Exchange 2010 and reverse DNS

Similar Messages

• Single name space in between Exchange 2010 and 2013

  Hi,
  In my current environment I have 2 Exchange 2010 servers with DAG no CAS NLB. I installed Exchange 2013 with 2 CAS with WNLB and 2 Mailboxes with DAG. The main requirement is to configure Single name space to access in between Exchange 2010 and Exchange
  2013. On Exchange 2010 DAG there is a URL using is owa.domain.com and I also configured in Exchange 2013 all the virtual directories with this name owa.domain.com but having an issue that when I open explorer and use the owa.domain.com URL the user on Exchange
  2013 gets their mailbox but user on Exchange 2010 gets error HTTP 403 blank page.
  I observed that in Exchange Organization settings CAS settings one server OWA, ECP etc shows their internal external URL but the other server unable to open the OWA, ECP URL and give error message that "An IIS directory entry
  couldn't be created. The error message is Access is denied. HResult = -2147024891"
  Please guide how to resolve this issue and use the same name URL in Exchange 2010 and Exchange 2013
  Thanks, 

  Hi,
  See the below brief:
  User will connect to mail.contoso.com as his namespace endpoint. CAS2013 in Site1 will authenticate the user, do a service discovery, and determine that the mailbox version is 2010 and is located within the local AD site. CAS2013 will proxy the
  request to an Exchange 2010 Client Access server which will retrieve the necessary data from the Exchange 2010 Mailbox server
  Go through the full blog for better understanding of the redirection.
  Client Connectivity with Exchange 2013
  Hope you have changed your DNS records to direct connections only to your new Exchange 2013 server. You'll move the host names (for example, mail.contoso.com) users have been using to connect to Outlook Web Access, Autodiscover, and so on, from your
  Exchange 2010 server to your Exchange 2013 server. When an Exchange 2010 user tries to open their mailbox, the Exchange 2013 server will proxy their request and communicate with the Exchange 2010 server on their behalf.
  Configuring DNS includes the following:
  Change the primary host names, such as mail.contoso.com, autodiscover.contoso.com, and owa.contoso.com (if used) to point to the external, publically-accessible, IP address of the Exchange 2013 Client Access server with your public DNS provider.
  Change the primary host names, such as mail.contoso.com (or internal.contoso.com if you're using different internal host names) and owa.contoso.com (if used) to point to the internal machine name of the Exchange 2013 Client Access server on your internal
  DNS servers.
  NOTE- Go through the Exchange Deployemnt Assitant - Configure DNS Records section
  Regards,
  Satyajit
  Please“Vote As Helpful”
  if you find my contribution useful or “MarkAs Answer” if it does answer your question. That will encourage me - and others - to take time out to help you.

• Exchange 2010 and 2013 coexistence Internal and external URL

  Hi all,
  been reading alot of threads about Outlook anywhere and virtual directories in co-existence exchange 2010 and 2013.
  Still i dont get any smarter.
  Here is scenario:
  Exchange 2010
  Cas1
  Cas2
  Mailbox1
  Mailbox2
  Casarray is Exchange.casarray,com ( internal dns pointed to CAS1 in exchange 2010).Seems like by default both exchange 2013 cas servers are added to the casarray.
  Exchange 2013
  CAS+Mailbox
  Cas+Mailbox
  DNS
  mail.exchange.com pointing to VIP (kemp loadbalancer)
  Autodiscover ( pointed to same vip ,kemp load balancer)
  Outlook anywhere on all servers (2010 and 2013)
  Internal ( pointing to VIP on Kemp)
  External ( pointing to external IP,then it passes firewall that again passes to kemp)
  Problem we are having is when migrating users from Exchange 2010 - 2013.
  Users using Outlook 2010
  restart of outlook and mail  works fine.
  OWA works fine
  Active sync fails ( need to inherit permission of users AD object),wait couple of hours then mobile can sync again.)
  Users using Outlook 2013
  Outlook in disconnected status,only fix is to create new profile.
  OWA works fine
  Active sync fails ( need to inherit permission of users AD object),wait couple of hours then mobile can sync again.)
  Question is,what should be set for internal and external url (active sync,owa,ews)on 2010 and 2013 servers?
  Where is the config wrong?
  Thanks!
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. Thank you! Off2work

  Hi Martina,
  did the test as mentioned,even tried both CAS 2013 servers.Flush and registerdns didnt help.
  Still Outlook is Connected to the cas.exchange.as (which again Points to 1 of Exchange 2010 servers),
  Tried repair Outlook profile,no og.Only fix is to setup New account.
  Any more tips?
  thanks!
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. Thank you! Off2work

• Error synchronizing folder [8004010F-501-8004010F-0] - Exchange 2010 and Outlook 2010, multiple users get dozens of these per day

  15:27:30 Synchronizer Version 14.0.6025
  15:27:30 Synchronizing Mailbox 'abc xyz'
  15:27:30 Error synchronizing folder
  15:27:30
   [8004010F-501-8004010F-0]
  15:27:30
   The client operation failed.
  15:27:30
   Microsoft Exchange Information Store
  15:27:30
   For more information on this failure, click the URL below:
  15:27:30
   http://www.microsoft.com/support/prodredirect/outlook2000_us.asp?err=8004010f-501-8004010f-0
  15:27:30 Done
  kbj

  Hi,
  Please try below steps:
  - Remove all organizational forms libraries (subfolders under EFORMS Registry) if they are not needed, and re-create the Outlook profile of affected users.
  - Alternatively, if the organizational forms libraries are needed, remove the replica from Exchange 2010 and re-add it
  Best Regards!

• Microsoft Exchange 2010 and Outlook 2013

  My colleagues computer suddenly crashed yesterday and it wouldn't restart without a system restore.
  Now when we try to open up Outlook it says that you must connect to Microsoft Exchange at least once before you can usse your Outlook Data file (.ost)
  Also The PC has lost the trust relationship on the domain
  We have exchange 2010 and the servers OS is Microsoft Windows Small Business Server 2011 and the Client PC is running off of Windows 8.
  Can you please help me resolve this issue?
  kind regards
  Steve Bradshaw
  [email protected]

  It might be possible that the MAPI key (which enables Outlook to synchronize with Exchange) has been deleted due to the System crash. So, in order to establish the connection, you need to Reconnect the OST file to the original MAPI profile and then reconnect
  then MAPI profile to Exchange Server. 
  If the above method fails to resolve the issue, then the best option for you would be to take the help of any professional OST to PST Conversion Software, which will help you to Extract data from your OST file and convert it to PST file which you can import
  back to your Outlook to establish the connection with Exchange Server again.
  You can check this
  presentation for more info.
   

• OS X 10.4.11 Server - configured name and reverse DNS do not match / DNS

  Hi all,
  I have looked for similar posts but all seem to have different scenarios, hoping to get an answer from someone more experienced than myself before I do anything silly.
  Help much appreciated!
  Scenario:
  We run a 10.4.11 OS X Server on an XServe, hosted at an ISP. ISP provides all DNS services, incl. the reversed DNS entry.
  I am currently only running the following services (based on the display in ServerAdmin):
  AFP
  Firewall
  iChat
  Mail
  QuickTimeStreaming
  Web
  All others (incl. DNS) are grayed out. (As ISP instructed us not to add a DNS service on our box, that's "normal" according to my experiences with dedicated /co-location server hosting).
  We never used changeip after the initial setup, meaning the server's
  Current Hostname = somename.local and
  DNS Hostname = mail.ourdomainname.net
  So in system.log I find this re-occuring entry:
  Jul 8 11:41:22 somename servermgrd: servermgr_dns: configured name and reverse DNS name do not match (somename.local != mail.ourdomainname.net), various services may not function properly - use changeip to repair and/or correct DNS
  Finally, my question:
  As Mail and Web services etc. are currently running OK from what I can tell,
  1) do I HAVE to change this at all?
  2) Would it be much better / why?
  3) Could I change this using the following command
  (111.11.111.1 indicating the server's IP address)
  changeip 111.11.111.1 111.11.111.1 somename.local mail.ourdomainname.net
  4) without running a DNS server on the machine, i.e. DNS service is not required for this to work?
  5) obviously I want to be able to use Server Admin after I issue this command...
  6) can I fall back easily in case this would screw it up, or is there no risk whatsoever doing this in my case?
  THANK YOU so much for any help!

  Hi Jonas
  If port 443 is already being used on the same box as KMS then it will complain and probably not start the service? I've seen this with LDAP port 636. This is when Kerio is installed on a server configured as an OD Master. Clearly the port can't be used by both servers.
  It might be easier to change the port your sites are currently using to something else? Although don't do anything yet. Pose the question to Kerio Support and see what advice they offer.
  Yes moving the mail to a local folder on the mail client will do it.
  Is Kerio going on the same box? If its a different box (presumably different IP address?) Then what you can do is to port forward to the new server's IP address instead of disabling it. This way while you are bringing the new server on line users can still send mail right up until the time you give instructions on changing their inbound/outbound mail server details. Of course they won't be able to receive but if you time it right they may not even get an error message? Depends on what their schedules are.
  If it was me I would choose IMAP every time. As the mail admin you have full control and a central location for easy backup. KMS has a built in archiving feature that makes this a simple process. This is an easier option than going round individual client machines and making sure mail held locally in POP accounts are backed up. Besides there is always someone who falls through the loop and I'm not taking into account drive failures. It makes good sense anyway as there is talk of legislation being introduced to make this a requirement for businesses who run their own mail servers. This is certainly true for certain parts of the US and what usually happens there is generally taken up in the UK and most parts of Europe.
  Kerio's WebMail Client means users don't even have to have their own computer. Just as long as they have access to one that has access to the internet they can send/receive mail. No need for dedicated mail applications such as Apple Mail, Thunderbird, Entourage etc. How mail is uses remains consistent for all users.
  Yes. I did this not so long ago with Leopard's built in Mail Server. I sent an e-mail defining a time when no inbound mail would be received. Disabled port forwarding for SMTP port 25 and approx 30 minutes after that another mail stating no outbound mail should be sent. Once everything was swopped over (we were changing from a G4 10.4 server to a G5 10.5 Server) port 25 was enabled, new server brought online and everyone was mailing again with no appreciable downtime.
  These boxes were to have the same IP address hence the slightly different approach.
  Does this help?
  Tony

• Mail, Exchange 2010, and certificates

  Hi.
  The company I work for just upgraded their Exchange server to 2010 and all of a sudden my email account in Mail doesn't work anymore. In sheer desperation I tried to connect using Microsoft Outlook and the only way that I could create an account there was by submitting my certificate before entering my email account credentials. I get the feeling that this might be a kind of setting on the server side that someone turned on when we were transferred to Exchange 2010.
  In Mail, when I try to set up my Exchange account there is no way of submitting my certificate, or am I missing something? If not, does anyone know a way around this (by associating Mail with my certificate somehow – I don't know...)
  Many thanks in advance!
  /Cristian

  I added back the send connector on the 2010 exchange. everything still works fine since I still have the send connector on the 2003. However...
  I connected through telnet to server2 (the exchange 2010) and was able to mail internally. however I couldn't send mail externally, it gives me a "cannot relay" error when I enter my rcpt to:... command.
  I am guessing that this may be the reason why the queue is not emptying itself through that send connector.
  Anything else I could try to test my "send connector" on the 2010 exchange?

• Exchange 2010 and iOS 7

  I am having multiple problems across multiple devices in Exchange 2010 SP2 and devices that upgraded to iOS 7.  I have reset all the settings and re-added the accounts. Any other solutuons for this issue that apple swears is not a bug in the iOS?

  I am running Exchange 2010 and have iOS7 on my phone, and have not seen any problems. My phone is not managed by configuratior.
  What problems are you having?

• Exchange 2010 and 2003 Co-Existence Help

  Hi All,
  Hopefully someone out there can help me out.
  As the subject says i have exchange 2010 and 2003 in a co-existence mode. I have configured public folder replications and plan to use the following guide to move the public folders:
  http://careexchange.in/moving-public-folders-from-exchange-2003-to-exchange-2010/
  I was about the use the MoveAllReplicas.ps1 powershell script when I had the idea to dismount the legacy (2003) public folder mail store as a test to ensure the public folders had replicated. I noticed under the 'Queues' of the legacy exchange emails were queuing
  up withing 'Messages awaiting directory lookup'.
  All other mail stores were dismounted, as a test I mounted a database (non public folder), did a force connection and refresh. All the emails disappeared from this list.
  So my questions are:
  1. Why would my exchange 2010 sever still be routing emails via the legacy server?
  2. Why would the legacy exchange require a mailstore to be mounted for mail flow to work coming from the 2010 server?
  Thanks

  Thanks for the feedback.
  The issue I am facing is that the emails I am seeing queued are not related to the public folder replications. Emails for the public folder replications normally have a subject line of: 'Backfill' or 'Folder Content'.
  When all mail stores are dismounted on the legacy server some of the outbound emails sent by users who reside on the primary server (2010) are being sent to the legacy server. I can then see these emails queued and they will not be sent until a remount at
  least one mail store.
  E.g. All mailbox stores are dismounted on the legacy exchagn, John Smith's account is located on primary exchange (2010). John sends an email and I see it stuck in the queue on the legacy server  'Messages
  awaiting directory lookup'. 
  NOTE: This does not happen for all users, It seems to happen at Random.
  I also attempted to fix the issue by creating a new 'Send Connector' with a lower cost and defining the 'Source server as the primary server (2010)
  So the question still remains why are some outbound emails still being sent out via the legacy server even though these users are on the primary exchange?
  With regards to the public folders, I used the following to add the replicas between the legacy and primary exchange:
  .\AddReplicaToPFRecursive.ps1 -TopPublicFolder “\” -ServerToAdd “Exchange2010″
  When i dismount the public folders all the public folders are accisable via the 2010 server so it seems the replications have worked.
  Would the above command not have added the replicas to all the public folders including the system public folders?

• Exchange 2010 and RMS

  Hello Team,
  We are running Exchange 2010 and RMS with Autonomy app which archives older than 30 day emails.
  Parent company is in Tokyo, all incoming email goes through them and then via a hub transport service delivers email to North America.  For some reason, emails are encrypted and the Archive app cant get to them.
  I just want to find how to proceed further and what to do to exclude emails to North America from it.
  Any suggestions would be appreciated !
  Binu Kumar - MCP, MCITP, MCTS , MBA - IT , Director Aarbin Technology Pvt Ltd - Please remember to mark the replies as answers if they help and unmark them if they provide no help.

  Hi Binu 
  I have written one for Exchange 2013 
  http://exchangequery.com/2014/08/12/steps-to-configure-irms-in-exchange-2013/
  Its the same for Exchange 2010 as well 
  Also you can follow the below article for references
  https://technet.microsoft.com/en-us/library/dd351035%28v=exchg.141%29.aspx?f=255&MSPPError=-2147217396
  http://www.msexchange.org/articles-tutorials/exchange-server-2010/compliance-policies-archiving/rights-management-server-exchange-2010-part5.html
  Remember to mark as helpful if you find my contribution useful or as an answer if it does answer your question.That will encourage me - and others - to take time out to help you Check out my latest blog posts on http://exchangequery.com Thanks Sathish
  (MVP)

• Primary mailbox (on Exchange 2010) and Personal Archive (on Exchange 2013), possible?

  Current environment is Exchange 2010 SP3 RU5 supporting 4,000 Users. Client estate is Outlook 2010 SP1 going on SP2.
  We're pulling our Archiving solution away from 3rd party and back into Exchange. Implementing a new set of Exchange 2010 Servers (old DAG or in a new Archive DAG) would be easy. But is there Exchange 2013 stepping stone potential?
  Can the Archive DAG / Archive mailboxes be on 2013? i.e. for any given User, leave their primary mailbox on Exchange 2010 and create new Archive mailbox on 2013.
  I want to avoid implementing 2010 Archive Servers and then go 2013 Archive 6 months or a year later.
  This article suggests 'no':
  http://technet.microsoft.com/en-gb/library/dd979800(v=exchg.150).aspx
  "Locating a user’s mailbox and archive on different versions of Exchange Server is not supported."
  I've found little info but the odd statement here / there.
  Is this the latest position? Is it that cut & dry? Anyone tried it? Why won't it work (or will it but it's not supported)?
  Thanks!

  <I had a response from MS>
  Below is a summary of the case for your records:
  Symptom:
  =============
  Is it possible to implement a 2013 environment to host the Archive mailboxes? i.e. for any given User, their primary mailbox is on Exchange 2010 and their Archive
  mailbox is on 2013. 
  Resolution:
  =============
  It’s not supported to have a user’s primary mailbox reside on an older Exchange version than the user’s archive. If the user’s primary mailbox is still on Exchange
  2010, you must move it to Exchange 2013 before or at the same time when you move the archive to Exchange 2013.
  http://technet.microsoft.com/en-us/library/jj651146(v=exchg.150).aspx
  as per the repro in our lab, having the archive mailbox in higher version of exchange would fail with the error above
  <the scenario isn't completely relevant, looks like he's trying to put the Primary on 2013 and not the Archive, no matter, we've established there are problems, question is whether they are looking into this area / to patch, they go on...>
  At this point in time we don’t have a conformation from the product team, if the above would change in the future exchange versions.
  <MS did say on the call that they were not looking at fixing it, naturally this isn't a "never", as per previous statement - they can't commit 100% to the future, but they've provided me the answer - they are not currently looking at resolving/providing
  this as a migration scenario, end.>

• Exchange 2010 and iphone calendar sync issues

  Hey,
  I know this question has been asked plenty of times before and just need a straight resolution. We have just migrated our environment to Exchange 2010 and the major issue is that when an event is created in Outlook 2011 it is not always showing up on their iphone and also vis versa. Is their a resolution to this problem so I can implement it in an emergency change. Thank you for all your help!

  Here let me explain the scenario again any user who logs in to exchange from outlook working fine password not expired and he has iphone active sync working no issues , now while all devices are working when he starts his ipad after a week or so when he
  opens his email on ipad it prompts the password on ipad and same time on iPhone , he does not want to enter the password and wants a technical justification , I told the user something to do with Exchange 2010 sp2 and ios 7 ,but that is invalid justification
  . if you have any other valid justification please let me know. or a solution to this issue. user wants to login without any password prompt while the password is saved in device and not expired , is there any feature in Exchange 2010 sp2 that would recognize
  how many days device has not logged it and would force to enter the password.

• Still cannot resolve "gethostbyaddr() and reverse DNS name" warnings.

  "Mar 15 11:02:48 xs1 servermgrd: servermgr_dns: gethostbyaddr() and reverse DNS name do not match (xs1.dept.school.edu != xs1.dept.School.EDU), various services may not function properly - use changeip to repair and/or correct DNS"
  I have two xserves, both of which keep generating the same warnings, ad nauseam, in /var/log/system.log and having followed all suggestions and instructions in discussions, technical notes, afp548.com, and from other sysadmin's I still cannot stop them. There do not seem to be any services affected, or at least not in an overt manner.
  Both xserves run slightly different services: (xs1) AFP, Firewall, NetBoot, NFS, Open Directory (slave), Print and Web; and (xs2) AFP, Firewall, Open Directory (master) and Software Update.
  On both xserves I have run the following commands/tests with correct results, yet still I get the warnings in system.log: "changeip -checkhostname" is correct, and "scutil --get HostName" is correct. The /etc/hostconfig file is correct with "HOSTNAME=-AUTOMATIC-".
  The only thing I can consider is that when setting them up, I had entered the FQDN in all lower-case, but the reverse dns is not, our domain is capitalized, and the tld is in all caps on the DNS servers. I had ages ago issued the "changeip" command as recommended in the warning, to no effect, even though "changeip -checkhostname" says it's correct.
  Where the heck to I look now? This is driving me nuts!
  RackMac1,1 & RackMac3,1   Mac OS X (10.4.8)  

  >As of 10.4.6, Apple states to never change /etc/hostconfig's HOSTNAME entry.
  Inside the little black box that Apple runs Mac OS X Server this might be good advice. However, in the real world, real servers are often outside of Apple's box (sometimes far outside) and you have to do certain things that Apple don't advise or 'support'.
  I can't tell you how many things I run on my servers that are outside the box and judging by other posts on these boards I'm not the only one. You only have to look at DNS, web and mail for starters to see that Apple's model doesn't cover everyone's needs.

• Mail is Slow between Exchange 2010 and 2013 During Co-Existance Transition

  Hello,
  I recently migrated from a single Exchange 2003 server to a single Exchange 2010 server
  I am now trying to Migrate from Exchange 2010 to Exchange 2013.
  I have a test user on Exchange 2013, and Internet Mail works fine and quickly both inbound and outbound.
  However, when I try and send between a 2010 user to my 2013 user, delivery takes around 10 minutes.
  On the 2013 server I see health check messages, and my 2010 user's message stuck in retry status. The messages eventually clear and the mail is delivered. Any ideas what is causing this delay?
  In terms of connectors I have all the defaults. And I created 1 for internal relays from devices. Which works fine.
  I have two Exchange 2013 servers configured in a DAG, but I don't have a load balance in place as of yet. So only server 1 is being accessed as the CAS.
  Thanks

  Hi,
  According to your description, the mail flow is slow only between Exchange 2010 and Exchange 2013 server. If I misunderstand your meaning, please feel free to let me know.
  If yes, I’d like to confirm if there are multiple NICs on your Exchange servers. And you can refer to the following thread:
  http://social.technet.microsoft.com/Forums/exchange/en-US/66f0629f-21fb-444b-b3f1-99ed8a4f52b2/slow-mail-flow?forum=exchangesvrsecuremessaging
  We have ONLY 1 network adapter, but if we select "All network adapters" instead of Hyper-V, we will get delays.
  Thanks,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Angela Shi
  TechNet Community Support

• Gethostbyaddr() and reverse DNS name do not match

  So we updated to 10.4.6 on our server... and now none of the clients can connect...
  Our DNS and reverse DNS (done by the university IT group) have caps in them... but all the home directories for users are lower case...
  How can I fix this - short of entering all home directory info in by hand? Oh - suggesting that the IT group change the DNS is not helpful as it will not happen.
    Mac OS X (10.4.6)   Server

  A summary - Here's the situation:
  1. I have a 10.4 server running on a G5 tower.
  2. The DNS is operated by the university IT group and our reverse DNS is mixed case... asked and they're not going to change it.
  3. 10.4.6 introduced some funky stuff with FQDN, DNS and case sensitivity issues.
  So... before I changed anything after the 10.4.6 update... users couldn't log in because it couldn't get their home directories...
  The automounter would be looking for:
  /Network/Servers/servername.Psychology.McMaster.CA/Users/username
  While if you looked in /Network/Servers/ you will see:
  /Network/Servers/servername.psychology.mcmaster.ca
  (note the case)
  Alright - moving on:
  4. Tried changing hostconfig HOSTNAME - only worked on local server (and you're not supposed to do this anymore).
  5. Used changeip same IP address, lower-case name to mixed case name... now users could log in.... glory!
  6. Argh... they can log in, but can only intermittently actually get their home directories... seriously. You log in, see your desktop and flash it's gone... clicking on your home directory or desktop in finder gets you 'The volume for "Desktop" cannot be found'... doing "cd ~" and then "ls" from a terminal window sometimes gets you your directory, a partial directory or an error... and even then the ownership maybe the user or root...
  7. Looking in the logs we see:
  May 25 14:48:26 client kernel[0]: AFP_VFS afpfs_unmount: /private/Network/Servers/servername.psychology.mcmaster.ca/Users, flags 524288, pid 490
  May 25 14:48:26 client kernel[0]: AFP_VFS afpfs_MountAFPVolume: GetVolParms failed 0x16
  May 25 14:48:26 client automount[490]: Can't mount servername.Psychology.McMaster.CA:/Users on /private/Network/Servers/servername.Psychology.McMaster.CA/Users: Invalid argument (22)
  May 25 14:48:26 client automount[490]: Attempt to mount /automount/Servers/servername.Psychology.McMaster.CA/Users returned 22 (Invalid argument)
  May 25 14:48:26 client automount[489]: Can't mount servername.Psychology.McMaster.CA:/Users on /private/Network/Servers/servername.Psychology.McMaster.CA/Users: Invalid argument (22)
  (server and client names changed to protect the guilty).
  I'm stumped... and it's to the point that the owner of said server (a staunch apple supporter) is asking if I can replace the server with a Linux box with LDAP/AFP/SMB...
  Any help here?