Exchange 2013 with CAS and HLB in different sites

Similar Messages

• Migration Exchange 2010 to Exchange 2013 with CAS Array and DAG

  Dear All,
  I am starting the migration of Exchange 2010 2 servers (CAS/Mailbox) with DAG no CAS Array to Exchange 2013 with 2 servers CAS array and 2 Mailbox servers with DAG. I read on some blogs that no requirement of CAS array on Exchange 2013. My concern how to
  configure NLB on CAS servers for the client to connect.
  Please guide and have any deployment guide for this, kindly share.
  Thanks

  Hi ,
  As you said there is no use and meaning of having the cas array in exchange 2013 and also thanks a lot to Microsoft for introducing an single namespace facility in exchange 2013.
  My suggestion and Microsoft recommendation should be to go with hardware load balancers for exchange 2013 rather than using the windows NLB and round robin method.
  Why we need to go for HLB ?
  Disadvantages
  of some load balancing methods :
  Windows
  NLB :-
  If you use Windows NLB then it can provide redundancy on server level failure and not on application level.
  DNS
  round robin :-
  In case if we use the windows round robin method for load balancing then it wouldn't provide server level
  and application level redundancy during the failures.At the Same time we need to manually adjust the DNS records during the server failure but on the client end dns caches will create the issues.
  Configuring NLB for exchange 2013 : 
  http://msexchangeguru.com/2013/08/14/windowsnlb/
  NLB configurations for exchange 2010 and 2013 will be same.
  Configuring round robin for exchange 2013 : 
  http://exchangeserverpro.com/exchange-2013-client-access-server-high-availability/
  Advisable method is to have the CAS and MBX roles on the same box if NLB not comes it to play.Because windows failover clustering and NLB cannot be configured on the same box.In exchange 2013 cas role is a stateless server role so there is no need to have
  that role on a separate box.
  Thanks & Regards S.Nithyanandham

• Exchange 2013 with CU3 and silent redirection to different AD site

  After updating
  Exchange 2013 CU2 to Exchange 2013 CU3, OWA silent site redirection feature become not available. The customer has two Exchange 2013 sites. Before we updated to CU3, user whose mailbox located on site A, could be automatically redirected to OWA on
  site A, after he logged on to OWA on site B. IE gives Error page and bring out link to the OWA page on site A. Here is screenshot about issue workaround.
  Hopefully someone will help with some hint because it is quite anoying.
  All other stuff works good, Outlook anywhere, autodiscover, only this remained.
  Thanks in advance,
  Fajar

  Hi Angela,
  According to your description, OWA request cannot be automatically redirected after upgrade.
  YESS after upgrade Exchange 2013 CU2 to CU3. CU2 not problem.
  1. Will OWA work well if you manually click the OWA URL  in the web page?
  If i click manual, OWA Url in web page, OWA work well...
  PS Command "Get-OWAVirtualDirectory | fl CrossSiteRedirectType"
  ONLY HAVE ON EXCHANGE 2010 NOT ON EXCHANGE 2013.
  2. Do you can login OWA in site A?
  My Mailbox on Site-A, if i login OWA Site A (owa-A.domain.com), OWA work well & i can access my email.
  But... if i login from OWA Site-B (owa-B.domain.com), OWA not automatic silent redirect to Site-A, and i must click link below "Use following link to open to mailbox with the best performance https://owa-a.domain.com/owa/auth.owa
  My friend Mailbox on Site-B, if he login to OWA Site B (owa-B.domain.com), OWA-B work well & he can access email.
  But.. if he login from OWA Site-A (owa-A.domain.com), OWA not automatic silent redirection to Site-B, and he must click link below "Use following link to open to mailbox with the best performance https://owa-b.domain.com/owa/auth.owa
  3. Check the IIS log on site B CAS server and find if there is any error about the redirection.
  whether there is a bug in CU3?
  Hopefully someone will help with some hint because it is quite anoying on our custommer.
  Regards,
  Fajar

• Snow Leopard 10.6.1 Exchange 2007 with CAS and MBX Server

  Hi, i have a problem with 10.6.0 and 10.6.1 with connect to exchange 2007.
  we have 2 exchange Servers. one is the CAS (Client Access Server) and the other server is a mailbox server. The client have to connect to CAS and he connects to the mailbox server.
  My problem is the connect with MAIL, iCAL or Adressbook.
  „The Server doenst answer. Please make sure that the network ......“
  The network works fine but i can not connect.
  Greetings

  Hi kjbowler & welcome to discussions
  http://support.apple.com/kb/DL907
  ...it it will work using HP stuff exclusively w/SL, this is the only way to proceed.
  I don't see why you can't just print @ 400% tho...

• Configuring exchange 2013 with MS PKI

  while trying to configure exchange to work with certificates issued from my internal MS PKI, I deleted the self signed certificates. and now I can't access exchange. the good thing is that this is not a production environment yet. I was looking around and
  I couldn't find a documentation on how to request certificates from an internal CA. and how to assign the certificate to exchange.
  I need help regarding this, if any one has a working environment with CAS and MB on different server, how the certificates are assigned in IIS.

  Hi mtxfayez,
  First, I would like to share some information on Self-signed certificate and PKI certificate.
  1. Self-signed certificate.
  This self-signed certificate is used to encrypt communications between the Client Access server and the Mailbox server. The Client Access server trusts the self-signed certificate on the Mailbox server automatically, so no third-party
  certificate is needed on the Mailbox server.
  By default, the digital certificate installed on the Mailbox server or servers is a self-signed certificate. You don’t need to replace the self-signed certificate on the Mailbox servers in your organization with a trusted third-party certificate. The
  Client Access server automatically trusts the self-signed certificate on the Mailbox server and no other configuration is needed for certificates on the Mailbox server.
  2. PKI certificate.
  If you obtain certificates from a domain-joined Windows CA, you can use the CA to request or sign certificates to issue to your own servers or computers on your network. This enables you to use a PKI that resembles a third-party certificate vendor,
  but is less expensive. These PKI certificates can't be deployed publicly, as other types of certificates can be.
  The steps for deploying a PKI-generated certificate resemble those required for deploying a self-signed certificate. You must still install a copy of the trusted root certificate from the PKI to the trusted root certificate store of the computers or
  mobile devices that you want to be able to establish an SSL connection to Microsoft Exchange.
  Note: One problem with self-signed and PKI-based certificates is that, because the certificate is not automatically trusted by the client computer or mobile device, you must make sure that you import the certificate into
  the trusted root certificate store on client computers and devices.
  More details in the following article:
  http://technet.microsoft.com/en-us/library/dd351044(v=exchg.150).aspx
  Second, about "how to request certificates from an internal CA" and "how to assign the certificate to exchange", found a great blog for your reference:
  Enterprise PKI with Windows Server 2012 R2 Active Directory Certificate Services (Part 1 of 2)
  http://blogs.technet.com/b/yungchou/archive/2013/10/21/enterprise-pki-with-windows-server-2012-r2-active-directory-certificate-services-part-1-of-2.aspx
  Enterprise PKI with Windows Server 2012 R2 Active Directory Certificate Services (Part 2 of 2)
  http://blogs.technet.com/b/yungchou/archive/2013/10/22/enterprise-pki-with-windows-server-2012-r2-active-directory-certificate-services-part-2-of-2.aspx
  Last, if it still not works well, please paste the detailed error message without sensitive information for the further troubleshooting.
  Hope it is helpful
  Thanks
  Mavis
  Mavis Huang
  TechNet Community Support

• How come the volume of other programs are lowered while one FaceTime? I exchange media with friends and colleagues and I can barely hear anything. There should be a way we can manually control the volume of different programs

  How come the volume of other programs are lowered while one FaceTime? I exchange media with friends and colleagues and I can barely hear anything. There should be a way we can manually control the volume of different programs

  I own the movies and I want them to stay in my iTunes library basically forever.
  But in both cases the file name no longer shows in the movie list, so I don't know how to re-download it from the Cloud.
  iTunes prefs > Store > Show iTunes in the Cloud purchases.
  This will show all your iTunes purchases in your library with a cloud icon down arrow. Click the icon to redownload or click on Play to stream without downloading.
  Also see this , -> Download past purchases
  and techncially, you don't "own" the movie, You simply have a license to use it.
  Yet the first thing iTunes does when you hit the delete key is tell you that it will remove the movie forever from all devices and the library.
  Actually, no it does not tell you that.
  FYI: You should keep copies of all yoru iTnue spurahses as the labels/movie studios/copyright owners can pull their product at anytime and it won't be available to redownload.
  Suggestions here -> http://www.apple.com/feedback/

• Exchange 2013 OWA,Async,And OA error MsExchange BackEndRehydration event id 3002

  Hi team,
  I had issue in My Exchange system.
  I had two Exchange 2013 muli role with CAS and MBX
  Server A had no problem connection when client access OWA directly (https://servernamefqdn/owa)
  but, theres issue when I pointing to server B OWA (https://serverBfqdn/owa). its same when outlook connect (using OA ),and Aysnc connection.
  when I failed to connect OWA, theres event id 3002 MsExchange BackEndRehydration event id 3002.
  the error show at Server A ( server at a good condition )
  heres the error
  Thanks

  Hello Team,
  I have a similar issue with Event ID 3002 filling up the App log on both Mailbox servers.  Here is a snippet of the error.  Any help is greatly appreciated.  Thank you.
  "Protocol /EWS failed to process request from identity DOMAIN\CASServer. Exception: Microsoft.Exchange.Security.OAuth.InvalidOAuthTokenException: The user specified by the user-context in the token is ambiguous.
     at Microsoft.Exchange.Security.OAuth.OAuthActAsUser.InternalCreateFromAttributes(OrganizationId organizationId, Boolean calledAtFrontEnd, Dictionary`2 rawAttributes, Dictionary`2 verifiedAttributes)
     at Microsoft.Exchange.Security.Authentication.BackendAuthenticator.OAuthAuthenticator.ExtractActAsUser(OrganizationId organizationId, CommonAccessToken token)
     at Microsoft.Exchange.Security.Authentication.BackendAuthenticator.OAuthAuthenticator.InternalRehydrate(CommonAccessToken token, Boolean wantAuthIdentifier, String& authIdentifier, IPrincipal& principal)
     at Microsoft.Exchange.Security.Authentication.BackendAuthenticator.Rehydrate(CommonAccessToken token, BackendAuthenticator& authenticator, Boolean wantAuthIdentifier, String& authIdentifier, IPrincipal& principal, IAccountValidationContext&
  accountValidationContext)
     at Microsoft.Exchange.Security.Authentication.BackendRehydrationModule.ProcessRequest(HttpContext httpContext)
     at Microsoft.Exchange.Security.Authentication.BackendRehydrationModule.OnAuthenticateRequest(Object source, EventArgs args).

• Problem with storing and retriving a different langauge font in mysql

  hi,
  i have problem with storing and retriving a different character set in
  mysql database ( for example storing kannada font text in database)
  it simply store what ever typed in JTextField in database in the
  formate ??????????? and it showing ???????? .
  please what can i do this problem.
  thanks
  daya

  MySQL does not know about what type of Font you use or store. that is applicatioon specific. All it knows is the character set that you are storing and the data type and data. THere are something you should know when working with database and Java:
  1. make sure you know what character set is used for the database table.
  2. make sure you know what character set is used by Java (default to UTF-8 ..
  sort off - there are few character that it cannot save). You can enforce the
  character set being sent to the database by the String's getBytes(String charsetName) method.
  3. make sure the application you use to view the table use the correct character set
  if it use a different character set, then any character that it does not recogized
  will be replaced with a quetion mark '?'....eventhough the data is correct.

• I am trying to use sync outlook 2013 with icloud and am receiving this error - Setup can't continue because Outlook isn't configured to have a default profile.  Check your Outlook settings and try again - can anyone help me out

  i am trying to sync outlook 2013 with icloud and am receiving this error - Setup can't continue because Outlook isn't configured to have a default profile.  Check your Outlook settings and try again - can anyone help me out

  Here are two threads you may want to review. I'm sure there are others. Good luck!
  https://discussions.apple.com/thread/3427840?start=0&tstart=0
  http://www.slipstick.com/outlook/icloud-outlook-problems-syncing-calendar/

• [svn] 4793: Fix bug SDK-17734 Path with width and height set different than path data has incorrect bounds

  Revision: 4793
  Author: [email protected]
  Date: 2009-02-02 11:20:06 -0800 (Mon, 02 Feb 2009)
  Log Message:
  Fix bug SDK-17734 Path with width and height set different than path data has incorrect bounds
  Fix: When calculating the bounds position we should take into account the implicit scaling factor actualSize/naturalSize. Also did some refactoring, getting rid of the protected method calculateTopLeft.
  QE Notes: None
  Doc Notes: None
  Bugs: SDK-17734
  Reviewer: Ryan
  tests: mustella gumbo/layout/GraphicElement
  Ticket Links:
  http://bugs.adobe.com/jira/browse/SDK-17734
  http://bugs.adobe.com/jira/browse/SDK-17734
  Modified Paths:
  flex/sdk/trunk/frameworks/projects/flex4/src/mx/graphics/Ellipse.as
  flex/sdk/trunk/frameworks/projects/flex4/src/mx/graphics/Path.as
  flex/sdk/trunk/frameworks/projects/flex4/src/mx/graphics/graphicsClasses/GraphicElement.a s

  Thank you so much for replying.
  Yes I have removed and reinstalled WMP.
  I had good results with the PD6 application installed on the default path onto the C: drive with the one exception that if the application was launched by accident and the user data path was not available, the PD6 application would blow away my custom user path registry settings. Now that I know what they are I have made a .reg file to repair my registry to my desired user data paths.
  Installing the application on the removable drive appeared to help prevent me from launching the application by accident and overwriting my registry with default user paths.
  So which is the less of the two evils?
  If the application directory is not available, windows media player still tries to launch the .msi for installing PD6.
  If I install the application to the C: drive but the user data to the removable drive, launching the PD6 application without the user data drive will still corrupt my registry settings for a user data path.
  Both these issues seem like a logical (if not easy) fix that should be done in the PD6 application and installation package. I mean really, cannot anyone tell me why windows media player is checking the PD6 application directory? Why in PD4 did we have an option control for setting the user data path from the PD4 application? Why is this option not in the PD6 application, just the installer?
  I am given a choice during installation to move the user data to another non default location. Why else would this be provided if not to accommodate my kind of request to store the user data into an alternate location other than “My Document”. Certainly Palm is not trying to force the users on how to protect and store their personal data?
  Post relates to: Centro (Verizon)

• Hi there. I have 3GS and tried to up-date it today (19 Feb 2013) with iTunes and now I can't activate it! it shows the "Your iPhone could not be activated. tha activation server is unavailable...". The iPhone has never been jailbroken!!!

  Hi there. I have 3GS and tried to up-date it today (19 Feb 2013) with iTunes and now I can't activate it! it shows the "Your iPhone could not be activated. tha activation server is unavailable...". The iPhone has never been jailbroken!!!
  - have tried restor
  - have tried recovery mode
  - have tried on 2 PCs
  ... can someone tell me what to do! I'm tryin for 5hours now!

  no! i havent change my carrier still the same

• Performance counters for exchange 2013 mailbox & cas servers?

  what are the Performance counters for exchange 2013 mailbox & cas servers?
   similar to rpc request for troubleshooting exchange slowness, I haven't found any technet article for exchange 2013. 

  Hi,
  Please see this:
  Ask the Perf Guy: Sizing Exchange 2013 Deployments
  http://blogs.technet.com/b/exchange/archive/2013/05/06/ask-the-perf-guy-sizing-exchange-2013-deployments.aspx
  Hope it is what you need.
  Thanks
  Mavis
  Mavis Huang
  TechNet Community Support

• Exchange 2013 MB/CAS integration with legacy Exchange 2007 CAS/MB/Trans server

  Hi All,
  I have an existing running Exchange 2007 SP3 RU13 server acting as MB,CAS,Transport using a Barracuda SPAM for SMTP (MX Record is assigned to here), and a TMG2010 server performing all ActiveSync, Outlook Anywhere, and OWA connectivity.
  I have built a new Exchange 2013 SP1 server that will (for the meantime) act as a MB & CAS server only.
  I successfully migrated a testuser mailbox to the new EX2013 server from the EX2007 server.  The problem is that once migrated, OWA and Outlook can't access the mailbox.
  OWA form our URL gives the message: Outlook Web Access is currently unavailable. If the problem continues, contact technical support for your organization and tell them the following: No Client Access servers of the appropriate version can be accessed from
  the Internet
  If I run OWA from the EX2013 URL it works ok, but not for MBs on the EX2007 server.
  I tested this configuration in a VM lab and it worked ok.  All I had to do was move the mailbox, then run Outlook.  Outlook automatically found the new server and opened the MB.
  Basically what I need to do is move all our existing MBs from the old 2007 server to the new 2013 server.  I want to continue to use the exisiting transport/CAS/EDGE services on 2007 without having to rebuild both the internal and external comunications
  infrastructure at the present time.
  How can I get the EX2013 server to act as the MB server for the EX2007 communications infrastructure?

  Hi,
  Please try to create a new user on Exchange 2013, and send/receive email via both Outlook and OWA to test whether the Exchange 2013 mail flow well.
  If Exchange 2013 works well, please try to bypass the TMG on Exchange 2007 for a little while for testing.
  Additionally, we can use CAS 2013 URL to proxy/redirect previous CAS, or publish both CAS 2007 and CAS 2013 to be internet facing server with separate URLs, as Ed suggested.
  Thanks   
  Mavis Huang
  TechNet Community Support

• Migrating from 2010 windows nlb cas array to exchange 2013 using netscaler for HLB

  i currently have exchange 2010 sp3 setup as follows
  2 cas/ht using windows nlb for array.internal.com as the nlb name
  2 mailbox servers using 1 dag for replication between them.
  I would like to stand up 2 new CAS 2013 sp1 servers(2012 r2) and use our netscaler hlb to load balance and do ssl offloading.
  id like to use the hlb to load balance and ssl offload all possible traffic not just owa, i.e. activesync etc.
  the netscaler is running version 10.5.
  does anyone have any thoughts on how to perform such a migration?
  id like to make this as seamless as possible for the user, so no owa name change or anything like that.
  thx in advance for any help.

  Exchange 2013 CAS cannot be managed effectively without an Exchange 2013 mailbox server since the CAS won't run the Exchange 2013 management tools without it.  Your Exchange 2013 servers should simply have both roles.  There are few cases where
  splitting the roles has any business value.
  If what you're planning to do is within the same forest and organization, then it's a "transition", not a "migration".  What you are asking to do is easy.  Build the Exchange 2013 servers, configure load balancing, test
  access, and then switch the DNS records to point to them.
  Personally, I would skip the SSL offloading.  It's my opinion that it makes the solution more difficult to troubleshoot without providing any real benefit.
  Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

• Exchange 2013 with TMG 2010 and Go Daddy

  Hi all;
  actually I'm new to exchange server 2013 and I need some help:
  recently I installed exchange 2013 in our domain with contains TMG 2010
  what I need is sending emails out.
  currently I can send emails internaly
  I have static IP and TMG and registered domain in Go daddy.
  could someone help me by steps what to do?
  in TMG?
  in Exchange administration?
  in Go Daddy?what records needed and how?
  and should I do any configurations in my DNS?
  please I'm stuck in this.
  Thanks

  Sorry, my fault. Try these links:
  http://blogs.technet.com/b/exchange/archive/2012/11/21/publishing-exchange-server-2013-using-tmg.aspx
  http://www.isaserver.org/articles-tutorials/configuration-general/publishing-exchange-2013-outlook-web-app-forefront-threat-management-gateway-tmg-2010.html
  CRM Advisor