Second Exchange 2013 server in remote site

Similar Messages

• Creation of a second Exchange 2013 server on a different site (with the roles of MBX and CAS) fails on prepare active directory and prepare schema.

  Hello everyone
  I have a network infrastructure  consisting of 3 sites, site A, site B, and site C. i have 2 domain controllers on every site, and the AD roles are on the primary domain controller on site A. On site A I have an Exchange 2013sp1 CU6.
  I want to create a second Exchange on Site B, with the roles of mailbox (the exchange on Site A will be first DAG member and the Exchange on Site B will be the second member of the DAG) and CAS.
  First question: Is my  thought correct about installaing on the same server mailbox and CAS server?
  Second question: how many DAG witnesses I need for the DAG? One per site, or one in general (for example located on site A)
  Third question: When I am trying to perform “Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms”  I receive the error
  “ Setup encountered a problem while validating the state of Active Directory:
   The Active Directory schema version (15303) is higher than Setup's version (15292). Therefore, PrepareSchema can't be executed.  See the Exchange setup log for more information on this error. For more information, visit:
  http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.AdInitErrorRule.aspx “
  I tried  to run the PrepareSchema from  the ISO of Exchange 2013 SP1 and form the extracted content of Exchange 2013SP1 CU6 archive, but still receive the same error. Any ideas?
  Thanks in advance.

  Thank you for your answer,
  I have tried to run "Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms”  from
  Exchange 2013 CU6 media, but I still receive  the error:
  The Active Directory schema version (15303) is higher than Setup's version (15292). Therefore, PrepareSchema
  can't be executed.  See the Exchange setup log for more information on this error. For more information, visit:http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.AdInitErrorRule.aspx “
  any ideas?

• Moving 2nd Exchange 2013 server to another site

  Hi there, looking for some insight into a task that has been assigned to me. We have two Exchange 2013 servers setup in a DAG environment. I've been asked to move the secondary to another site. If anyone has gone through this process, do you have any suggestions
  or tips
  Off the top of my head 
  Maintenance mode enabled on secondary exchange server
  Shutdown VM
  Copy to External drive
  Ship external drive to secondary site
  Create VM and assign new IP
  Ensure DNS name for secondary is pointing to the new IP
  Boot and turn off Maintenance mode on secondary server
  Ensure DAG is replicating over
  Questions
  Do I have do change anything to ensure exchange realizes it's now off site? The new IP that will be assigned is bound to our secondary site in AD. Example 10.333.333.*  = DR-SITE.
  Anything I've missed in the steps brainstormed above?
  Thank you to all who reply. I am somewhat green when it comes to Exchange but am trying my best to research.
  -TSGzz

  I would probably take a different approach if possible:
  Build new Exchange Server in New Site (making sure storage passes).
  Configure Vdirs and add to dag
  Add Database Copies
  Once database copies are seeded remove old server from the dag and retire it.
  I like this method better, b\c you still keep some high availability while you are getting the second site together.  PLuS you don't end up not being able to prune you log files since replication would be so far behind once you stand up the server in
  the new site.
  If you can't do that your steps look like they cover everything.  

• Adding a second Exchange 2010 Server to an exsisting site.

  We have a working server and I want to load a second Exchange 2010 server and migrate all roles and users to the new server. What if anything do I need to watch when doing this. This first step I want to do is move all users to the new server because we
  are running out of space on the old server, and then I will move roles to the new server. then shut the old server down. Again just looking for some good directions to do this.
  Thanks,
  Dan

  Hi,
  I agree with DareDevil57. We can add a new Exchange 2010 server and migrate from the old Exchange 2010 to the new Exchange 2010 server. Make sure the new Exchange server works well, then we can decommission the old Exchange 2010 server.
  Best regards,
  Belinda
  Belinda Ma
  TechNet Community Support

• Exchange 2013, multiple IIS OWA sites with different authentication

  Hi
  I have an exchange 2013 server with Client Access and Mailbox server installed. The server has an second ip address which I have bound an additional IIS site to. The additional IIS site is named ExchangeExternalFBA.
  The default web site is configured for basic and windows authentication with:
  Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
  Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
  Then a new ECP and OWA are configured with:
  New-ecpVirtualDirectory -WebSiteName "ExchangeExternalFBA"
  New-OwaVirtualDirectory -WebSiteName "ExchangeExternalFBA"
  Set-owavirtualdirectory -identity "owa (ExchangeExternalFBA)" -LogonFormat FullDomain -FormsAuthentication:$true -WindowsAuthentication:$false -BasicAuthentication:$true
  Set-EcpVirtualDirectory -identity "ecp (ExchangeExternalFBA)" -FormsAuthentication:$true
  Then I perform an iisreset.
  My problem is that then when I try to access the ECP or OWA on the default website, it loads forms authentication! The ECP or OWA on the ExchangeExternalFBA web site works correctly and also loads forms authentication.
  If I run...
  get-owavirtualdirectory "owa (ExchangeExternalFBA)"
  then it returns:
  InternalAuthenticationMethods                       : {Basic, Ntlm,
                                                        WindowsIntegrated}
  BasicAuthentication                                 : True
  WindowsAuthentication                               : True
  DigestAuthentication                                : False
  FormsAuthentication                                 : False
  LiveIdAuthentication                                : False
  AdfsAuthentication                                  : False
  OAuthAuthentication                                 : False
  If I then run
  Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
  Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
  and perform another iisreset then when I try to access the ECP or OWA on the default website it loads correctly. But then the forms based authentication on the ExchangeExternalFBA website can no longer log in, it does not accept the user name and password.
  If I then disable and enable FBA on the ExchangeExternalFBA website then it works but forms based authentication takes over the default web site again!
  Whether I perform the above from the gui or from powershell it does not make a difference, the same behaviour is observed. Changing the logontype on the FBA does not make a difference.
  This has been tested on exchange 2013 cu1 and cu2.
  Similar(if not identical until they get sidetracked) issue reported in http://social.technet.microsoft.com/Forums/exchange/en-US/9fcd360f-6658-4940-add7-2f13265cf86b/multiple-owa-sites-on-a-single-server-2012-with-exchange-2013-mailbox-cas.
  This worked fine in outlook 2007 and 2010, why now do my virtual directories break each other?
  I can reproduce the issue on a test exchange 2013 I built in dev.
  Is this a bug or are you no longer meant to host different forms of authentication on a single cas?
  I'm mostly interested to see if this works for other people and why it no longer seems to work in 2013, so please no questions; 'why do you want 2 different forms of authentication'. 
  Much appreciated, Thanks!

  Based off of your feedback I have run the following:
  Remove-OwaVirtualDirectory "owa (ExchangeExternalFBA)"
  Remove-EcpVirtualDirectory "ecp (ExchangeExternalFBA)"
  iisreset
  Set-EcpVirtualDirectory -identity "ecp (default web site)" -FormsAuthentication:$false
  Set-owavirtualdirectory -identity "owa (Default Web Site)" -FormsAuthentication:$false -WindowsAuthentication:$true -BasicAuthentication:$true
  New-ecpVirtualDirectory -WebSiteName "ExchangeExternalFBA" -Role ClientAccess
  New-OwaVirtualDirectory -WebSiteName "ExchangeExternalFBA" -Role ClientAccess
  Set-owavirtualdirectory -identity "owa (ExchangeExternalFBA)" -LogonFormat FullDomain -FormsAuthentication:$true -WindowsAuthentication:$false -BasicAuthentication:$true
  Set-EcpVirtualDirectory -identity "ecp (ExchangeExternalFBA)" -FormsAuthentication:$true
  iisreset
  After this there has been no change in behaviour. After the iisreset, forms have again hijacked the default web site and re-setting the authentication on the default web site removes the forms but breaks the ability to sign in to the forms based page on the
  ExchangeExternalFBA web site again.
  Note. '-Role Frontend' did not work. It showed the error:
  Cannot process argument transformation on parameter 'Role'. Cannot convertvalue "frontend" to type
  "Microsoft.Exchange.Management.SystemConfigurationTasks.VirtualDirectoryRole".
  Error: "Unable to match the identifier name frontend to a valid enumerator name.  Specify one of the following enumerator names and try again:
  ClientAccess, Mailbox"
      + CategoryInfo          : InvalidData: (:) [New-OwaVirtualDirectory], ParameterBindin...mationException
      + FullyQualifiedErrorId : ParameterArgumentTransformationError,New-OwaVirtualDirectory
  Running get-help New-OwaVirtualDirectory -detailed shows the correct usage would be '-Role ClientAccess'?
      -Role <ClientAccess | Mailbox>
          The Role parameter specifies the configuration that should be used
          when the virtual directory is created. The following are the values
          that can be used with this parameter:
          * FrontEnd Configures the virtual directory for use on a Client Access
            server.
          * BackEnd Configures the virtual directory for use on a Mailbox server.

• Migration Exchange 2010 to Exchange 2013 in a different site

  Hi all, I have
  an Exchange 2010 with these characteristics
  Site A
  - 2 Servers DAG for mailboxes
  - 2 Servers Client Access and
  Hub Transport in Microsoft
  NLB
  - 2 Domain Controllers Windows
  Server 2008 R2
  I want to upgrade to Exchange 2013 but in another
  Site, Site B. When the migration is complete,
  the mail system will only be in Site
  B.
  The connection between Site A and Site
  B is a reliable connection.
  Is there any problem to upgrade Exchange 2013
  to another Site, other than Site
  A?
  regards
  Microsoft Certified IT Professional Server Administrator

  Hi all, I have
  an Exchange 2010 with these characteristics
  Site A
  - 2 Servers DAG for mailboxes
  - 2 Servers Client Access and
  Hub Transport in Microsoft
  NLB
  - 2 Domain Controllers Windows
  Server 2008 R2
  I want to upgrade to Exchange 2013 but in another
  Site, Site B. When the migration is complete,
  the mail system will only be in Site
  B.
  The connection between Site A and Site
  B is a reliable connection.
  Is there any problem to upgrade Exchange 2013
  to another Site, other than Site
  A?
  regards
  Microsoft Certified IT Professional Server Administrator
  It is like any other Migration (Same Forest) You just need to make sure that AD is been replicated from Site A (Exchange 2010) to Site B (Exchange 2013).
  No Network or replication issue between the sites. Having more than 1 DC on Site B would be good idea.
  Once you have all these set, rest of the things are same.
  Extend the AD Schema.
  Deploy the Exchange Server 2013 CU6
  Create the Cert request for 2013.
  Install Cert on Exchange 2013.
  Configure the Virtual Directories for Exchange 2013.
  Test the Coexistence between 2010 and 2013.
  Perform the Cutover from 2010 to 2013.
  Test the Cutover and start the Test migration phase.
  Once the test phase is fine, start the full fledge migration.
  Move Mailbox and Public Folder Database.
  Cheers,
  Cheers,
  Gulab Prasad
  Technology Consultant
  Blog:
  http://www.exchangeranger.com    Twitter:
    LinkedIn:
     Check out CodeTwo’s tools for Exchange admins
  Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

• Getting error when I try to remove eum secondary email address from the Mailbox from Exchange 2013 server

  Getting error when I try to remove eum secondary email address from the Mailbox from Exchange 2013 server. The command works if you issue directly from the server exchange shell.
  I open the remote power shell to the exchange server 2013.
  Issue the following commands and getting the following error.
  $mailbox = Get-Mailbox -Identity testuser$mailbox.EmailAddresses -= "eum:50004;phone-context=telExt5digits.lync5.com"Then getting the following error:Method invocation failed because [System.Collections.ArrayList] doesn't contain a method named 'op_Subtraction'.
  At line:1 char:27
  + $mailbox.EmailAddresses -= <<<<  "eum:50004;phone-context=telExt5digits.lync5.com"
      + CategoryInfo          : InvalidOperation: (op_Subtraction:String) [], RuntimeException
      + FullyQualifiedErrorId : MethodNotFoundHelp!

  Now for an answer - your remote session doesn't have the same object you have on the server itself.  Notice it says this is an array list, not a ProxyAddressCollection.  If you need to work around this, you'll need to massage the addresses another
  way that the system will accept.  I'd try the following:
  $NewAddresses = $mailboxEmailAddresses | ? { $_ -notlike "eum:50004;phone-context=telExt5digits.lync5.com" }
  See what you get in the $NewAddresses variable when you do this.

• Addition of Exchange 2013 server to Exchange 2010 organization broke Exchange

  This is somewhat of an emergency, since Exchange is down completely for us right now.
  I just migrated from SBS2003 to Exchange 2010 on Windows 2012 over last weekend. Everything is now stable, and SBS2003 is shut down. Now I am attempting to migrate from Exchange 2010 to Exchange 2013.
  The plan was this:
  Install Exchange 2013 on another server (Windows 2008R2)
  Wait until everything is replicated
  Remove the Exchange 2010  server from the organization
  Uninstall Exchange 2010
  Install Exchange 2013 on the Windows 2012 server
  Wait until everything is replicated
  Remove Exchange 2013 from the Windows 2008R2 server
  But here is what actually happened:
  Installed all Exchange 2013 prerequisites on the Windows 2008R2 server
  Began Exchange 2013 server setup on the Windows 2008R2 server. Included both Mailbox & CAS roles
  At step 11 of 15 (not sure what that was, though), received this error message:
  Error: The following error was generated when "$error.Clear();
          netsh advfirewall firewall set rule group="windows management instrumentation (wmi)" new enable=yes   
          " was run: "The term 'netsh' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct
  and try again.".
  And setup halted. I ran the netsh command via the command prompt, and it correctly said something about four rules being created or updated (not sure of exact verbiage). Now, when I try to restart setup, it says it is in the middle and will try to complete
  but stays at 0%. But here is the most immediate issue:
  Now I cannot access e-mail from any workstations (says Exchange server is unavailable)
  Opening EMC on the Exchange 2010 server: I get as far as Microsoft Exchange -> Microsoft Exchange On-Premises and get this error:
  The attempt to connect to http://[Exchange 2010 FQDN]/PowerShell using "Kerberos authentication failed: Processing data from remote server [Exchange 2010 FQDN] failed with the following error message:
  Couldn't find Enterprise Organizaiton container. (Note that it refers to the local server as remote server)
  I get an event 7031 on the Exchange 2010 server: The Microsoft Exchange Service Host service terminated unexpectedly
  Opening the Exchange Management Shell on the Exchange 2010 server yields the same message regarding "Couldn't find the Enterprise Organization container..."
  It also says, "Connecting to [Exchange 2013 server FQDN], then says connected to that server. Opening EMS on the Exchange 2013 server seems to connect correctly to the Exchange 2013 server, but there is no EM Console available there.
  At this point, I am lost. I will continue to research this online but may have to call Microsoft soon, since we are entirely down at the moment. Any help is much appreciated!

  All of the above, I believe. And E2003 is on the DC (and functioning just fine); E2012 on a member server (this is a very small environment--they have only the DC, a DB2 database server, and a lightly-used and old terminal server). I just spent 12 hours
  on the phone with MS support on this issue, and it has now come down to this: the Exchange 2013 installation will not run to completion. It has failed repeatedly at a few points today, all related to the shell being unable to access Windows EXEs or environment
  variables with variations on this error:
  "...not recognized as the name of a cmdlet, function, script file, or operable program..." for each of these:
  netsh (windows exe)
  sc.exe (windows exe)
  hostname (windows command that returns workstation name)
  These all work from the command prompt. I am currently stuck on sc.exe failing on each attempt to install Exchange 2013 or Exchange 2013 SP1. Nor can I just remove it--it insists on attempting to proceed with installation even with the manual command-line
  argument to remove it instead.
  At this point, I am awaiting a night call back from Microsoft support, since the technician that worked on it with me for 12 hours today had to go home.

• RPC error when configuring Exchange 2013 servers in 2nd site

  Hello. I'm running into an error when trying to configure any of my Exchange 2013 servers in my 2nd AD site. To get into the loop of what my server structure looks like, please check below:
  Site 1 servers:
  DC1 - Domain Controller
  DC2 - Domain Controller
  CAS1 - CAS server
  CAS2 - CAS server
  MBX1 - Mailbox server
  MBX2 - Mailbox server
  MATHAFTMG - TMG server
  Site 2 servers:
  CCCDC1 - Domain Controller
  CCCDC2 - Domain Controller
  CCCCAS1 - CAS server
  CCCCAS2 - CAS server
  CCCMBX1 - MBX server
  CCCMBX2 - MBX server
  CCCTMG - TMG server
  Currently I have a site-to-site vpn connection between site 1 and site 2 TMG servers via Internet connection; I can access the servers of the other site perfectly (whether I am in Site 1 or Site 2).
  All user mailboxes are currently in Site 1 MBX servers; when users are in Site 2, they connect to the CAS servers in Site 1 to access their mailboxes.
  Many users will stay permanently in Site 2, so it makes sense to have Exchange servers in Site 2 to provide faster access to mailboxes. I created the Site 2 domain controllers, and made sure AD replication is working; and it is. I then added the MBX servers
  and CAS servers in Site 2 in this order: CCCMBX1, then CCCCAS1, then CCCMBX2, then CCCCAS2.
  All Exchange servers in Site 2 installed beautifully. But then I tried to access the servers via ECP to proceed with the configuration. In ECP, I click on the server link, and all Exchange servers in both sites appear. If I try to configure the virtual directories
  of Site 1 CAS servers, no problem. But when I try to configure virtual directories of Site 2 CAS servers, I get this error message:
  The task wasn't able to connect to IIS on the server 'CCCCAS1.domain.com'. Make sure that the server exists and can be reached from this computer: The RPC server is unavailable.
  The virtual directories issue is just an example. Same thing happens if I try to configure Outlook Anywhere for Site 2 CAS servers.
  Users connect to Site 1 CAS servers via mail.domain.com. I have the A record mail.domain.com pointing to the IP address of CAS1 server, and another A record mail.domain.com pointing to the IP address of CAS2 server. Not the best load balancing going on here,
  but it works great with Exchange 2013.
  From mail.domain.com I can access OWA and ECP internally and externally; no problems there. From ECP I can access and configure any Site 1 Exchange 2013 servers.
  The only problem is when I access ECP to configure the Site 2 Exchange 2013 servers, I get the same error message:
  The task wasn't able to connect to IIS on the server '<server name>.domain.com'. Make sure that the server exists and can be reached from this computer: The RPC server is unavailable.
  Even if I try to access a Site 2 Exchange 2013 server via https://localhost/ecp to configure it, it get the same error message.
  I updated all Exchange 2013 servers in both sites to CU2 v2 and rebooted the servers in the proper order; problem still there.
  Any clue what might the problem be?
  Thank you!

  Hello. I'm running into an error when trying to configure any of my Exchange 2013 servers in my 2nd AD site. To get into the loop of what my server structure looks like, please check below:
  Site 1 servers:
  DC1 - Domain Controller
  DC2 - Domain Controller
  CAS1 - CAS server
  CAS2 - CAS server
  MBX1 - Mailbox server
  MBX2 - Mailbox server
  MATHAFTMG - TMG server
  Site 2 servers:
  CCCDC1 - Domain Controller
  CCCDC2 - Domain Controller
  CCCCAS1 - CAS server
  CCCCAS2 - CAS server
  CCCMBX1 - MBX server
  CCCMBX2 - MBX server
  CCCTMG - TMG server
  Currently I have a site-to-site vpn connection between site 1 and site 2 TMG servers via Internet connection; I can access the servers of the other site perfectly (whether I am in Site 1 or Site 2).
  All user mailboxes are currently in Site 1 MBX servers; when users are in Site 2, they connect to the CAS servers in Site 1 to access their mailboxes.
  Many users will stay permanently in Site 2, so it makes sense to have Exchange servers in Site 2 to provide faster access to mailboxes. I created the Site 2 domain controllers, and made sure AD replication is working; and it is. I then added the MBX servers
  and CAS servers in Site 2 in this order: CCCMBX1, then CCCCAS1, then CCCMBX2, then CCCCAS2.
  All Exchange servers in Site 2 installed beautifully. But then I tried to access the servers via ECP to proceed with the configuration. In ECP, I click on the server link, and all Exchange servers in both sites appear. If I try to configure the virtual directories
  of Site 1 CAS servers, no problem. But when I try to configure virtual directories of Site 2 CAS servers, I get this error message:
  The task wasn't able to connect to IIS on the server 'CCCCAS1.domain.com'. Make sure that the server exists and can be reached from this computer: The RPC server is unavailable.
  The virtual directories issue is just an example. Same thing happens if I try to configure Outlook Anywhere for Site 2 CAS servers.
  Users connect to Site 1 CAS servers via mail.domain.com. I have the A record mail.domain.com pointing to the IP address of CAS1 server, and another A record mail.domain.com pointing to the IP address of CAS2 server. Not the best load balancing going on here,
  but it works great with Exchange 2013.
  From mail.domain.com I can access OWA and ECP internally and externally; no problems there. From ECP I can access and configure any Site 1 Exchange 2013 servers.
  The only problem is when I access ECP to configure the Site 2 Exchange 2013 servers, I get the same error message:
  The task wasn't able to connect to IIS on the server '<server name>.domain.com'. Make sure that the server exists and can be reached from this computer: The RPC server is unavailable.
  Even if I try to access a Site 2 Exchange 2013 server via https://localhost/ecp to configure it, it get the same error message.
  I updated all Exchange 2013 servers in both sites to CU2 v2 and rebooted the servers in the proper order; problem still there.
  Any clue what might the problem be?
  Thank you!

• Exchange 2013 server infrastructure

  What if, my organization has asked me to design Exchange 2013 server infrastructure for its 5000 employees.
  I need to design an architecture considering both high availability within the Data Center, and site resiliency between two datacenters. And I am told to have two Active Directory sites. What can be the two main reasons for it?

  Hi Andy,
  I need to answer the online question in one of my interviews.
  "A site implies LAN , well-connected ,quality
  within it. Do you have that between the 2 data centers." I agree with you. 
  The question I am asked is:
  Your organization has asked you to design Exchange 2013 server infrastructure for its 5000 employees. You need
  to design an architecture considering both high availability within the Data Center, and site resiliency between two datacenters. You are told to have two Active Directory sites. What are the two main reasons for it?
  Your time on this  will be greatly appreciated.
  Thanks,
  IB

• Howto deploy a temporary exchange 2013 server for migration between two Office 365 accounts?

  Objective:
  We plan to migrate our office 365 from our current tennant (E3) to a new tennant (M) to drastically cut our annual costs for the same services, while retaining the mail and group memberships of all our users. This will involve installing an exchange server
  to download and upload mail from the old tennant to the new tennant.
  Background: 
  We are a longtime O365 customer, and have been a customer since before the "Midsize business" plans existed. There is no "cookie cutter" migration path from E3 to M. Microsoft currently recommends deploying an MS exchange server and off-boarding
  the mailboxes from your E3 subscription and then On-boarding them to a new account under the M plan.  As ridiculous as this is, this is indeed the path our company has decided to go. It isn't cool/fair that we're being shackled to the E plans (that are
  vastly more expensive) when we're a small/midsize business that has been a longtime customer of O365, while new customers of equal size to us can expect to save over $4000 annually. The services (when compared) offered are nearly identical.
  After calling MS support several times for guidance for this issue, I am advised that we should contact a 'partner' and ask for their support in doing this migration. We did as requested and were provided a quote to the tune of approximately $15,000 to do this
  migration for us. Obviously this is unacceptable, and thus our business has decided to rely on my abilities to get it done. Again, involving an MS partner is not an option.
  Environment:
  1 MS AD domain:
  - Original FQDN was @contoso.ca of this domain and UPNs were [email protected]
  - UPN has been changed to [email protected] to allow for ADFS
  - ADFS has been deployed and SSO works for all users with UPN [email protected]
  - An "On-Prem exchange server" does not yet exist
  1 O365 Account where main tennant FQDN is @corp.com
  - There are 5 registered domains
  -contoso.ca
  -corp.com
  - contoso.legacy.ca
  -deprecated/will be deleted
  -deprecated/will be deleted
  - There are 40 E3 licenses, all using a @corp.com UPN
  - There are 5 E1 licenses (we acknowledge that these will be upgraded to an M following the migration) that use the UPN contoso.legacy.ca
  - No accounts currently use contoso.ca for email
  - O365 was upgraded to 'the latest version' sometime in summer 2013.
  Migration Plan (High Level):
  Setup a local windows server (trial license)  
    Deploy an exchange 2013 server (trial license) on the aforementioned windows server  http://technet.microsoft.com/en-us/evalcenter/hh973395.aspx
    Prepare and deploy Dirsync Deployment
  of Dirsync
    Add exchange to office 365 and begin replicating the mailboxes from the cloud to the exchange server. Wait for synchronization to complete.
  More information: http://technet.microsoft.com/en-us/library/hh534377(v=exchg.150).aspx
  http://help.outlook.com/en-us/140/ff633682.aspx
    Evaluate total time it took to sync data. 
  Time it takes to download data to exchange should be relatively similar to time it takes to restore mail to the new service.
    Open a new office365 account under the M plan.
    Plan a 1 hour mail & contoso.ca domain login outage
    temporarily change all user UPN's to match the new tennant
    perform a dirsync to the new tennant
    disable dirsync after all accounts have been auto-created/provisioned
    re-establish UPN + mail access.
    Plan a date and time for the cut over.
    remove the exchange hybrid server from the old tennant. 
    Point MX records directly to the exchange server.
    Cut office 365 service.
    After the 30 minutes ~ 1 hour 'mandatory' wait time imposed by MS to 'register' the domain with O365, add @corp.com to
  the new tennant
    fix all user UPN's in the cloud to match their real UPN's.
  This can be done with powershell.
    attach exchange hybrid server to new tennant
    Point MX records to the new tennant 
    Migrate all data from the local exchange server to the cloud under the new plan.
  Current progress (Lab):
  I have created a sandbox (Lab with no internet access or connectivity to production) environment in VMware and cloned the following servers to it:
  1x Domain Controller (DC) running windows server 2012 (named DC02)
  1x DC running windows server 2008 R2 (named DC01)
  1x windows server 2012 R2 - prepped with all the pre-requisites to install exchange 2013. (named EXC01)
  Where I am stuck / Problem:
  I have installed exchange on the server EXC01 in the lab environment using my account. I am a domain administrator in the contoso.ca domain, but my UPN is [email protected]. 
  After the installation of exchange, I notice that my email address in Active Directory changed from @corp.com to @contoso.ca. By default, I do not see @corp.com to be an available email address to select as my email address, and changing it in AD does not resolve
  the problem. 
  In the exchange portal, I found "Mail flow ---> Accepted Domains", and believe I should add @corp.com to the accepted domain list. Questions:
  1) Must I add corp.com and the other domains that exist in office 365 to the local exchange before I go through with the hybrid wizard?
  2) If I must add them to exchange, I am provided with three choices: 
  - Authoritative Domain
  - Internal Relay Domain
  - External Relay Domain
  Given that the domain is currently in office365 and is authoritative there, which of these applies?
  3) Most documentation I have found has been about a one way migration from on-prem to the cloud. I have had a hard time finding a step by step guide for cloud to local (new server) and then back to cloud. Does anyone here have any good documentation for this
  process? Would love it if it took into consideration multiple UPN/email addresses.

  Hi,
  Here are my answers you can refer to:
  1. Yes, we should select the primary SMTP domain for our organization and any other accepted domains that will be used in the hybrid deployment:
  http://technet.microsoft.com/en-us/library/jj200787(v=exchg.150).aspx
  2. It depends on the usage of the specific accepted domain. And Exchange version has no influence.
  To determine it, you can firstly check the function of the three types in the following article:
  http://technet.microsoft.com/en-us/library/bb124423(v=exchg.150).aspx
  3. Here are some reference about the migration from on-premise Exchange server to Office 365:
  http://www.msexchange.org/articles-tutorials/office-365/exchange-online/configuring-exchange-2013-hybrid-deployment-migrating-office-365-exchange-online-part1.html
  Additionally, since the issue is related to Exchange online, I recommend you ask for help on our Exchange online forum to get more professional help:
  http://social.technet.microsoft.com/Forums/msonline/en-US/home?forum=onlineservicesexchange
  If you have any question, please feel free to let me know.
  thanks,
  Angela Shi
  TechNet Community Support

• External Mail Flow not coming into Exchange 2013 Server

  We just finished migrating from Exchange 2007 to Exchange 2013 and when I disable a certain receive connector on Exchange 2007 we stop receiving external emails. I have reviewed all of the Exchange 2013 Receive Connectors and everything looks to be fine
  but the server does not get mail flow. If anyone could assist with this issue that would be great.
  Thanks,
  Ryan

  Hi,
  According to your description, all your inbound mails cannot be received in your Exchange 2013 server after you disable a receive connector in your Exchange 2007 server. If I misunderstand your meaning, please feel free to let me know.
  If yes, since your MX record has been configured properly for your Exchange 2013 server, we can begin with checking the A record for the Exchange 2013 server and confirm if all external mails cannot come in your organization. And we can depend on the following
  troubleshooting to narrow down the mail flow issue:
  1. Check the NDR information if there is NDR.
  2. Check Telnet to test the mail flow:
  http://technet.microsoft.com/en-us/library/bb123686(v=exchg.150).aspx
  Thanks,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Angela Shi
  TechNet Community Support

• Built-in domain Administrator account not given full access to new Exchange 2013 server

  I migrated from Exchange 2010 to 2013 over the weekend.  I cannot log into the EAC with my domain administrator account I use to log into all my other servers.  I also cannot run the clean-mailboxdatabase cmdlet logged in as this user.  I
  had no trouble moving mailboxes from the old server to the new server with this account though.
  This account is a member of: Domain Admins, Enterprise Admins, Exchange Full Admin, Exchange Organization Admin, Organization Management, Schema Admins, Server Management.
  I can log into the EAC with another admin account that has the same memberships as the Administrator account.
  I tried giving the account the role of "Databases" as suggested by others to fix the clean-mailboxdatabase issue but that did not work for me either.
  The Administrator mailbox has been moved to the new database on the Exchange 2013 server.  The Exchange 2010 has been decommissioned and is turned off.

  Hi,
  Based on my research, to retrieves the mailbox statistics for the disconnected mailboxes for all mailbox databases in the organization, we can try the following command:
  Get-MailboxDatabase | Get-MailboxStatistics -Filter 'DisconnectDate -ne $null'
  http://technet.microsoft.com/en-us/library/bb124612(v=exchg.150).aspx
  Additionally, The Identity parameter specifies the disconnected mailbox in the Exchange database and it can be display name instead of mailbox GUID.
  http://technet.microsoft.com/en-us/library/jj863439(v=exchg.150).aspx
  Hope it can help you.
  Thanks,
  Angela Shi
  TechNet Community Support

• Can't recover exchange 2013 server using recoverserver switch

  CU5 crashed while installing on one of our 4 DAG members.  I was able to coax it back to life with some manual steps and doing a repair of sp1, but was unable to get cu5 to install or to cleanly uninstall sp1 despite repeated tries.
  Finally I decided to rebuild it and use recoverserver (after removing database copies and removing it from the DAG).  I built a new server with the same name, reset the AD account, domain joined it, and then ran the /recoverserver switch.  But
  I get this error every time:
  "Can't specify installation mode because no Exchange Server is installed on this machine. Install Exchange Server."

  Hi,
  As far as I know,  to remove Exchange 2013 server, here are the additional steps except with removing objects through ADSIEdit:
  1. Delete the Exchange Server installation folder: C:\Program Files\Microsoft\Exchange Server
  2. Delete the Exchange Back End and Front End websites with the IIS-Manager.
  3. Delete the container in AD Users and Computers:
  DiscoverySearch Mailbox{GUID}
   Exchange Online-ApplicationAccount
  FederatedEmail.GUID
  Migration.GUID
   *SystemMailbox{GUID}
   *HealthMailboxGUID
  4. Delete the following registries:
  the key “ExchangeServer” under: HKLM\Software\Microsoft
  the keys “MSExchange*” under: HKLM\CurrentControlSet\Services
  Thanks,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Angela Shi
  TechNet Community Support

• Rethinking Exchange 2013 Server Setup

  Hello, I'm currently rethinking my Exchange 2013 install, I have a network of 20 users and 2 servers, one is my domain controller/file server and the other is my Exchange 2013 server.  I have setup the Exchange server as a member server and configured
  all of the network and Exchange settings.  Everything is working fine and I currently have the Client Access and Mailbox Server roles installed.  I have all of the users and mailboxes working and mail is flowing. I have NIC1 configured for my internal
  network and NIC2 disabled.  Here is where I'm rethinking my setup and need some advice. With having one Exchange server should I install the Edge Transport Server role, I currently have Exchange 2013 SP1 CU7 installed.  If the answer is yes how should
  I go about re-configuring my settings for the server.
  Thanks Ryan.

  Giving you a definite answer is difficult, because the only disadvantage every extra layer of security has, is the extra cost. So I will just give you following quotes to help you decide, whether the Edge Transport role is a useful addition to your email
  infrastructure.
  Edge Transport servers minimize the attack surface by handling all Internet-facing mail flow, which provides SMTP (Simple Mail Transfer Protocol) relay and smart host services for your Exchange organization. Agents running on the Edge Transport server
  provide additional layers of message protection and security. […] Because the Edge Transport server is installed in the perimeter network, it's never a member of your organization's internal Active Directory forest and doesn't have access to Active Directory
  information.
  (https://technet.microsoft.com/en-us/library/dn635117%28v=exchg.150%29.aspx?f=255&MSPPError=-2147217396)
  We recommend that the Edge Transport role be installed in a perimeter network outside of your organization's internal Active Directory forest.
  (https://technet.microsoft.com/en-us/library/bb124701%28v=exchg.150%29.aspx?f=255&MSPPError=-2147217396)