connector for a photocopier/scanner to included its static IP  port number 25.
  I accidentally chose Hub Transport role and not FrontEndTransport role which appears to have messed up port 25 connectivity on mail coming in from the internet. When I stopped and restarted the Transport Service within services.msc I then got this error.
  Source: MSExchangeTransport
  Event ID: 1036
  Task Category: SmtpReceive
  Level: Error
  Description: Inbound direct trust authentication failed for certificate %1. The source IP address of the server that tried to authenticate to Microsoft Exchange is [%2]. Make sure EdgeSync is running
  properly.
  I proceeded to delete the offending Receive connector for the scanner/photocopier and restart the server,  the transport service started ok this time but still I cant receive mail from the outside world.
  My question: Can I delete the automatically created default Frontend "servername" connector which contains the proper settings then recreate it again with the same settings and NOT harm/delete all the users emails or the mailstore
  or anything bad for that matter?
  I have the details on how to create the connector but just wanted to check that's its ok to remove it and re-add it again now that everything was setup and running fine. I'm hoping the recreated Connector will fix what I broke.
  Appears what I have done has broken my connectivity to telnet to port 25 to the exchange server from the outside world although oddly I can telnet to the server from a command prompt on the exchange server (telnet "servername" 25) and
  getpresented with the exchange server responding. The tickbox for anonymous is ticked already. Port 25 already is forwarded from the firewall to the exchange server and was working fine till I made the error.
  Any help is greatly appreciated. Thankyou.

  OK so I found some more details online and decided to take the plunge (after a backup was taken) and my problem is now fixed. Although thank you to the 40 people that atleast looked at my query.
  This worked for me, please read, backup and decide yourself if you wish to follow my steps.
  1.  I Read this to understand more on how I broke it in the first place  :
  First section of this......
  https://exchangemaster.wordpress.com/tag/smtp/
  then
  http://support.microsoft.com/kb/2958036
  2.  Deleted the Default Frontend "servername" Receive connector
  3. Recreated it using these guidelines below. (I included them all for your ref). Source  https://social.technet.microsoft.com/Forums/exchange/en-US/32e13998-a84e-4f10-8557-3f7ce6fdb824/2013-default-receive-connectors:
  [PS] C:\>Get-ReceiveConnector | fl Name,AuthMechanism,RemoteIPRanges,TransportRole,permissiongroups,MaxMessageSize
  Name             : Default EX2013
  AuthMechanism    : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
  RemoteIPRanges   : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
  TransportRole    : HubTransport
  PermissionGroups : ExchangeUsers, ExchangeServers, ExchangeLegacyServers
  MaxMessageSize   : 35 MB (36,700,160 bytes)
  Name             : Client Proxy EX2013
  AuthMechanism    : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
  RemoteIPRanges   : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
  TransportRole    : HubTransport
  PermissionGroups : ExchangeUsers, ExchangeServers
  MaxMessageSize   : 35 MB (36,700,160 bytes)
  Name             : Default Frontend EX2013
  AuthMechanism    : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
  RemoteIPRanges   : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
  TransportRole    : FrontendTransport
  PermissionGroups : AnonymousUsers, ExchangeServers, ExchangeLegacyServers
  MaxMessageSize   : 36 MB (37,748,736 bytes)
  Name             : Outbound Proxy Frontend EX2013
  AuthMechanism    : Tls, Integrated, BasicAuth, BasicAuthRequireTLS, ExchangeServer
  RemoteIPRanges   : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
  TransportRole    : FrontendTransport
  PermissionGroups : AnonymousUsers, ExchangeServers
  MaxMessageSize   : 36 MB (37,748,736 bytes)
  Name             : Client Frontend EX2013
  AuthMechanism    : Tls, Integrated, BasicAuth, BasicAuthRequireTLS
  RemoteIPRanges   : {::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff, 0.0.0.0-255.255.255.255}
  TransportRole    : FrontendTransport
  PermissionGroups : ExchangeUsers
  MaxMessageSize   : 35 MB (36,700,160 bytes)
  4. Recreated the Receive connector for my photocopier/scanner but this time choose Frontend Transport role and Not the default Hubtransport. Restarted the server, crossed my fingers and everything worked!! (Apparently restarting both transport services
  is sufficient, but hey I just want to be sure it works from reboot in future.
  Exchange SP1 will break any custom receive connectors that you have made prior to installing the update (nor even warn you that you're about to create an addition hub transport connector on port 25  after the SP1 update, there should
  be only one hubtransport on port 25 as I understand it, its ok for Frontend transport) . The transport service will not start, so to save you the hassle of deleting your custom connector just run this command from an elevated exchange powershell command to
  change the custom connector from hubtransport to Frontend Transport then start the transport service. ( you may have to kill the Transport service .exe process in task manager, then start the transport services after this amendment from the services.msc panel)
  Set-ReceiveConnector –Identity "Your Receive connector name" –TransportRole FrontendTransport
  Alternatively, delete and re-create the receive connector and set its role to
  FrontendTransport and NOT HUBTRANSPORT !!!!!!!!!!!
  This issue occurs if there is a receive connector of Transport type
  HubTransport that has the binding set to port 25 on the affected Exchange 2013 server. On an Exchange 2013 server that has both back-end and front-end roles, only the
  FrontendTransport server-type receive connector should have the binding set to port 25.
  To fix this issue, run the following cmdlet to change the connector type from
  HubTransport to FrontendTransport:
  Source: http://www.msexchange.org/kbase/ExchangeServerTips/ExchangeServer2013/ManagementAdministration/exchange-server-2013-sp1-transport-service-stops-and-does-not-restart.html

• Exchange 2013 Hybrid Deployment, on-premise to multiple Office 365 tenants

  Hello, we are in the early stages of planning an Exchange 2013 hybrid deployment for a federation of education organisations.
  We are planning to use a single on-premise Exchange organisation for staff mailboxes across all member organisations, each member already has it's own Office 365 tenancy for students, which we would like to maintain if possible.
  My question is, is it possible (and supported) for an Exchange hybrid deployment with a single on-premise organisation with multiple Office 365 tenants, my understanding is that only a 1:1 deployment is supported, can somebody confirm or clarify this ?
  Thanks

  I think if you have different AD sites then you can install the DirSync or ADFS for each of them and have one way replication. I 'd aks this question to Office365 Forum and support.
  Where Technology Meets Talent

• Exchange 2013 Hybrid setup & DNS

  Greetings!  We currently have an Exchange 2010 on prem environment and I have been tasked with getting us into a hybrid state with O365.  We already have the tenet portions set up, AD Sync working, etc.  My initial thought was to just use
  our existing Exchange 2010 servers for the hybrid role, however, upon research it appears that standing up new Exchange 2013 servers specifically as hybrid servers is the suggested route.
  My main goal is to do this hybrid deployment with as little impact and change to our environment (and thus user impact) as possible.  From what I have read, I will have to change the autodiscover and ews records to point to the new Exchange 2013 servers. 
  Is it also the case that I will have to redirect OWA to the Exchange 2013 servers?  Is there any way to deploy Exchange 2013 hybrid servers in a way that I do not have to change owa, autodiscover, etc? 
  Thanks in advance!

  Hi Joe,
  Based on my knowledge, we didn't need to install Exchange 2013 to perform routing.
  We can just deploy an Exchange 2010-based Hybrid Deployments.
  Please make sure the Exchange 2010 upgrade to SP3.
  More details to see:
  Hybrid Deployments
  https://technet.microsoft.com/en-us/library/gg577584(v=exchg.141).aspx
  Thanks
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Mavis Huang
  TechNet Community Support

• Use Exchange 2010 Hybrid Edition for SMTP relay

  Thanks guys.
  hmmm.
  I did try and telnet on port 25 to the hybrid and get the welcome, when i enter the mail from command and enter a valid email address, i get "530 5.7.1 Client was not authenticated"
  I have exchange 2003 admin experiance and and learning my way around the 365 environment still
  

  Hi all,
  we recently moved our Exchange 2003 to Office 365 using a Hybrid Exchange 2010 to migrate the users.
  the migration is complete and we have kept the Exchange 2010 Hybrid Edition running to enable us to mail enable new AD users after the DirSync has synchronized the user to the tenant.
  has anyone used this limited version of Exchange as an smtp relay for network devices, copiers etc?
  This topic first appeared in the Spiceworks Community

• Can I configure cluster and DAG on exchange 2013 Stander edition

  Dears,
  I have plan to make High availability on (exchange 2013 cluster), with M.S Hyper -V 2012,
  is possible to do that with Exchange 2013 Stander edition or not ?
  Thansk in advanced,

  Hi,
  DAGs are available in both Exchange 2013 Standard and Exchange 2013 Enterprise. In addition, a DAG can contain a mix of servers running Exchange 2013 Standard and Exchange 2013 Enterprise.
  Each member of the DAG must also be running the same operating system. Exchange 2013 is supported on the Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2 operating systems. All members of a specific DAG must run the same operating
  system. Windows Server 2012 R2 is supported only for DAG members that are running Exchange 2013 Service Pack 1 or later.
  For more details about this, you can refer to the following article.
  http://technet.microsoft.com/en-gb/library/dd638104(v=exchg.150).aspx
  Best regards,
  Belinda
  Belinda Ma
  TechNet Community Support

• Exchange 2013 Frontend Receive Connector - cannot telnet port 25

  Hello There,
  I’m going to proceed with migration form exchange 2007 to 2013 but just encounter problem.
  I can telnet port 25 form new Exchange 2013 server but cannot telnet it form any other computer within LAN. 
  We have notice it when I was changing SMTP banner to match RevDNS. If I change Receive Connector to role Hub Transport it is responding on telnet 25 from other servers.
  But correct is to set it up as Frontend Transport.
  There is no AV and Friewall is disable. I can telnet prots form hubtransport role receive connectors.
  Fresh installation and server is fully updated. Please help. 
  Maciej

  multi-role CAS + MBX
  on ESXi 5.1
  I found some topics that this could be related to problem with Network card E1000E and Exchange 2013 
  I did experience vmware host crash during EX2013 installation. But after restart Installation took off when its left and as far as i could tell everything else is working fine. 
  I also used wiershark to check negotiation and it looks like 25 is listening and even establishing conneciton but no baner and disconneciting couple of secconds after it is established. 
  It is 4AM so I hope Im writing it clear :)
  Thanks

• Exchange 2013 Hybrid Deployment issues.

  Hello.
  i have an issue when configuring Exchange hybrid deployment in my environment.
  when i complete the Exchange hybrid wizard and OAuth is finished our exchange environment will not receive emails from the "internet" as in senders outside the company.
  mail will can be sent out and will flow between internal users.
  when i check the message trace on 365 the emails were failing with the following error.
  Users were also getting a bounce back saying 
  Diagnostic-Code: smtp;550 5.4.1 [[email protected]]: Recipient address rejected: Access denied
  i wondered if it had anything to do with the MX record on our public DNS, i changed this to the one recommended by O365 domain DNS assistant, but this made no odds,
  it looks like it could be a receive connector issue however i am new to exchange so i am still learning.
  the only way to fix the issue was to run Remove-Hybridconfiguration on the Exchange 2013 server, when this finished and few moments had passed mail began being received from the internal again.
  Any Suggestions on what could be caused 
  many thanks

  Hello.
  i have an issue when configuring Exchange hybrid deployment in my environment.
  when i complete the Exchange hybrid wizard and OAuth is finished our exchange environment will not receive emails from the "internet" as in senders outside the company.
  mail will can be sent out and will flow between internal users.
  when i check the message trace on 365 the emails were failing with the following error.
  Users were also getting a bounce back saying 
  Diagnostic-Code: smtp;550 5.4.1 [[email protected]]: Recipient address rejected: Access denied
  i wondered if it had anything to do with the MX record on our public DNS, i changed this to the one recommended by O365 domain DNS assistant, but this made no odds,
  it looks like it could be a receive connector issue however i am new to exchange so i am still learning.
  the only way to fix the issue was to run Remove-Hybridconfiguration on the Exchange 2013 server, when this finished and few moments had passed mail began being received from the internal again.
  Any Suggestions on what could be caused 
  many thanks
  Make sure the accepted SMTP domains in the Office 365 EAC are set to Internal Relay rather then Authoritative.
  Twitter!:
  Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

• Migration From Exchange 2010 Hybrid to Exchange 2013 Hybrid Deployment

  hi,
  I have existing Exchange Server 2010 Hybrid Deployment. Planning to migrate to Exchange 2013. However, while schema update, i am facing some errors/warnings as can be seen in attached screenshot. 
  I have already checked and current functional level in DC is Windows Server 2003. What could be the best steps to troubleshoot the problems and proceed further with Exchange 2013 installation?
  Thanks

  Hi Muhammad
  Can you please give few more information about your environment  so that people around here can help you out
  I have existing Exchange Server 2010 Hybrid Deployment - Do you have Exchange 2010 and Office 365 in a
  hybrid setup now ?
  Are you trying to upgrade your on premise Exchange 2010 servers to Exchange 2013 ?
  Or Are you trying to migrate your on premise Exchange 2010 to a different forest to Exchange 2013 ?
  You can try the below suggestions-
  I would better suggest you to follow Microsoft Exchange Server Deployment Assistant - http://technet.microsoft.com/en-us/office/dn756393.aspx
  Also i would recommend you to check the prerequisites for hybrid deployment with office 365 
  http://technet.microsoft.com/en-us/library/hh534377(v=exchg.150).aspx
  Cheers !!!
  Remember to mark as helpful if you find my contribution useful or as an answer if it does answer your question.That will encourage me - and others - to take time out to help you Check out my latest blog posts on http://exchangequery.com Thanks Sathish
  (MVP)

• Cannot receive mail on Exchange 2013 CAS: 451 4.7.0 Temporary server error. Please try again later. PRX4

  Hi all,
  I have just deployed Exchange 2013 on two CAS boxes and two MBX boxes as follows:
  10.10.20.11
  CAS01
  10.10.20.12
  CAS02
  10.10.10.11
  MBX01
  10.10.10.12
  MBX02
  If I telnet to the internet facing IP on CAS01 and attempt to send an email internally (to a mailbox on MBX01) I get the following:
  220 smtp.myrealdomain.com Microsoft ESMTP MAIL Service ready at Wed, 26 Mar 2014 01:14:24 +1000
  EHLO test.com
  250-smtp.myrealdomain.com Hello [10.10.20.11]
  250-SIZE 36700160
  250-PIPELINING
  250-DSN
  250-ENHANCEDSTATUSCODES
  250-STARTTLS
  250-AUTH
  250-8BITMIME
  250-BINARYMIME
  250 CHUNKING
  MAIL FROM:[email protected]
  250 2.1.0 Sender OK
  RCPT TO:[email protected]
  250 2.1.5 Recipient OK
  DATA
  354 Start mail input; end with <CRLF>.<CRLF>
  Subject:Test email 452
  This is test email 452
  451 4.7.0 Temporary server error. Please try again later. PRX4
  Connectivity Log on CAS01:
  2014-03-25T15:27:15.353Z,08D11605A575FAE1,SMTP,internalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=<no priority counts>
  2014-03-25T15:27:15.353Z,08D11605A575FAE1,SMTP,internalproxy,>,"MBX02.myaddomain.com[10.10.10.12], MBX01.myaddomain.com[10.10.10.11]"
  2014-03-25T15:27:15.353Z,08D11605A575FAE1,SMTP,internalproxy,>,Established connection to 10.10.10.12
  2014-03-25T15:27:15.369Z,08D11605A575FAE1,SMTP,internalproxy,-,Messages: 0 Bytes: 0 (Attempting next target)
  2014-03-25T15:27:15.369Z,08D11605A575FAE2,SMTP,internalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=<no priority counts>
  2014-03-25T15:27:15.369Z,08D11605A575FAE2,SMTP,internalproxy,>,Established connection to 10.10.10.11
  2014-03-25T15:27:15.369Z,08D11605A575FAE2,SMTP,internalproxy,-,Messages: 0 Bytes: 0 (Retry : EHLO Options do not match for proxy)
  2014-03-25T15:28:10.328Z,08D11605A575FAFA,SMTP,internalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=<no priority counts>
  2014-03-25T15:28:21.669Z,08D11605A575FAFA,SMTP,internalproxy,>,"MBX01.myaddomain.com[10.10.10.11], MBX02.myaddomain.com[10.10.10.12]"
  2014-03-25T15:28:21.669Z,08D11605A575FAFA,SMTP,internalproxy,>,Established connection to 10.10.10.11
  2014-03-25T15:28:21.669Z,08D11605A575FAFA,SMTP,internalproxy,-,Messages: 0 Bytes: 0 (Attempting next target)
  2014-03-25T15:28:21.669Z,08D11605A575FAFF,SMTP,internalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=<no priority counts>
  2014-03-25T15:28:21.669Z,08D11605A575FAFF,SMTP,internalproxy,>,Established connection to 10.10.10.12
  2014-03-25T15:28:21.669Z,08D11605A575FAFF,SMTP,internalproxy,-,Messages: 0 Bytes: 0 (Retry : EHLO Options do not match for proxy)
  SmtpSend Log on CAS01:
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,1,10.10.20.11:25495,10.10.10.12:25,+,,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,2,10.10.20.11:25495,10.10.10.12:25,<,220 ********************************************************************************************************************,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,3,10.10.20.11:25495,10.10.10.12:25,*,,Proxying inbound session with session id 08D11605A575FB5D
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,4,10.10.20.11:25495,10.10.10.12:25,>,EHLO CAS01.myaddomain.com,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,5,10.10.20.11:25495,10.10.10.12:25,<,250-MBX02.myaddomain.com Hello [10.10.20.11],
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,6,10.10.20.11:25495,10.10.10.12:25,<,250-SIZE,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,7,10.10.20.11:25495,10.10.10.12:25,<,250-PIPELINING,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,8,10.10.20.11:25495,10.10.10.12:25,<,250-DSN,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,9,10.10.20.11:25495,10.10.10.12:25,<,250-ENHANCEDSTATUSCODES,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,10,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXXXXA,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,11,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXXXXXXXXXXB,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,12,10.10.20.11:25495,10.10.10.12:25,<,250-AUTH NTLM,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,13,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXXXXXXXXXXXXXXC,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,14,10.10.20.11:25495,10.10.10.12:25,<,250-8BITMIME,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,15,10.10.20.11:25495,10.10.10.12:25,<,250-BINARYMIME,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,16,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXXXXD,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,17,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXXXE,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,18,10.10.20.11:25495,10.10.10.12:25,<,250-XXXXF,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,19,10.10.20.11:25495,10.10.10.12:25,<,250 XXXXXXXXXXXXXG,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,20,10.10.20.11:25495,10.10.10.12:25,*,,"EHLO options between current server and proxy target do not match : Chunking, Xrdst. Critical non
  matching options : Chunking, Xrdst. Failing over."
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,0,,10.10.10.11:25,*,,attempting to connect
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,21,10.10.20.11:25495,10.10.10.12:25,>,QUIT,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,1,10.10.20.11:25496,10.10.10.11:25,+,,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,22,10.10.20.11:25495,10.10.10.12:25,<,221 2.0.0 Service closing transmission channel,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB5E,23,10.10.20.11:25495,10.10.10.12:25,-,,Local
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,2,10.10.20.11:25496,10.10.10.11:25,<,220 ********************************************************************************************************************,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,3,10.10.20.11:25496,10.10.10.11:25,*,,Proxying inbound session with session id 08D11605A575FB5D
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,4,10.10.20.11:25496,10.10.10.11:25,>,EHLO CAS01.myaddomain.com,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,5,10.10.20.11:25496,10.10.10.11:25,<,250-MBX01.myaddomain.com Hello [10.10.20.11],
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,6,10.10.20.11:25496,10.10.10.11:25,<,250-SIZE,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,7,10.10.20.11:25496,10.10.10.11:25,<,250-PIPELINING,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,8,10.10.20.11:25496,10.10.10.11:25,<,250-DSN,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,9,10.10.20.11:25496,10.10.10.11:25,<,250-ENHANCEDSTATUSCODES,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,10,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXXXXA,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,11,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXXXXXXXXXXB,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,12,10.10.20.11:25496,10.10.10.11:25,<,250-AUTH NTLM,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,13,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXXXXXXXXXXXXXXC,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,14,10.10.20.11:25496,10.10.10.11:25,<,250-8BITMIME,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,15,10.10.20.11:25496,10.10.10.11:25,<,250-BINARYMIME,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,16,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXXXXD,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,17,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXXXE,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,18,10.10.20.11:25496,10.10.10.11:25,<,250-XXXXF,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,19,10.10.20.11:25496,10.10.10.11:25,<,250 XXXXXXXXXXXXXG,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,20,10.10.20.11:25496,10.10.10.11:25,*,,"EHLO options between current server and proxy target do not match : Chunking, Xrdst. Critical non
  matching options : Chunking, Xrdst. Failing over."
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,21,10.10.20.11:25496,10.10.10.11:25,>,QUIT,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,22,10.10.20.11:25496,10.10.10.11:25,<,221 2.0.0 Service closing transmission channel,
  2014-03-25T15:32:34.158Z,Inbound Proxy Internal Send Connector,08D11605A575FB67,23,10.10.20.11:25496,10.10.10.11:25,-,,Local
  Can anyone help? I'm at the end of my Googling!

  The answer has been found. In our case, we had to disable the Mailguard feature of the Cisco ASA between the CAS subnet and the MBX subnet. Essentially it was stripping AUTH commands from the SMTP handshake which meant the servers could not authenticate
  to each other and establish a secured connection.
  I guess for future reference, if you're getting a PRX4 error code you should look at any device that could be inspecting SMTP between your CAS and MBX servers.
  This Microsoft KB article has more information: http://support.microsoft.com/kb/320027

• Exchange 2013 Hybrid Configuration Wizard OAuth error

  Hi,
  We are facing following error when we run OAuth configuration after complete the Hybrid Configuration Wizard.
  Error:
  ScenarioFailureException
  Message:
  Exchange OAuth authentication couldn‎'t find any accepted domains in your on-premises organization.
  Verify you‎'ve configured at least one on-premises accepted domain.
  Location:
     at Microsoft.Online.CSE.HRC.Activities.OAuthActivities.GetCertificateActivity.Run‎()‎
     at Microsoft.Online.CSE.HRC.Workflow.Activity.WorkflowBaseActivity.Launch‎()‎
     at Microsoft.Online.CSE.HRC.Workflow.Runtime.WorkflowActivityHelper.Execute‎(ActivityContext context, Boolean launch)‎
     at System.Activities.NativeActivity.InternalExecute‎(ActivityInstance instance, ActivityExecutor executor, BookmarkManager bookmarkManager)‎
     at System.Activities.Runtime.ActivityExecutor.ExecuteActivityWorkItem.ExecuteBody‎(ActivityExecutor executor, BookmarkManager bookmarkManager,
  Location resultLocation)‎
  Environment:
  2x Exchange 2013 CU6 (DAG+one ClientAccess)
  Directory Sync Server
  No ADFS server since we don't need single sign on
  Office 365 E3 Tenant
  We have tried manually setup the OAuth configuration according to the below TechNet article but failed when running the ExportAuthCert.ps1
  script file. It couldn't match the certificate thumbprint with the location "Cert:\LocalMachine\My"
  http://technet.microsoft.com/en-us/library/dn594521%28v=exchg.150%29.aspx
  Please help!
  Thanks in Advance
  Roshan

  We have the exact same Issue, tried the exact same setup and NO JOY!! - any resolution yet?
  Also found this article:
  http://consulting.risualblogs.com/blog/2014/09/10/exchange-2013-cu6-hybrid-users-with-o365-unable-to-query-freebusy-for-on-premises-users/comment-page-1/#comment-5192  
  ..... but did not fix the free/busy
  Best Regards,
  Francois

• Exchange 2013 Hybrid and Rightfax

  We are in the process of planning our migration to Office 365, and one of the things we currently use in our Exchange 2010 on prem solution is Rightfax for direct faxing inbound/outbound.   The plan is to roll out exchange 2013 in hybrid mode, and I
  am wondering what i need to do so that faxing continues to work?
  Since we will be running a hybrid, is it as simple as installing the rightfax service on the exchange server, or do I need to plan for some kind of cloud access, similar to how they borked up exchange UM integration (requires a session border controller,
  rather than routing through exchange on premises box).

  Hi,
  According to the description, following is my understanding:
  1. You want to migrate to Office 365 from Exchange server 2010.
  2. Exchange server 2010 host the Rightfax, now.
  3. You want to install a new Exchange server 2013 on-premise. Let the Exchange server 2013 on-premise host the Rightfax.
  4. Exchange server 2013 on-premise and Office 365 Hybrid Deployment.
  Please correct me if there is any misunderstanding.
  If all of above is right, I find some resource relate on Hybrid Deployment with Exchange 2013 on-premises and Office 365.
  Exchange Server 2013 Hybrid Deployments
  http://technet.microsoft.com/en-us/library/jj200581(v=exchg.150).aspx
  Note: If you want to move mailboxes from your on-premises organization to the Exchange Online organization, and those mailboxes are configured for UM, you should configure UM in your hybrid deployment prior to moving those mailboxes.
  If you move mailboxes before you configure UM in your hybrid deployment, those mailboxes will no longer have access to UM functionality.
  About the Rightfax, I find this from Microsoft resource:
  OpenText RightFax version 10
  http://pinpoint.microsoft.com/en-us/applications/opentext-rightfax-version-10-12884918124
  However it works with
  Hyper-V, Microsoft Exchange Server 2010, Microsoft Office 365, Microsoft SharePoint Server 2010, Windows Server 2008 R2.
  I'm not quite familiar with it. We can also contact to Rightfax Support to double confirm this.
  Thanks
  Mavis
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Mavis Huang
  TechNet Community Support

• Exchange 2013 Hybrid with O365 - migrated user causes admin restart prompt for multiple other users

  Greetings!  We are in the process of doing some testing and migration in a hybrid deployment with Office365 and Exchange on premise.
  I just completed a migration for an on-premise user.  We have, so far, migrated 3 users in the IT department as initial testing.  The first two migrations were very cut and dry.  The third migration; as soon as I finalized the batch, multiple
  people on our team received messages about having to restart Outlook.  These were users that had not been migrated and were not part of any migration batch, but were members of the same department.  I am trying to understand, under what circumstance
  could a migration of a user cause other users who are still on premise to receive the "admin made changes" prompt in Outlook.
  Thanks in advance.

  Hi Joe,
  Could you share the migration batch? Note, please hide if there are any sensitive information like domain name and server name.
  Thanks,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Simon Wu
  TechNet Community Support

• Powershell Azuze Exchange 2013 Hybrid Enviroment

  I am having issues running Azure Powershell commands from my workstation.
  We currently have a hybrid enviroment with some users on premise and others in Office 365 cloud. When ever I try to use the Get-mailbox command to list a user that is in the office 365 cloud I get this response:
  The operation couldn't be performed because object <Office 365 User> couldn't be found on '<MyOnsiteDomianController>'.
  I have listed the script I use to conect to Azure below:
  $Cred = Get-Credential
  $Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell/ -Credential $Cred -Authentication Basic –AllowRedirection
  Import-PSSession $Session
  Import-Module MSOnline
  Connect-MsolService –Credential $Cred

  Hello,
  Come back and mark the replies as answers if they help and unmark them if they provide no help.
  I'm marking the reply as answer as there has been no update for a couple of days.
  If you come back to find it doesn't work for you, please reply to us and unmark the answer.
  Cara Chen
  TechNet Community Support

• Exchange 2013 hybrid configuration

  Hi,
  I'm using Symantec Bridge mail with Exchange 2010.
  And I've planned for Hybrid configuration with Exchange 2010, for this I've created a trail O365 account.
  I'm planing to verify the TXT record for my domain, will this affect my present mail flow ?
  Sathish

  No, mail flow is controlled by the MX record. Creating a TXT record for the purposes of verifying the domain for Hybrid will not affect anything.