We have a large number of shared email accounts. We assign Full Access Permissions (FAP) to these mailboxes using groups.  If we archive a generic account, users with FAP access granted through group membership don't see the shared account's archive displayed in Outlook. But if I assign FAP to an individual user they see the archived mail of the generic account.

Is there a setting in Exchange or some other way to allow group members to see shared mailbox archives without group members being assigned individual access to the shared mailbox? 

Regards, Iain McDonald

Hello,

We have a mail server configured for internal communication (Third Party) which is not able to communicate outside the network, we also have the MS Exchange server 2010 in our network which is configured for outside communication.

Now I would like to route a mails from exchange server to segregated mail server and all the users should send and receive the mails from exchange to internal server and internal server to exchange.

Please help me to find solution on this.

Also let me know if more details require here.

Thanks and Regards,

Krishna Dhaware

Hello,

when using moderation using a Transport Rule (Transport Rule Action "forward the message to addresses for moderation") it is possible to moderate messages sent to recipients outside the exchange organization (Transport Rule Predicate "Sent to Users Outside The Organization"). This all works perfect so far using a single arbitration mailbox.

Now I would like to add additional arbitration mailboxes for load balancing purposes. As far as I understand, different arbitration mailboxes can configured on the recipients objects which are moderated using the set-<MailEnabledObject>-ArbitrationMailbox 'XYZ'

Now, for the described case above where the recipients are external (internet) and not available within the directory, is there a way to use multiple Arbitration mailboxes anyway and if yes, how ?

Any feedback welcome. Thanks in advance

When we try to add ONLY "User A" to meeting request using Outlook client/OWA, no free busy information could be retrieved. Other user try to add "User A" to meeting request also receive the same message.

However, when "User A" from her Outlook, she can able to view her free/busy

I'm using Outlook 2010 and running on Exchange 2010. I did ran my outlook testing, availability can be connected.

Please advice

Hello,

We're seeing a lot of emails in shadow redundancy queue (13000+) on edge servers. These all are emails from internet to internal recipients. We have exchange 2010 and the emails are flowing from internet to Edge servers ---- Hub servers --- Mailbox servers.

Emails are delivering to end users but not being removed from Shadow queue at one of the edge servers. It's only expiring after default period of 2 days.

We have 2 active/active sites and 2 edge servers at each site. Only one of the edge server at one site is having such status that such amount of emails are in queue.

Where and what can we check?

Thanks

Exchange 2010 SP3 RU5

I have a group mailbox may users have Send-As permissions to. Sending messages as the mailbox is failing randomly for many of the users. For example, UserA sends 3 messages within 10min, one of the 3 messages bounces with the NDR shown below. UserA can send more 10 messages the reset of the day without any issues. Then a few days later one of the messages he sends that day will bounce with the same type of NDR.

On average there are 100+ messages sent from this mailbox each day, and probably 2 will fail.

Any ideas on how to troubleshoot this would be appreciated.

Delivery has failed to these recipients or groups:

'xkamalrocks.1988@hotmail.com' <mailto:xkamalrocks.1988@hotmail.com>

You can't send a message on behalf of this user unless you have permission to do so. Please make sure you're sending on behalf of the correct sender, or request the necessary permission. If the problem continues, please contact your helpdesk.

Diagnostic information for administrators:

Generating server:

xkamalrocks.1988@hotmail.com

#MSEXCH:MSExchangeIS:/DC=com/DC=Domain/DC=DSRoot:MBX01[578:0x000004DC:0x0000001D] #SMTP

Hi,

My Exchange organization includes 2 Mailbox servers, 2 hub/transport servers and 2 edge transport servers.

Everyday, one of my mailbox server loses connection to Dcs. This error is logged :

Process MSEXCHANGEADTOPOLOGYSERVICE.EXE (PID=1976). All Global Catalog Servers in use are not responding:
servername.domain.com

About 10 minutes later, my mailbox server starts again discovering the Dcs and GCs in the domain, all alone, without me doing anything about it.

Process MSEXCHANGEADTOPOLOGYSERVICE.EXE (PID=1976. Exchange Active Directory Provider has discovered the following servers with the following characteristics.....

Fortunatly, it always happen later in the night, between 10 PM and 01 AM everyday when people are not working.

My other Exchange servers don't have this issue.

I have the Exchange 2010 SP3 RU6 installed on all my exchange servers.

Hi All,

I just created a DAG between two servers and CAS Array between two other servers.

DAG:-       EX01 -Mailbox, CAS,HT (First Exchange Server)

                EX02-Mailbox

CAS Array:     CA-HT01 (CAS & HT Role)

                      CA-HT02 (CAS & HT Role)

I created CAS Array and assigned an FQDN for that array but It does not get changed in outlook 2007 it still uses old server EX01.So when I am shutting down server ex01 for testing all outlook 2007 client get disconnected.

Does this required to change profile for all outlook 2007 users? I am more than 1600 users I am not sure how many users using outlook 2007.

Please guide.I already configure Autodiscover service as it is suggested somewhere online but no luck.

Thanks

--------------------------------------------------------
Microsoft Exchange Error
--------------------------------------------------------
The following error(s) occurred while saving changes:

Set-PublicFolder
Failed
Error:
You must specify a value with the Replicas parameter.

--------------------------------------------------------
OK
--------------------------------------------------------

Not sure where to go with this error.  Could someone point me in the right direction?

Thank you,

Wade Harris

Dear all

I migrated users from exchange server 2003 to 2010.

I can send mail to external domain but i does not receive from external domain and users receive error as 550 5.1.1 users unknown.

Please do the needful

Parthiban selvaraj

Hi All,

   This user is login to the Ourdomain.com but accessing the nextdomain.com Exchange server. When we start Outllook

security alert popup. "The security certificate was issued by the company you have not chosen to trust..."

I have install this certificate  but still this Certificate got error " This CA Root certificate is not trusted....."

Issue:

 User cannot open OOF and message pop up "  Your automatci reply settings cannot be displayed because server is currently unavailable "

I run the Test email auto configuration but result " Auto configuration was unable to determine your settings"

In log i can see this https://autodiscover.nextdomain.com/auto......../auto...xml ( Failed 0x8004005)

As

I am unable to install the Exchange Management Tools on my workstation. When I attempt to install, I get D:\exchangeserver.msi failed. This action is only valid for products that are currently installed. Error code is 1605.

None of the exchange components are installed. At one time, I had attempted to install it and although the install actually failed, it looked as if it had installed. The console would appear but never connect to the organization. My other workstation works just fine, same login etc.. I couldn't even uninstall the Management tools either from the Programs applet in the control panel. I have essentially performed a manual uninstall by going through the registry and removing the installation directory on this computer.

Apparently I am missing something in the registry to finish out the uninstallation of the management tools, so I can attempt to install again. Has anyone else had this problem?

Thanks,

Kevin

Good morning friends,

Back in Abril, we had an issue that caused our Edge server to fail. When we try to resynchronize the subscription between Hub and Edge, we get the next generic error when using 'Start-EdgeSynchronization', "The LDAP server is unavailable". A 1024 topology event is raised "Failed to connect to the Edge Transport server ADAM instance with exception The LDAP server is unavailable".

What we have done so far:

- Tried to re-subscribe several times.

- Recheck connection errors between servers although we didn’t modify our network infrastructure. 'Telnet' HUB to EDGE at port 25 and viceversa OK. 'Telnet' HUB to Edge at ADAM port 50636 OK. We also tried to subscribe permitting all IP traffic at our DMZ firewall.

- FQDN resolution between EDGE and HUB is working fine using an entry on the 'Host' file at both servers. And there is also a manually created 'Host A' registry in our Domain DNS zone for the Edge.  

- Restart of services involved in the process: 'topology' on the HUB, 'ADAM' on the EDGE, for example. Anyway, we ended restarting both machines several times and try the re-subscription then, no luck.

- Reinstall the EDGE server entirely, changing his original IP and his NetBIOS name. Both Edge and Hub have the same Exchange updates.

- Renew all certificates in the EDGE and at the HUB. The certs are self-signed, so http://technet.microsoft.com/en-us/library/cc671171%28v=EXCHG.80%29.aspx (same cert in edge and HUB) is not the case.

This case is in hands of Microsoft since April; one of those situations that makes you feel that you are no longer an administrator, just an operator that deals with Microsoft… They tried some undocumented operations, like network monitor, disable recipients, or erase it with ‘Adsiedit’, but with no luck.

I suspect that there is a bug that caused the HUB to be stuck remembering the old failed EDGE subscription...

Any help would be incredibly helpful for me. Thanks in advance!

Hi All,

I am looking to reduce the time it will take to replace the  mail groups with New groups on Exchange 2010 Public folders.

The time to complete this manualy would be over 15 weeks.

I am stuck on the following process:

We are wanting to apply the new security groups to the public folders below (please see attached script)

• Resecure the public folders with the new "Mail_" groups
• Does the public folder contain existing secuirty groups - If yes - Replace Groups with new "Mail_" equivalent group
• If No - Skip to creating a report on the changes to the secuirity groups on the public folders and review any errors during the process.

Thanks

param([string]$source = "*")

function GetGroupDetail
{
    param($targetgroup)

    $newname = "Mail_$($targetgroup.Name)"
    $usermembers=Get-ADGroupMember $targetgroup.Name | ? {$_.ObjectClass -eq "user"}
    $groupmembers=Get-ADGroupMember $targetgroup.Name | ? {$_.ObjectClass -eq "group"}
    $PrimarySmtp=get-distributiongroup $targetgroup.Name | select PrimarySmtpAddress
    $PrimarySmtpNew="$($targetgroup.Name)_new@uat.internal"
    $allEmail=get-distributiongroup $targetgroup.Name | select EmailAddresses
    $arr_allEmail = $allEmail.EmalAddresses.ToArray()
    $prxy_allEmail = ($arr.allEmail | select -exapand ProxyAddressString) -join ","
    $oldSmtpFinal = "'" + $prxy_allEmail + "','" + $PrimarySmtpNew + "'"
    $data=@{
        Name=$targetgroup.Name;
        NewName=$newname;
        DisplayName=$targetgroup.DisplayName;
        Description=$targetgroup.Description;
        Path=$targetgroup.DistinguishedName.Split(',',2)[1];
        Mail=$targetgroup.Mail;
        UserMembers=$usermembers;
        GroupMembers=$groupmembers;
        PrimarySmtpOld=$PrimarySmtp;
        PrimarySmtpNew=$PrimarySmtpNew;
        SmtpFinal=$oldSmtpFinal
    }
    $OutputObject = New-Object PSObject -Property $data
    Write-Output $OutputObject
}

function CreateGroup
{
    param($groupdetails)
    
    $newgroupname = "Mail_$($groupdetails.Name)"
    # Check whether the 'new' group already exists in AD, otherwise we don't want to re-create it!!!!!
    $LDAPPath = "LDAP://DC=uat,DC=internal"
    $seek= [System.DirectoryServices.DirectorySearcher] $LDAPPath
    $seek.Filter = "(&(name=$newgroupname)(objectcategory=group))"
    $result = $seek.FindOne()
    if ($result -eq $null){
        Write-Host "Create $newgroupname"
        New-ADGroup $newgroupname -Path $groupdetails.Path -GroupScope 2 -GroupCategory Distribution -Description $groupdetails.Description
        Enable-DistributionGroup -Identity $newgroupname
        $smtp = Get-DistributionGroup -Identity $newgroupname | select EmailAddresses
        $arr_smtp = $smtp.EmailAddresses.ToArray()
        $prxy_smtp = ($arr_smtp | select -ExpandProperty ProxyAddressString) -Join ","
        $smtp_final = "'" + $prxy_smtp + "','" + $groupdetails.PrimarySmtpOld + "'"
    }
}




# Ensure that the ActiveDirectory PowerShell module is loaded. 
#
Import-Module ActiveDirectory

# Get all mail enabled groups...
#$allmailgroups=Get-ADGroup -Filter * -Properties Mail,DisplayName,IsCriticalSystemObject,Description | ? {$_.IsCriticalSystemObject -ne "True" -and $_.GroupCategory -eq "Security" -and $_.Mail -like "*@*"}
$allmailgroups=Get-ADGroup -Identity "PhilTestGroup"  -Properties Mail,DisplayName,IsCriticalSystemObject,Description | ? {$_.IsCriticalSystemObject -ne "True" -and $_.GroupCategory -eq "Security" -and $_.Mail -like "*@*"}

# Iterate through each group in the mail enabled groups
foreach ($mailgroup in $allmailgroups){
    
    # Get specific group detail...
    $g=GetGroupDetail $mailgroup
    
    Write-Host -ForegroundColor Green $g.Name
    
    # Create the new group
    CreateGroup $g
    
    if ($g.GroupMembers -ne $null){
        foreach ($group in $g.GroupMembers){
            $tg=Get-ADGroup -Identity $group.Name -Properties mail
            if ($tg.mail -like "*@*"){
                # Mail enabled
                $tgd = GetGroupDetail $tg
                CreateGroup $tgd
                Add-ADGroupMember "Mail_$($g.Name)" "Mail_$($tgd.Name)"
            }
        }
    }
    Add-ADGroupMember "Mail_$($g.Name)" $g.UserMembers

}


There was also a report for groups 

########################################################
#
#      Script to create a report of security groups
#      that are email enabled.
#      
#      This report needs running via the exchange 2010
#      management shell.
#
########################################################



Import-Module ActiveDirectory
  
# REPORT PROPERTIES 
 # Path to the report 
  $reportPath = "c:\reports\"; 
 # Report name 
  $reportName = "groupreport"
# Path and Report name together 
$groupReport = $reportPath + $reportName + ".html" 
# Create and write Tabular report

$gpnames = get-adgroup -Filter * -properties mail,displayname,isCriticalSystemObject| where {$_.GroupCategory -Like "Security" -AND $_.isCriticalSystemObject -ne "True" -AND $_.mail -Like "*@*"}
# Create and write HTML Header of report 
$titleDate = get-date -uformat "%d-%m-%Y - %A" 
$header = " <html> <head> <meta http-equiv='Content-Type' content='text/html; charset=iso-8859-1'> <title>Group Report</title> <STYLE TYPE='text/css'> <!-- 
  td { 
   font-family: Tahoma; 
   font-size: 11px; 
   border-top: 1px solid #999999; 
   border-right: 1px solid #999999; 
   border-bottom: 1px solid #999999; 
   border-left: 1px solid #999999; 
   padding-top: 0px; 
   padding-right: 0px; 
   padding-bottom: 0px; 
   padding-left: 0px; 
  } 

  td.blank {
   padding-top: 0px; 
   padding-right: 0px; 
   padding-bottom: 10px; 
   padding-left: 0px;
  }

  body { 
   margin-left: 5px; 
   margin-top: 5px; 
   margin-right: 0px; 
   margin-bottom: 10px; 
   table { 
   border: thin solid #000000; 
  } 
  --> </style> </head> <body> <table width='100%'> <tr bgcolor='#CCCCCC'> <td colspan='6' height='25' align='center'> <font face='tahoma' color='#003399' size='4'><strong>Email enabled security group Report for $titledate</strong></font> </td> </tr> <tr><td colspan=3 align='right' bgcolor=#3300FF><font color=#FFFFFF size=3>Number of email enabled security groups:</font></td><td colspan=3 align='left'><font size=3>$($gpnames.count)</font></td></tr>" 
 Add-Content $groupReport $header 

# Connect to exchange 2010

#$Credentials = Get-Credential
#$ExSession = New-PSSession –ConfigurationName Microsoft.Exchange –ConnectionUri ‘http://sbspexchcas0.production.internal/PowerShell/?SerializationLevel=Full’ -Credential $Credentials –Authentication Kerberos
#Import-PSSession $ExSession


foreach ($group in $gpnames){
 
 # Variables used in the report
 # from AD
$gpname = $group.name
$gpcategory = $group.GroupCategory
$gpmail = $group.mail
$membersofgroup = Get-ADGroupMember $group
$arrayMembers = @()
$membersofgroup | % {$arrayMembers += $_.Name}


 # from exchange
$dgname = get-distributiongroup $group.Name
$dlmembers = $dgname.acceptmessagesonlyfrom


$dlonlyfrom = ""

foreach ($dlmember in $dlmembers)
{
    $dlonlyfrom += $dlmember.Name
}

#Write-Host $dlmembers.Count


$dlmembers2 = $dgname.acceptmessagesonlyfromdlmembers


$dlonlyfrom2 = ""

foreach ($dlmember2 in $dlmembers2)
{
    $dlonlyfrom2 += $dlmember2.Name
}


$Eaddress = $dgname.EmailAddresses
$emailaddressarray = @()
$Eaddress | % {$emailaddressarray += $_.ProxyAddressString}

 # Table per group

 $groupdetails = " <tr bgcolor=#CCCCCC> <td colspan=6 align='left'><font face='tahoma' color='#003399' size='4'><strong>GROUP NAME: $gpname</strong></font></td> </tr><tr><td colspan=2 bgcolor=#00CC33 width='33%' align='center'>Display Name</td> <td colspan=2 bgcolor=#00CC33 width='34%' align='center'>Group Type</td> <td colspan=2 bgcolor=#00CC33 width='33%' align='center'>Primary email address</td>  </tr> " 

Add-Content $groupReport $groupdetails

 # Create table data rows  

    $dataRow = " <tr bgcolor=#FFFFFF> <td colspan=2 width='33%'>$gpname</td> <td colspan=2 width='34%'>$gpcategory</td> <td colspan=2 width='33%' >$gpmail<BR><BR>Additional Addresses:<BR>$($emailaddressarray)</td>  </tr>" 

Add-Content $groupReport $datarow 

# Members and restrictions row header

    $rowheader = "<tr><td colspan=3 bgcolor=#00CC33 width='50%' align='center'>Members</td><td colspan=3 bgcolor=#00CC33 width='50%' align='center'>Restrictions</td> </tr>"
Add-Content $groupReport $rowheader

    $MRrowdata = "<tr><td colspan=3 bgcolor#FFFFFF width='50%'>$($arrayMembers)</td><td colspan=3 bgcolor#FFFFFF width='50%'>Receive emails only from: $dlonlyfrom <BR><BR>Receive emails only from distribution list members: $dlonlyfrom2 </td></tr><tr><td colspan=3><strong>Number of members: $($arrayMembers.count)</strong></td></tr>"

Add-Content $groupReport $MRrowdata

}


# Create footer

 $footer = "</table></body></html>"


Add-Content $groupReport $footer 
 
#Remove-PSSession $ExSession

Ryan Mangan | Ryanmangansitblog.wordpress.com | Help keep the forums tidy, if this has helped please mark it as an answer

Hi all

We want to hide the mobile phone number in the Address Book.

The GAL get the mobile number from AD.

We use Exchange 2010 SP2  and Outlook 2010.

Is it possible?

Anyone want to share some links or comments, thanks.

Alex

I was redirected here from the Outlook forum based on the fact this is happening with a client machine that has an Exchange account on it.  I'm almost certain the issue is not with Exchange but with Outlook.  

I know this is going to sound similar to other questions asked, but I have an issue that seems to be the opposite.  This is happening on my company founders machine.  Windows 8 with Office 2013.  Everything was working fine until a recent update (from his reports).  Now when he has Outlook open sometimes the unread message count randomly disappears.  I haven't been able to do a lot of testing as he only gives me a few minutes at a time on his machine (he's a busy guy, running the company and all). 

I found that if I highlighted one of the Inbox sub folders, the count comes back.  Weird.

I tried running Outlook.exe /cleanviews.  What I noticed was when Outlook opens the count is there but then instantly disappeared as the mailbox was loading.  When I opened it again normally with no switches, the count was there.  It has come and gone on its own before without any interaction from me so I'm not convinced the problem has gone away.

Any one else ever see this?  Any known permanent fixes?  Any idea what update might have effected this?

Hi

We are facing a strange issue that some Outlook users are getting disconnected and it reconnects after 1 or 2 hours or after changing the IP of the system. During the Outlook disconnection period we can't even telnet on port 433 to the CAS BLB name or IP (same time we can able to ping CAS name). The security and network team is checking the same, is there any thing to be checked with Exchange servers regarding this issue?

Thanks in Advance

LMS