Exchange 2013 site modification

Hi all,
My company has one forest, one domain and 8 domain controller which are located on two countries.
We have two Exchange servers on each country and in DAG architecture.
I wonder why my client Outlook connect to  remote site randomly rather than local site.
I notice that there is only one site on domain.
I try to separate it into two sites on AD sites and services tool.
After I separated it into two site, I found my Exchange report that can't find global catalog.
My question is how do I change Exchange site after I implement it on AD sites and services tool ??
Thanks,
Ian

Hi,
Have you try to reboot your Exchange server after you move one Exchange server to a different AD site?
If not, please restart this Exchange server to check result. Rebooting your
Exchange servers may become necessary after you move Exchange server to another site.
Besides, please use the Get-ExchangeServer MyExchange -Status | Format-List name,current* cmdlet to check the current DC and GC for this Exchange server. Please try to ping the listed DC and GC from this Exchange server.
And please use the following command to set the logging level to High and then check the Event View to see if there is any related messages.
Set-EventLogLevel “MSExchange ADAccess\Topology” -Level High
Best regards,
Belinda Ma
TechNet Community Support

Similar Messages

  • Exchange 2013 Site Resilience - Basic questions for setup in two seperate AD Sites, same domain

    I am just getting ramped up with Exchange 2013 and have a friend that I am assisting with planning an exchange 2013 deployment for.  I am not asking for step by step directions for setup, just asking for a basic overview so I can dig in to this and
    assist.
    Goal is to have an exchange server, one in NC and one in Switzerland in an active/passive mode for site resilience.  Both servers will be multi role servers. 
    This is a small organization, less than 50 users and on a budget for equipment.  HQ is in NC and the server will have all roles installed on a single server. Switzerland will have only one Exchange server for fail over.  There is only
    one domain total with two AD Sites. 
    My questions for clarity -
    1. Can I create a Site resilient deployment with two Exchange Multi Role servers in these locations?
    2. Currently, the organization does not have a Load Balancer.  Will this be required? 
    3. They do not have a third location for a Witness Server, what issues could potentially happen if the witness sits in one of the two sites?
    4. Any other basics for this design are much appreciated.  I am reading a lot, however a little confused as I read through the requirements.
    Thanks for your input and direction!
    Wall

    Hi
    Please find below answers to your questions.
    1. Can I create a Site resilient deployment with two Exchange Multi Role servers in these locations?
    Yes
    2. Currently, the organization does not have a Load Balancer.  Will this be required? 
    No you don't need to have a load balancer. As you are setting up the infrastructure in Active / Passive mode you don't need a dedicated LB for this.
    3. They do not have a third location for a Witness Server, what issues could potentially happen if the witness sits in one of the two sites?
    The issue with the witness server in primary or DR site is if your witness server is not responding your DAG won't work properly (failover). If you don't have a 3rd site then you can setup a witness server in your primary site and Alternate witness server
    to your DR site.
    4. Any other basics for this design are much appreciated.  I am reading a lot, however a little confused as I read through the requirements.
    I would recommend to use Exchange sizing calculator and technet is the best resource for you :)
    Kindly mark this as answer if it fulfill your requirements. :)
    Regards, Riaz Javed Butt Consultant Microsoft Professional Services MCITP, MCITP (Exchange), MCSE: Messaging, MCITP Office 365

  • Exchange 2013 with CU3 and silent redirection to different AD site

    After updating
    Exchange 2013 CU2 to Exchange 2013 CU3, OWA silent site redirection feature become not available. The customer has two Exchange 2013 sites. Before we updated to CU3, user whose mailbox located on site A, could be automatically redirected to OWA on
    site A, after he logged on to OWA on site B. IE gives Error page and bring out link to the OWA page on site A. Here is screenshot about issue workaround.
    Hopefully someone will help with some hint because it is quite anoying.
    All other stuff works good, Outlook anywhere, autodiscover, only this remained.
    Thanks in advance,
    Fajar

    Hi Angela,
    According to your description, OWA request cannot be automatically redirected after upgrade.
    YESS after upgrade Exchange 2013 CU2 to CU3. CU2 not problem.
    1. Will OWA work well if you manually click the OWA URL  in the web page?
    If i click manual, OWA Url in web page, OWA work well...
    PS Command "Get-OWAVirtualDirectory | fl CrossSiteRedirectType"
    ONLY HAVE ON EXCHANGE 2010 NOT ON EXCHANGE 2013.
    2. Do you can login OWA in site A?
    My Mailbox on Site-A, if i login OWA Site A (owa-A.domain.com), OWA work well & i can access my email.
    But... if i login from OWA Site-B (owa-B.domain.com), OWA not automatic silent redirect to Site-A, and i must click link below "Use following link to open to mailbox with the best performance https://owa-a.domain.com/owa/auth.owa
    My friend Mailbox on Site-B, if he login to OWA Site B (owa-B.domain.com), OWA-B work well & he can access email.
    But.. if he login from OWA Site-A (owa-A.domain.com), OWA not automatic silent redirection to Site-B, and he must click link below "Use following link to open to mailbox with the best performance https://owa-b.domain.com/owa/auth.owa
    3. Check the IIS log on site B CAS server and find if there is any error about the redirection.
    whether there is a bug in CU3?
    Hopefully someone will help with some hint because it is quite anoying on our custommer.
    Regards,
    Fajar

  • Creation of a second Exchange 2013 server on a different site (with the roles of MBX and CAS) fails on prepare active directory and prepare schema.

    Hello everyone
    I have a network infrastructure  consisting of 3 sites, site A, site B, and site C. i have 2 domain controllers on every site, and the AD roles are on the primary domain controller on site A. On site A I have an Exchange 2013sp1 CU6.
    I want to create a second Exchange on Site B, with the roles of mailbox (the exchange on Site A will be first DAG member and the Exchange on Site B will be the second member of the DAG) and CAS.
    First question: Is my  thought correct about installaing on the same server mailbox and CAS server?
    Second question: how many DAG witnesses I need for the DAG? One per site, or one in general (for example located on site A)
    Third question: When I am trying to perform “Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms”  I receive the error
    “ Setup encountered a problem while validating the state of Active Directory:
     The Active Directory schema version (15303) is higher than Setup's version (15292). Therefore, PrepareSchema can't be executed.  See the Exchange setup log for more information on this error. For more information, visit:
    http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.AdInitErrorRule.aspx “
    I tried  to run the PrepareSchema from  the ISO of Exchange 2013 SP1 and form the extracted content of Exchange 2013SP1 CU6 archive, but still receive the same error. Any ideas?
    Thanks in advance.

    Thank you for your answer,
    I have tried to run "Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms”  from
    Exchange 2013 CU6 media, but I still receive  the error:
    The Active Directory schema version (15303) is higher than Setup's version (15292). Therefore, PrepareSchema
    can't be executed.  See the Exchange setup log for more information on this error. For more information, visit:http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.AdInitErrorRule.aspx “
    any ideas?

  • Exchange 2013 with CAS and HLB in different sites

    Hello...
    Coming son, we'll deploy Exchange 2013 with high availability in all roles. The CAS and Hub Transport roles, are with a HLB; and the Mailbox with DAG. The infrastructure is formed by:
    Citi1:
    - AD Site 1
    - 1 Hardware Load Balance: HLB01 to load balance the CAS and Hub Transport of Exc01 and Exc02
    - 2 Exchange: Exc01 and Exc02 multiroles Exchange Server 2013
    - 1 DAG for Citi1 databases: conformed by the Exc01 and Exc02
    Citi2:
    - AD Site 2
    - 1 Hardware Load Balance: HLB02 to load balance the CAS and Hub Transport of Exc03 and Exc04
    - 2 Exchange: Exc03 and Exc04 multiroles Exchange Server 2013
    - 1 DAG for Citi2 databases: conformed by the Exc03 and Exc04
    The Active Directory is one forest with one domain. The Domain Controllers are Windows Server 2012. The Site1 and Site 2 are connected by a WAN link. The accepted domain is domain.com. The smtp address is @domain.com
    How to make that users of Citi1 always connect throught the HLB01 to their mailboxes; and the users of Citi2 always connect throught the HLB02 to their mailboxes if the autodiscover.domain.com is the same for all users?
    I have not found documentation about
    this architecture. Please help me.
    Thank you very much.
    Best regards, Javier Uribe

    Hi javier,
    In this issue, I guess you can try to use site affinity for the Autodiscover service for intranet-based traffic.
    To use site affinity, you specify which Active Directory sites are preferred for clients to connect to a particular Autodiscover service
    instance. 
    You configure site affinity by using the
    Set-ClientAccessServer cmdlet. This cmdlet lets you specify the preferred Active Directory sites for connecting to the Autodiscover service on a specific Client Access server. After you configure site affinity for the Autodiscover service,
    the client will connect to the Autodiscover service as you specified.
    According to your needs, you might want to allow users in the site1 to use site1, users in site2 to use site2 to access the Autodiscover Service.
    You can configure site scope for Client Access servers in the Site1 by following command.
    Set-ClientAccessServer -Identity "site1-cas" -AutodiscoverServiceInternalURI "https://internal.domain.com/autodiscover/autodiscover.xml" –AutodiscoverServiceSiteScope “site1”
    The Command for Site2.
    Set-ClientAccessServer -Identity "site2-cas" -AutodiscoverServiceInternalURI "https://internal.domain.com/autodiscover/autodiscover.xml" –AutodiscoverServiceSiteScope “site2”
    Hope it helps
    Best regards

  • Exchange 2013 - Prevent Outlook Clients From Connecting To A CAS Server In A Different AD Site

    Hi all,
    I could really do with your help!
    We have 3 physical sites, A, B & C, with sites A & B having a really fast low latency links between them, so from an AD point of view they are 1 site.  Site C has links to both sites A & B, but the link is a lot slower.
    We have an exchange design with 3 servers (one located at each physical site) that will form a DAG spread over the 3 physical sites.  Ideally we will separate the CAS and mailbox server roles out and have them controlled by a hardware load balancer,
    however we can have both roles on the same server if required.
    What we want, is to prevent is a situation where an outlook client in site C connects to a CAS server in site A/B with the mail being hosted on a mailbox server in site C therefore traversing the network twice to get its mail.
    From doing the Microsoft training course, my understanding is that in Exchange 2013, the CAS server only proxy's the request on to the mailbox server and does not redirect the request to the CAS server in the site where the mailbox server resides.
    I have seen information online stating that a single namespace is the way to go as long as your site links/network bandwidth is good, but nothing to help with our scenario.
    Has anyone else come across this situation and how did you get round it?
    Thanks in advance :)

    Hi Johnson,
    Based on my knowledge, Outlook Client will connect to the CAS server which in local first.
    Please check whether the CAS server that in site C is healthy.
    If the CAS server in site C is healthy, please disable the CAS Load Balance for testing.
    Also found a useful blog for your reference:
    Exchange 2013 Client Access Server Role
    http://blogs.technet.com/b/exchange/archive/2013/01/25/exchange-2013-client-access-server-role.aspx
    Thanks
    Mavis
    Mavis Huang
    TechNet Community Support

  • Second Exchange 2013 server in remote site

    Just finished migrating from 2007 to 2013 and decommissioned 2007.  Exchange 2013 is running in site A with 350 mailboxes on it.  However, almost half of those users reside in site B so the plan is to introduce a second Exchange 2013 server to
    this site and migrating mailboxes to it.  There already exists a DC & GC in both sites.
    My question is, immediately after I introduce Exchange 2013 into site B with CAS & MBX role, client computers from that site will start to receive certificate errors.  Will updating the SCP on the new exchange server to point to the SCP on the exchange
    server in site A be enough to mitigate that problem?  What other precautions will I need to take?  Has anybody been down this road?

    Hi
    You can introduce the second exchange server in the remote site and also setup a DAG. If you are using the same name on your certificate like mail.domain.com then you can use the cert for your second server as well. You need to make sure you have autodiscover
    records setup correctly.
    Hope this helps. Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

  • Exchange 2013 Multi Site Not SR/HA

    This is the first time we have deployed a multi site Exchange organization.  Here is the scenario and I am wondering if it is the correct one or if I should have done it a different way.
    We have a VPN setup between our corporate location and a satellite campus.  The satellite campus has it's own namespace and is a tree in our forest.  We have Exchange 2013 SP1 setup at the corp location.  We installed two Exchange 2013 SP1 servers
    at the satellite location in that domain in the same Exchange organization.  I was able to create a few linked users mailboxes (newly acquired and in process of user migration into our forest) and mail delivers between the two without issue.  But
    lately every new user will not receive email and they will be in the queue.  Does not matter if the email is from a corp user or a local user on the same mailbox server.
    We decided to do this because we want them to have all of their Exchange resources, email, CAS services and UM local to them, but they are still part of our system.  I am having a hard time finding why this is happening.  I also noticed that the emails
    sent from one satellite user to another is actually going through the corp hub transport server and not their local.  Sites and Services is setup with the correct subnets for each site.  I have verified the send and receive connectors.
    Is this scenario the best way to configure our organization or should we simply have created a second organization of their own and tried to share calendars, etc between the two?  All of our other services are centrally located so it only made sense that
    this should also work but before going live I wanted to see if this was the optimal way.  This is not a high availability or site resiliency plan.  No DAGs are used.  We are just one company with two separate very remote disjoint locations and
    even though we have a small VPN for services we would like to keep as much as possible local to that site.
    I have not been able to find information on this scenario.  Everything seems to point to SR/HA scenarios.  Any advice would be greatly appreciated.

    You can't create a second organization when the domain is in the same forest, so you shouldn't have done that.
    You're saying that SMTP messages are stuck in the queue?  That can be caused by any number of problems, but my experience is that it is most likely one of the following.  Look at the SMTP queue and see if any error code is listed, and post that
    here.
    1. In the main site, the site to which the messages are being sent, someone has modified the Default receive connector(s) in a way that the Exchange server can't connect.  The most likely issues would be modifying the PermissionGroups or RemoteIPRanges
    properties.  Best practice is to not modify the Default receive connector (except maybe to add AnonymousUsers to the PermissionGroups to allow inbound mail), and instead create a new connector for the special purpose with the connection limitations supplied.
    2. You have a firewall or relay device between the servers that's "helping" your SMTP connections (Cisco PIX firewalls are notorious for this, disable "SMTP Fixup") or breaking authentication.  The servers must be able to connect on port 25 without
    any molestation of the transactions.
    Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

  • Exchange 2013 cros site blank page OWA/ECP

    Hello,
    I have an issue with a fresh installation of Exchange 2013 SP1.
    The are two AD site in different cities, connected by WAN link (site-to site VPN organized by Cisco ASA).
    I installed two Exchange servers in Site A (MBX1 and MBX2, both with MBX+CAS roles), and one Exchange server MBX3 in Site B (also both with MBX+CAS roles).
    Each Exchange hosts its own mailbox database (DB1, DB2, DB3 respectively), there are no DAG.
    Users spread over all databases. For example, user1 has mailbox in DB1, user2 - in DB2, user3 in DB3.
    When user1 opens OWA/ECP on CAS server MBX1 or MBX2, he successfully get into his mailbox.
    But, if user1 opens OWA/ECP on CAS server MBX3, he get blank page (no error at all).
    And vise versa:
    When user3 opens OWA/ECP on CAS server MBX3, he successfully get into his mailbox.
    But, if user3 opens OWA/ECP on CAS server MBX1 or MBX2, he get blank page (no error at all).
    I know, that Exchange 2013 is able to proxy request cross site.
    Where are no custom redirects set on IIS.
    Also I check IIS (Back End Site) for right certificate.
    There are no error in Windows Event log and IIS event Log.
    All ports are allowed between sites.
    Everything looks good.
    What I did wrong? May be I need to enable cross-site OWA proxy in Exchange somewhere?
    Or it is a CISCO ASA misconfiguration?
    Any help would be appreciated!
    Thank You!
    Pavel

    Hi,
    Firstly, I’d like to confirm if all your Exchange server are internet facing servers.
    We can try to clear the Forms based authentication on the non-internet facing server.
    And here is a similar thread you can refer to:
    http://social.technet.microsoft.com/Forums/exchange/en-US/85983a21-3922-46f4-b64a-d53c0a2271a7/issues-with-crosssite-cas-redirect-of-owa-users?forum=exchange2010
    Thanks,
    If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Angela Shi
    TechNet Community Support

  • Exchange 2013, multiple IIS OWA sites with different authentication

    Hi
    I have an exchange 2013 server with Client Access and Mailbox server installed. The server has an second ip address which I have bound an additional IIS site to. The additional IIS site is named ExchangeExternalFBA.
    The default web site is configured for basic and windows authentication with:
    Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
    Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
    Then a new ECP and OWA are configured with:
    New-ecpVirtualDirectory -WebSiteName "ExchangeExternalFBA"
    New-OwaVirtualDirectory -WebSiteName "ExchangeExternalFBA"
    Set-owavirtualdirectory -identity "owa (ExchangeExternalFBA)" -LogonFormat FullDomain -FormsAuthentication:$true -WindowsAuthentication:$false -BasicAuthentication:$true
    Set-EcpVirtualDirectory -identity "ecp (ExchangeExternalFBA)" -FormsAuthentication:$true
    Then I perform an iisreset.
    My problem is that then when I try to access the ECP or OWA on the default website, it loads forms authentication! The ECP or OWA on the ExchangeExternalFBA web site works correctly and also loads forms authentication.
    If I run...
    get-owavirtualdirectory "owa (ExchangeExternalFBA)"
    then it returns:
    InternalAuthenticationMethods                       : {Basic, Ntlm,
                                                          WindowsIntegrated}
    BasicAuthentication                                 : True
    WindowsAuthentication                               : True
    DigestAuthentication                                : False
    FormsAuthentication                                 : False
    LiveIdAuthentication                                : False
    AdfsAuthentication                                  : False
    OAuthAuthentication                                 : False
    If I then run
    Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
    Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
    and perform another iisreset then when I try to access the ECP or OWA on the default website it loads correctly. But then the forms based authentication on the ExchangeExternalFBA website can no longer log in, it does not accept the user name and password.
    If I then disable and enable FBA on the ExchangeExternalFBA website then it works but forms based authentication takes over the default web site again!
    Whether I perform the above from the gui or from powershell it does not make a difference, the same behaviour is observed. Changing the logontype on the FBA does not make a difference.
    This has been tested on exchange 2013 cu1 and cu2.
    Similar(if not identical until they get sidetracked) issue reported in http://social.technet.microsoft.com/Forums/exchange/en-US/9fcd360f-6658-4940-add7-2f13265cf86b/multiple-owa-sites-on-a-single-server-2012-with-exchange-2013-mailbox-cas.
    This worked fine in outlook 2007 and 2010, why now do my virtual directories break each other?
    I can reproduce the issue on a test exchange 2013 I built in dev.
    Is this a bug or are you no longer meant to host different forms of authentication on a single cas?
    I'm mostly interested to see if this works for other people and why it no longer seems to work in 2013, so please no questions; 'why do you want 2 different forms of authentication'. 
    Much appreciated, Thanks!

    Based off of your feedback I have run the following:
    Remove-OwaVirtualDirectory "owa (ExchangeExternalFBA)"
    Remove-EcpVirtualDirectory "ecp (ExchangeExternalFBA)"
    iisreset
    Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
    Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
    New-ecpVirtualDirectory -WebSiteName "ExchangeExternalFBA" -Role ClientAccess
    New-OwaVirtualDirectory -WebSiteName "ExchangeExternalFBA" -Role ClientAccess
    Set-owavirtualdirectory -identity "owa (ExchangeExternalFBA)" -LogonFormat FullDomain -FormsAuthentication:$true -WindowsAuthentication:$false -BasicAuthentication:$true
    Set-EcpVirtualDirectory -identity "ecp (ExchangeExternalFBA)" -FormsAuthentication:$true
    iisreset
    After this there has been no change in behaviour. After the iisreset, forms have again hijacked the default web site and re-setting the authentication on the default web site removes the forms but breaks the ability to sign in to the forms based page on the
    ExchangeExternalFBA web site again.
    Note. '-Role Frontend' did not work. It showed the error:
    Cannot process argument transformation on parameter 'Role'. Cannot convertvalue "frontend" to type
    "Microsoft.Exchange.Management.SystemConfigurationTasks.VirtualDirectoryRole".
    Error: "Unable to match the identifier name frontend to a valid enumerator name.  Specify one of the following enumerator names and try again:
    ClientAccess, Mailbox"
        + CategoryInfo          : InvalidData: (:) [New-OwaVirtualDirectory], ParameterBindin...mationException
        + FullyQualifiedErrorId : ParameterArgumentTransformationError,New-OwaVirtualDirectory
    Running get-help New-OwaVirtualDirectory -detailed shows the correct usage would be '-Role ClientAccess'?
        -Role <ClientAccess | Mailbox>
            The Role parameter specifies the configuration that should be used
            when the virtual directory is created. The following are the values
            that can be used with this parameter:
            * FrontEnd Configures the virtual directory for use on a Client Access
              server.
            * BackEnd Configures the virtual directory for use on a Mailbox server.

  • Exchange 2013 - CAS Server Multi Namespace & Site Deployment

    Hello,
    I am
    currently designing the new Excahnge 2013 environment that I am looking to deploy by the end of the month. And I have come up with two designs on what could be deployed. The first being an active/passive design with a single namespace across two sites.
    One site being the primary site and the other being the secondary DR site in a single DAG. Now this is a common design and similar setups are documented in detail online on many blogs and such.
    Where my trouble is with the second design I have come up with which is an active/active model using a multi namespace across the same two sites utilizing two DAGs. The idea here being the first
    site is the corporate head office which would only contain those users. While the second site would contain everyone else not based out of the head office. The goal being to cut out internal users from connecting all of the way into the primary site when they
    are external to it.
    Now the way in which the network is setup between the two sites. Accessing the internet from the primary site requires you to go through the secondary. So for the second design my idea would
    be for external Outlook, OWA and ActiveSync connections would connect into the secondary site for it to then proxy over to the primary. Now I am used to how Excahnge 2010 did its proxying and if the ExternalUrl property was blank is knew to proxy to the other
    site. Is that still the case with Excahnge 2013 or it does not care at all and I can just populate both the internal/external url properties for all of the CAS servers at the primary site?
    Now assuming I do populate both the internal/external url property in Excahnge 2013 for the primary site. And for this example I am going to use mail01.domainname.com for the primary site and
    mail02.domainname.com for the second. To get Outlook, OWA and ActiveSync to connect for users of the primary site externally would it be as simple as having that external internet DNS entry for mail01.domainname.com point to the same IP as mail02.domainname.com
    would be? With mail02.domainname.com pointing to a externally accessible load balancer for the second site.
    Now applying the above logic and assuming as long as you hit a CAS server. And it will find your mailbox for you does that mean I can could also use the same namespace in both locations for
    say OWA and ActiveSync? So the idea being we want to keep using webmail.domainname.com for OWA access. So if I set that URL for both the primary and secondary site as long as I hit a CAS server in the secondary site. It will be able to connect over to the
    mailbox in the primary site for OWA?
    Nicholas

    Hello Angela,
    I need some clarification to your reply as it has left me a little more confused. Where you start by saying “all client requests will firstly access the internet-facing server”.
    Are you talking about when the client is connecting in externally or when the client is internal? As this would make it seem like in my second design where only the secondary site would have internet facing CAS. That clients in the primary site internally
    would connect over to the secondary site then be proxyed back to the primary.
    Then for the separate namespace portion of your reply. I am assuming you mean the secondary site form my example which will have the internet-facing CAS server? If that is
    the case my public DNS entry would be mail02.domain.com only but then how would the client from the primary site who use mail01.domain.com which is not on an internet facing CAS server. Then figure out they can connect in on mail02.domain.com externally from
    the internet?
    And when you talk about both sites using the same namespace. And using two public DNS entries pointing to the CAS servers in both datacenters. Is that not just going to do
    DNS round robin? As described in this technet blog?
    http://blogs.technet.com/b/exchange/archive/2014/02/28/namespace-planning-in-exchange-2013.aspx
    Or is it because both datacenters will be hosting active mailboxes. Will the clients query each CAS server till it finds one in its site? I do also plan to deploy a load balancer with my CAS servers. So I would think that would cancel our using the two public
    DNS option.
    Nicholas

  • Active Directory Sites and Exchange 2013 Deployment

    I've recently took over responsibility of an Exchange 2013 Organization that is deployed as follows:
    Active Directory consists of 4 Sites. AD Site A, B, C, D  Exchange 2013 Enterprise resides in 2 of the 4 AD Sites as follows:
    AD Site A - ExchangeServer 1 and ExchangeServer 2
    AD Site B - Exchange Server 3
    AD Site C - No Exchange Servers
    AD Site D - No Exchange Servers
    All 4 AD Sites are 4 different Physical locations/datacenters. All 3 Exchange 2013 servers are multi-role servers.
    The Forest in which Exchange resides in consists of an empty Root domain, a Production (child) domain and a Test (child) domain. Exchange resides in the Production (child) domain.
    Issue: AD Site A contains DC's from all 3 domains: Root Domain, Production child Domain (this is where Exchange lives) and Test child Domain. I notice that Exchange in AD Site A is using DC's from the Root Domain for it's "DefaultGlobalCatalog",
    "DefaultConfigurationDomainController" and "DefaultPreferredDomainControllers" This to me does not seem to be very efficient as any Address Book queries will have to be referred to by the Root Domain DC's to the Production child domain
    where Exchange lives. All of the AD User accounts and mailboxes are in the Production child domain.
    In a situation such as this, would it be advisable to build 2 additional AD sites specifically for Exchange? Rather than re-IP Exchange or risk the impact of moving several other (non exchange) servers to another AD site, I would add the IP address
    of the Exchange servers /32 to the new Exchange dedicated AD Sites and erect a DC in these new sites adding its IP address /32. Any thoughts on this idea? If the subnet that exchange resides on is (for example) 10.60.3.0 /16 in AD Site A, and
    I build a new AD site for Exchange and add the IP address of the Exchange server such as 10.60.3.141/32 for this new Exchange AD Site boundary, I can still leave the 10.60.3.0 /16 unaffected in AD Site A, correct?
    I'm looking for Microsoft's best practices in terms of laying out AD and domain controllers pertaining to Exchange server 2013.

    Hi Anthouyray,
    Thank you for your question.
    We could use the following command to exclude domain controller which is root domain controller:
    Set-ExchangeServer –Identity  <exchange servername> -StaticExcludeDomainControllers <root domain controller>
    Then we could restart the service of “Microsoft Exchange Active Directory Topology” to check if the issue persist.
    If there are any questions regarding this issue, please be free to let me know.
    Best Regard,
    Jim
    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
    Jim Xu
    TechNet Community Support

  • Exchange 2013 w/Outlook 2013 "The name of the security certificate is invalid or does not match the name of the site"

    I've completed an upgrade from Exchange 2003 to Exchange 2013 and I have one last SSL message that I can't get rid of.  I've installed a 3rd party cert that is working great for webmail and cell phone access but for some reason the Outlook 2010/2013
    clients get prompted for a security warning.  I just implemented the SSL cert yesterday and I've noticed that new installs of Outlook seem to work just fine.  My Outlook 2013 client doesn't prompt me with the message but I have other users who are
    still getting the "The name of the security certificate is invalid or does not match the name of the site" error.  The domain on the cert error show up as server.mydomain.local.  I've gone through all the virtual directories and pointed
    all of my internal and external URL's to https://mail.mydomain.com.   This made one of the two warnings go away but not the second.  I've dug around on google and gone through everything I could find here and as far as I can tell my internal
    and external url's are configured properly and I can't figure out where this error is originating from.  Any ideas on where I should look outside of the virtual directories? 
    I'm including a good link I found that contains all of the virtual directories I updated.  I've checked them through both CLI and GUI and everything looks good.
    http://www.mustbegeek.com/configure-external-and-internal-url-in-exchange-2013/
    http://jaworskiblog.com/2013/04/13/setting-internal-and-external-urls-in-exchange-2013/

    Hi,
    When the Outlook connect to Exchange 2013/Exchange 2010, the client would connect to Autodiscover service to retrieve Exchange service automatically from server side. This feature is not available in Exchange 2003 Outlook profile.
    Generally, when mailbox is moved to Exchange 2013, the Outlook would connect to server to automatically update these information. It needs time to detect and update the changes in server side. I suggest we can do the following setting For autodiscover service:
    Get-ClientAccessServer | Set-ClientAccessServer –AutodiscoverServiceInternalUri https://mail.mydomain.com/autodiscover/autodiscover.xml
    Please restart IIS service by running IISReset in a Command Prompt window after all configuraions.
    Regards,
    Winnie Liang
    TechNet Community Support

  • Re-Create the "Exchange" virtual directory in the "Exchange Back End" Site on Exchange 2013

    Sorry for this stupid question.
    In IIS, I accidentaly deleted the "Exchange" virtual directory in the "Exchange Back End" Site on Exchange 2013 (Mailbox Role).
    What I need to know is the physical path to re-create it.
    Thanks

    Check http://blogs.technet.com/b/get-exchangehelp/archive/2013/02/07/managing-exchange-2013-iis-virtual-directories-amp-web-applications.aspx

  • Migration Exchange 2010 to Exchange 2013 in a different site

    Hi all, I have
    an Exchange 2010 with these characteristics
    Site A
    - 2 Servers DAG for mailboxes
    - 2 Servers Client Access and
    Hub Transport in Microsoft
    NLB
    - 2 Domain Controllers Windows
    Server 2008 R2
    I want to upgrade to Exchange 2013 but in another
    Site, Site B. When the migration is complete,
    the mail system will only be in Site
    B.
    The connection between Site A and Site
    B is a reliable connection.
    Is there any problem to upgrade Exchange 2013
    to another Site, other than Site
    A?
    regards
    Microsoft Certified IT Professional Server Administrator

    Hi all, I have
    an Exchange 2010 with these characteristics
    Site A
    - 2 Servers DAG for mailboxes
    - 2 Servers Client Access and
    Hub Transport in Microsoft
    NLB
    - 2 Domain Controllers Windows
    Server 2008 R2
    I want to upgrade to Exchange 2013 but in another
    Site, Site B. When the migration is complete,
    the mail system will only be in Site
    B.
    The connection between Site A and Site
    B is a reliable connection.
    Is there any problem to upgrade Exchange 2013
    to another Site, other than Site
    A?
    regards
    Microsoft Certified IT Professional Server Administrator
    It is like any other Migration (Same Forest) You just need to make sure that AD is been replicated from Site A (Exchange 2010) to Site B (Exchange 2013).
    No Network or replication issue between the sites. Having more than 1 DC on Site B would be good idea.
    Once you have all these set, rest of the things are same.
    Extend the AD Schema.
    Deploy the Exchange Server 2013 CU6
    Create the Cert request for 2013.
    Install Cert on Exchange 2013.
    Configure the Virtual Directories for Exchange 2013.
    Test the Coexistence between 2010 and 2013.
    Perform the Cutover from 2010 to 2013.
    Test the Cutover and start the Test migration phase.
    Once the test phase is fine, start the full fledge migration.
    Move Mailbox and Public Folder Database.
    Cheers,
    Cheers,
    Gulab Prasad
    Technology Consultant
    Blog:
    http://www.exchangeranger.com    Twitter:
      LinkedIn:
       Check out CodeTwo’s tools for Exchange admins
    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

Maybe you are looking for

  • Acer D255E backlight issues during boot

    Having an issue with the backlight during the boot process of my netbook. Screen will go blank for 10-15 seconds before returning. This wouldn't be an issue, but it's sitting on the login screen for a good 5-10 seconds so I'd rather fix it. This is n

  • Why are these fonts auto activating?

    I've just updated to Tiger 10.4.8. One day later I install CS2 (previously had CS). I use FontAgent Pro. Now, whenever I open Safari or any CS2 app. (just the app, not an actual document) a bunch of fonts are auto activated which I don't want to be a

  • How to prevent users from seeing my email address in a mailto: form?

    I've created the form but everytime I test it my email opens up and shows who the form would be mailing to. I do not want users to be able to see my email address. Is there anyway to encrypt it or black it out, etc? 

  • Photos not appearing in elements organiser

    Can anyone help me work out why a number of photos that have been correctly imported into folders in the organiser, will not display. However, if I double click on them, they do display properly. The, if I return to the grid, they are not displayed.

  • BEx Query in Browser - decimals and thousand separators switched

    I have a BEx query that I open up in a regular IE browser.  I connect to the BW system and my query appears. However, for all the Key Figures, the decimals and thousand separators are switched.  Example, $323,67 $2.893,54 10,0 EA 12,60% Any suggestio