Exchange 2010 unable to find objects in child domain via ESM

Similar Messages

• Exchange 2010 Unable to create new mailboxes through provisioning

  Recently I started noticing that when attempting to create a new mailbox in Exchange 2010 I was receiving the error "Load balancing failed to find a valid mailbox database". I checked the provisioning by running the command "Get-MailboxDatabase
  | ft Name,IsExcludedFromProvisioning". All my databases are set to "true". All I would have to do is run the command "get-mailboxdatabase | set-mailboxdatabase -isexcludedfromprovisioning $false" to enable the provisioning again. My
  question is here, does this require any kind of reboot or setting the DAG into maintenance mode? These are prod servers and I would hate to run a command that might cause an unplanned downtime of any sort. I got a feeling that this is probably a quick simple
  command and wont cause any issues, just want to confirm that this won't require any sort of planning before running.

  No, you don;t have to restart the server or make any changes in DAG.
  Cheers,
  Gulab Prasad
  Technology Consultant
  Blog:
  http://www.exchangeranger.com    Twitter:
    LinkedIn:
     Check out CodeTwo’s tools for Exchange admins
  Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

• Exchange 2013 sp1 smtp NTLM auth for child domain users

  i have exchange organization with exchange 2007 sp 3 & exchange 2013 sp1.
  there are  all users in Exchange 2013 server (mail flow is through Exchange 2013 server)
  i have single forest, 2 site (site1, site2), root domain root.local and 1 child domain ch.root.local
  DC  for child domain is located in site2 (dc.ch.root.local)
  multirole exchange 2013 server is installed in root domain.
  i am traing to configure smtp receive connector with NTLM auth and have one problem.
  when user in child domain try send email through this receive connector i see in log
  <,AUTH NTLM,
  >,334 <authentication response>,
  *,SMTPSubmit SMTPAcceptAnyRecipient BypassAntiSpam AcceptRoutingHeaders,Set Session Permissions
  *,CH\user1,authenticated
  *,,Setting up client proxy session failed with error: 535 5.7.3 Unable to proxy authenticated session because either the backend does not support it or failed to resolve the user
  *,,"Setting up client proxy session failed with error: 451 4.4.0 Primary target IP address responded with: ""535 5.7.3 Unable to proxy authenticated session because either
  the backend does not support it or failed to resolve the user."" Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts. The last endpoint attempted was 192.168.1.15:465"
  but authentication is succesfull for users from root domain.
  why do it can be?
  Thanks.

  thanks for link
  at smtp receive logs (Hub transport role) i've found the  next:
  Client Proxy EXMAIL2013,08D134DAF6CE1C51,49,192.168.1.15:465,
  *,NT AUTHORITY\SYSTEM,authenticated
  >,235 <authentication response>,
  <,XPROXY SID=08D130D354F520D1 IP=192.168.1.21 PORT=57085 DOMAIN=[192.168.1.21] CAPABILITIES=0 SECID=Uy0xxx...
  *,,Error while looking up SamAccountName chuser: The user name or password is incorrect.\r\n
  *,None,Set Session Permissions
  >,250 XProxy accepted but user identity could not be obtained,

• Exchange 2010 Unable to Assign Full Access Permissions using a Security Group

  I've been running into this issue lately.  I cannot seem to use groups to allow full access to mailboxes.  When I add them from the EMC, it will show up when you go to "Manage Full Access Permission...".  After waiting a day and even restarting
  the Information Store service, the permissions do not take effect.  When I view the msExchDelegateListLink attribute of the mailbox account, the group is not listed.
  When I grant a user full permission, it works and updates the attribute.  However, on occasion when I revoke the full access permission for a user is doesn't always remove that user from the msExchDelegateListLink attribute.  So the mailbox
  will still appear in Outlook, but the user isn't able to see new emails.
  Any ideas on what may be going wrong?
  Environment:
  Exchange Server 2010 SP1 Standard
  Windows Server 2008 R2 Standard
  Outlook 2010 SP1 (tried without SP1 as well)
  I was looking over Add-MailboxPermission on Technet (http://technet.microsoft.com/en-us/library/bb124097.aspx) and I noticed that it doesn't mention adding groups.  Is this not possible?

  I never got a proper fix.
  I worked around it by creating a script which gets the members of an AD Mail Enabled security group, and updates the full access based on the groups members.
  Here's a script I'm running every hour which updates permissions. It's probably not the most efficient script ever, but it works. It has several benefits
  1. Managers of the distribution group can add/remove mailbox members using OWA or through the address list
  2. New members of groups are added to FULL Access Permissions
  3. Members removed from the groups are removed from FULL access permissions
  4. Automapping works :)
  5. Maintains a log of access added / removed / time taken etc.
  Obviously I have had to remove domain related information, replace with whatever your domain requirements are, and PLEASE debug it properly in your environent first, don't complain to me if it wipes out a load of access for you or something like that!
  It takes about 5 minutes to run in my environement. Some formatting seems to have got messed up on here, sorry. I hope it is of use!
  # Mailbox Permissions Setter for Exchange #
  # v1.1 #
  # This script will loop through all mailboxes in Exchange and find any where #
  # the type is 'SHARED'. These should be determined to be a GROUP/SHARED mailbox #
  # and access to these mailboxes are controlled by a single ACL, e.g. 'ACL_Shared_Mailbox'. #
  # This script will add any members of these ACLs directly to the Full Access Permissions #
  # of the mailbox and also remove them if they no longer need the access. #
  # Script created by Jon Read, Technical Administration
  # Recent Changes
  # 15/11/2012
  # 1.1 Added exclusions for ACLs that we don't want automapping to happen for
  # 12/11/2012
  # 1.0 Initial script
  #Do not change these values
  Add-PSSnapin *Ex*
  $starttime = Get-Date
  $logfile = "C:\accesslog.txt"
  $logfile2 = "C:\accesslog2.txt"
  $totaladditionstomailboxes = 0
  $totalremovalsfrommailboxes = 0
  $totalmailboxesprocessed = 0
  $totalmailboxesskipped = 0
  # Exclude any ACLs that shouldn't be processed here if they are used for a non-standard purpose and
  # we don't want FULL access mapping to happen. Seperate array values with commas
  $ExcludedACLArray = "DOMAIN\ACL_ExcludedExample"
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-Output "#----------------------------------------------------------------#" >> $logfile
  Write-Output "# Mailbox Permissions Setter for Exchange #" >> $logfile
  Write-Output "# v1.1 #" >> $logfile
  Write-Output "#----------------------------------------------------------------#" >> $logfile
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-output "Start time $starttime ">> $logfile
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  # Set preferred DCs and GCs
  $preferredDC = "preferredDC.domain"
  $preferredGC = "preferredGC.domain"
  Write-Output " PreferredDC = $preferredDC ">> $logfile
  Write-Output " PreferredGC = $preferredGC " >> $logfile
  Set-ADServerSettings -PreferredGlobalCatalog $preferredGC -SetPreferredDomainControllers $preferredDC
  # The first part of this will ADD permissions to the mailbox, reading from an associated ACL.
  # Check for all mailboxes where the type is SHARED. These are the only ones we would
  # want to apply group mailbox permissions to.
  foreach ($mailbox in get-mailbox -resultsize "unlimited" | where-object {$_.RecipientTypeDetails -eq "SharedMailbox"})
  $totalmailboxesprocessed = $totalmailboxesprocessed + 1
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-Output "|-------------------------------------------------------" >> $logfile
  Write-Output "| MAILBOX ADDITIONS: $mailbox " >> $logfile
  Write-Output "|-------------------------------------------------------" >> $logfile
  $mailbox=$mailbox.ExchangeGuid.ToString()
  # For each of them, get the distribution list applied to the mailbox (Starting DOMAIN\ACL_)
  # We then need it to be turned into a string to use later.
  #Declared $changes as 0. if this is set to 0 at the end of the mailbox job, we know no changes were made.
  $changes = 0
  foreach ($distributiongroup in get-mailbox $mailbox | Get-MailboxPermission | Where-Object {$_.User -like "DOMAIN\ACL_*" })
  $skipACL = 0
  #Get the distribution group and put the name in a useable format
  $distributiongroup=$distributiongroup.user.tostring()
  Write-Output "Found ACL $distributiongroup" >> $logfile
  # Check if this distribution group needs to be excluded and if it shouldn't be processed
  # then move onto the next ACL. This will stop FULL access being granted if the mailbox is
  # used for a non-standard purpose. See the start of this script
  # for where these are excluded (ExcludedACLArray)
  foreach ($ACL in $ExcludedACLArray )
  if ($distributiongroup -eq $ACL)
  $skipACL = 1
  Write-Output "ACL $distributiongroup is excluded so skipping mailbox " >> $logfile
  $totalmailboxesskipped = $totalmailboxesskipped + 1
  if ($skipACL -eq 0)
  # Get each user in this group and for each of them, add try to add them to full access permissions.
  foreach ($user in Get-DistributionGroupMember -identity $distributiongroup)
  # Get the user to try, convert to DOMAIN\USER to use shortly
  $user="DOMAIN\" + $user.alias.ToString()
  # Check to see if the user we have chosen from the ACL group already exists in the full access
  # permissions. If they do, set $userexists to 1, if they do not, leave $userexists set to 0.
  # Set $userexists to 0 as the default
  $userexists = 0
  foreach ($fullaccessuser in get-mailbox $mailbox | Get-MailboxPermission)
  # See if the user exists in the mailbox access list.
  # Change $fullaccessuser to a useable string (matching $user)
  $fullaccessuser=$fullaccessuser.user.tostring()
  if ($fullaccessuser -eq $user)
  $userexists=1
  # Break out of foreach if the user exists so we don't unnecessarily loop
  break
  # Now we know if the user needs to be added or not, so run code (if needed) to add
  # the user to full access permissions
  if ($userexists -eq 0)
  Add-MailboxPermission $mailbox –user $user –accessrights "FullAccess"
  Write-Output "Added $user " >> $logfile
  $changes = 1
  $totaladditionstomailboxes = $totaladditionstomailboxes + 1
  #Now repeat for other users in the ACL
  #if changes were 0, then log that no changes were made
  if ($changes -eq 0)
  Write-Output "No changes were made." >> $logfile
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-Output "---------------------------------------------------------------------------------" >> $logfile
  Write-Output " FINISHED ADDING PERMISSIONS" >> $logfile
  Write-Output "---------------------------------------------------------------------------------" >> $logfile
  Write-Output " " >> $logfile
  # The second part of this will REMOVE permissions from the mailbox, reading from an associated ACL.
  ## Check for all mailboxes where the type is SHARED. These are the only ones we would
  ## want to apply group mailbox permissions to.
  foreach ($mailbox in get-mailbox -resultsize "unlimited" | where-object {$_.RecipientTypeDetails -eq "SharedMailbox"})
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-Output "|-------------------------------------------------------" >> $logfile
  Write-Output "| MAILBOX REMOVALS : $mailbox " >> $logfile
  Write-Output "|-------------------------------------------------------" >> $logfile
  $mailbox=$mailbox.ExchangeGuid.ToString()
  #Declared $changes as 0. if this is set to 0 at the end of the mailbox job, we know no changes were made.
  $changes = 0
  # For the current mailbox, get a list of all users with FULLACCESS, and then for each of them
  # check if they exist in the ACL
  foreach ($fullaccessuser in get-mailbox $mailbox | Get-MailboxPermission | Where-Object {$_.Accessrights -like "FullAccess" })
  # Get the security identifier (SSID) of the FULLACCESS user to store for later.
  $fullaccessuserSSID=$fullaccessuser.user.SecurityIdentifier.ToString()
  $fullaccessuser=$fullaccessuser.User.ToString()
  #If user needs to be excluded then skip this bit
  #Users added or removed will only start with 07 (07$, 07T, so only run if the user starts with this.
  #This stops it trying to remove NT AUTHORITY\SELF and other System entries
  if ($fullaccessuser -like "DOMAIN\07*")
  # Set $userexists to be 0. if we find the use user needs to remain, then change it to 1.
  $userexists=0
  # Check if this user exists in the ACL, if not, remove.
  foreach ($distributiongroup in get-mailbox $mailbox | Get-MailboxPermission | Where-Object {$_.User -like "DOMAIN\ACL_*" })
  $distributiongroup=$distributiongroup.user.tostring()
  #Write-Output "Found associated distribution group $distributiongroup" >> $logfile
  # Get each user in this group and for each of them, See if it matches the user in the mailbox.
  foreach ($user in Get-DistributionGroupMember -identity $distributiongroup)
  # Get the user to try, convert to DOMAIN\USER to use shortly
  $userguid = $user.Guid.ToString()
  $user="DOMAIN\" + $user.alias.ToString()
  if ($fullaccessuser -eq $user)
  $userexists=1
  #we have found the user exists so no need to continue
  break
  # If userexists = 0, then they are NOT in the ACL, and should be removed from
  # the full access permissions. Run the code to remove them from full access.
  #CONVERT FULLACCESSUSER TO GUID AND REMOVE $FULLACCESSUSERGUID NOT $USERGUID
  if ($userexists -eq 0)
  Remove-MailboxPermission -Identity $mailbox –user $fullaccessuserSSID –accessrights "FullAccess" -Confirm:$false
  Write-Output "Removed $fullaccessuser " >> $logfile
  $changes = 1
  $totalremovalsfrommailboxes = $totalremovalsfrommailboxes + 1
  # if changes = 0, no changes were made to this mailbox, so log this fact.
  if ($changes -eq 0)
  Write-Output "No changes were made." >> $logfile
  #Put the time in a displayable format
  $endtime = Get-Date
  $runtime = $endtime - $starttime
  $runtime = $runtime.ToString()
  $runtime1 = $runtime.split(".")
  $totaltime = $runtime1[0]
  Write-Output " " >> $logfile
  Write-Output " " >> $logfile
  Write-Output "|-------------------------------------------------------------------------------------- " >> $logfile
  Write-Output "| SCRIPT COMPLETE : STATS " >> $logfile
  Write-Output "|-------------------------------------------------------------------------------------- " >> $logfile
  Write-Output "| Total Mailboxes Processed : $totalmailboxesprocessed " >> $logfile
  Write-Output "| Total Additions : $totaladditionstomailboxes " >> $logfile
  Write-Output "| Total Removals : $totalremovalsfrommailboxes " >> $logfile
  Write-Output "| Total Mailboxes Skipped due to ACL : $totalmailboxesskipped " >> $logfile
  Write-output "| Start time : $starttime ">> $logfile
  Write-output "| End time : $endtime ">> $logfile
  Write-Output "| **END OF RUN** - Elapsed time : $totaltime " >> $logfile
  Write-Output "|---------------------------------------------------------------------------------------" >> $logfile
  Write-Output " " >> $logfile

• Exchange 2010 - unable to connect coldfusion

  Unable to connect to the Exchange server using HTTP/HTTPS protocol.
  HTTP response code : 400
  I have some Coldfusion code that used to work to add calendar events on behalf of a user.  The Exchange server is hosted at intermedia.net.  I've beat this code to death to no avail.  I could use a little hand-holding now.

  Hi,
  According to your description, you use some Coldfusion code to add calendar events on behalf of a user.
  If I misunderstand your meaning, please feel free to let me know.
  If yes, agree with ED said, I recommend you ask for more professional help on our development forum.
  http://social.technet.microsoft.com/Forums/exchange/en-US/home?forum=exchangesvrdevelopment
  If you have any question, please feel free to let me know.
  Thanks,
  Angela Shi
  TechNet Community Support

• Find Objects in the StackFrame via the ID

  Hello everyone,
  I'm looking for a way to find a variable via a valid Object ID. Here is some code of mine in a pseudo manner how I access the variables in the current frame:
  List<LocalVariable> vars = frame.visibleVariables();
  Map<LocalVariable, Value> values = frame.getValues(vars);
  for (LocalVariable entry : vars) {
            Value val = (Value) values.get(entry);
            // val.toString() ==> "instance of abc (ID=1234)"
  Now, if I parse all value objects, I can check for the ID. But how do I get a reference to a object ID which is not in the first hierarchy.
  For example, the object A (ID=1234) has object B (ID=2345) as a member. If I'm looking for ID=2345, I don't find the object with the sketched algorithm.
  Of course, I can iterate over all objects recursively. But in a big system, this takes forever by doing it manually.
  So, is there a builtin method/way to get a object reference or absolute object name ( like ID=6432 yields objA.objB.objC) only by using a known Object ID?
  Kind Regards,
  Thomas

  Just out of curiosity, why not use the Pcd repository manager in KM. This allows you to be able to index the entire PCD catalog, and would allow you to use the standard searching capabilities.
  D

• Unable to find CS6 serial number purchased via school website. [was: upsetting..]

  So, i've been a Cs6 user for about 2 years now purchased the software through my school website that goes through adobe. Everything went great... until just recently my computer was at it's worst and i unfortunately had to reset it to factory settings deleting my cs6 software and i thought i could just come and redownload it through my profile, but ironically they cannot find any records of my purchase and with my computer being cleared i do not have proof of purchase, and i watched horrified as the massive amounts of money to buy the programs goes down the toilet. I am in school, work 2 jobs to pay for my future wedding upcoming in january, expecting a baby in november, and in the process of purchasing a house. my school and work focus on my cs6 use and without it i'm at a strong disadvantage. So i do not have the money to pay for a new software and i'm definately not going to pay for monthly services for something i have already bought for ALOT of money already. I strongly suggest you either pay for the disc copy, or print your proof of purchase because as i had to learn the hard way you CANNOT trust this company to back you up with support after your software has been misplaced on your computer, and until they can find my purchase or assist my problem i will not be using their services as will my friends and family.

  Adobe will support you if they can find evidence that you've purchased the software. If they can't, they're at a bit of a disadvantage themselves.
  You can always re-download the software from Download CS6 products
  However, that will install as a 30 day time limited trial version. You'll need to enter your CS6 serial number to license it again on your computer.
  The serial number is what you need to find (then store safely  for future reference).
  purchased the software through my school website that goes through adobe.
  Have you tried going back through where you bought the software? You would have registered the software when you first bought it.

• How to Replicate two Exchange 2010 Servers

  Hello all,
       This is my first post here. I fear our organization may have made a grave error. Here is our basic setup:
  Location 1 - 3 2008 R2 standard servers in a domain. 1 Exchange 2010 sp3 server.
  Location 2 - 3 2008 R2 standard servers in the same domain connected over CISCO VPN. 1 Exchange 2010 sp3 server
  Our objective was to replicate the first site at the second site. We have setup DFS and made a BDC at the second site, no issues. However, I have been doing some reading on Exchange replication, and it looks like we are in trouble. I had read that Exchange
  2010 could be fully replicated over two servers (unlike 2007). However, I now have read that this requires the Enterprise edition of Windows server 2008 R2. So, I guess I have three questions to start:
  Is there ANY way we can replicate site 1 to site 2 with the current setup? Even if it means site 2 is "inactive" unless we need it for a failure at site 1?
  If not, can we upgrade to the enterprise edition for the servers? Any idea on cost?
  If we upgrade to Enterprise, is there a decent place to go to read on how to setup the second site?
  Thanks very much.

  Hello,
  According to your description:
  "Is there ANY way we can replicate site 1 to site 2 with the current setup? Even if it means site 2 is "inactive" unless we need it for a failure at site 1?"
  For CAS and Hub Transport roles you can simply deploy an additional server in secondary site and configure namespaces, mail flow etc. For mailbox role you should configure
  DAG. But it requires at least Windows 2008 R2 SP1 Enterprise or Windows 2012 Standard. In addition you cannot mix Failover Clustering and Windows Network Load Balancing so
  for full redundancy you need:
  1. Four Exchange servers: 2 CAS + Hub Transport with Network Load Balancing and 2 Mailbox servers with DAG.
  2. Two Exchange servers with CAS, HT and Mailbox and deploy hardware Load Balancer.
  "If not, can we upgrade to the enterprise edition for the servers? Any idea on cost?"
  In-place upgrade is not supported when Exchange server is installed. The only option is to deploy an additional server (Windows 2008 R2 Enterprise, 2012 Standard) and move
  all resources from old server.
  "If we upgrade to Enterprise, is there a decent place to go to read on how to setup the second site?"
  The starting point is to configure Active Sites properly. For more info:
  http://technet.microsoft.com/en-us/library/dd979799%28v=exchg.141%29.aspx
  http://technet.microsoft.com/en-us/library/dd979781%28v=exchg.141%29.aspx
  http://exchangeserverpro.com/exchange-server-2010-database-availability-group-installation-step-by-step/
  http://www.msexchange.org/articles-tutorials/exchange-server-2010/high-availability-recovery/designing-site-resilient-exchange-2010-solution-part1.html
  http://technet.microsoft.com/en-us/library/dd638121%28v=exchg.141%29.aspx
  Hope it helps,
  Adam
  CodeTwo: Software solutions for Exchange and Office 365
  If this post helps resolve your issue, please click the "Mark as Answer" or "Helpful" button at the top of this message. By marking a post as Answered, or Helpful you help others find the answer faster.

• Exchange 2010 to Exchange 2013 Public Folder Problem

  Dear Experts,
  I am in a face of migrating Exchange 2010 to Exchange 2013. Below are my infrastructure details,
  1) Parent Domain in Site A (abc.com)
  2) One Child domain in Site A named child1.abc.com and Exchange 2007 is running in Site A child domain
  3) One Child domain in Site B named me.abc.com and currently Exchange 2010 is running in Site B.
  I have installed Exchange 2013 in Site B in coexistence scenario now Exchange 2013 users in Site B trying to attempt connection with a public folder store in the Site A Exchange 2007 servers instead of Site B Exchange 2010 servers.
  Anyone help will be highly appreciated.
  Thanks & Regards,
  ZB

  so you want users to access the PF in site B.
  Check the setting of Databases in Exchange 2013 and find out what is default Public Folder setup for those Database. You will basically need to change the default Public Folder in Exchange 2013 from Site A PF to Site B,, the way you have explained the scenario.
  run this for Exchanger 2013 DA
  Get-mailboxDatabase -Identity Exchange2013DBNAME | fl
  Get-MailboxDatabase -Identity e15-db1 | fl *PublicFolder*
  Where Technology Meets Talent

• Cisco 5.0 "Your messages are not available now" after exchange 2010 and DC migration to a new host

  Guys,
  First of all, thanks for looking at this post. Hopefully you guys can help me out. My unity users, when dialing into voicemail are getting the message "Your messages are not available now".
  Services in error state under the event viewer:
  Event Type:    Error
  Event Source:    CSAgent
  Event Category:    Kernel Rule 
  Event ID:    256
  Date:        7/29/2014
  Time:        11:42:41 AM
  User:        N/A
  Computer:    UNITY
  Description:
  A packet with a bad transport layer header was detected. Reason: Illegal TCP reserved flags set using interface Wired\HP NC324i PCIe Dual Port Gigabit Server Adapter. TCP: 00.000.00.000/443->00.00.0.00/1241, flags 0x10. The operation was denied.
  Event Type:    Error
  Event Source:    CiscoUnity_MALEx
  Event Category:    Error 
  Event ID:    30012
  Date:        7/29/2014
  Time:        11:44:27 AM
  User:        N/A
  Computer:    UNITY
  Description:
  An occurred which prevents successful Exchange access by CsBMsgConnector via MAPI.
  This is typically an indication of configuration issues with Unity, Exchange, or the MAPI subsystem.
  Verify that the Unity services accounts are granted the correct permissions and that there are no issues with installation.  The SysCheck utility may assist in diagnosing the problem.
  Event Type:    Error
  Event Source:    CiscoUnity_Doh
  Event Category:    Error 
  Event ID:    32013
  Date:        7/29/2014
  Time:        11:44:27 AM
  User:        N/A
  Computer:    UNITY
  Description:
  Doh logon failed due to messaging component logon error: 8004052eH
  I found and followed to the letter:
  http://www.cisco.com/c/en/us/support/docs/voice-unified-communications/unity/107323-unity-error.html
  I also went ahead and ran GUSI with some mixed results under environment information:
  SQL Version = Microsoft SQL Server  2000 - 8.00.2282: unknown SP
       SQL Edition = Desktop Engine
       Windows version =  5.2 Build 3790: Service Pack 2
       Outlook is not installed on the local server
       MAPI Provider : CDO Version - 6.5.8211.0
       MAPI Shared Memory: (HKLM:SOFTWARE\Microsoft\Windows Messaging Subsystem\Applications\<process>\SharedMemMaxSize)
              AvCsMgr : is set to recommended value
              AvMsgStoreMonitorSvr : RegKey not found.  Recommend add the key AvMsgStoreMonitorSvr and set DWORD SharedMemMaxSize with a value of 4194304 (decimal)
              AvNotifierMgr : RegKey not found.  Recommend add the key AvNotifierMgr and set DWORD SharedMemMaxSize with a value of 4194304 (decimal)
              AvUMRSyncSvr : is set to recommended value
              CsBMsgConnector : RegKey not found.  Recommend add the key CsBMsgConnector and set DWORD SharedMemMaxSize with a value of 4194304 (decimal)
              CsBridgeConnector : RegKey not found.  Recommend add the key CsBridgeConnector and set DWORD SharedMemMaxSize with a value of 4194304 (decimal)
              CsVpimConnector : RegKey not found.  Recommend add the key CsVpimConnector and set DWORD SharedMemMaxSize with a value of 4194304 (decimal)
           TCPChimney : Disabled
           RSS : Disabled
           *Pulled from UnityDB Configuration Table*
           ExcludeAllReceipts : 0
           ExcludeReturnReceipts : 0
           DisableSearchFolderUse : 0
           MinSearchFolderLifeHours : 1
           OptimizeSearchFolderUse : 0
  I tried following and deleting the Unity System Profile:
  https://supportforums.cisco.com/discussion/11249996/unity-501-exchange-2010-unable-logon-mapi-mailbox
  But I am still scratching my head. Any direction will be appreciated.

  Turns out that unity came back after all this. Maybe it just needed time. I think I answered my own question.  Anyways, this post could serve for future reference. 

• Unable to find Adobe PDF resource files on Acrobat X Pro

  I have a Windows 7 32-bit machine that receives the following error when attempting to create a PDF from Microsoft Office Word 2010: "Unable to find "Adobe PDF" resource files. "Acrobat PDFMaker" You must have Administrator priveleges to install these files. Please contact your local systems administrator" The user is a local administrator. Note: This does NOT happen on Excel 2010, only Word.
  I've tried uninstalling and re-installing Acrobat Pro, running the installer in safe mode from the default local administrator account, printing directly to the PDF printer and following several other suggestions from similar threads.
  Does anyone have any suggestions?

  http://helpx.adobe.com/acrobat/kb/convert-pdf-missing-pdfmaker-files.html
  http://helpx.adobe.com/acrobat/kb/troubleshoot-acrobat-pdfmaker-problems-office.html

• Certificate error on Outlook 2013 clients, Outlook 2007 clients do not get certificate error, Exchange 2010, dot local domain name

  Hi
  I'm looking for a solution that I can't seem to find.  I have an Exchange 2010 server running in a dot local domain (domainname.local), so my SSL certificate is installed using the servers external email DNS name.  email.mycompany.com
  I have followed the instructions to resolve this on the Exchange server, implemented the changes so autodiscovery sees the server as email.mycompany.com.  This works great for my Outlook 2007 users.  The downside is that none of my Outlook 2013
  clients can access their email without the certificate error server name mismatch.  
  I know Outlook 2013 has tighter security but I need to get rid of these cert errors, any thoughts out there?

  Hi,
  Since both your Outlook 2007 users and Outlook 2013 users are using Exchange 2010 with the same server configuration, it should be working in both Outlook client version.
  Please restart your IIS service by running IISReset /noforce from a Command Prompt window in Exchange to have a try. In Outlook, please re-create a Outlook profile to check whether the issue persists.
  Regards,
  Winnie Liang
  TechNet Community Support

• Exchange 2010 and GroupWIse 7

  Hi
  We are currently preparing to migrate to Exchange 2010. Our AD domain is w2k8r2 so we are unable to get an exchange 2003 server into the domain thus are unable to use the GroupWise connector.
  So I have setup a non-groupwise domain for the exchange server and this is linked to the GWIA. I have added an exchange user to the non groupwise domain and can see this in the system address book. When I try and send this user an email I get a 550 rejecting spoofed message.
  How can I get the GWIA to route email to the Exchange system?
  Thanks
  Andy

  Hi Massimo
  The issue that I have is that the domain of my users in GW and Exchange is the same. So when you send from GW to Exchange GW is seeing the address as the external address so when it hits the gwia it's being rejected because it thinks it's spam.
  Ideally what I need is the Exchange user to appear as a friendly name such as Joe Bloggs but for the address behind to be pointing to the internal Exchange address.
  Cheers
  Andy
  Originally Posted by mrosen
  Hi,
  AndyTee wrote:
  >
  > Hi
  >
  > We are currently preparing to migrate to Exchange 2010.
  My sympathy. ;)
  > Our AD domain
  > is w2k8r2 so we are unable to get an exchange 2003 server into the
  > domain
  Hey, that's cool. <g>
  > So I have setup a non-groupwise domain for the exchange server and this
  > is linked to the GWIA. I have added an exchange user to the non
  > groupwise domain and can see this in the system address book. When I try
  > and send this user an email I get a 550 rejecting spoofed message.
  >
  > How can I get the GWIA to route email to the Exchange system?
  You did. What makes you believe it's GW causing your problem? Because it
  duly delivers the Exchange error message?
  CU,
  Massimo Rosen
  Novell Product Support Forum Sysop
  No emails please!
  Untitled Document

• Problem with Exchange 2010, Q10 and attachment

  Q10 & Exchange 2010; unable to download and forward attachment
  Hi all,
  i have a problem with Q10 phone, sync with Exchange 2010 with activesync (not BES) all seem ok but unable to download attach.
  When press "download" didnt start. Unable also to forward same message but i think is a chainde problem.
  Same message from desktop (outlook) or OWA is ok and attach downloadable.
  This is the only Q10 present in company for test so i cannot compare to others BB.
  All other users connected to the exchaneg server have iphone & ipad no issue result. Email service seem ok also for desktop.
  Firmware was updateted about 10 day ago.
  Any idea for me?
  Thanks

  Hi marcottt,
  Could you provide more detail please so I can better assist?
  Do you have this issue with all attachment types? If not, what type of attachment are you having this issue with and what size is the attachment?
  What happens when you try to forward the message? Is any error received?
  Does removing and re-adding the email account make any difference?
  I look forward to your response.
  -FS
  Come follow your BlackBerry Technical Team on Twitter! @BlackBerryHelp
  Be sure to click Kudos! for those who have helped you.
  Click Solution? for posts that have solved your issue(s)!

• Upgrading domain controller from Server 2003 to Server 2012 R2, how will this affect Exchange 2010?

  Hi All,
  Below is an AD and Server related post that I had submitted last week. While I did receive valid responses for the post, I was advised to check with the Exchange forums for the Exchange related  question in
  bold. All responses are welcomed, thank you!
  ===========================================================
  Hi All,
  I am hoping that someone could perhaps provide some insight on this topic as I apparently can't seem to google the best answer.
  I have recently acquired an AD domain that is running on a 2003 domain controller. I have been tasked with upgrading our existing domain structure with 2012 R2 domain controllers for our main office and remote offices.
  The domain name is company.mynetwork.com, and it is the default first site name. We have multiple offices throughout the US with their own domain controllers (i.e. FL.mynetwork.com, NY.mynetwork.com, DC.mynetwork.com, etc.).
  Our main office, and default first site has one domain controller (mynetdc1) running Server 2003 R2. It is also our only DNS server for the main office. It also has an additional domain controller called mynetmaster3 which is running Server 2003.
  Both mynetdc1 & mynetmaster3 NTDS settings show them as global catalogs under AD Sites & Services. Both servers are also in the AD Domain Controllers OU, along with all of the other satellite office domain controllers.
  Additionally, our main office is running Exchange 2010 with the latest service pack. My questions are:
  Can we demote and retire mynetmaster3, then replace mynetdc1 with a newly promoted 2012 R2 global catalog domain controller without harming anything in the domain tree and interrupting connectivity to the other offices (this of course goes without saying
  after a 4 hour maintenance window to get the task completed has passed)?
  Should we upgrade the satellite offices first after raising the functional level for mynetdc1, or should we do the opposite (upgrade main office, then satellite offices)?
  MS Exchange 2010 is heavily dependent on AD, what effect will this entire project have on our email server? What steps should we take beforehand to ensure email continuity?
  Finally, is there any shame for a Net Admin to suggest that we hire an implementation specialist for this task? :)
  Any advice would be greatly appreciated!

  As long as the operating system on your Exchange servers isn't upgraded, and as long as you do the Active Directory domain and forest updates in the supported manner (the following link is a good example -
  http://blogs.msmvps.com/mweber/2012/07/30/upgrading-an-active-directory-domain-from-windows-server-2003-or-windows-server-2003-r2-to-windows-server-2012/), Exchange will happily operate behind the scenes.  Exchange 2010 is supported in the Windows
  forests (domain controllers, domain functional level and forest functional level) mentioned in the following TechNet article, which includes both Windows 2003 and Windows 2012.
  http://technet.microsoft.com/en-us/library/ff728623(v=exchg.150).aspx
  Due to this, you should be good as long as you do the domain controller, domain, and forest upgrades carefully.  Oh, and before you start each step, get a nice backup.