SAN names for Exchange 2013

Hi everyone.
I  am using Exchange server 2007 and i am going to upgrade to exchange 2013 in couple of months.
My SSL certificate(DigiCert) is expiring.
Currently i am using the following SAN names 
mail.mydomain.com
www.mydomain.com
mydomain.com
autodiscover.mydomain.com
and i am adding one more SAN name thinking of Exchange server 2013  legacy.mydomain.com.
Do i require any more SAN names. please do guide me.

Hi,
It depends on your configuration. If you are using legacy.mydomain.com for all your Exchange 2007 service and mail.mydomain.com for all your Exchange 2013 services, we can just add one additional SAN name in your exited certificate name:
legacy.mydomain.com
Alternatively, we can also just use the following three names for your migration:
mail.mydomain.com (Used for all Exchange 2013 services) 
legacy.mydomain.com (Used for all Exchange 2007 services)
autodiscover.mydomain.com (Used for autodiscover service for both Exchange 2007 and 2013)
For detailed migration configuration and certificate deployment, please refer to:
http://blogs.technet.com/b/meamcs/archive/2013/07/25/part-2-step-by-step-exchange-2007-to-2013-migration.aspx
Regards,
Winnie Liang
TechNet Community Support

Similar Messages

  • Addon Domain Name for Exchange 2013.

    Dear All,
    I have one exchange Server 2013 ([email protected]) but my organization have more 5 domain name. Now we need add in the exchange server more 5 domain name for mail ID. It's possible in exchange server to add addon domain name for mail ID.
    Md. Ramin Hossain

    Yes Absolutely. You can add as many as you want, they are added under Accepted Domains.
    Make sure you have already pointed the MX Records to your exchange server and after adding the domain to accepted domain you will start receiving the emails.
    Where Technology Meets Talent

  • Configuring Lync Server 2013 to be a partner Application for Exchange 2013

    Hello Guys,
    I just want to share my experience while configuring Lync server 2013 to be a partner Application for exchange 2013 sever. 
    As mentioned on technet you need to run Configure-EnterprisePartnerApplication.ps1 script that ships with Exchange 2013. 
    But when I tried to run the script as described on the technet article, I found it always fails with " the accepted domain is not valid"
    I have checked my accepted domains many times and i found that there's no issues with my configured accepted domain. 
    So I started to review the script to find the issue and I found that the script was configured  as below 
    $acceptedDomains = Get-AcceptedDomain ;
      if ($acceptedDomains -eq $null)
        WriteError ("There is no accepted domain so user can not be created.")
      $acceptedDomain = $acceptedDomains[0].Name;
      if($UseDomainController -eq $true)
        $user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
    set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
      else
        $user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
    set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true; 
    which is totally wrong as below: 
    firstly it makes $AcceptedDomain variable to equal the Name of the accepted domain. 
    Not all customers configure the name of the Accepted Domain to be the Domain Name.
    Secondly  it makes $AcceptedDomain variable to equal the name of the first Accepted Domain.
    The first domain may be not the default Accepted Domain. 
    So I have configured the script as below
    $acceptedDomains = Get-AcceptedDomain | ? {$_.Default -eq "True"}  ;
      if ($acceptedDomains -eq $null)
        WriteError ("There is no accepted domain so user can not be created.")
      $acceptedDomain = $acceptedDomains.DomainName;
      if($UseDomainController -eq $true)
        $user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
    set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
      else
        $user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
    set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true; 
    I hope This help. 
    Thanks 
    Ahmed Fouad

    Hi,
    This is helpful, thanks for sharing.
    Best regards,
    Belinda Ma
    TechNet Community Support

  • SP1 for Exchange 2013 install fails with ECP virtual directory issues and now transport service won't start and mail is unavailable

    SP1 for Exchange 2013 install failed on me with ECP virtual directory issues:
    Error:
    The following error was generated when "$error.Clear();
              $BEVdirIdentity = $RoleNetBIOSName + "\ecp (name)";
              $be = get-EcpVirtualDirectory -ShowMailboxVirtualDirectories -Identity $BEVdirIdentity -DomainController $RoleDomainController -ErrorAction SilentlyContinue;
              if ($be -eq $null)
              new-EcpVirtualDirectory -Role Mailbox -WebSiteName "name" -DomainController $RoleDomainController;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -FormsAuthentication:$false -WindowsAuthentication:$true;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -InternalUrl $null -ExternalUrl $null;
              . "$RoleInstallPath\Scripts\Update-AppPoolManagedFrameworkVersion.ps1" -AppPoolName:"MSExchangeECPAppPool" -Version:"v4.0";
            " was run: "The virtual directory 'ecp' already exists under 'server/name'.
    Parameter name: VirtualDirectoryName".
    Error:
    The following error was generated when "$error.Clear();
              $BEVdirIdentity = $RoleNetBIOSName + "\ECP (name)";
              $be = get-EcpVirtualDirectory -ShowMailboxVirtualDirectories -Identity $BEVdirIdentity -DomainController $RoleDomainController -ErrorAction SilentlyContinue;
              if ($be -eq $null)
              new-EcpVirtualDirectory -Role Mailbox -WebSiteName "name" -DomainController $RoleDomainController;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -FormsAuthentication:$false -WindowsAuthentication:$true;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -InternalUrl $null -ExternalUrl $null;
              . "$RoleInstallPath\Scripts\Update-AppPoolManagedFrameworkVersion.ps1" -AppPoolName:"MSExchangeECPAppPool" -Version:"v4.0";
            " was run: "The operation couldn't be performed because object 'server\ECP (name)' couldn't be found on 'DC0xx.domain.com'.".
    Error:
    The following error was generated when "$error.Clear();
              $BEVdirIdentity = $RoleNetBIOSName + "\ECP (name)";
              $be = get-EcpVirtualDirectory -ShowMailboxVirtualDirectories -Identity $BEVdirIdentity -DomainController $RoleDomainController -ErrorAction SilentlyContinue;
              if ($be -eq $null)
              new-EcpVirtualDirectory -Role Mailbox -WebSiteName "name" -DomainController $RoleDomainController;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -FormsAuthentication:$false -WindowsAuthentication:$true;
              set-EcpVirtualdirectory -Identity $BEVdirIdentity -InternalUrl $null -ExternalUrl $null;
              . "$RoleInstallPath\Scripts\Update-AppPoolManagedFrameworkVersion.ps1" -AppPoolName:"MSExchangeECPAppPool" -Version:"v4.0";
            " was run: "The operation couldn't be performed because object 'server\ECP (name)' couldn't be found on 'DC0xx.domain.com'.".
    !! And now transport service won't start and mail is unavailable !!
    Any help would be appreciated.
    I have removed the ecp site from default site and attempting to rerun SP1 now. I do not have high hopes. :(

    Hi,
    Thanks for your response.
    From the error description, you need to manually remove the ECP with IIS manager in both the Default Web Site and the Exchange Back End firstly. And then continue the upgrade to check the result.
    Hope this can be helpful to you.
    Best regards,
    Amy Wang
    TechNet Community Support

  • How to create a SHA256 SAN Certificate for Exchange

    Dear.
    When using the command as described below to create a SAN Certificate for Exchange, only SHA1 certificate requests are created. How can I create the same request but for SHA256?
    It seems that it's not possible to do this through the New-exchangecertificate.
    Do you know the alternative command when using certreq for the following Exchange command:
    New-ExchangeCertificate -PrivateKeyExportable:$true -FriendlyName 'mail.domain.com' -SubjectName 'C=NL,S="aaaa",L="bbbb",O="cccc",OU="dddd",CN=mail.domain.com' -DomainName @('mail.domain.com','exchange.wps.domain.com','webmail.domain.com','ews.domain.com','as.domain.com','oa.domain.com','oab.domain.com','ps.wps.domain.com','autodiscover.domain.com')
    -RequestFile '\\10.0.6.151\c$\temp\certificate_Request.req' -GenerateRequest:$true -KeySize '2048' 
    Thanks for the feedback.
    Regards.
    Peter
    Peter Van Keymeulen, IT Infrastructure Solution Architect, www.edeconsulting.be

    Hi Peter,
    There is no parameter in New-ExchangeCertificate to select the Algorithm type (Secure Hash Algorithm (SHA)) to generate request. Personal opinion, we can create the certificate signing request using the Certificates MMC and then creating a custom request
    as follows:
    1. Open MMC.exe. Click File >
    Add/Remove snap in…
    2. In the Available snap-ins tab, select Certificates >
    Add > Computer account > Local computer >
    Finish.
    3. Expand Certificates (Local Computer) > Personal > Certificates.
    4. In Action pane, click More Actions > All Tasks > Advanced operations > Create custom request.
    5. click Next > Proceed without enrollment policy > Next > Next.
    6. In Certificate Information page, click Details > Properties.
    7. Then you can fill in the needed information for your request.
    8. In Private Key tab, expand Select Hash Algorithm, set the Hash Algorithm to
    sha256.
    9. Click OK > Next. Fill in File Name and select the request location.
    10. Finish it and send this request to the certificate authority.
    Regards,
    Winnie Liang
    TechNet Community Support

  • Enable legacy public folders for Exchange 2013 prior to migration?

    We're about ready to migrate to Exchange 2013 from 2010. We have a public folder database on 2010 that users can't see once migrated to 2013. If I run through the commands according to the technet article "Configure legacy public folders where user
    mailboxes are on Exchange 2013 servers" (https://technet.microsoft.com/en-us/library/dn690134(v=exchg.150).aspx), will users who's mailboxes are still on Exchange 2010 be able to see these public folders?

    I know they've made alot of changes recently in how legacy public folders are handled in Exchange 2013 (mostly CU7), but I haven't had to do anything more than just setting the proper public folder database on the Exchange 2013 databases.
    That being said, looking over the article you are not doing any moves, and it looks eerily similar to this blog post:
    http://blogs.technet.com/b/exchange/archive/2014/11/07/on-premises-legacy-public-folder-coexistence-for-exchange-2013-cumulative-update-7-and-beyond.aspx
    So I don't think this would hurt Public Folder access for your users in your legacy environment.
    Did you deploy CU7?  If so, then do what both articles say.  If not try using Set-MailboxDatabase -Identity <2013 db name> -PublicFolderDatabase <PF DB NAME>
    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread

  • Preparing Domain for Exchange 2013 in an Exchange 2010 Organization

    When preparing the domain for Exchange 2013, can we use the same Organizational Name as was used for Exchange 2010 or should we select a new variation?

    When preparing the domain for Exchange 2013, can we use the same Organizational Name as was used for Exchange 2010 or should we select a new variation?
    You dont have define the org name since it already exists. 
    Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

  • Error Preparing Schema for Exchange 2013

    I recive this error when running the preparing AD for exchange 2013 on a 2012 r2 server. 
    Error:
    The following error was generated when "$error.Clear();
    # O15# 2844081 - Create PartnerApplication "Exchange Online" in DC and On-Premise
    $exch = [Microsoft.Exchange.Data.Directory.SystemConfiguration.WellknownPartnerApplicationIdentifiers]::Exchange;
    $exchApp = Get-PartnerApplication $exch -ErrorAction SilentlyContinue -DomainController $RoleDomainController | Where { $_.UseAuthServer };
    if ($exchApp -eq $null)
    $exchAppName = "Exchange Online";
    $exchApp = New-PartnerApplication -Name $exchAppName -ApplicationIdentifier $exch -Enabled $RoleIsDatacenter -AcceptSecurityIdentifierInformation $false -DomainController $RoleDomainController;
    # Create application account for Exchange
    $appAccountName = $exchApp.Name + "-ApplicationAccount";
    $appAccount = Get-LinkedUser -Identity $appAccountName -ErrorAction SilentlyContinue -DomainController $RoleDomainController;
    if ($appAccount -eq $null)
    $appAccountUpn = $appAccountName.Replace(" ", "_") + "@" + $RoleFullyQualifiedDomainName;
    $appAccount = New-LinkedUser -Name $appAccountName -UserPrincipalName $appAccountUpn -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "UserApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "ArchiveApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "LegalHoldApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "Mailbox Search" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "TeamMailboxLifecycleApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "MailboxSearchApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    Set-PartnerApplication -Identity $exchApp.Identity -LinkedAccount $appAccount.Identity -DomainController $RoleDomainController;;
    " was run: "Couldn't find a user with the identity "ESL.LOC/Users/Exchange Online-ApplicationAccount".".
    Error:
    The following error was generated when "$error.Clear();
    # O15# 2844081 - Create PartnerApplication "Exchange Online" in DC and On-Premise
    $exch = [Microsoft.Exchange.Data.Directory.SystemConfiguration.WellknownPartnerApplicationIdentifiers]::Exchange;
    $exchApp = Get-PartnerApplication $exch -ErrorAction SilentlyContinue -DomainController $RoleDomainController | Where { $_.UseAuthServer };
    if ($exchApp -eq $null)
    $exchAppName = "Exchange Online";
    $exchApp = New-PartnerApplication -Name $exchAppName -ApplicationIdentifier $exch -Enabled $RoleIsDatacenter -AcceptSecurityIdentifierInformation $false -DomainController $RoleDomainController;
    # Create application account for Exchange
    $appAccountName = $exchApp.Name + "-ApplicationAccount";
    $appAccount = Get-LinkedUser -Identity $appAccountName -ErrorAction SilentlyContinue -DomainController $RoleDomainController;
    if ($appAccount -eq $null)
    $appAccountUpn = $appAccountName.Replace(" ", "_") + "@" + $RoleFullyQualifiedDomainName;
    $appAccount = New-LinkedUser -Name $appAccountName -UserPrincipalName $appAccountUpn -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "UserApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "ArchiveApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "LegalHoldApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "Mailbox Search" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "TeamMailboxLifecycleApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    New-ManagementRoleAssignment -Role "MailboxSearchApplication" -User $appAccount.Identity -DomainController $RoleDomainController;
    Set-PartnerApplication -Identity $exchApp.Identity -LinkedAccount $appAccount.Identity -DomainController $RoleDomainController;;
    " was run: "Couldn't find a user with the identity "ESL.LOC/Users/Exchange Online-ApplicationAccount".".

    Hi,
    Fist, please check if there is an account which is Exchange Online-ApplicationAccount via ADUC.
    By default, this account is disabled, please enable it and re-run Setup /PrepareAD again. It should success. After preparing AD schema, please disable the account again.
    Best regards,
    Belinda
    Belinda Ma
    TechNet Community Support

  • Is smb 3.0 already supported for exchange 2013

    Hello,
    We are looking to deploy exchange 2013. We have a netapp storage and vmware environment.
    I was wondering if smb 3.0 is already supported for exchange 2013. I read in a blog of 2012 that it wasn't supported at the time. We would like to use it instead of a iscsi lun.

    Hi,
    Based on my knowledge, it is still not supported for Exchange 2013 up to now.
    Here is an article for your reference, please refer to the "Exchange storage requirements" section.
    Exchange 2013 Virtualization
    http://technet.microsoft.com/en-us/library/jj619301.aspx#BKMK_Prereq
    Another related article for your reference.
    Exchange 2013 Storage Configuration Options
    http://technet.microsoft.com/en-us/library/ee832792(v=exchg.150).aspx
    Best regards,
    Belinda
    Belinda Ma
    TechNet Community Support

  • It is there an alternative to the Test-SystemHealth powershell cmdlet for Exchange 2013?

    Hello
    The Powershell cmdlet Test-SystemHealth, that was available on Exchange 2010, is no longer available on Exchange 2013.
    Test-SystemHealth cmdlet gathered data about the Microsoft Exchange system and analyzed the data according to best practices.
    Are there any alternatives to this for Exchange 2013?
    Thanks!

    Haven't really played with it too much, but check out Get-ServerHealth
    http://technet.microsoft.com/en-us/library/jj218703(v=exchg.150).aspx
    Looks to have replaced Test-SystemHealth.

  • Best Practice Analyzer for Exchange 2013

    Greetings,
    I have upgraded the messaging infrastructure from Exchange 2007 to Exchange 2013.
    I want to test the Health of the system through ExBPA for Exchange 2013.
    But i don't find any setup for Exchange 2013 like it was in 2010.
    I went through an article by Office365 community, according to which for In-premises Exchange also we need to have office 365 account (can use trial account also) to get the downloader file for ExBPA 2013.
    http://community.office365.com/en-us/w/deploy/office-365-best-practices-analyzer-for-exchange-server-2013.aspx
    But to run the setup the servers needs to be connected to internet.
    And, i don't want to expose my environment to internet in any condition.
    Somebody, please suggest me if there is any setup available so that i can install directly without exposing to internet.
    Thanks in advance.
    Best Regards,
    K2

    Welcome to Exchange 2013.
    Exchange Server 2013 doesn't come with ExBPA for health check. This might help
    http://exchangeserverpro.com/powershell-script-health-check-report-exchange-2010/
    Apart from that you can run these commands too
    Get-ServerHealth -Identity Exchange2013ServerName
    Test-ServiceHealth
    Cheers,
    Gulab Prasad
    Technology Consultant
    Blog:
    http://www.exchangeranger.com    Twitter:
      LinkedIn:
       Check out CodeTwo’s tools for Exchange admins
    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

  • EXMON "exchange server user monitor" for Exchange 2013?

    Hello,
    it Looks like EXMON is not supported for Exchange 2013. Is this correct or can i use it with Server 2012 R2 and Exchange 2013 (CU6++)  ?
    Is there any alternative to check high log growth rate to see which user is responsable for this?
    Thanks for Feedback.
    best,
    Martin

    Hi Martin,
    Yes, ExMon is not supported for exchange 2013.
    Except the suggestion above, here is an exclusive application for you reference, it could retrieve statistics for all or selected mailboxes in a specified database and server, it may give you some help:
    Exchange Server Mailbox Statistics Tool - v1.6.2
    The tool retrieves mailbox statistics which includes Folder Count, Total Items, Associated Items, Deleted Items, Total Items Size, Deleted Items Size, Oldest Item Date, Newest Item Date, Items Age, Mailbox Age and Quota details. It also includes an additional
    option named "Archive Statistics Planner" which will let you search mailboxes and provide statistics report with specific dates. 
    Best regards,
    Niko Cheng
    TechNet Community Support

  • BPA for Exchange 2013 still in beta!?

    Exchange 2013 is over 2 years old.
    Is Microsoft ever going to release a BPA for their flagship messaging platform that's NOT in beta? 

    Hi,
    At present, there is only a beta of Best Practices Analyzer for Exchange 2013 available. If you want to get the latest information about it, please pay attention to the Exchange blog.
    For your convenience:
    http://blogs.technet.com/b/exchange/
    Hope this can be helpful to you.
    Best regards,
    If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Amy Wang
    TechNet Community Support

  • PowerGUI Powerpack for Exchange 2013

    Is there a powerpack that can be added to the powerGUI script editor for scripting in exchange 2013?

    Hi,
    Based on my search, currently, there is no official document about
    PowerGUI Powerpack for Exchange 2013.
    However, we can connect to Exchange server using remote shell.
    For more details about this, please refer to the following article.
    https://technet.microsoft.com/en-us/library/dd335083(v=exchg.150).aspx
    Hope this is helpful to you.
    Best regards,
    Belinda Ma
    TechNet Community Support

  • Transport agent for Exchange 2013

    Hello!
    I write transport agent for Exchange 2013 and I have two questions:
    1. How I can determine is AD OU of recipient different from OU of sender?
    2. How I can change routing of message from internal to external for such recipient.
    Thanks in advance

    1. You can't get that information from within a Transport Agent directly so you need to either use LDAP to lookup the sender (which from a performance point of view isn't a wonderful idea) or some form of cache etc.
    2. You can use a routing override to do this see
    http://blogs.technet.com/b/appssrv/archive/2009/08/26/how-to-control-routing-from-your-own-routing-agent.aspx for an example
    Cheers
    Glen

Maybe you are looking for