Exchange 2010 - Virtual Directory Internal & External URL's with Wildcard Cert

Similar Messages

• Exchange 2010 Virtual Directory Authentication Settings

  Is it normal for authentication settings to be different in IIS Manager and Exchange 2010 Management Console? OWA and ECP are set to forms based in EMC, but IIS shows OWA and ECP as basic = enabled and everything else = disabled. IIS shows
  OAB as windows = enabled and everything else = disabled.

  Hi,
  Here is a reference about the default IIS authentication settings and default
  Secure Sockets Layer (SSL) settings for the Client Access and Mailbox server roles:
  http://technet.microsoft.com/en-us/library/gg247612(v=exchg.141).aspx
  It is recommended to manage your Exchange virtual directories authentication settings in Exchange Management Console or Exchange Management Shell instead of IIS manager. Some authentication changes in IIS require an IIS reset. If you are using Exchange management
  tools, you will see a warning that would tell you to reset IIS if needed.
  Thanks,
  Winnie Liang
  TechNet Community Support

• Exchange 2010 mac outlook 2011 external

  Hi there,
  We have Exchange 2010 autodiscover working internally/externally on a Windows desktop Outlook 2010.
  However for Outlook 2011 on a mac, this only works internally and not externally.
  On mac with Outlook 2011, i put my email address, select User Name and Password for Method and select configure automatically.
  I then get the prompt for allowing redirectiong to
  https://webmail/autodiscover/autodiscover.xml , i click allow.
  It fails to configure automatically.
  i then manually enter the server as https://webmail/ews/exchange.asmx but it still doesnt work. Ive even tried putting in our domain controller into the directory settings.
  I've turned logging on outlook 2011 and it seems to connect into our enviornment, i can see our Exchange partition in the logs:
  /o=org/ou=Exchange Administrative Group(FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=clientaccessarray</
  It picks up our domain controller, our public folder server, all the correct EWS URL's eg OOF, OAB, UM.
  But for whatever reason it keeps failing with this error in the log:
  Outlook Exchange Auto Configure: Testing external autodicover settings: BAD
  any help appreciated.
  thanks

  Hi,
  I recommend you refer to the following article to troubleshoot the issue:
  http://www.officeformachelp.com/outlook/exchange/autodiscover/
  Troubleshooting
  Where Autodiscover services are either partially or incorrectly configured, users may experience the above from their mail client indicating they are being redirected to a different server, which may not exist or may be inaccessible. This can happen when
  an external DNS entry points to an internal server that is not accessible via the Internet. Administrators can either:
  Correct the Autodiscover settings on the network to properly direct mail clients to the correct server (preferable).
  Disable Autodiscover for the Exchange account in the mail client itself.
  To disable Autodiscover in Outlook for Mac run the following AppleScript command in AppleScript Editor.app:
  tell application "Microsoft Outlook"
  set background autodiscover of exchange account 1 to false
  end tell
  Exchange administrators may also need to test their external Autodiscover settings during setup or to troubleshoot connectivity issues. Microsoft has provided the
  Exchange Server Remote Connectivity Analyzer tool for them. This is a secure Microsoft website that will test a company’s Autodiscover settings and provide feedback about network and Exchange settings.
  Thanks.
  Niko Cheng
  TechNet Community Support

• Exchange 2010 Migration to 2013 Coexistence url's

  Hello,
  What exactly is required for the virtual directory url setup for Exchange 2010 coexisting with Exchange 2013? I have been searching online a lot preparing for my Exchange 2013 deployment and can't see to find a clear answer. The information
  I have come across from TechNet and other sources is all over the place with some stuff saying the external url needs to be empty while others say it should match Exchange 2013's setup. Others say the internal url should be empty while
  only the external should be populated. And I have even seen others say nothing on Exchange 2010 has to be touched and that Exchange 2013 will figure proxying out on its own once I configure the new url's on it.
  So what is supposed to be setup for the ExternalUrl and InternalURL to in Excahnge 2010 for coexistence with 2013? Currently my
  existing Exchange 2010 is internet facing with the plan of moving that to Exchange 2013 once that goes in as per Microsoft directions on implementing coexistence.

  Read the article below from Ross Smith. There can't be better article than this:
  http://blogs.technet.com/b/exchange/archive/2014/03/12/client-connectivity-in-an-exchange-2013-coexistence-environment.aspx
  If exchange 2010 and 2013 are on same site, then you need to:
  1. Remove External URL from Exchange 2010 CAS servers, retain the Internal URL
  2. Move the SSL certificates from Exchange 2010 to Exchange 2013
  3. Point the external URL to Exchange 2013 instead of Exchange 2010
  4. Of course, you would need to re-configure Autodiscover, Web Services URLs on Exchange 2013 CAS servers.
  Once this is done, for any mailbox that is hosted on Exchange 2010, Exchange 2013 would proxy the connections and deliver the content.
  - Sarvesh Goel - Enterprise Messaging Administrator

• Changing Internal & External URLs?

  We run split DNS so right now for all services the internal and external Exchange 2010 URLs are simply set to mail.domain1.com.
  If I change them to mail.domain2.net, assuming there is a valid cert on the Exchange box for mail.domain2.net, and assuming that split DNS points mail.domain2.net to the internal/external IP of the Exchange box, new clients should pick up the new domain.
  What happens to existing clients i.e. Outlook and ActiveSync?
  Will they continue to use mail.domain1.com until the account is removed and added again, or do they do a periodic refresh/update/poll of which setting to use?
  In particular would the URL used by Outlook Anywhere be updated on the client automatically?
  This topic first appeared in the Spiceworks Community

  Hi,
  For the migration from the Exchange 2007 to Exchange 2013, we need change the external URLs with the new Exchange 2007 host name legacy.domain.com and migrate all mailboxes including public folders.
  For more information about the migration, you can refer to the following articles:
  http://blogs.technet.com/b/meamcs/archive/2013/07/25/part-3-step-by-step-exchange-2007-to-2013-migration.aspx
  http://blogs.technet.com/b/meamcs/archive/2013/07/25/part-4-step-by-step-exchange-2007-to-2013-migration.aspx
  If you have any question, please feel free to let me know.
  Thanks,
  Angela Shi
  TechNet Community Support

• Exchange 2010 OWA and ASA5510 - Wrong URL?

  I'm in the final steps of migrating my customer's Exchange server from Exchange 2003 to Exchange 2010.  I've got all the mailboxes moved and am testing the OWA access.  Under Exchange 2003, the internal/external users were able to access OWA thru the following URL:
  http://mail.mycustomer.org/exchange
  It would pop up a login box, they'd put in their domain info and get connected to their mailbox.
  After migrating to Exchange 2010, the user had to change the URL to httpS://mail.mycustomer.org/exchange or httpS://mail.mycustomer.org/owa, but it worked internally.  When I test it externally, I get the following page:
  https://mail.mycustomer.org/+CSCOE+/wrong_url.html
  I  have next to no experience with Cisco devices, management, and/or maintenance, but what I've found in my research points to an issue w/ our ASA5510 and the port 443 required by the SSL connection to the Exchange server.  Any help to resolve this issue so that my external users will be able to access OWA would be greatly appreciated.  Thanks.

  Hi,
  Can you check the output of the following commands
  show run http
  show run webvpn
  These are basically the 2 services that utilize the port TCP/443 port on the ASA.
  The first commands output will show some settings related to the ASDM which is the GUI for the ASA management. The second command output will show settings related to the SSL VPN.
  Both of these services can be modified to use some other port than TCP/443 which would leave the port free for your server.
  I assume that you only have one public IP address at your disposal which is configured on the ASA interface and you have no extra public IP address? Otherwise this should be no problem at all.
  Naturally if you change the port on ASDM or SSL VPN it will cause some inconvinience for users of those services. Ofcourse you have the option to map the local TCP/443 port of the server to some other public port like TCP/444 but again this might cause inconvinience to the users also.
  - Jouni

• Exchange 2010 Server not receiving External Mail

  Hi everyone,
  I have an Exchange 2010 Server which is connected to an edge server.
  Suddenly yesterday all the exchange users on this network stop receiving inbound Emails.
  Sending and receiving internal emails still works and even sending outbound emails.
  I try to restart the server to see if this could have solved the problem but unfortunately it didnt work.
  I dont know much about exchange and would be grateful is someone could offer a solution.
  Thank
  Breon

  Hi,
  Agree with v_2udan. And I just want to make a supplement to him.
  1.  
  The external Domain Name System (DNS) servers for your domain must have mail exchanger (MX) resource records pointing to your
  mail servers, or, if you are using an Internet service provider (ISP) or an external system, this external system must have an MX record for your domain and a mechanism to forward mail to your Exchange servers.
  2.  
  External servers must be able to access 25 port of you Exchange server on the internet. It can’t be blocked by firewall
  or other networking settings.
  3.  
  On Receive Connector, Anonymous users should be selected in Permission Groups.
  4.   Since
  you have Edge server, you can re-subscribe the Edge server.  
  Hope this helps.
  Thanks
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• Andrioid 4.4.4 Galaxy S5 and Exchange 2010 / Active Directory issue

  I have posted this here because I don't see a category for Exchange 2010 which is what we currently use and I am not sure where else to post it. Please redirect if needed.  Thanks in advance.
  I am an IT Tech and I am trying to connect my phone to my email using the standard email application on the phone, with no success. 
  I was convinced for a long while that it was my phone. 
  I tried everything I could with the phone and restricting background data and everything but nothing worked. 
  I type in the credentials and it accepts them and shows me the mailbox but then it never loads the mail and folders. 
  I must have gone through this process 100 times and occasionally I get a message saying the certificate is incorrect do I want to accept it anyway. 
  I view the certificate and it is for another domain.  When that doesn’t happen I just get pushed from checking the server setting and then it moves right to the settings of the mailbox. 
  However I don’t get the warning like I did when I created a new mailbox and AD account.
  Create new exchange mailbox/ AD account – This worked, but ultimately I want my current user name and mailbox to work. 
  I don’t want to move to a new one if I don’t have to – I created a new mailbox which intern created an AD account. 
  After this was done I attempted to sync this account with the phone. 
  It worked first time without a problem.  After the phone checked the server settings it gave me the warning that I was going to have to let the server control the device like it always does. 
  It also made me accept the System Administrator settings. 
  I sent a test email to and from it with no problem.
  There are other people on our server with Galaxy S5’s and other Android based devices and I have added mail to their devices just like I would my device and they have no problems at all. 
  I have matched up the mailbox settings and AD settings and everything is the same for the most part. 
  It is bound to be a little different because I am an IT Tech so obviously I have more than the others, but I don’t feel like additional security should not allow me to add to my mailbox to my device 
  Other things I tried through the process, with no success, in no particular order are:
  Tried connecting my account from different devices
  Disconnected and recreated mailbox
  Deleted and recreated AD account
  There is one thing I noticed in the security tab of the AD account, other people using our mail system and Android based devices have something called
  Data Sync.  That is some sort of contact in AD
  I guess.  I cannot find any information about it and when I add it to my security tab, it will not stay. 
  After I close AD and check back 15 minutes late it is gone. 
  I am trying to describe this the best possible way.  Has anyone experienced similar issue? 
  If there is any further information needed feel free to ask. 

  Then I would firstly suggest visiting the Remote Connectivity Analyzer Website to check common availability to your mailbox. Just run through the test.
  I ran this test as suggested two different ways.  With my user name and password and then a second time with the mail server.  Both times in failed all tests with the exception of the following three:
  Attempting to resolve the host name in DNS.
  Testing the TCP port 443 on host to ensure it's listening and open.
  The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server on port 443.
  All three of these passed.  I am not sure what most of this means, but we have people in the company a variety of different devices that connect with no problem.  For this reason I believe this problem is localized to my AD account or my mailbox,
  I have matched up settings with people that I know have the same device and use it on a daily basis with no problem and can not find anything different.

• Exchange 2010: Virtualized Exchange 2010 Datacenter Migration

  We have a virtualized Exchange 2010 production implementation that needs to be relocated to a new datacenter. We will be leveraging SAN based replication and VMWare to cutover.
  Some background info:
  3 CAS/HUB servers
  4 Node DAG across 2 sites (3 production Mailbox servers in the site to be migrated, 1 mailbox server will not move and be left in DR)
  Since I need to shutdown 3 mailbox servers in a 4 node DAG, the cluster will go offline and the databases will dismount. I could run a datacenter switchover to preserve service, but I have the OK to take Exchange completely down. 
  Knowing that:
  1) What are the best practices to shutdown and start up all the CAS servers and Mailbox servers (both in prod and DR)?
  2) Should I suspend replication or dismount the databases in advance and prevent them from automatically mounting on boot up?  Is the StartDagServerMaintenance script relevant in this situation?
  Any suggestions on the proper way to go about this is much appreciated.  Thanks for reading.

  -->1) During the shutdown...would it make sense to turn off the 4th mailbox server in the DAG which is located in our DR site? I'm thinking that leaving the DR mailbox server powered off and powering it up last among the DAG members would prevent
  any database copies from being activated in DR. 
  You already have a planned outage. I suggest you shut down the server in DR and start that after starting
  all the 3.
  2) To be able to mount a database in a 4 node DAG, I need to have the file share witness and two mailbox servers available first...correct?  
  Your fileshare witness should be online first otherwise none of your databases will get mounted.
  If your DAG contains odd number of members filesharewitness will be ignored, (even number of DAG members will use filesharewitness)http://blog.credera.com/technology-insights/microsoft-solutions/when-do-dags-need-a-file-share-witness/
  Thanks, MAS
  Please mark as helpful if you find my comment helpful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

• Exchange 2010 - Powershell Directory

  Morning. I have googled everywhere and can't find an answer to this problem anywhere. Has anyone got an ideas??
  PS C:\> New-PowerShellVirtualDirectory -Name "Powershell" -RequireSSL:$False
  New-PowerShellVirtualDirectory : An error occurred while creating the IIS virtual directory
  'IIS://<SVR>.<Domain>.com/W3SVC/1/ROOT/Powershell' on '<SVR>'.
  At line:1 char:1
  + New-PowerShellVirtualDirectory -Name "Powershell" -RequireSSL:$False
  + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      + CategoryInfo          : InvalidOperation: (<SVR>\Powershell (Default Web Site):ADObjectId) [New-PowerShellVir
     tualDirectory], InvalidOperationException
      + FullyQualifiedErrorId : 90E6376F,Microsoft.Exchange.Management.SystemConfigurationTasks.NewPowerShellVirtualDire
     ctory

  Hi,
  Please confirm if your Exchange Management Shell (EMS) and Exchange Admin Center (EAC) can be opened or work well in your Exchange server.
  If you want to reset Windows PowerShell virtual directory for default web site in Internet Information Services (IIS), please
  make sure the original PowerShell virtual directory has been deleted from the server:
  1. No PowerShell listed in IIS Manager.
  2. No PowerShell VD in ADSIEdit (CN=Configuration,DC=domain,DC=.com > CN=Services > CN=Microsoft Exchange > CN=Domain > CN= Administrative Groups > CN=(Groupname) > CN=Servers > CN=(ServerName) > CN=Protocols > CN=HTTP).
  3. Run this command from the Elevated cmd prompt -> cscript.exe Adsutil.vbs delete w3svc/1/root/PowerShell.
  If your EMS can’t be opened, then we can use Windows PowerShell Module shell to create the PowerShell virtual directory to have a try. If it doesn’t work, please collect some event logs or IIS logs in your Exchange server for further analysis.
  Regards,
  Winnie Liang
  TechNet Community Support

• Exchange 2010 can't send or receive email with attachments.

  Hello,
  We have an Exchange 2010 server, running under Windows 2008R2. Both the server and Exchange are current for Windows and Exchange updates. Exchange is on SP3 installed about a month ago with no errors reported in the event logs.
  The problem is that attachments over about 1 MB do not send or receive and no error message is returned. If I send an email message with a 3 MB attachment to myself, it reports as sent in Outlook. On the Exchange server the message queue shows nothing in
  the queue. I try to use Exchange mail flow tracking tool and it hangs when selecting “messages received from” option. I gave up waiting after 5 minutes for the display to populate.
  As the server is set attachments should be able to send and receive up to 20 MB.
  I checked and verified all settings I could find related to this. I checked with the Exchange Management Console per the following article:
  http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-limits-exchange-server-2010-part1.html
  I also checked using the Exchange Power Shell using the following article:
  http://eightwone.com/2010/09/29/exchange-message-size-limits/
  Both show that all settings are suitable. Details are below
  I would appreciate feedback on this problem.
  Thank you!
  Details from the articles noted above:
  First test was to attach a 3 mb text file in Outlook sent from my in house account to my in house account. After 5 minutes the test message was not received nor was there an error message returned.
  Checked The Exchange server mail queue and there was nothing in the queue. Checked the Exchange mail flow tracking tool and it hung when selecting “messages received from” option.
  Reviewed and verified settings per the following 2 articles:
  Article #1
  http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-limits-exchange-server-2010-part1.html
  Organization Configuration>Hub Transport>General Settings>Global Settings>Transport Settings set to max receive size (KB) = 20480
  Settings set to max send size (KB) = 20480
  Organization Configuration> Hub Transport> Send Connectors tab.
  Maximum message size (KB) set to 20480
  Exchange Management Console> Server Configuration> Hub Transport> and then on the right side, select the desired server.
  A list of all Receive Connectors will be shown below
  There are 3 receive Connectors
  #1) named Client XXXXXXXXXX
  Maximum message size (KB) set to 20480
  #2) named Default  XXXXXXXXXX
  Maximum message size (KB) set to 20480
  #3) named relay
  Maximum message size (KB) set to 20480
  Use Exchange Management Shell to check settings
  #1) Get-ADSite
  Returns:
  Name                           HubSiteEnabled
  Default-First-Site-Name        False
  #2) Get-ADSiteLink
  Name                      ADCost     ExchangeCost    Sites
  DEFAULTIPSITELINK         100                        {xxxx.local/Configuration/Si...
  #3) Get-ADSiteLink | select Max*
  MaxMessageSize
  unlimited
  Exchange Management Console>Expand Organization Configuration>Click on Hub Transport item>Click on Transport Rules tab
  No rules
  Article #2 
  http://eightwone.com/2010/09/29/exchange-message-size-limits/
  COMMAND: Get –TransportConfig
  results:
  ClearCategories                     : True
  ConvertDisclaimerWrapperToEml       : False
  DSNConversionMode                   : UseExchangeDSNs
  ExternalDelayDsnEnabled             : True
  ExternalDsnDefaultLanguage          :
  ExternalDsnLanguageDetectionEnabled : True
  ExternalDsnMaxMessageAttachSize     : 10 MB (10,485,760 bytes)
  ExternalDsnReportingAuthority       :
  ExternalDsnSendHtml                 : True
  ExternalPostmasterAddress           :
  GenerateCopyOfDSNFor                : {}
  HygieneSuite                        : Standard
  InternalDelayDsnEnabled             : True
  InternalDsnDefaultLanguage          :
  InternalDsnLanguageDetectionEnabled : True
  InternalDsnMaxMessageAttachSize     : 10 MB (10,485,760 bytes)
  InternalDsnReportingAuthority       :
  InternalDsnSendHtml                 : True
  InternalSMTPServers                 : {}
  JournalingReportNdrTo               : <>
  LegacyJournalingMigrationEnabled    : False
  MaxDumpsterSizePerDatabase          : 18 MB (18,874,368 bytes)
  MaxDumpsterTime                     : 7.00:00:00
  MaxReceiveSize                      : 20 MB (20,971,520 bytes)
  MaxRecipientEnvelopeLimit           : 500
  MaxSendSize                         : 20 MB (20,971,520 bytes)
  MigrationEnabled                    : False
  OpenDomainRoutingEnabled            : False
  Rfc2231EncodingEnabled              : False
  ShadowHeartbeatRetryCount           : 12
  ShadowHeartbeatTimeoutInterval      : 00:15:00
  ShadowMessageAutoDiscardInterval    : 2.00:00:00
  ShadowRedundancyEnabled             : True
  SupervisionTags                     : {Reject, Allow}
  TLSReceiveDomainSecureList          : {}
  TLSSendDomainSecureList             : {}
  VerifySecureSubmitEnabled           : False
  VoicemailJournalingEnabled          : True
  HeaderPromotionModeSetting          : NoCreate
  Xexch50Enabled                      : True
  COMMAND: 
  Set-TransportConfig –MaxReceiveSize 20MB –MaxSendSize 20MB
  C:\Windows\system32>Set-TransportConfig -MaxReceiveSize 20MB -MaxSendSize 20MB
  WARNING: The command completed successfully but no settings of 'Transport Settings' have been modified.
  COMMAND: 
  Get-SendConnector
  Identity                                AddressSpaces                         
   Enabled
  Internet                                {SMTP:*;1}                             
  True
  COMMAND: 
  Set-SendConnector -Identity Internet -MaxMessageSize 20MB
  WARNING: The command completed successfully but no settings of 'Internet' have been modified.
  COMMAND: 
  Get-ReceiveConnector
  Identity                                Bindings                                Enabled
  XXXXXXXXXX\Default XXXXXXXXXX           {0.0.0.0:25}                           
  True
  XXXXXXXXXX \Client XXXXXXXXXX     {:::587, 0.0.0.0:587}                   True
  XXXXXXXXXX \relay                        {0.0.0.0:25}                           
  True
  COMMAND: 
  Get-ReceiveConnector | fl Identity,MaxMessageSize
  Identity       : XXXXXXXXXX \Default XXXXXXXXXX
  MaxMessageSize : 20 MB (20,971,520 bytes)
  Identity       : XXXXXXXXXX \Client XXXXXXXXXX
  MaxMessageSize : 20 MB (20,971,520 bytes)
  Identity       : XXXXXXXXXX \relay
  MaxMessageSize : 20 MB (20,971,520 bytes)
  COMMAND: 
  Get-AdSiteLink | fl Name,*max*
  Name           : DEFAULTIPSITELINK
  MaxMessageSize : unlimited
  COMMAND: 
  Get-RoutingGroupConnector <ConnectorID> | FL Name, *Max*
  No routing group connectors are installed
  Individual
  Recipient Configuration > Mailbox>Properties of the User> Activate tab Mail Flow Settings> Properties>Message Size Restrictions settings:
  Set to 20480 for send and receive for all.
  Re-tested and had the same problem. 
  Post on Technet.

  ExchangeITPro,
  Thank you for your reply.
  >what SP are you at?
  As noted in the first paragraph: "We have an Exchange 2010 server, running under Windows 2008R2. Both
  the server and Exchange are current for Windows and Exchange updates. Exchange is on SP3 installed about a month ago with no errors reported in the event logs."
  >try restarting the transport services.
  Done previously as well as the entire server. No change.

• Installing Exchange 2010 on Server 2008 R2 Get error with Hub Transport Role

  Hub Transport Role
  Failed
  Error:
  The following error was generated when "$error.Clear();
            install-MsiPackage `
            -PackagePath ($RoleInstallPath + "TransportRoles\agents\Hygiene\ASEntIRS.MSI") `
            -LogFile ($RoleSetupLoggingPath + "\InstallASEntIRS.msilog") `
            -PropertyValues ("ALLUSERS=1") `
            -UpdatesDir $RoleUpdatesDir
          " was run: "Installing product D:\Program Files\Microsoft SQL Server\Microsoft\Exchange Server\V14\TransportRoles\agents\Hygiene\ASEntIRS.MSI failed. Fatal error during installation. Error code is 1603.".
  Installing product D:\Program Files\Microsoft SQL Server\Microsoft\Exchange Server\V14\TransportRoles\agents\Hygiene\ASEntIRS.MSI failed. Fatal error during installation. Error code is 1603.
  Fatal error during installation
  Elapsed Time: 00:00:01
  Client Access Role
  Cancelled

  Hi,
  From the description, I recommend you copy the Exchange installation files to the local machine, or download a fresh copy of Exchange 2010 and then reinstall it.
  Besides, please ensure that you install Exchange 2010 on 64-bit edition of Windows Server 2008 R2 Standard with SP1 or Windows Server 2008 R2 Enterprise with SP1.
  If the issue persists, please refer to the following KB further troubleshooting.
  You receive error 1603 when you try to install the Exchange Server 2010 RU1
  https://support.microsoft.com/kb/981474
  Hope it helps.
  If you need further assistance, please feel free to let me know.
  Best regards,
  Amy
  Amy Wang
  TechNet Community Support

• Exchange 2010 SP3 DAG Witness/Quorom Server Placement with 3 Datacenters

  Hi we have 2 Exchange 2010 SP3 Server in the same Organization in a DAG
  First one in Datacenter 1 in Germany
  Second one in Datacenter 2 in Austria
  There is a Third Datacenter available in Switzerland
  Where should we place the Witness Server?
  Our major concern is not a WAN Link will go down, most time a Datacenter will loose Power for some hours due
  maintenance work or other things.
  Is it a good idea to place the Witness Server in the third Datacenter!?
  We found a Document which some missconception which talks about placing the witness always in
  the primary Datacenter. But the Datacenter Switchover Document for Exchange 2013 says use a third Datacenter.
  Is that also okay for Exchange 2010 or are they totally different?
  Thank you in advance
  Troga

  Hi,
  It is a new configuration option in Exchange 2013 that we use a third location for hosting the witness server.
  Placing FSW in the third location will privide the ability automatically failover databases to the other datacenter in response to a datacenter-level failure event.
  For more details, you can look at the "Witness server placement considerations" section in the following article.
  http://technet.microsoft.com/en-us/library/dd298065(v=exchg.150).aspx
  Best regards,
  Belinda Ma
  TechNet Community Support

• New replacement Exchange 2010 server doesn't want to integrate with other two.

  I've run "winrm quickconfig" as this error suggests on ALL THREE servers and it says that everything is configured locally and remotely.

  I have a triple setup Exchange 2010 system and one of my exchange servers went down hard and I had to rebuild it.  it's been a while since I did this.  I'm running Windows Server 2012 R2 on the replacement serverand windows 2k8 R2 on the other two that remained running.
  Installation of Exchange 2010 went fine, but when I attempt to start the EMC on the new machine it can't make a connection to itself.
  I've completely removed the old server from the configuration, and the new server is using a new host name even, but I'm getting the following error.
  This topic first appeared in the Spiceworks Community

• Remove Exchange 2010 DC from single server environment coexisting with Exchange 2013

  My new Exchange server (2013) has completed all the migration steps including public folders. Mail is working well.  I do not use the old DC running Exchange 2010 for any local domain logins or computer control, it is strictly for OWA as is my new Exchange
  2013.  I went through the uninstall of Exchange 2010 with out error but cancelled it after it said it was ready to uninstall. When I shut down Exchange 2010 server mail no longer is available.  What am I missing? I am using same Public IP and different
  private (192.168.1.4 new EXchange 2013, 192.168.1.7 for Exchange 2010) I changed these settings in my asa Firewall and that is working with new settings as well.  Send and Receive connectors are on new while old one have been deleted.  Do my MX records
  need to be updated to reflect new server (ex2) as opposed to old server name (ex)? 
  You can come to Maui for a "Site Inspection" lol!
  System Admin

  Hi
  You need to make sure all your DNS settings are correct with the new server IP as well as autodiscover. Remove any routing connectors between exchange 2010 and 2013.
  Not best practice to run exchange on a DC but if you comfortable you have migrated all system mailboxes, user mailboxes and that the settings on your new server match the old one then proceed with the uninstall.
  Your ISP will obviously route mail to your firewall as you are doing the NAT from there.