RE: [Exchange] RE: Earthlink Contact?

[Kennedy, Jim]

You are RFC compliant. Earthlink is not RFC compliant and what they are doing 
clearly not. But that is what they do. AOL used to do it to back in the day 
when they had a rabid anti spam guy there. He was cool at times, he carried a 
big stick and when he whacked another ISP for being spam friendly it hurt.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Mayo, Bill
Sent: Thursday, February 8, 2018 4:51 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: Earthlink Contact?

I’m not sure I understand your question. The load balancing I am referring to 
is different internet service providers. Those providers are giving us 2 
different IP spaces.

I am not completely certain that we are not compliant with what it is saying in 
the article, because our PTR records are correct. It doesn’t state the method 
to use and the one Jim described is not looking up a PTR record (or at least 
not as I am understanding it).  I also note that it says “However, if the 
verification fails, the server MUST NOT refuse to accept a message on that 
basis.”

I appreciate all the dialog.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Micheal Espinola Jr
Sent: Thursday, February 08, 2018 4:35 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] RE: Earthlink Contact?

If you are load balancing, why are you advertising two different IPs?  I think 
what Jim Kennedy has honed-in on is correct, and that the issue is likely 
HELO/EHLO checking if your PTR records check out.

https://en.wikipedia.org/wiki/Anti-spam_techniques#Strict_enforcement_of_RFC_standards
 (HELO/EHLO checking – RFC 5321)


--
Espi


On Thu, Feb 8, 2018 at 5:45 AM, Mayo, Bill 
> wrote:
I told Earthlink that we had 2 different IP’s for the mail server, and that we 
had seen rejections from both. He asked for the first IP, which I gave him. He 
then went to mxtoolbox.com and looked up the domain name. 
It returned a different IP than the one I gave him and he suggested that was an 
issue. I told him that was the other IP and that they were load-balanced; that 
at any given time an A record lookup would return one or the other. That said, 
the reverse DNS (PTR) record for each of the IP’s is correct. He told me that 
he didn’t know what load balancing meant and that he would have to talk to 
someone else to see what could be done.

I am happy to admit I might have some misunderstandings about DNS, but I don’t 
think that having multiple A records for a given domain name is unusual. I 
therefore assume they wouldn’t actually try to confirm legitimacy by doing an A 
lookup and comparing that to the IP. I do want to be clear that he didn’t 
explicitly say that was the problem. I did try to point out that their error 
message complained about a missing or mismatched PTR record, and I believe that 
is all correct.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] 
On Behalf Of Michael B. Smith
Sent: Wednesday, February 07, 2018 7:08 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

I’m sorry, I can’t follow your logic. It seems to fall apart in the sentence 
beginning “What EarthLink seems…” Could you be a bit more concrete please?

In general, I agree with Micheal – you shouldn’t have a PTR mismatch, but 
that’s not what I get out of your explanation.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Wednesday, February 7, 2018 4:46 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

My attempts at postmas...@earthlink.net and 
trou...@earthlink.net did not work, so I tried 
the Twitter route. It took a while, but I did ultimately get a response today 
where they gave me a phone number to call. So, thanks to Michael and everyone 
else that responded. That said, based on the conversation that I had, I would 
appreciate a reality check.

We have 2 different ISPs and load balance outbound SMTP connections, as well as 
inbound DNS queries. So, we basically have 2 different IP’s that are used at 
the edge. We have an MX record that points to the domain name. DNS lookups to 
that domain name will return one of the 2 IP’s. Both of those IP’s will reverse 
lookup to the domain name. The HELO/EHLO greeting from the server gives the 
same domain name as the MX record. Additionally, we have an SPF record that 
indicates both of those IP’s.  What Earthlink seems to be initially suggesting 
is that they are doing an A record lookup of the domain name and comparing that 
to the connecting IP address 

[Exchange] RE: Earthlink Contact?

[Kennedy, Jim]

He is HELO’ing the same host name no matter what connection he is using. When 
they do an A record lookup on that hostname, it is not matching the IP they are 
seeing in the connection. It will only match half the time depending on what 
link he is using.

Not saying they are right, but I am pretty sure that is what they do.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Thursday, February 8, 2018 10:41 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

What are you suggesting doesn’t work?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Thursday, February 8, 2018 10:30 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

So half way through typing that I edited out part of what I said, and may have 
not been clear after that.

When they do the lookup on the IP address, they are looking at the source of 
the connection.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, February 8, 2018 9:53 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

They are looking for fully circular DNS and I am surprised you are not having 
trouble with other large ISP’s.

Circular DNS is defined as:
HELO Mailout.yourdomain.com from 192.168.10.1
A record for Mailout.yourdomain.com must be 192.168.10.1
192.168.10.1 must resolve to mailout.yourdomain.com

You are connecting from two different IP’s with two different connections, so 
you can’t meet the above. I don’t know how you do that. But the check I 
describe is widely in use. I don’t think it is an RFC but have never checked.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Wednesday, February 7, 2018 4:46 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

My attempts at postmas...@earthlink.net<mailto:postmas...@earthlink.net> and 
trou...@earthlink.net<mailto:trou...@earthlink.net> did not work, so I tried 
the Twitter route. It took a while, but I did ultimately get a response today 
where they gave me a phone number to call. So, thanks to Michael and everyone 
else that responded. That said, based on the conversation that I had, I would 
appreciate a reality check.

We have 2 different ISPs and load balance outbound SMTP connections, as well as 
inbound DNS queries. So, we basically have 2 different IP’s that are used at 
the edge. We have an MX record that points to the domain name. DNS lookups to 
that domain name will return one of the 2 IP’s. Both of those IP’s will reverse 
lookup to the domain name. The HELO/EHLO greeting from the server gives the 
same domain name as the MX record. Additionally, we have an SPF record that 
indicates both of those IP’s.  What Earthlink seems to be initially suggesting 
is that they are doing an A record lookup of the domain name and comparing that 
to the connecting IP address (which seems contrary to the error message). In 
our setup, this will not always be a match. I can understand that they would do 
a reverse DNS on the IP to make sure it matches the HELO/EHLO greeting, and I 
can understand that they might also do an SPF and/or MX lookup to make sure 
that matches. I don’t understand doing a forward lookup and comparing that to 
the IP, since I don’t think that having multiple A records for a given domain 
name is particularly uncommon. Is what they are suggesting a legitimate issue?

Bill Mayo

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, February 02, 2018 10:49 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

Twitter shame them. @Earthlink and @weCareEarthlink

And yes, I’m completely serious.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, February 2, 2018 10:16 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Earthlink Contact?


We are having emails sent to Earthlink being intermittently rejected with the 
reason “550 ERROR: No or mismatched reverse DNS (PTR) entries”. We have done 
quite a bit of troubleshooting on this, and the problem does not appear to be 
on our end. I actually have logs that show 2 consecutive messages where the 
first one is accepted and the second one rejected. I also see “421 Load too 
high” messages in the log from Earthlink when these happen.

I am trying to figure out how to co

[Exchange] RE: Earthlink Contact?

[Kennedy, Jim]

Earthlink has always caused problems for people, I have seen these issues with 
them a fair number of times. Eventually you will get to the right person and 
get both IP’s whitelisted.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Mayo, Bill
Sent: Thursday, February 8, 2018 10:41 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

I follow what you are saying, and it sounds like what they are doing. When did 
this become a thing? I would think this would cause problems for a lot of 
companies.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, February 08, 2018 10:30 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

So half way through typing that I edited out part of what I said, and may have 
not been clear after that.

When they do the lookup on the IP address, they are looking at the source of 
the connection.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, February 8, 2018 9:53 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

They are looking for fully circular DNS and I am surprised you are not having 
trouble with other large ISP’s.

Circular DNS is defined as:
HELO Mailout.yourdomain.com from 192.168.10.1
A record for Mailout.yourdomain.com must be 192.168.10.1
192.168.10.1 must resolve to mailout.yourdomain.com

You are connecting from two different IP’s with two different connections, so 
you can’t meet the above. I don’t know how you do that. But the check I 
describe is widely in use. I don’t think it is an RFC but have never checked.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Wednesday, February 7, 2018 4:46 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

My attempts at postmas...@earthlink.net<mailto:postmas...@earthlink.net> and 
trou...@earthlink.net<mailto:trou...@earthlink.net> did not work, so I tried 
the Twitter route. It took a while, but I did ultimately get a response today 
where they gave me a phone number to call. So, thanks to Michael and everyone 
else that responded. That said, based on the conversation that I had, I would 
appreciate a reality check.

We have 2 different ISPs and load balance outbound SMTP connections, as well as 
inbound DNS queries. So, we basically have 2 different IP’s that are used at 
the edge. We have an MX record that points to the domain name. DNS lookups to 
that domain name will return one of the 2 IP’s. Both of those IP’s will reverse 
lookup to the domain name. The HELO/EHLO greeting from the server gives the 
same domain name as the MX record. Additionally, we have an SPF record that 
indicates both of those IP’s.  What Earthlink seems to be initially suggesting 
is that they are doing an A record lookup of the domain name and comparing that 
to the connecting IP address (which seems contrary to the error message). In 
our setup, this will not always be a match. I can understand that they would do 
a reverse DNS on the IP to make sure it matches the HELO/EHLO greeting, and I 
can understand that they might also do an SPF and/or MX lookup to make sure 
that matches. I don’t understand doing a forward lookup and comparing that to 
the IP, since I don’t think that having multiple A records for a given domain 
name is particularly uncommon. Is what they are suggesting a legitimate issue?

Bill Mayo

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, February 02, 2018 10:49 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

Twitter shame them. @Earthlink and @weCareEarthlink

And yes, I’m completely serious.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, February 2, 2018 10:16 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Earthlink Contact?


We are having emails sent to Earthlink being intermittently rejected with the 
reason “550 ERROR: No or mismatched reverse DNS (PTR) entries”. We have done 
quite a bit of troubleshooting on this, and the problem does not appear to be 
on our end. I actually have logs that show 2 consecutive messages where the 
first one is accepted and the second one rejected. I also see “421 Load too 
high” messages in the log fro

[Exchange] RE: Earthlink Contact?

[Kennedy, Jim]

So half way through typing that I edited out part of what I said, and may have 
not been clear after that.

When they do the lookup on the IP address, they are looking at the source of 
the connection.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Thursday, February 8, 2018 9:53 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

They are looking for fully circular DNS and I am surprised you are not having 
trouble with other large ISP’s.

Circular DNS is defined as:
HELO Mailout.yourdomain.com from 192.168.10.1
A record for Mailout.yourdomain.com must be 192.168.10.1
192.168.10.1 must resolve to mailout.yourdomain.com

You are connecting from two different IP’s with two different connections, so 
you can’t meet the above. I don’t know how you do that. But the check I 
describe is widely in use. I don’t think it is an RFC but have never checked.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Wednesday, February 7, 2018 4:46 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

My attempts at postmas...@earthlink.net<mailto:postmas...@earthlink.net> and 
trou...@earthlink.net<mailto:trou...@earthlink.net> did not work, so I tried 
the Twitter route. It took a while, but I did ultimately get a response today 
where they gave me a phone number to call. So, thanks to Michael and everyone 
else that responded. That said, based on the conversation that I had, I would 
appreciate a reality check.

We have 2 different ISPs and load balance outbound SMTP connections, as well as 
inbound DNS queries. So, we basically have 2 different IP’s that are used at 
the edge. We have an MX record that points to the domain name. DNS lookups to 
that domain name will return one of the 2 IP’s. Both of those IP’s will reverse 
lookup to the domain name. The HELO/EHLO greeting from the server gives the 
same domain name as the MX record. Additionally, we have an SPF record that 
indicates both of those IP’s.  What Earthlink seems to be initially suggesting 
is that they are doing an A record lookup of the domain name and comparing that 
to the connecting IP address (which seems contrary to the error message). In 
our setup, this will not always be a match. I can understand that they would do 
a reverse DNS on the IP to make sure it matches the HELO/EHLO greeting, and I 
can understand that they might also do an SPF and/or MX lookup to make sure 
that matches. I don’t understand doing a forward lookup and comparing that to 
the IP, since I don’t think that having multiple A records for a given domain 
name is particularly uncommon. Is what they are suggesting a legitimate issue?

Bill Mayo

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, February 02, 2018 10:49 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Earthlink Contact?

Twitter shame them. @Earthlink and @weCareEarthlink

And yes, I’m completely serious.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, February 2, 2018 10:16 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Earthlink Contact?


We are having emails sent to Earthlink being intermittently rejected with the 
reason “550 ERROR: No or mismatched reverse DNS (PTR) entries”. We have done 
quite a bit of troubleshooting on this, and the problem does not appear to be 
on our end. I actually have logs that show 2 consecutive messages where the 
first one is accepted and the second one rejected. I also see “421 Load too 
high” messages in the log from Earthlink when these happen.

I am trying to figure out how to contact Earthlink to get some assistance, but 
am striking out with how to contact them. The have a special page if you are 
getting a “blocked by EarthLink” response, but that doesn’t apply here. There 
contact page has chat support that requires you to provide an Earthlink 
account. Does anybody know how to get in touch with someone at Earthlink that 
could actually help with this problem?



Bill Mayo

[Exchange] RE: Earthlink Contact?

[Kennedy, Jim]

They are looking for fully circular DNS and I am surprised you are not having 
trouble with other large ISP’s.

Circular DNS is defined as:
HELO Mailout.yourdomain.com from 192.168.10.1
A record for Mailout.yourdomain.com must be 192.168.10.1
192.168.10.1 must resolve to mailout.yourdomain.com

You are connecting from two different IP’s with two different connections, so 
you can’t meet the above. I don’t know how you do that. But the check I 
describe is widely in use. I don’t think it is an RFC but have never checked.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Mayo, Bill
Sent: Wednesday, February 7, 2018 4:46 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

My attempts at postmas...@earthlink.net and 
trou...@earthlink.net did not work, so I tried 
the Twitter route. It took a while, but I did ultimately get a response today 
where they gave me a phone number to call. So, thanks to Michael and everyone 
else that responded. That said, based on the conversation that I had, I would 
appreciate a reality check.

We have 2 different ISPs and load balance outbound SMTP connections, as well as 
inbound DNS queries. So, we basically have 2 different IP’s that are used at 
the edge. We have an MX record that points to the domain name. DNS lookups to 
that domain name will return one of the 2 IP’s. Both of those IP’s will reverse 
lookup to the domain name. The HELO/EHLO greeting from the server gives the 
same domain name as the MX record. Additionally, we have an SPF record that 
indicates both of those IP’s.  What Earthlink seems to be initially suggesting 
is that they are doing an A record lookup of the domain name and comparing that 
to the connecting IP address (which seems contrary to the error message). In 
our setup, this will not always be a match. I can understand that they would do 
a reverse DNS on the IP to make sure it matches the HELO/EHLO greeting, and I 
can understand that they might also do an SPF and/or MX lookup to make sure 
that matches. I don’t understand doing a forward lookup and comparing that to 
the IP, since I don’t think that having multiple A records for a given domain 
name is particularly uncommon. Is what they are suggesting a legitimate issue?

Bill Mayo

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, February 02, 2018 10:49 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Earthlink Contact?

Twitter shame them. @Earthlink and @weCareEarthlink

And yes, I’m completely serious.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, February 2, 2018 10:16 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] Earthlink Contact?


We are having emails sent to Earthlink being intermittently rejected with the 
reason “550 ERROR: No or mismatched reverse DNS (PTR) entries”. We have done 
quite a bit of troubleshooting on this, and the problem does not appear to be 
on our end. I actually have logs that show 2 consecutive messages where the 
first one is accepted and the second one rejected. I also see “421 Load too 
high” messages in the log from Earthlink when these happen.

I am trying to figure out how to contact Earthlink to get some assistance, but 
am striking out with how to contact them. The have a special page if you are 
getting a “blocked by EarthLink” response, but that doesn’t apply here. There 
contact page has chat support that requires you to provide an Earthlink 
account. Does anybody know how to get in touch with someone at Earthlink that 
could actually help with this problem?



Bill Mayo

RE: [Exchange] Has this list died?

[Kennedy, Jim]

You prefer email? Not shocking at all.  :)

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Tuesday, January 30, 2018 11:52 AM
To: Trent, Rod ; exchange@lists.myitforum.com
Subject: RE: [Exchange] Has this list died?

Thanks Rod.

So, the quietness is due to a relatively small number of subscribers. No one 
"pushes" the lists (nor am I suggesting that Rod or his company should) the way 
that Sunbelt used to. There was a HUGE fall off when the lists moved to 
myITforum (again no fault of Rod's), and the rest is just folks moving to using 
other means of support (and moving to other jobs). I personally still prefer 
email. A lot of people don't.

From: Trent, Rod [mailto:rod.tr...@knect365.com]
Sent: Tuesday, January 30, 2018 11:42 AM
To: Michael B. Smith; 
exchange@lists.myitforum.com
Subject: RE: [Exchange] Has this list died?

The lists are setup to alert the administrators when there have been too many 
bounces. They check the logs to see what the issues are and remove those where 
the accounts no longer exist.  However, if the bounces are due to domain 
misconfigurations or email accounts that are unavailable for a long time, 
they'll remove those, too. The email lists have a limit as to how many messages 
it can retain without choking the server. If a domain becomes misconfigured or 
a server goes offline, the bounces can effectively take down the entire email 
list service. So, there's a lot of monitoring and administration that has to go 
on to ensure they keep humming along.

That said, here's the current subscriber counts for both lists...

Exchange: 344
NTSysAdm: 539



From: Michael B. Smith
Sent: Tuesday, January 30, 2018 11:35 AM
To: exchange@lists.myitforum.com
Cc: Trent, Rod
Subject: RE: [Exchange] Has this list died?

No, it's moderately active.

However, if it gets two bounces in a row, for whatever reason, it bumps you 
off. (I think it's two, Rod would have to verify.)

You can resubscribe here: 
http://myitforum.com/myitforumwp/newsletter/email-lists-2/

Also, Rod would you tell us the membership for the Exchange and NTSysadm lists?

Thanks.

Regards,
Michael B.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Maglinger, Paul
Sent: Tuesday, January 30, 2018 11:24 AM
To: 'exchange@lists.myitforum.com'
Subject: RE: [Exchange] Has this list died?

What I haven't been seeing lately is anything on the Windows NT list, or 
whatever it's called now.  Does it bump you off if you haven't posted in a 
awhile?

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Maglinger, Paul
Sent: Tuesday, January 30, 2018 7:54 AM
To: 'exchange@lists.myitforum.com' 
>
Subject: RE: [Exchange] Has this list died?

I'm still here, lurking, but still here.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of 
john.matte...@gmail.com
Sent: Tuesday, January 30, 2018 3:12 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] Has this list died?

It's been almost three weeks since someone posted here.

Anyone still here?

[Exchange] RE: Exchange 2016 moving log files.

[Kennedy, Jim]

Yea, it’s going to dismount. Oh well, didn’t have any major plans for the 
weekend.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Friday, December 1, 2017 11:54 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] Exchange 2016 moving log files.

If I move the log files on a live Exchange DB…will it have to go offline or can 
it be done live without my users hating me?

Move-Databasepath "DatabaseName" –LogFolderpath "C:\Newlocation"

[Exchange] Exchange 2016 moving log files.

[Kennedy, Jim]

If I move the log files on a live Exchange DB…will it have to go offline or can 
it be done live without my users hating me?

Move-Databasepath "DatabaseName" –LogFolderpath "C:\Newlocation"

[Exchange] RE: Crosspost: clearing the autocomplete cache

[Kennedy, Jim]

That is their address book..in their minds.  There will be fire and pitch forks.

I believe you can just delete the files that start with 'stream_autocomplete in 
C:\Users\\AppData\Local\Microsoft\Outlook\RoamCache

Test that, and wait for someone else to say I am crazy, or not.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Heaton, Joseph@Wildlife
Sent: Thursday, November 30, 2017 11:05 AM
To: 'NT System Admin Issues Discussion list' ; 
exchange@lists.myitforum.com
Subject: [Exchange] Crosspost: clearing the autocomplete cache

Recently, we did a cleanup of proxy addresses that were no longer needed.  
Unfortunately, this has caused an issue with our users, as some of their 
autocomplete entries are using the old, now gone, proxy addresses.  I've been 
directed to clear everyone's autocomplete cache.  I found a quick and easy 
command to do this, but it opens Outlook in order to perform the clean.  
(outlook.exe /CleanAutoCompleteCache).  Having Outlook open spontaneously, or a 
second instance opening, would be very disconcerting and worrisome for our 
users, so I'd like to find a way to clean the cache, without opening Outlook.  
Does anyone have a method?

For the most part, all users are using Outlook 2016, but there are a few 2013, 
and 2010.

Thanks,

Joe Heaton
Information Technology Operations Branch
Data and Technology Division
CA Department of Fish and Wildlife
1700 9th Street, 3rd Floor
Sacramento, CA  95811
Desk:  916-323-1284

[Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL ability

[Kennedy, Jim]

And I wouldn't do the offline defrag, they scare me.  Do the move option.

-Original Message-
From: Kennedy, Jim 
Sent: Wednesday, November 29, 2017 3:49 PM
To: exchange@lists.myitforum.com
Subject: RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL ability

Nope, you won't get back the space unless you do one of two things.  Create a 
new mailbox database and move the active mailboxes to it. The resulting 
database will be smaller. Or you run an offline defrag of the existing 
database. That will get back the whitespace in it.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Calvin McLennan
Sent: Wednesday, November 29, 2017 3:35 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

Excellent!  that works!  Since it stays in replication mode until the move 
request has been cleared - I expect that means that the space on the original 
database never gets cleared either until the clear of the move request occurs???

I so hope that brings back a lot more space!

Thanks Jim!

Cal

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: November 29, 2017 3:10 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

You probably just need to clear the old move request from the original move.

https://technet.microsoft.com/en-us/library/dd351276%28v=exchg.141%29.aspx?f=255=-2147217396


-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Calvin McLennan
Sent: Wednesday, November 29, 2017 2:31 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

A client that I have managed for years - on SBS2011 - I had created a couple of 
extra databases for Exchange that I would move old accounts to in order to try 
and reduce the size of the main database, speed things up, etc.  These added 
databases are on different drives as well if that will matter.

Now - on the original database the MOVE LOCAL option is there for any account 
in that database - but for the accounts showing as attached to the added 
databases that MOVE LOCAL function is not available.

What I was hoping to do was to be able to move the account back or to another 
database - but that feature seems gone when you add a database.

Ideas anyone???

Thanks

Cal

[Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL ability

[Kennedy, Jim]

Nope, you won't get back the space unless you do one of two things.  Create a 
new mailbox database and move the active mailboxes to it. The resulting 
database will be smaller. Or you run an offline defrag of the existing 
database. That will get back the whitespace in it.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Calvin McLennan
Sent: Wednesday, November 29, 2017 3:35 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

Excellent!  that works!  Since it stays in replication mode until the move 
request has been cleared - I expect that means that the space on the original 
database never gets cleared either until the clear of the move request occurs???

I so hope that brings back a lot more space!

Thanks Jim!

Cal

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: November 29, 2017 3:10 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

You probably just need to clear the old move request from the original move.

https://technet.microsoft.com/en-us/library/dd351276%28v=exchg.141%29.aspx?f=255=-2147217396


-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Calvin McLennan
Sent: Wednesday, November 29, 2017 2:31 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

A client that I have managed for years - on SBS2011 - I had created a couple of 
extra databases for Exchange that I would move old accounts to in order to try 
and reduce the size of the main database, speed things up, etc.  These added 
databases are on different drives as well if that will matter.

Now - on the original database the MOVE LOCAL option is there for any account 
in that database - but for the accounts showing as attached to the added 
databases that MOVE LOCAL function is not available.

What I was hoping to do was to be able to move the account back or to another 
database - but that feature seems gone when you add a database.

Ideas anyone???

Thanks

Cal

[Exchange] RE: SBS2011 Exchange 2010 databases not showing MOVE LOCAL ability

[Kennedy, Jim]

You probably just need to clear the old move request from the original move.

https://technet.microsoft.com/en-us/library/dd351276%28v=exchg.141%29.aspx?f=255=-2147217396


-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Calvin McLennan
Sent: Wednesday, November 29, 2017 2:31 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] SBS2011 Exchange 2010 databases not showing MOVE LOCAL 
ability

A client that I have managed for years - on SBS2011 - I had created a couple of 
extra databases for Exchange that I would move old accounts to in order to try 
and reduce the size of the main database, speed things up, etc.  These added 
databases are on different drives as well if that will matter.

Now - on the original database the MOVE LOCAL option is there for any account 
in that database - but for the accounts showing as attached to the added 
databases that MOVE LOCAL function is not available.

What I was hoping to do was to be able to move the account back or to another 
database - but that feature seems gone when you add a database.

Ideas anyone???

Thanks

Cal

RE: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

[Kennedy, Jim]

Could be as simple has having some kind of different load balancing system in 
front of their Exchange.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Senter, John
Sent: Tuesday, September 19, 2017 8:40 AM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

How is O365 not affected by this?  Are they not running server 2016 or did they 
step the cipher down to HTTP/1.1?

We were putting our Exch 2016 servers in production tonight, but are holding 
off for a week because we did not feel comfortable doing the OS reg hack the 
same day the servers were going in.  Like to test even the simplest changes 
before going live.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Monday, September 18, 2017 4:22 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Item 1 - no

Item 2 and 3 - yes

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Brett Whatley
Sent: Monday, September 18, 2017 3:57 PM
To: 'exchange@lists.myitforum.com'
Subject: Re: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Is 365 affected?

Sent from my BlackBerry — the most secure mobile device — via the Rogers Network

For Remote Support Click Here

[cid:image001.jpg@01D33124.C5F7C750]
[cid:image002.jpg@01D33124.C5F7C750]


Brett Whatley
Solve-IT.ca a division of Ozymandias Creations, Inc.
379 Ridge Rd West
Grimsby, ON L3M 4E7
Phone: 905-388-2597 x.121
Mobile: +1 9053795695
E-mail: br...@solve-it.ca




[cid:image003.jpg@01D33124.C5F7C750]

[cid:image004.jpg@01D33124.C5F7C750]  [cid:image005.jpg@01D33124.C5F7C750]


♲ Please consider the environment before printing this e-mail
This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to whom they are addressed. If 
you have received this email in error, please notify Solve-IT.ca. This message 
contains confidential information and is intended only for the individual 
named. If you are not the named addressee, you should not disseminate, 
distribute or copy this email. Please notify the sender immediately by email if 
you have received this email by mistake and delete this email from your system. 
If you are not the intended recipient, you are notified that disclosing, 
copying, distributing or taking any action in reliance on the contents of this 
information is strictly prohibited.
From: mich...@smithcons.com
Sent: September 18, 2017 3:56 PM
To: exchange@lists.myitforum.com
Reply to: exchange@lists.myitforum.com
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...


Yes, it’ll jack up wherever the external connection is. Since 2016 proxies to 
2010 in your case, the 2016’s are acting as CAS frontends and will cause the 
problem.

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Senter, John
Sent: Monday, September 18, 2017 3:39 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Will this only affect mailboxes on Exch 2016 or will it also affect users that 
are on Exch 2010 with 2016 in front?  We are about to place 2016 in front of 
2010 to start the migration process and need to know if that is going to jack 
up the users still on Exch 2010.


From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Monday, September 18, 2017 3:07 PM
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Further information on [1], as Microsoft and Apple release additional details.

[1] This only occurs when Exchange Server 2016 is installed on Windows Server 
2016. It actually will impact any web app on Windows Server 2016 to which an 
iOS 11 device attempts to connect. The issue occurs because iOS 11 improperly 
negotiates a HTTP/2 TLS connection, and HTTP/2 is the default on Windows Server 
2016 and iOS 11.

While this is not an Exchange issue per se, Exchange is the application most 
likely to be affected. Microsoft offers a workaround, described in this 
article, by disabling HTTP/2 thus forcing a fallback to HTTP/1.1:

https://support.microsoft.com/en-us/help/4032720/how-to-deploy-custom-cipher-suite-ordering-in-windows-server-2016

(If you find the article title to be irrelevant – well, so do I.)

And a new item:

[3] Yammer and Dynamics CRM apps have not yet been updated for iOS 11. There 
are a wide variety of Intune changes/impacts with iOS 11:

RE: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

[Kennedy, Jim]

Ok, this just got serious.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Brett Whatley
Sent: Monday, September 18, 2017 3:57 PM
To: 'exchange@lists.myitforum.com'
Subject: Re: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Is 365 affected?

Sent from my BlackBerry — the most secure mobile device — via the Rogers Network

For Remote Support Click Here

[cid:image001.jpg@01D3309A.617C4FB0]
[cid:image002.jpg@01D3309A.617C4FB0]


Brett Whatley
Solve-IT.ca a division of Ozymandias Creations, Inc.
379 Ridge Rd West
Grimsby, ON L3M 4E7
Phone: 905-388-2597 x.121
Mobile: +1 9053795695
E-mail: br...@solve-it.ca




[cid:image003.jpg@01D3309A.617C4FB0]

[cid:image004.jpg@01D3309A.617C4FB0]  [cid:image005.jpg@01D3309A.617C4FB0]


♲ Please consider the environment before printing this e-mail
This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to whom they are addressed. If 
you have received this email in error, please notify Solve-IT.ca. This message 
contains confidential information and is intended only for the individual 
named. If you are not the named addressee, you should not disseminate, 
distribute or copy this email. Please notify the sender immediately by email if 
you have received this email by mistake and delete this email from your system. 
If you are not the intended recipient, you are notified that disclosing, 
copying, distributing or taking any action in reliance on the contents of this 
information is strictly prohibited.
From: mich...@smithcons.com
Sent: September 18, 2017 3:56 PM
To: exchange@lists.myitforum.com
Reply to: exchange@lists.myitforum.com
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...


Yes, it’ll jack up wherever the external connection is. Since 2016 proxies to 
2010 in your case, the 2016’s are acting as CAS frontends and will cause the 
problem.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Senter, John
Sent: Monday, September 18, 2017 3:39 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Will this only affect mailboxes on Exch 2016 or will it also affect users that 
are on Exch 2010 with 2016 in front?  We are about to place 2016 in front of 
2010 to start the migration process and need to know if that is going to jack 
up the users still on Exch 2010.


From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Monday, September 18, 2017 3:07 PM
Subject: [Exchange] RE: iOS 11 is scheduled for release tomorrow...

Further information on [1], as Microsoft and Apple release additional details.

[1] This only occurs when Exchange Server 2016 is installed on Windows Server 
2016. It actually will impact any web app on Windows Server 2016 to which an 
iOS 11 device attempts to connect. The issue occurs because iOS 11 improperly 
negotiates a HTTP/2 TLS connection, and HTTP/2 is the default on Windows Server 
2016 and iOS 11.

While this is not an Exchange issue per se, Exchange is the application most 
likely to be affected. Microsoft offers a workaround, described in this 
article, by disabling HTTP/2 thus forcing a fallback to HTTP/1.1:

https://support.microsoft.com/en-us/help/4032720/how-to-deploy-custom-cipher-suite-ordering-in-windows-server-2016

(If you find the article title to be irrelevant – well, so do I.)

And a new item:

[3] Yammer and Dynamics CRM apps have not yet been updated for iOS 11. There 
are a wide variety of Intune changes/impacts with iOS 11:

https://blogs.technet.microsoft.com/intunesupport/2017/09/12/support-tip-intune-support-for-ios-11/

Perhaps the two things most notable to your users: [3a] An updated Company 
Portal and Managed Browser are required for iOS 11, and [3b] Drag-and-drop (a 
new feature of iOS 11) is disabled when a device is enrolled with Intune.

From: Michael B. Smith
Sent: Monday, September 18, 2017 2:22 PM
Subject: iOS 11 is scheduled for release tomorrow...

And that may not be a good thing in all cases…

Known issues to be aware of:

[1] Exchange ActiveSync is broken under certain configurations. Apple is aware 
of the issue and pursuing a fix.

[2] The default picture format for iPhones 7/8/X is changing. As a Microsoft 
employee wrote earlier today:

The new photo and video formats result in files about 1/2 size of the old JPEG 
and video formats, while having better quality. The problem is that new files 
will likely not open properly outside of your phone until everything that you 
use to work with photos updates to work with new HEIF formats.

To check if your iOS 11 phone uses the new format, go to Settings > Camera > 
Formats. "High Efficiency" is new and "Most Compatible" is the old / current.

I do not suggest to just turn this 

RE: [Exchange] Corporate contacts to phones

[Kennedy, Jim]

I stand corrected, no public folders in mobile OWA or Microsoft Outlook for 
Android or NINE.  That is a bummer.

From: Kennedy, Jim
Sent: Thursday, July 27, 2017 7:56 AM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Corporate contacts to phones

We publish contacts like that with public folders.  Don’t have any road 
warriors but with 2016 OWA it wouldn’t be too bad.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Alice Goodman
Sent: Wednesday, July 26, 2017 4:45 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Corporate contacts to phones

Oh Good Question. I have had the same issue even with On-Prem.. how to push 
Contacts to HVAC Techs who only have phones.

Alice

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tom Miller
Sent: Wednesday, July 26, 2017 5:24 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Corporate contacts to phones

What do you use for pushing corporate contacts to data phones?  We have Office 
365 here and I'm looking for a way to push our corporate address book to our 
technicians' phones.  Can this be done natively via Office 365?

Skype is an option but might be overly complicated.  These are HVAC techs who 
are on the road alot and need something quick and easy.

Thank you,
Tom

RE: [Exchange] Corporate contacts to phones

[Kennedy, Jim]

We publish contacts like that with public folders.  Don’t have any road 
warriors but with 2016 OWA it wouldn’t be too bad.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Alice Goodman
Sent: Wednesday, July 26, 2017 4:45 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Corporate contacts to phones

Oh Good Question. I have had the same issue even with On-Prem.. how to push 
Contacts to HVAC Techs who only have phones.

Alice

From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tom Miller
Sent: Wednesday, July 26, 2017 5:24 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] Corporate contacts to phones

What do you use for pushing corporate contacts to data phones?  We have Office 
365 here and I'm looking for a way to push our corporate address book to our 
technicians' phones.  Can this be done natively via Office 365?

Skype is an option but might be overly complicated.  These are HVAC techs who 
are on the road alot and need something quick and easy.

Thank you,
Tom

[Exchange] RE: 2010 to 2016 Public Folder migration.

[Kennedy, Jim]

Do I need this first line?  Nothing in that folder ever.  Look 
okconsidering you don't know what I have? Below this is my foldersize.csv 
output. I nuked some stuff, I am unsure of \IPM_SUBTREE,"0"

\,"PFMB-Hierarchy"
\IPM_SUBTREE\Academic Services,"PFMB-Academic Services"
\IPM_SUBTREE\Building Permits,"PFMB-Building Permits"
\IPM_SUBTREE\Building Permits\Athletics,"PFMB-Athletics"
\IPM_SUBTREE\Building Permits\Crestwood,"PFMB-Crestwood"
\IPM_SUBTREE\Building Permits\Eastern Heights,"PFMB-Eastern Heights"
\IPM_SUBTREE\Building Permits\Edison,"PFMB-Edison"
\IPM_SUBTREE\Building Permits\EECC-Admin,"PFMB-EECC-Admin"
\IPM_SUBTREE\Building Permits\Ely,"PFMB-Ely"
\IPM_SUBTREE\Building Permits\Elyria High,"PFMB-Elyria High"
\IPM_SUBTREE\Building Permits\Franklin,"PFMB-Franklin"
\IPM_SUBTREE\Building Permits\Jefferson,"PFMB-Jefferson"
\IPM_SUBTREE\Building Permits\McKinley,"PFMB-McKinley"
\IPM_SUBTREE\Building Permits\Northwood,"PFMB-Northwood"
\IPM_SUBTREE\Building Permits\Oakwood,"PFMB-Oakwood"
\IPM_SUBTREE\Building Permits\Performing Arts Center,"PFMB-Performing Arts 
Center"
\IPM_SUBTREE\Building Permits\Prospect,"PFMB-Prospect"
\IPM_SUBTREE\Building Permits\Roosevelt,"PFMB-Roosevelt"
\IPM_SUBTREE\Building Permits\Westwood,"PFMB-Westwood"
\IPM_SUBTREE\Building Permits\Windsor,"PFMB-Windsor"
\IPM_SUBTREE\Bus. Services Contacts,"PFMB-Bus. Services Contacts"
\IPM_SUBTREE\Elyria High Fundraising Calendar,"PFMB-Elyria High Fundraising 
Calendar"
\IPM_SUBTREE\Elyria High Visitor Calendar,"PFMB-Elyria High Visitor Calendar"
\IPM_SUBTREE\Field Trips,"PFMB-Field Trips"
\IPM_SUBTREE\Financial Services,"PFMB-Financial Services"
\IPM_SUBTREE\IT Services,"PFMB-IT Services"
\IPM_SUBTREE\Staff,"PFMB-Staff"
\IPM_SUBTREE\Technology Lab Calendar (administration building),"PFMB-Technology 
Lab Calendar (administration building)"



FolderName,"FolderSize"
\IPM_SUBTREE,"0"
\IPM_SUBTREE\Academic Services,"5571035"
\IPM_SUBTREE\Building Permits,"0"
\IPM_SUBTREE\Building Permits\Athletics,"110184858"
\IPM_SUBTREE\Building Permits\Crestwood,"5911506"
\IPM_SUBTREE\Building Permits\Eastern Heights,"2645243"
\IPM_SUBTREE\Building Permits\Edison,"967387"
\IPM_SUBTREE\Building Permits\EECC-Admin,"30052287"
\IPM_SUBTREE\Building Permits\Ely,"1047724"
\IPM_SUBTREE\Building Permits\Elyria High,"1389228411"
\IPM_SUBTREE\Building Permits\Franklin,"4667360"
\IPM_SUBTREE\Building Permits\Jefferson,"4620"
\IPM_SUBTREE\Building Permits\McKinley,"2642239"
\IPM_SUBTREE\Building Permits\Northwood,"9139703"
\IPM_SUBTREE\Building Permits\Oakwood,"2897300"
\IPM_SUBTREE\Building Permits\Performing Arts Center,"437112733"
\IPM_SUBTREE\Building Permits\Prospect,"846588"
\IPM_SUBTREE\Building Permits\Roosevelt,"357753"
\IPM_SUBTREE\Building Permits\Westwood,"32362955"
\IPM_SUBTREE\Building Permits\Windsor,"1419638"
\IPM_SUBTREE\Bus. Services Contacts,"1964731"
\IPM_SUBTREE\Elyria High Fundraising Calendar,"1685107"
\IPM_SUBTREE\Elyria High Visitor Calendar,"2761807"
\IPM_SUBTREE\Field Trips,"12943127"
\IPM_SUBTREE\Financial Services,"3074831"
\IPM_SUBTREE\Internet Newsgroups,"0"
\IPM_SUBTREE\IT Services,"4462355"
\IPM_SUBTREE\Staff,"1739848"
\IPM_SUBTREE\Technology Lab Calendar (administration building),"7296542"
\NON_IPM_SUBTREE,"0"
\NON_IPM_SUBTREE\EFORMS REGISTRY,"0"



-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Monday, July 17, 2017 10:06 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010 to 2016 Public Folder migration.

Also correct.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Monday, July 17, 2017 9:50 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010 to 2016 Public Folder migration.

And to satisfy my OCD I can manually create this list to have a mailbox for 
each migrated folder?

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Monday, July 17, 2017 9:40 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010 to 2016 Public Folder migration.

Correct.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Monday, July 17, 2017 9:2

[Exchange] RE: 2010 to 2016 Public Folder migration.

[Kennedy, Jim]

And to satisfy my OCD I can manually create this list to have a mailbox for 
each migrated folder?

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Monday, July 17, 2017 9:40 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010 to 2016 Public Folder migration.

Correct.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Monday, July 17, 2017 9:23 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: 2010 to 2016 Public Folder migration.

So it makes one mailbox because I made my max size large enough for all of them 
to fit into one.

-Original Message-
From: Kennedy, Jim 
Sent: Monday, July 17, 2017 9:06 AM
To: exchange@lists.myitforum.com
Subject: 2010 to 2016 Public Folder migration.

Bit confused here.

Generated the FolderSize.csv.  It shows all 32 of my Public Folders.  Then 
generated PFMailbox.csv and it only shows \,"Mailbox1  Nothing beyond that, I 
expected a tree with all the PF's in it. Quadruple checked the syntax on the 
commands.

[Exchange] RE: 2010 to 2016 Public Folder migration.

[Kennedy, Jim]

So it makes one mailbox because I made my max size large enough for all of them 
to fit into one.

-Original Message-
From: Kennedy, Jim 
Sent: Monday, July 17, 2017 9:06 AM
To: exchange@lists.myitforum.com
Subject: 2010 to 2016 Public Folder migration.

Bit confused here.

Generated the FolderSize.csv.  It shows all 32 of my Public Folders.  Then 
generated PFMailbox.csv and it only shows \,"Mailbox1  Nothing beyond that, I 
expected a tree with all the PF's in it. Quadruple checked the syntax on the 
commands.

[Exchange] 2010 to 2016 Public Folder migration.

[Kennedy, Jim]

Bit confused here.

Generated the FolderSize.csv.  It shows all 32 of my Public Folders.  Then 
generated PFMailbox.csv and it only shows \,"Mailbox1  Nothing beyond that, I 
expected a tree with all the PF's in it. Quadruple checked the syntax on the 
commands.

[Exchange] RE: 2016 sudden time change

[Kennedy, Jim]

Dang, it’s not even an exact 4 hours. Not a time zone issue. It is more like 
three and a half hours.

From: Kennedy, Jim
Sent: Thursday, June 29, 2017 5:18 PM
To: exchange@lists.myitforum.com
Subject: 2016 sudden time change

Out of the blue all the mailboxes on my Exchange 2016 are showing received 
times 4 hours in the future on incoming mail.  Internal or external…makes no 
difference. They were fine until an hour ago.

[Exchange] 2016 sudden time change

[Kennedy, Jim]

Out of the blue all the mailboxes on my Exchange 2016 are showing received 
times 4 hours in the future on incoming mail.  Internal or external…makes no 
difference. They were fine until an hour ago.

RE: [Exchange] June 2017 Quarterly Exchange Updates

[Kennedy, Jim]

Great.  Never considered they did it that way, that scares me.  Another reason 
not to do item level backups on exchange. Our awesome browser driven archive 
system will do just fine.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Thursday, June 29, 2017 8:35 AM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] June 2017 Quarterly Exchange Updates

Backup Exec (and every backup program promising single-item restores) depend on 
non-public data – they are reverse-engineering the format of a mailbox 
database..

This is noted in the release blog.

Post release update concerning Cumulative Update 5
Several customers have reported problems with 3rd party solutions which provide 
brick level backup or single mailbox recovery as a reported feature after 
installing Cumulative Update 5. Cumulative Update 5 included an update to our 
database schema which caused some of these products to not function as they had 
previously. That change carries forward into Cumulative Update 6 as well. The 
practice of updating the database schema has long been in place with Exchange 
Server. Microsoft has urged developers to not consider the schema to be 
immutable nor to program against it. The schema is not publicly defined and is 
a structure internal to the operation of Exchange Server. Access to store level 
objects is provided through publicly documented interfaces and structures only.
The Exchange Team


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, June 29, 2017 8:18 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: RE: [Exchange] June 2017 Quarterly Exchange Updates

CU5 breaks single item restores in Backup Exec.  They are working on it.

https://vox.veritas.com/t5/Backup-Exec/Exchange-2016-CU5-Support/td-p/830356


From: "Michael B. Smith" <mich...@smithcons.com<mailto:mich...@smithcons.com>>
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Sent: Wednesday, June 28, 2017 7:59:34 AM
Subject: [Exchange] June 2017 Quarterly Exchange Updates

Released yesterday:

https://blogs.technet.microsoft.com/exchange/2017/06/27/released-june-2017-quarterly-exchange-updates/

The blog article and the KB articles do a poor job of explaining everything 
that has changed. 2016 CU6 includes a fix for the annoying Set-Mailbox bug 
present in CU5.

However, if you do a lot mailbox moves or discovery searches, I suggest that 
you carefully test it in a lab.  The same if you intend to apply CU6 to edge 
servers. I am not aware of confirmed issues, but I’ve heard some rumbles about 
these.

RE: [Exchange] June 2017 Quarterly Exchange Updates

[Kennedy, Jim]

CU5 breaks single item restores in Backup Exec.  They are working on it.

https://vox.veritas.com/t5/Backup-Exec/Exchange-2016-CU5-Support/td-p/830356


From: "Michael B. Smith" 
To: exchange@lists.myitforum.com
Sent: Wednesday, June 28, 2017 7:59:34 AM
Subject: [Exchange] June 2017 Quarterly Exchange Updates

Released yesterday:

https://blogs.technet.microsoft.com/exchange/2017/06/27/released-june-2017-quarterly-exchange-updates/

The blog article and the KB articles do a poor job of explaining everything 
that has changed. 2016 CU6 includes a fix for the annoying Set-Mailbox bug 
present in CU5.

However, if you do a lot mailbox moves or discovery searches, I suggest that 
you carefully test it in a lab.  The same if you intend to apply CU6 to edge 
servers. I am not aware of confirmed issues, but I’ve heard some rumbles about 
these.

[Exchange] RE: 2010-2016 coexistence for ActiveSync

[Kennedy, Jim]

https://owa.elyriaschools.org/Microsoft-Server-ActiveSync


[cid:image001.jpg@01D2F020.EA377B50]



From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, June 28, 2017 2:56 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010-2016 coexistence for ActiveSync

2016 should automatically proxy to 2010. The endpoint from the perspective of 
the device is the 2016 server, so that should indeed be what is reflected in 
the device configuration.

I would wonder about how you have the EAS vDirs configured, both for URLs and 
authentication.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Wednesday, June 28, 2017 2:37 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2010-2016 coexistence for ActiveSync

I should add, a mailbox on the 2016 server with the temp.domain.com set up 
works just fine.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, June 28, 2017 2:20 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] 2010-2016 coexistence for ActiveSync

Pre upgrade environment.

1 2010 CAScas.domain.com
2 2010 MBX


Current environment.

1 2010 CAS
2 2010 MBX
1 2016 Exch box  temp.domain.com


So, the next step is to get the 2016 box to act as the CAS for the mailboxes on 
the 2 2010 MBX boxes for OWA and ActiveSync.  Got OWA no problem.  ActiveSync 
for Android/iPhone is not co-operating.  Looking at the above, what I am trying 
is to just manually edit the account info on the phone show the server is 
temp.domain.com

Windows Auth for Microsoft-Server-ActiveSync on the 2010 CAS.

[Exchange] RE: 2010-2016 coexistence for ActiveSync

[Kennedy, Jim]

I should add, a mailbox on the 2016 server with the temp.domain.com set up 
works just fine.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Wednesday, June 28, 2017 2:20 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] 2010-2016 coexistence for ActiveSync

Pre upgrade environment.

1 2010 CAScas.domain.com
2 2010 MBX


Current environment.

1 2010 CAS
2 2010 MBX
1 2016 Exch box  temp.domain.com


So, the next step is to get the 2016 box to act as the CAS for the mailboxes on 
the 2 2010 MBX boxes for OWA and ActiveSync.  Got OWA no problem.  ActiveSync 
for Android/iPhone is not co-operating.  Looking at the above, what I am trying 
is to just manually edit the account info on the phone show the server is 
temp.domain.com

Windows Auth for Microsoft-Server-ActiveSync on the 2010 CAS.

[Exchange] 2010-2016 coexistence for ActiveSync

[Kennedy, Jim]

Pre upgrade environment.

1 2010 CAScas.domain.com
2 2010 MBX


Current environment.

1 2010 CAS
2 2010 MBX
1 2016 Exch box  temp.domain.com


So, the next step is to get the 2016 box to act as the CAS for the mailboxes on 
the 2 2010 MBX boxes for OWA and ActiveSync.  Got OWA no problem.  ActiveSync 
for Android/iPhone is not co-operating.  Looking at the above, what I am trying 
is to just manually edit the account info on the phone show the server is 
temp.domain.com

Windows Auth for Microsoft-Server-ActiveSync on the 2010 CAS.

[Exchange] Modern Public Folder noob.

[Kennedy, Jim]

https://technet.microsoft.com/en-us/library/mt463355%28v=exchg.150%29.aspx?f=255=-2147217396

When I run step 4, Create the public folder mailboxes in Exch 2016.  Shouldn't 
that be run from the '16 server?

Any quirks or gotcha's in this process that you veterans of the process know 
about?

RE: [Exchange] Weird email access/wrong mailbox.

[Kennedy, Jim]

IIS on a 2012 R2 ARR and URL Rewrite.

This might be more of an apple thing…got more info late yesterday from our 
network guy.  After i moved away from Forms he showed me more oddness with the 
IOS devices.  It all seems to stem from the device using an old book mark to 
the full URL for Forms……

I keep checking the loading dock for my Kemp box.  ☺

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, May 17, 2017 9:13 AM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Weird email access/wrong mailbox.

What is your reverse proxy? I’ve never seen this issue with WAP, ARR, UAG, or 
TMG….

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, May 16, 2017 2:54 PM
To: Exchange List
Subject: RE: [Exchange] Weird email access/wrong mailbox.

Much appreciated.

No Netscaler here, but we do have a reverse proxy..and it happened right when I 
switched to Forms.  I have rolled that back and am going to cross my fingers as 
a 2016 upgrade has been ordered with a new front end proxy/load balancer.


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tony Patton
Sent: Tuesday, May 16, 2017 10:40 AM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

I found the RCA report from the issue, which had the following, and OWA is/was 
using Forms based Auth:
As the investigations continued MS and Celestix determined that their solutions 
were working exactly as designed and that the culprit was a setting on the 
Citrix Netscaler load balancer.  Citrix recommended that multiplexing was 
disabled and all agreed that there was no issue regarding authentication, all 
parties concurred that multiplexing was the cause of the issue and Microsoft 
advised that in every instance where they had seen breaches of this kind, once 
multiplexing had been disabled the issue never re-occurred:
"We have seen this with a number of other customers in the past and this has 
been conclusively shown to happen when Citrix Netscaler multiplexing is in use. 
At this point in time we do not have any data from your environment to confirm 
our suspicions but, based on your architecture and our historic experiences, 
our strong recommendation is to disable Multiplexing on the Citrix NetScaler 
-http://support.citrix.com/article/CTX124713”

The issue wasn't reported again after the NW team disabled multiplexing, but 
I've no information on whether it was at the service level or globally.

On 15 May 2017 at 19:43, Kennedy, Jim 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Interesting, nothing out of the ordinary in my logs. Network guy just came by, 
he had it happen to him also.  And all three were on the same weekend.  I did 
make a recent auth change from Basic to Forms about a week and a half before 
this started to make a SSO system we have work with it.

Wonder if the Proxy server is tripping over cookies or something from the Form. 
 Going to ponder it, but I may just switch it back.  This is Exch 2010 and we 
have never had this issue until now.  Same proxy server in place for several 
years….no recent updates. I missed last patch Tuesday due to vacation.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com>] 
On Behalf Of Tony Patton
Sent: Monday, May 15, 2017 1:46 PM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

We had that issue early last year/late 2015 with OWA with one of our customers. 
 I can't remember off-hand, but it was something to do with multiplexing(?) 
between the Netscalar load balancers and Celestix UAG servers.

We weren't able to replicate the issue or find anything relevant in the logs on 
the Exchange servers.  The UAG servers are supported by the Security team.

I'll try and find the relevant information tomorrow when I'm back in the office.

Tony

On 15 May 2017 18:12, "Kennedy, Jim" 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Just got back from vacation and I have two tickets on some odd mailbox access.  
Both are phones, they would not have been on our network and would have been 
coming in from the net through our reverse proxy for OWA.

Going to just paste what they said, I have no idea where to look.

“Today while my class was watching a video I accessed my email on my phone. The 
page reloaded on its own, and I was in someone else's school email.”

“I had a very strange thing happen over the weekend to my email. I was checking 
my email through the browser on my phone and I clicked out of an email I was 
reading and back to my inbox.  When I did this I had someone else's email!! I 
tried to refresh and I didn't get my email back.”

RE: [Exchange] Weird email access/wrong mailbox.

[Kennedy, Jim]

Much appreciated.

No Netscaler here, but we do have a reverse proxy..and it happened right when I 
switched to Forms.  I have rolled that back and am going to cross my fingers as 
a 2016 upgrade has been ordered with a new front end proxy/load balancer.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Tony Patton
Sent: Tuesday, May 16, 2017 10:40 AM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

I found the RCA report from the issue, which had the following, and OWA is/was 
using Forms based Auth:
As the investigations continued MS and Celestix determined that their solutions 
were working exactly as designed and that the culprit was a setting on the 
Citrix Netscaler load balancer.  Citrix recommended that multiplexing was 
disabled and all agreed that there was no issue regarding authentication, all 
parties concurred that multiplexing was the cause of the issue and Microsoft 
advised that in every instance where they had seen breaches of this kind, once 
multiplexing had been disabled the issue never re-occurred:
"We have seen this with a number of other customers in the past and this has 
been conclusively shown to happen when Citrix Netscaler multiplexing is in use. 
At this point in time we do not have any data from your environment to confirm 
our suspicions but, based on your architecture and our historic experiences, 
our strong recommendation is to disable Multiplexing on the Citrix NetScaler 
-http://support.citrix.com/article/CTX124713”

The issue wasn't reported again after the NW team disabled multiplexing, but 
I've no information on whether it was at the service level or globally.

On 15 May 2017 at 19:43, Kennedy, Jim 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Interesting, nothing out of the ordinary in my logs. Network guy just came by, 
he had it happen to him also.  And all three were on the same weekend.  I did 
make a recent auth change from Basic to Forms about a week and a half before 
this started to make a SSO system we have work with it.

Wonder if the Proxy server is tripping over cookies or something from the Form. 
 Going to ponder it, but I may just switch it back.  This is Exch 2010 and we 
have never had this issue until now.  Same proxy server in place for several 
years….no recent updates. I missed last patch Tuesday due to vacation.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com>] 
On Behalf Of Tony Patton
Sent: Monday, May 15, 2017 1:46 PM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

We had that issue early last year/late 2015 with OWA with one of our customers. 
 I can't remember off-hand, but it was something to do with multiplexing(?) 
between the Netscalar load balancers and Celestix UAG servers.

We weren't able to replicate the issue or find anything relevant in the logs on 
the Exchange servers.  The UAG servers are supported by the Security team.

I'll try and find the relevant information tomorrow when I'm back in the office.

Tony

On 15 May 2017 18:12, "Kennedy, Jim" 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Just got back from vacation and I have two tickets on some odd mailbox access.  
Both are phones, they would not have been on our network and would have been 
coming in from the net through our reverse proxy for OWA.

Going to just paste what they said, I have no idea where to look.

“Today while my class was watching a video I accessed my email on my phone. The 
page reloaded on its own, and I was in someone else's school email.”

“I had a very strange thing happen over the weekend to my email. I was checking 
my email through the browser on my phone and I clicked out of an email I was 
reading and back to my inbox.  When I did this I had someone else's email!! I 
tried to refresh and I didn't get my email back.”

RE: [Exchange] Weird email access/wrong mailbox.

[Kennedy, Jim]

Using the Safari browser, straight OWA.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Monday, May 15, 2017 3:18 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Weird email access/wrong mailbox.

Using the native clients? Or the microsoft clients for iOS?

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Monday, May 15, 2017 3:01 PM
To: Exchange List
Subject: RE: [Exchange] Weird email access/wrong mailbox.

And they are all Apple devices, Iphones and Ipads.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Monday, May 15, 2017 2:50 PM
To: Exchange List
Subject: RE: [Exchange] Weird email access/wrong mailbox.

Interesting, nothing out of the ordinary in my logs. Network guy just came by, 
he had it happen to him also.  And all three were on the same weekend.  I did 
make a recent auth change from Basic to Forms about a week and a half before 
this started to make a SSO system we have work with it.

Wonder if the Proxy server is tripping over cookies or something from the Form. 
 Going to ponder it, but I may just switch it back.  This is Exch 2010 and we 
have never had this issue until now.  Same proxy server in place for several 
years….no recent updates. I missed last patch Tuesday due to vacation.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tony Patton
Sent: Monday, May 15, 2017 1:46 PM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

We had that issue early last year/late 2015 with OWA with one of our customers. 
 I can't remember off-hand, but it was something to do with multiplexing(?) 
between the Netscalar load balancers and Celestix UAG servers.

We weren't able to replicate the issue or find anything relevant in the logs on 
the Exchange servers.  The UAG servers are supported by the Security team.

I'll try and find the relevant information tomorrow when I'm back in the office.

Tony

On 15 May 2017 18:12, "Kennedy, Jim" 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Just got back from vacation and I have two tickets on some odd mailbox access.  
Both are phones, they would not have been on our network and would have been 
coming in from the net through our reverse proxy for OWA.

Going to just paste what they said, I have no idea where to look.

“Today while my class was watching a video I accessed my email on my phone. The 
page reloaded on its own, and I was in someone else's school email.”

“I had a very strange thing happen over the weekend to my email. I was checking 
my email through the browser on my phone and I clicked out of an email I was 
reading and back to my inbox.  When I did this I had someone else's email!! I 
tried to refresh and I didn't get my email back.”

RE: [Exchange] Weird email access/wrong mailbox.

[Kennedy, Jim]

And they are all Apple devices, Iphones and Ipads.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Monday, May 15, 2017 2:50 PM
To: Exchange List
Subject: RE: [Exchange] Weird email access/wrong mailbox.

Interesting, nothing out of the ordinary in my logs. Network guy just came by, 
he had it happen to him also.  And all three were on the same weekend.  I did 
make a recent auth change from Basic to Forms about a week and a half before 
this started to make a SSO system we have work with it.

Wonder if the Proxy server is tripping over cookies or something from the Form. 
 Going to ponder it, but I may just switch it back.  This is Exch 2010 and we 
have never had this issue until now.  Same proxy server in place for several 
years….no recent updates. I missed last patch Tuesday due to vacation.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tony Patton
Sent: Monday, May 15, 2017 1:46 PM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

We had that issue early last year/late 2015 with OWA with one of our customers. 
 I can't remember off-hand, but it was something to do with multiplexing(?) 
between the Netscalar load balancers and Celestix UAG servers.

We weren't able to replicate the issue or find anything relevant in the logs on 
the Exchange servers.  The UAG servers are supported by the Security team.

I'll try and find the relevant information tomorrow when I'm back in the office.

Tony

On 15 May 2017 18:12, "Kennedy, Jim" 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Just got back from vacation and I have two tickets on some odd mailbox access.  
Both are phones, they would not have been on our network and would have been 
coming in from the net through our reverse proxy for OWA.

Going to just paste what they said, I have no idea where to look.

“Today while my class was watching a video I accessed my email on my phone. The 
page reloaded on its own, and I was in someone else's school email.”

“I had a very strange thing happen over the weekend to my email. I was checking 
my email through the browser on my phone and I clicked out of an email I was 
reading and back to my inbox.  When I did this I had someone else's email!! I 
tried to refresh and I didn't get my email back.”

RE: [Exchange] Weird email access/wrong mailbox.

[Kennedy, Jim]

Interesting, nothing out of the ordinary in my logs. Network guy just came by, 
he had it happen to him also.  And all three were on the same weekend.  I did 
make a recent auth change from Basic to Forms about a week and a half before 
this started to make a SSO system we have work with it.

Wonder if the Proxy server is tripping over cookies or something from the Form. 
 Going to ponder it, but I may just switch it back.  This is Exch 2010 and we 
have never had this issue until now.  Same proxy server in place for several 
years….no recent updates. I missed last patch Tuesday due to vacation.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Tony Patton
Sent: Monday, May 15, 2017 1:46 PM
To: Exchange List
Subject: Re: [Exchange] Weird email access/wrong mailbox.

We had that issue early last year/late 2015 with OWA with one of our customers. 
 I can't remember off-hand, but it was something to do with multiplexing(?) 
between the Netscalar load balancers and Celestix UAG servers.

We weren't able to replicate the issue or find anything relevant in the logs on 
the Exchange servers.  The UAG servers are supported by the Security team.

I'll try and find the relevant information tomorrow when I'm back in the office.

Tony

On 15 May 2017 18:12, "Kennedy, Jim" 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
Just got back from vacation and I have two tickets on some odd mailbox access.  
Both are phones, they would not have been on our network and would have been 
coming in from the net through our reverse proxy for OWA.

Going to just paste what they said, I have no idea where to look.

“Today while my class was watching a video I accessed my email on my phone. The 
page reloaded on its own, and I was in someone else's school email.”

“I had a very strange thing happen over the weekend to my email. I was checking 
my email through the browser on my phone and I clicked out of an email I was 
reading and back to my inbox.  When I did this I had someone else's email!! I 
tried to refresh and I didn't get my email back.”

[Exchange] RE: 2016 design help needed.

[Kennedy, Jim]

This was a great recommendation Michael, much appreciated.  Did my homework on 
it and we just cut the PO to Kemp.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, March 29, 2017 11:18 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: 2016 design help needed.

Theoretically, in 2016 you don't need a separate load-balancer, DNS round-robin 
is sufficient.

In the real world, most companies aren't large enough for that to work out well.

Kemp Technologies has a nice VM-based load balancer. They even offer one for 
free. You may find the free one is good-enough for you.

ObDisclaimer: Kemp employs several Microsoft MVPs whom I know and trust.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Wednesday, March 29, 2017 10:59 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] 2016 design help needed.


Finally going to upgrade our 2010 Exchange to 2016.



Current info:



1 CAS/Hub Transport.  That is behind a reverse IIS proxy for external web mail.

2 Mailbox servers.  500 mailboxes per server.

In rough numbers about half my users are OWA and half our Outlook. ActiveSync 
is pretty widely used.



With the above setup load balancing was primitive but effective.  And that is 
where I am not getting it with 2016.  Am I looking at a separate load balancer 
with a VIP in front of the two servers I will now have?



And if so, any suggestions on a decent unit that fits my rather small 
environment?  A software unit that I can drop on a server would be neat since I 
have the hardware already.

[Exchange] 2016 design help needed.

[Kennedy, Jim]

Finally going to upgrade our 2010 Exchange to 2016.



Current info:



1 CAS/Hub Transport.  That is behind a reverse IIS proxy for external web mail.

2 Mailbox servers.  500 mailboxes per server.

In rough numbers about half my users are OWA and half our Outlook. ActiveSync 
is pretty widely used.



With the above setup load balancing was primitive but effective.  And that is 
where I am not getting it with 2016.  Am I looking at a separate load balancer 
with a VIP in front of the two servers I will now have?



And if so, any suggestions on a decent unit that fits my rather small 
environment?  A software unit that I can drop on a server would be neat since I 
have the hardware already.

RE: [Exchange] RE: Shared Mailbox with Outside Agencies

[Kennedy, Jim]

Great plan John, at least from where I sit ☺   Going to steal that next time I 
get in this bind.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of John Matteson
Sent: Wednesday, March 15, 2017 2:59 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] RE: Shared Mailbox with Outside Agencies

If what they are looking for is nothing more than access to a mailbox, you can 
create a mailbox with the address, then provide accounts to the various 
organizations that have READ ONLY Access to the mailbox via OWA. In ADUC for 
the accounts going to outside organizations, you set the allowed log in to NONE 
(blank out the workstation list). This prevents the users from accessing any 
systems on the internal network. They can access via OWA because they are not 
"logging in" only using AD for credentials authentication, not access.

At least that is what I see as a possible solution from where I sit.

John M.

On Wed, Mar 15, 2017 at 9:54 AM, Kennedy, Jim 
<kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote:
So I get something similar to this from time to time.  What my staff don’t know 
or think about is that a mailbox is an Active Directory account also.  So they 
have access (though limited) to our ‘network’ as they call it.  When I point 
that out, the pushback usually diminishes greatly.

Auto copy to a Gmail mailbox?

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com>] 
On Behalf Of Mayo, Bill
Sent: Wednesday, March 15, 2017 9:51 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: RE: [Exchange] RE: Shared Mailbox with Outside Agencies

The comments are well-taken and appreciated. It is basically what I tell my 
staff—find out what they are trying to accomplish and determine the best way to 
do that within our standards. You are correct that this client is dictating the 
solution (to at least a certain extent). I won’t get into any extended details, 
but suffice it to say that this is a case where there will be pushback on that 
and it is a road well-traveled. I also used poor wording in my original query 
and follow-up in indicating how much I understand what they are after. While it 
is true that there may be a better way to do what they want than some kind of 
mailbox, we don’t currently have anything else in place that I could offer as a 
solution (we have several ways to accomplish if everyone was internal to our 
organization).

The person is wanting to publish an email address to the public for a certain 
type of request. This person will actively monitor the mailbox, but wants 
others in and outside of our organization to be able to see the message without 
their intervention. They indicated that, in some cases, they would ask a 
particular entity (or entities) to just reference the mailbox for some specific 
message. They don’t want to forward the messages to the others.  I mostly want 
to do a reality check that I am correct that there is not a good way to do this 
in Exchange. If not, is there some kind of free/cheap way to do this through a 
3rd party email service. I did some research in that area, but all I found was 
sharing calendars or providing delegate-type access in the free realm. It does 
look like there are add-on services/software that do that for gMail (for 
example), but no names I have heard of before.

Again, thanks for the feedback to everyone. If the above provides any fodder 
for a recommendation, I would appreciate it.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, March 15, 2017 8:29 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: RE: [Exchange] RE: Shared Mailbox with Outside Agencies

What Michael and Andrew are alluding to is it sounds like you have been given a 
solution to their problem by them, as is often the case.  Dig in, get details 
on the work flow and processes and what is going on.  Once you understand the 
problem and goals you are far more qualified to suggest a tech solution than 
they are.

For example you could just auto forward all the emails for this mailbox to an 
address they set up on their systems.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Andrew S. Baker
Sent: Tuesday, March 14, 2017 5:39 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: Re: [Exchange] RE: Shared Mailbox with Outside Agencies

I think you should get clarity on what they are trying to accomplish so that 
you can accurately assess the risks and determine the solutions.


Regards,



 ASB
 http://XeeMe.com/AndrewBaker<http://xeeme.com/AndrewBaker>

 Pro

RE: [Exchange] RE: Shared Mailbox with Outside Agencies

[Kennedy, Jim]

So I get something similar to this from time to time.  What my staff don’t know 
or think about is that a mailbox is an Active Directory account also.  So they 
have access (though limited) to our ‘network’ as they call it.  When I point 
that out, the pushback usually diminishes greatly.

Auto copy to a Gmail mailbox?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Mayo, Bill
Sent: Wednesday, March 15, 2017 9:51 AM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: Shared Mailbox with Outside Agencies

The comments are well-taken and appreciated. It is basically what I tell my 
staff—find out what they are trying to accomplish and determine the best way to 
do that within our standards. You are correct that this client is dictating the 
solution (to at least a certain extent). I won’t get into any extended details, 
but suffice it to say that this is a case where there will be pushback on that 
and it is a road well-traveled. I also used poor wording in my original query 
and follow-up in indicating how much I understand what they are after. While it 
is true that there may be a better way to do what they want than some kind of 
mailbox, we don’t currently have anything else in place that I could offer as a 
solution (we have several ways to accomplish if everyone was internal to our 
organization).

The person is wanting to publish an email address to the public for a certain 
type of request. This person will actively monitor the mailbox, but wants 
others in and outside of our organization to be able to see the message without 
their intervention. They indicated that, in some cases, they would ask a 
particular entity (or entities) to just reference the mailbox for some specific 
message. They don’t want to forward the messages to the others.  I mostly want 
to do a reality check that I am correct that there is not a good way to do this 
in Exchange. If not, is there some kind of free/cheap way to do this through a 
3rd party email service. I did some research in that area, but all I found was 
sharing calendars or providing delegate-type access in the free realm. It does 
look like there are add-on services/software that do that for gMail (for 
example), but no names I have heard of before.

Again, thanks for the feedback to everyone. If the above provides any fodder 
for a recommendation, I would appreciate it.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, March 15, 2017 8:29 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: RE: [Exchange] RE: Shared Mailbox with Outside Agencies

What Michael and Andrew are alluding to is it sounds like you have been given a 
solution to their problem by them, as is often the case.  Dig in, get details 
on the work flow and processes and what is going on.  Once you understand the 
problem and goals you are far more qualified to suggest a tech solution than 
they are.

For example you could just auto forward all the emails for this mailbox to an 
address they set up on their systems.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Andrew S. Baker
Sent: Tuesday, March 14, 2017 5:39 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: Re: [Exchange] RE: Shared Mailbox with Outside Agencies

I think you should get clarity on what they are trying to accomplish so that 
you can accurately assess the risks and determine the solutions.


Regards,



 ASB
 http://XeeMe.com/AndrewBaker<http://xeeme.com/AndrewBaker>

 Providing Expert Technology Consulting Services for the SMB market…

 GPG: 860D 40A1 4DA5 3AE1 B052 8F9F 07A1 F9D6 A549 8842



Sent with 
Mixmax<https://mixmax.com/s/WMB47Rd39yDNPFfWo?utm_source=mixmax_medium=email_campaign=signature_link_content=sent_with_mixmax>
[Image removed by sender.]






On Tue, Mar 14, 2017 5:08 PM, Mayo, Bill 
bill.m...@pittcountync.gov<mailto:bill.m...@pittcountync.gov> wrote:

To the best of my understanding, they just want people to be able to read/view 
what is in the mailbox. I do not believe they want them to be able to delete or 
reply to the messages, although I can see them changing their mind about the 
latter at least in the future.



From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Tuesday, March 14, 2017 4:44 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Shared Mailbox with Outside Agencies



What do they want to DO? That’s an important question…



From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Tues

RE: [Exchange] RE: Shared Mailbox with Outside Agencies

[Kennedy, Jim]

What Michael and Andrew are alluding to is it sounds like you have been given a 
solution to their problem by them, as is often the case.  Dig in, get details 
on the work flow and processes and what is going on.  Once you understand the 
problem and goals you are far more qualified to suggest a tech solution than 
they are.

For example you could just auto forward all the emails for this mailbox to an 
address they set up on their systems.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Andrew S. Baker
Sent: Tuesday, March 14, 2017 5:39 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] RE: Shared Mailbox with Outside Agencies

I think you should get clarity on what they are trying to accomplish so that 
you can accurately assess the risks and determine the solutions.


Regards,



 ASB
 http://XeeMe.com/AndrewBaker

 Providing Expert Technology Consulting Services for the SMB market…

 GPG: 860D 40A1 4DA5 3AE1 B052 8F9F 07A1 F9D6 A549 8842



Sent with 
Mixmax
[Image removed by sender.]






On Tue, Mar 14, 2017 5:08 PM, Mayo, Bill 
bill.m...@pittcountync.gov wrote:

To the best of my understanding, they just want people to be able to read/view 
what is in the mailbox. I do not believe they want them to be able to delete or 
reply to the messages, although I can see them changing their mind about the 
latter at least in the future.



From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Tuesday, March 14, 2017 4:44 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Shared Mailbox with Outside Agencies



What do they want to DO? That’s an important question…



From: listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Tuesday, March 14, 2017 2:19 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Shared Mailbox with Outside Agencies



We have a request to have a mailbox setup that will allow outside agencies to 
access. From my perspective, creating accounts for these outside agencies is a 
non-starter. I know that there are some things you can do to allow external, 
anonymous access to a public folder, but I am not particularly crazy about 
going that route either.



We are on Exchange 2010, hosted entirely at our site. I don’t think there are 
really any viable options here. Am I correct? If so, are there are any 
free/cheap 3rd party alternatives that folks have used for this and are happy 
with?



Bill Mayo

[Exchange] RE: [NTSysADM] Odd .ps1 files.

[Kennedy, Jim]

Sorry, wrong forum.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Friday, December 2, 2016 2:23 PM
To: ntsysadm; exchange@lists.myitforum.com
Subject: [Exchange] [NTSysADM] Odd .ps1 files.

Seeing these from time to time from my SIEM.  Not a lot but fairly consistently.

C:\Users\\AppData\Local\Temp\1hv3rbtn.tyz.ps1

These are regular students that can't even run powershell.  Always a generated 
string for the file name.  This is a pretty tight environment, the students 
don't even have email, their filter is very tight.  So it's like I have a 
system generating them...but dang if I can think of one that would do that 
under a user context.

[Exchange] [NTSysADM] Odd .ps1 files.

[Kennedy, Jim]

Seeing these from time to time from my SIEM.  Not a lot but fairly consistently.

C:\Users\\AppData\Local\Temp\1hv3rbtn.tyz.ps1

These are regular students that can't even run powershell.  Always a generated 
string for the file name.  This is a pretty tight environment, the students 
don't even have email, their filter is very tight.  So it's like I have a 
system generating them...but dang if I can think of one that would do that 
under a user context.

[Exchange] RE: Spam solutions

[Kennedy, Jim]

Would be curious why.  First guess is on the large end their stuff gets 
expensive.  It doesn't seem to scale large very well on the cost side.  We are 
facing the same issue on their web filter side.  We have their second largest 
web filter.  If we ever have to go up to the next size we will be switching, 
it's insane money. Not close yet, but we know they never use less bandwidth, 
they only use more.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Thursday, October 6, 2016 5:30 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Spam solutions

I don't typically get involved in these kinds of solutions with my large 
clients (they have specific reasons for choosing specific solutions, and I am 
the AD/Exchange/Server guy); but I've had 3 larger clients drop Barracuda in 
the last year. Two went to Proofpoint and one went to Jatheon. I have no skin 
in the game, at all, but I was surprised by this.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, October 6, 2016 4:19 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Spam solutions

Barracuda.  Been a very happy customer of theirs for 15 years or so. The have 
appliances of different sizes, I prefer that route, VM's or even in the cloud 
if you are into that kind of thing.

Best vendor support I have ever had.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Joseph L. Casale
Sent: Thursday, October 6, 2016 4:17 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Spam solutions

I have a company I do work for where I am planning a windows server  
2008r2/exchange 2013 upgrade to windows server 2016/exchange 2016 in the new 
year.
That being said, they currently use forefront for exchange and it is my 
understanding that will go away. It's also not the most inspiring product 
really...

They want a more complete spam solution than what we already use (postfix rules 
on a gateway) so I need to acquire something that I can use after the upgrade.

What are people currently recommending for 50 user sites? I am open to 
recommendations, historically I blocked spam before it hit the exchange server 
however I am open to placing that and the AV on the exchange server. The only 
nice to have is a user accessible way to un-quarantine a message on their own.

Anyone have any opinions?

Thanks!
jlc

[Exchange] RE: Spam solutions

[Kennedy, Jim]

Barracuda.  Been a very happy customer of theirs for 15 years or so. The have 
appliances of different sizes, I prefer that route, VM's or even in the cloud 
if you are into that kind of thing.

Best vendor support I have ever had.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Joseph L. Casale
Sent: Thursday, October 6, 2016 4:17 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Spam solutions

I have a company I do work for where I am planning a windows server  
2008r2/exchange 2013 upgrade to windows server 2016/exchange 2016 in the new 
year.
That being said, they currently use forefront for exchange and it is my 
understanding that will go away. It's also not the most inspiring product 
really...

They want a more complete spam solution than what we already use (postfix rules 
on a gateway) so I need to acquire something that I can use after the upgrade.

What are people currently recommending for 50 user sites? I am open to 
recommendations, historically I blocked spam before it hit the exchange server 
however I am open to placing that and the AV on the exchange server. The only 
nice to have is a user accessible way to un-quarantine a message on their own.

Anyone have any opinions?

Thanks!
jlc

[Exchange] RE: Broke public folder replication.

[Kennedy, Jim]

Me too man, I knew about that one.  I don’t understand why it didn’t cause 
issues prior to this.  The new DC’s must have triggered it somehow…..

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Friday, June 3, 2016 11:42 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Broke public folder replication.

I shoulda remembered that. ☹

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Friday, June 3, 2016 10:41 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Broke public folder replication.

So, I dismounted and recreated the PF database on 02.  No joy.  Then I went 
into ADSI Edit and hit the left over Exchange 2003 Administrative Group and 
deleted the empty servers folder and blammo…replication instantly fixed itself.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, May 31, 2016 10:27 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Broke public folder replication.

So, still nothing is replicating properly from MBX02 to 01.

I am thinking dismount the bad database on MBX02, then move the files.  Then 
remount and let it recreate.

Does that sound like a logical plan?


From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Friday, May 27, 2016 9:52 AM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Broke public folder replication.


I suspect this is from my DC hardware upgrade, the timing it too much of a 
coincidence. When I decommissioned the last of the old DC’s it triggered the 
below for a few days before I saw it and bounced the Exchange servers.


SACL Watcher servicelet encountered an error while monitoring SACL change.

Got error 1722 opening group policy on system OldDC.Domain.LOCAL in domain ……..



Exchange 2010, one hub and two mbx servers. Current on SP’s and rollups.  
Public folders are all calendars and within the last 4 or 5 days replication 
has gone away. A close as I can tell some flow is working. New items from MBX01 
to MBX02 is broke…but new items created on MBX02 do flow to MBX01. So I real 
quick flipped everyone over to MBX01 for their public folders.  I know I could 
delete the DB on 02 and recreate but would rather fix the issue.



Logging is cranked up and all I am getting are the usual phantom 3093’s.



Not sure what to try next to get it going again.

[Exchange] Broke public folder replication.

[Kennedy, Jim]

I suspect this is from my DC hardware upgrade, the timing it too much of a 
coincidence. When I decommissioned the last of the old DC’s it triggered the 
below for a few days before I saw it and bounced the Exchange servers.


SACL Watcher servicelet encountered an error while monitoring SACL change.

Got error 1722 opening group policy on system OldDC.Domain.LOCAL in domain ……..



Exchange 2010, one hub and two mbx servers. Current on SP’s and rollups.  
Public folders are all calendars and within the last 4 or 5 days replication 
has gone away. A close as I can tell some flow is working. New items from MBX01 
to MBX02 is broke…but new items created on MBX02 do flow to MBX01. So I real 
quick flipped everyone over to MBX01 for their public folders.  I know I could 
delete the DB on 02 and recreate but would rather fix the issue.



Logging is cranked up and all I am getting are the usual phantom 3093’s.



Not sure what to try next to get it going again.

[Exchange] RE: I have an email policy that is applying the .com in uppercase.

[Kennedy, Jim]

What if you deleted it and re-created it…really really quick.  ☺

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Friday, April 15, 2016 1:47 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: I have an email policy that is applying the .com in 
uppercase.

Applying updates are not case sensitive, as you’ve discovered.

Your only option is to edit the users manually. Use PowerShell. ☺

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Paul Cookman
Sent: Friday, April 15, 2016 9:50 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] I have an email policy that is applying the .com in 
uppercase.

Hi all,

I have an email policy that is applying the .com in uppercase. I have changed 
the case of the accepted domain which is now showing within the email policy 
correctly.

When applying though, it doesn’t seem to update the users to lowercase. Only 
when I edit the user manually does it update.

Any ideas?

Regards,

Paul.




Paul Cookman

Internal Systems Manager

Email:

paul.cook...@coretx.com

Tel:

+447957168744

Tel:

+448448741000

Web:

www.CORETX.com


[Image removed by sender. CORETX]





Follow CORETX

Visit our Media Centre



This email has been sent by and on behalf of CORETX Holdings plc, a public 
company registered in Scotland (company number SC368538) with registered office 
at 24 Dublin Street, Edinburgh, EH1 3PP ("CORETX"), and its subsidiaries. 
Information in this email including any attachment is confidential, may be 
privileged and is intended solely for the addressee. Unauthorised recipients 
are requested to preserve the confidentiality of this email, advise the sender 
immediately of any error in transmission, and then delete the email without 
making copies. Any disclosure, copying, distribution or action taken, or 
omitted to be taken, in reliance upon the contents of this email by 
unauthorised recipients is prohibited and may be unlawful. Any communications 
with CORETX may be monitored and a record may be kept.vNo contracts or 
commitments may be concluded on behalf of CORETX or its group companies by 
means of email, and no statement or representation made in this email is 
binding on behalf of CORETX.
DISCLAIMER: Whilst this message has been scanned for viruses, CORETX disclaims 
any responsibility or liability for viruses contained therein. It is therefore 
recommended that all emails should be scanned for viruses upon receipt.



__
This email has been scanned by CORETX Ltd using the Symantec Email 
Security.cloud service.
__

[Exchange] RE: Mail volume per user per month

[Kennedy, Jim]

https://gallery.technet.microsoft.com/office/Exchange-200720102013-0ea7662b


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kelsey, John
Sent: Thursday, March 26, 2015 10:10 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] Mail volume per user per month

Exchange 2007 single server, single domain

I have a request to provide some mail stats for some specific users.  They want 
to know the total number of emails received and sent for a given time period 
for specific users.  Is there a painless way to gather that data?  Is there a 
way via Powershell to grab that?  Please forgive my Powershell noobness :/

Thanks all!

***
John C. Kelsey
Penn Highlands DuBois
*:  814.375.3073
*  :   814.375.4005
*:   jckel...@phhealthcare.org
***



This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

[Exchange] RE: Removing PF/database/last one error.

[Kennedy, Jim]

What is in ADSIEdit?

 CN=Configuration – CN=Services – CN=Microsoft Exchange – CN=YOUR ORG – 
CN=Administrative Groups – CN=First Administrative Group – CN=Servers – 
CN=SERVER NAME +— CN=InformationStore

If you force remove it, that is the only lingering place it will show up I 
believe.


From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of Adrian D. Henderson [ahender...@gerrity.com]
Sent: Friday, March 20, 2015 7:18 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Removing PF/database/last one error.

Hello,

I am on my 2007 box trying to remove it and running the commands to remove any 
folders and system folders I get

“There is no existing PublicFolder that matches the following Identity: '\'. 
Please make sure that you specified the correct PublicFolder Identity and that 
you have the necessary permissions to view PublicFolder.
At line:1 char :17”

https://support.microsoft.com/en-us/kb/2621350 says to do it on the 2010 box, 
read remote powershell I think (I am on 2013 no 2010 here) and I get this error 
on  there with the following command:

Get-PublicFolder \ -Recurse | Remove-PublicFolder -Confirm:$False 
-ErrorAction:SilentlyContinue -Server oldservername.

No active public folder mailboxes were found. This happens when no public 
folder mailboxes are provisioned or they are
provisioned in 'HoldForMigration' mode. If you're not currently performing a 
migration, create a public folder mailbox.

I have found some other articles about a legacy attribute not set  in AD and 
saying to mail disable the account I am trying to run the commands with. I have 
done that and no joy, restarted the IS on the old box too.  Problem is too that 
a lot of these articles indicate another problem with this error is using the 
EMC to view the folders and getting the error above in the GUI. I can use the 
GUI to look at the default and system folders and they are just blank. We don’t 
have any PF’s (only had one for BES) but I presume there would be system 
folders still?  Not sure about just trying to delete the DB as I am not sure 
what may linger behind in AD even though I have no intention of ever using 
them; my PF efficacy is not up to par I’m afraid.

[Exchange] RE: Removing an email from all mailboxes

[Kennedy, Jim]

I have never run it that way, but my understanding is it will delete any 
message with any of those words.  I do what you are doing this way:

Get-Mailbox -Server  ServerName | Search-Mailbox -SearchQuery 'Subject:FW: 
Your student-loan assistance package' -DeleteContent

I got to head to a meeting, so the above was fast typed..dig into the way above 
and test before you start deleting.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kelsey, John
Sent: Wednesday, March 11, 2015 11:34 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] Removing an email from all mailboxes

Single Exchange 2007 server.

We had a little email virus 'outbreak' yesterday in which a message with the 
subject of 'check' and a bad zip file got passed around to the bulk of the 
mailboxes.  I want to remove all of the bum messages and it looks like this is 
what I need?

Get-Mailbox -ResultSize Unlimited | Export-Mailbox -ContentKeywords check the 
document as an attachment -DeleteContent

Will that just remove the messages with those specific content keywords, or 
will that remove ANY message that has any of those words in the subject or 
body?  Don't want to get carried away! :)

Thanks all.

***
John C. Kelsey
Penn Highlands DuBois
*:  814.375.3073
*  :   814.375.4005
*:   jckel...@phhealthcare.orgmailto:jckel...@phhealthcare.org
***
[PHH ESig Logo 150dpi]


This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

[Exchange] RE: Ex2010 and calendar issues

[Kennedy, Jim]

Remove the Iphones, keep them removed and test again. When email disappears it 
is always a rule in Outlook. When appointments mess up it is always a device, 
usually Apple.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Senter, John
Sent: Tuesday, March 10, 2015 1:23 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Ex2010 and calendar issues

So I want to run this past the group as I cannot find anything out right on 
something that has recently come up.  We are running Exchange 2010 SP3 RU7, in 
a DAG design with separate CAS and HT servers.

The issue that we have started getting with a handful of users is around 
reoccurring meetings and modifying the date/time.  So the users are stating if 
they change the date/time on a meeting it will show for a little while in the 
calendar with the new date/time but then it reverts back to the original 
date/time; but the invites show the new date/time in their calendars.  At first 
I was thinking a corrupt OST or sync issue with their iPhone, so I removed the 
OST and allowed it to rebuild and on the iPhone I removed the Exchange setup 
and recreated so everything was fresh.  A few days later they tried moving a 
meeting and it did the same thing again.  Problem is it does not do it on every 
meeting just some.  I know there are some current issues with calendar sync'ing 
on iOS8, but that seems to be around the iOS device not getting updates.

Has anyone else heard of this?

Thanks in advance
js

[Exchange] RE: Ex2010 and calendar issues

[Kennedy, Jim]

Follow up question. How did they move the meeting?  What device did they use?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Tuesday, March 10, 2015 1:28 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Ex2010 and calendar issues

Remove the Iphones, keep them removed and test again. When email disappears it 
is always a rule in Outlook. When appointments mess up it is always a device, 
usually Apple.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Senter, John
Sent: Tuesday, March 10, 2015 1:23 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Ex2010 and calendar issues

So I want to run this past the group as I cannot find anything out right on 
something that has recently come up.  We are running Exchange 2010 SP3 RU7, in 
a DAG design with separate CAS and HT servers.

The issue that we have started getting with a handful of users is around 
reoccurring meetings and modifying the date/time.  So the users are stating if 
they change the date/time on a meeting it will show for a little while in the 
calendar with the new date/time but then it reverts back to the original 
date/time; but the invites show the new date/time in their calendars.  At first 
I was thinking a corrupt OST or sync issue with their iPhone, so I removed the 
OST and allowed it to rebuild and on the iPhone I removed the Exchange setup 
and recreated so everything was fresh.  A few days later they tried moving a 
meeting and it did the same thing again.  Problem is it does not do it on every 
meeting just some.  I know there are some current issues with calendar sync'ing 
on iOS8, but that seems to be around the iOS device not getting updates.

Has anyone else heard of this?

Thanks in advance
js

[Exchange] RE: 2010 CAS/HUB refresh.

[Kennedy, Jim]

Non-event it appears.

Add to the list:

IIS 7 auth settings
Fix up InternalUrl on WebServicesVirtualDirectory


Those were the only surprises.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Tuesday, March 3, 2015 11:05 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] 2010 CAS/HUB refresh.

Progressing along on my hardware refresh…2010 Exchange current on 
patches/packs.  One corrupt mailbox to go but that is just a scheduling issue 
with the user.

I have two MB servers, replacing both. One is done and unisnstalled. I also 
have a CAS/Hub to replace. Current incoming mail flow is Internet  Spam 
Appliance   CAS/HUB. Outgoing is CAS/HUBInternet. Client access for OWA and 
active sync is via a reverse IIS proxy using URL rewrites.

I have spun up a second CAS/HUB. Certs are already exported and installed and 
applied to the proper services. Now I need to cut over and uninstall the old 
one. Never done that on 2010 before. Anyone have a checklist or a link for a 
checklist?

I intend to swap IP addresses unless there is a reason not to. That makes the 
firewall work and outgoing xlates on addresses a non-issue.  That should also 
eliminate any need to mess with url rewrites or mess with dns internally.
.
To Do list is still under construction:

Hub issues.

1)  Move internet send connector.

2)  Duplicate special/non-default receive connectors

CAS Issues.

1)  Change internal and external URL on OWA, ECP ActiveSync and Offline 
addy book. There is no POP or IMAP4 here.

Boy it seems like this should be harder. What am I missing, no hurry this is a 
Friday after hours plan at this point.

RE: [Exchange] Email encryption

[Kennedy, Jim]

They are right, but encryption won’t help. I suggest written notes sent via 
trusted employee with said employee videotaping the recipient eating the 
message after reading it.  Then shooting the delivery guy when he gets back.

Sorry, couldn’t resist. My cynical hat is on today.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Steve Ens
Sent: Wednesday, February 25, 2015 2:18 PM
To: Micheal Espinola Jr
Subject: [Exchange] Email encryption

The news gatherers think that their messages are highly sensitive and don't 
trust regular email any longer.  Is anyone encrypting?  What is the preferred 
method?  This is new to me.
Thanks
Steve

RE: [Exchange] Email encryption

[Kennedy, Jim]

It helps to a certain point. I just don’t think with all the government data 
dumps being done that we have any real privacy on the net anymore.  So your 
encrypted email is only as good as the various governments that are copying it 
and storing it currently.

So probably pretty good and worth the effort, but not as good as perhaps your 
users think it will be.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Steve Ens
Sent: Wednesday, February 25, 2015 2:58 PM
To: Micheal Espinola Jr
Subject: Re: [Exchange] Email encryption

Tell me more Jim, why are you cynical?  Because they can get in anyway?  Or 
what?

On Wed, Feb 25, 2015 at 1:47 PM, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
They are right, but encryption won’t help. I suggest written notes sent via 
trusted employee with said employee videotaping the recipient eating the 
message after reading it.  Then shooting the delivery guy when he gets back.

Sorry, couldn’t resist. My cynical hat is on today.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Wednesday, February 25, 2015 2:18 PM
To: Micheal Espinola Jr
Subject: [Exchange] Email encryption

The news gatherers think that their messages are highly sensitive and don't 
trust regular email any longer.  Is anyone encrypting?  What is the preferred 
method?  This is new to me.
Thanks
Steve

RE: [Exchange] RE: Failing mailbox moves

[Kennedy, Jim]

Wooo, Cisco Unity. I will test tonight with one of the othersdeleting that 
folder...and go from there.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of J- P
Sent: Wednesday, February 25, 2015 2:44 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: Failing mailbox moves

How many folders are in this mailbox, are there any folders that may have been 
added by a 3rd party app?





From: kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Failing mailbox moves
Date: Wed, 25 Feb 2015 18:50:46 +
So completely empty the first one still won't move.  Is that a clue or am I 
going to have to delete and recreate?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Gavin Wilby
Sent: Monday, February 23, 2015 10:12 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves

For 10 boxes of 900 I would take it on the chin and export/ move/ import.

Youll spend longer trying to work it out in the long run.

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 23 February 2015 15:03
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Failing mailbox moves

Permissions are good and inherited. Export to PST is clean.  Might be deleting 
and recreating, hoping to avoid that one.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[listsad...@lists.myitforum.com] on behalf of Gavin Wilby 
[gavin.wi...@smppartners.com]
Sent: Monday, February 23, 2015 9:53 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves
See if they back up to PST cleanly, if not, use the -badmessagecount switch.

Delete the contents, move to new server, restore PST back??

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 23 February 2015 14:43
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Failing mailbox moves

Exchange 2010 current on sp's and updates.

I have ten boxes out of 900 that won't move to a new server. They all fail at 
10 percent with:

 2/23/2015 9:34:23 AM [OWA001] Initializing folder hierarchy in mailbox 
'Primary (84ebdafc-c53f-44e2-b601-80703f2bd13a)': 58 folders total.
2/23/2015 9:34:26 AM [OWA001] Fatal error MapiExceptionNoAccess has occurred.
Error details: MapiExceptionNoAccess: Unable to query table rows.

I have run the mailbox repair on all of them, and also started outlook with 
cleanfinders and cleanreminders switches.  No luck. What is my next step?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley,  A.J. Dowling, P. Duchars, P.N. Eckersley, J.J. Scott, 
S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.
This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

[Exchange] RE: Failing mailbox moves

[Kennedy, Jim]

So completely empty the first one still won't move.  Is that a clue or am I 
going to have to delete and recreate?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Gavin Wilby
Sent: Monday, February 23, 2015 10:12 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves

For 10 boxes of 900 I would take it on the chin and export/ move/ import.

Youll spend longer trying to work it out in the long run.

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: 23 February 2015 15:03
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Failing mailbox moves

Permissions are good and inherited. Export to PST is clean.  Might be deleting 
and recreating, hoping to avoid that one.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[listsad...@lists.myitforum.com] on behalf of Gavin Wilby 
[gavin.wi...@smppartners.com]
Sent: Monday, February 23, 2015 9:53 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves
See if they back up to PST cleanly, if not, use the -badmessagecount switch.

Delete the contents, move to new server, restore PST back??

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 23 February 2015 14:43
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Failing mailbox moves

Exchange 2010 current on sp's and updates.

I have ten boxes out of 900 that won't move to a new server. They all fail at 
10 percent with:

 2/23/2015 9:34:23 AM [OWA001] Initializing folder hierarchy in mailbox 
'Primary (84ebdafc-c53f-44e2-b601-80703f2bd13a)': 58 folders total.
2/23/2015 9:34:26 AM [OWA001] Fatal error MapiExceptionNoAccess has occurred.
Error details: MapiExceptionNoAccess: Unable to query table rows.

I have run the mailbox repair on all of them, and also started outlook with 
cleanfinders and cleanreminders switches.  No luck. What is my next step?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley,  A.J. Dowling, P. Duchars, P.N. Eckersley, J.J. Scott, 
S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.
This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

RE: [Exchange] CAS Array question

[Kennedy, Jim]

http://blogs.technet.com/b/exchange/archive/2012/03/23/demystifying-the-cas-array-object-part-1.aspx


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Richard Stovall
Sent: Wednesday, February 25, 2015 3:47 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] CAS Array question

The CAS array is apparently just an AD object that tells internal Outlook 
clients where to find CAS servers.  If you don't create one at Exchange 2010 
installation, one is created for you with the fqdn of your mailbox server.  The 
issue is down the line (like now, for me) when you want to move mailboxes to a 
new server in order to decommission the old one.  Outlook doesn't update and 
each user profile has to be reconfigured either manually or via pushing a prf 
file.  (I may have some of the description not quite right, but that's the gist 
of it.)  I figure it's better to fix the problem now rather than leave it to 
the next person to figure out.

On Wed, Feb 25, 2015 at 3:37 PM, Steve Ens 
stevey...@gmail.commailto:stevey...@gmail.com wrote:
I dunno Richie, do you really need an array for 100 users?  I have a single 
server virtualized.  Never any problems with client access.

On Wed, Feb 25, 2015 at 2:29 PM, Richard Stovall 
rich...@gmail.commailto:rich...@gmail.com wrote:
I will soon be moving Exchange 2010 to new hardware (or maybe virtual hardware, 
but that's another question).

I have a single server with fewer than 100 users spread across two AD sites.  
Of course I did not create a CAS array all those years ago, so I am preparing 
to deal with the ramifications of that now.

Currently all mailboxes are (obviously) hosted on one server in one of the 
sites, but that may change in the future if we grow, add data center capacity, 
whatever.

Given the need to create a CAS array now, should I create a single 
site-specific array for each site?  Can an array for site 2 specify an ip in 
site 1?  If not, should I create a single array and not specify the site?

Thanks for the help,

Richard

RE: [Exchange] RE: Failing mailbox moves

[Kennedy, Jim]

8.6

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Maglinger, Paul
Sent: Wednesday, February 25, 2015 3:52 PM
To: 'exchange@lists.myitforum.com'
Subject: RE: [Exchange] RE: Failing mailbox moves

What version of Unity?  Just curious...

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, February 25, 2015 1:47 PM
To: 'exchange@lists.myitforum.com'
Subject: RE: [Exchange] RE: Failing mailbox moves

Wooo, Cisco Unity. I will test tonight with one of the othersdeleting that 
folder...and go from there.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of J- P
Sent: Wednesday, February 25, 2015 2:44 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: RE: [Exchange] RE: Failing mailbox moves

How many folders are in this mailbox, are there any folders that may have been 
added by a 3rd party app?




From: kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Failing mailbox moves
Date: Wed, 25 Feb 2015 18:50:46 +
So completely empty the first one still won't move.  Is that a clue or am I 
going to have to delete and recreate?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Gavin Wilby
Sent: Monday, February 23, 2015 10:12 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves

For 10 boxes of 900 I would take it on the chin and export/ move/ import.

Youll spend longer trying to work it out in the long run.

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 23 February 2015 15:03
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Failing mailbox moves

Permissions are good and inherited. Export to PST is clean.  Might be deleting 
and recreating, hoping to avoid that one.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[listsad...@lists.myitforum.com] on behalf of Gavin Wilby 
[gavin.wi...@smppartners.com]
Sent: Monday, February 23, 2015 9:53 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves
See if they back up to PST cleanly, if not, use the -badmessagecount switch.

Delete the contents, move to new server, restore PST back??

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 23 February 2015 14:43
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Failing mailbox moves

Exchange 2010 current on sp's and updates.

I have ten boxes out of 900 that won't move to a new server. They all fail at 
10 percent with:

 2/23/2015 9:34:23 AM [OWA001] Initializing folder hierarchy in mailbox 
'Primary (84ebdafc-c53f-44e2-b601-80703f2bd13a)': 58 folders total.
2/23/2015 9:34:26 AM [OWA001] Fatal error MapiExceptionNoAccess has occurred.
Error details: MapiExceptionNoAccess: Unable to query table rows.

I have run the mailbox repair on all of them, and also started outlook with 
cleanfinders and cleanreminders switches.  No luck. What is my next step?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley,  A.J. Dowling, P. Duchars, P.N. Eckersley, J.J. Scott, 
S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.
This email is confidential

[Exchange] RE: Failing mailbox moves

[Kennedy, Jim]

Permissions are good and inherited. Export to PST is clean.  Might be deleting 
and recreating, hoping to avoid that one.


From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of Gavin Wilby [gavin.wi...@smppartners.com]
Sent: Monday, February 23, 2015 9:53 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Failing mailbox moves

See if they back up to PST cleanly, if not, use the –badmessagecount switch.

Delete the contents, move to new server, restore PST back??

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: 23 February 2015 14:43
To: exchange@lists.myitforum.com
Subject: [Exchange] Failing mailbox moves

Exchange 2010 current on sp's and updates.

I have ten boxes out of 900 that won't move to a new server. They all fail at 
10 percent with:

 2/23/2015 9:34:23 AM [OWA001] Initializing folder hierarchy in mailbox 
'Primary (84ebdafc-c53f-44e2-b601-80703f2bd13a)': 58 folders total.
2/23/2015 9:34:26 AM [OWA001] Fatal error MapiExceptionNoAccess has occurred.
Error details: MapiExceptionNoAccess: Unable to query table rows.

I have run the mailbox repair on all of them, and also started outlook with 
cleanfinders and cleanreminders switches.  No luck. What is my next step?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley,  A.J. Dowling, P. Duchars, P.N. Eckersley, J.J. Scott, 
S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.
http://www.smppartners.com/disclaimer.html
This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

RE: [Exchange] Public folder calendar brick level.

[Kennedy, Jim]

Ok, for 200 bucks this is looking really cool. CLI that I can schedule task on 
the server. Testing shows it is working great, and it separates each calendar 
out into its own individual named PST for easy restore.

https://www.reliefjet.com/Essentials


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Friday, February 13, 2015 4:22 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Public folder calendar brick level.

Well, there is a problem with my plan.  Not sure how to do this automagically.  
☺  Public Folder Calendars seem to be difficult.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Daniel Chenault
Sent: Friday, February 13, 2015 3:46 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] Public folder calendar brick level.

So, a behavioral limitation. Gotcha.
Your plan sounds okay. Other choice (restore from backup) takes too long to do 
on a regular basis.

On Feb 13, 2015, at 7:15, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:

“Why is this user performing this action?”

We allow the public to use our facilities, since they are in effect their 
facilities. So a girl scout troop calls this user and says I want to use the 
gym at such and such a school on Feb 14th.  This secretary records that event 
in the calendar so there are no dups along with all the other arrangements that 
need to be made.

The end game is what I said it is. This person is somewhat mentally challenged, 
she will mess up…she will overwrite appointments or somehow totally blow up the 
caldandar. There are 15 calendars…one for each building.

I need to bring back one specific calendar to how it was yesterday.



From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Daniel Chenault
Sent: Friday, February 13, 2015 9:57 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: Re: [Exchange] Public folder calendar brick level.

I'll say it for him: there are technological solutions for behavioral problems.

What is the desired end-game here? Why is this user performing this action?

On Feb 13, 2015, at 6:21, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
While I miss Ed Crowley I am glad he isn’t reading this.

Exchange 2010

So I just fired up 15 public calendars to schedule events at 15 buildings.  The 
secretary in charge of doing this will, on average every 30 days, copy and 
paste a single appointment into a calendar several hundred times or so. It is 
inevitable, and there is no training that will prevent this and this 
responsibility will not be assigned to someone else.

So I am thinking an automated export to PST each night. Then I can restore the 
PST to my mailbox…then kill the bad calendar and replace with the PST restored 
one. Any suggestions gang?

RE: [Exchange] Public folder calendar brick level.

[Kennedy, Jim]

Well, there is a problem with my plan.  Not sure how to do this automagically.  
☺  Public Folder Calendars seem to be difficult.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Daniel Chenault
Sent: Friday, February 13, 2015 3:46 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] Public folder calendar brick level.

So, a behavioral limitation. Gotcha.
Your plan sounds okay. Other choice (restore from backup) takes too long to do 
on a regular basis.

On Feb 13, 2015, at 7:15, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:

“Why is this user performing this action?”

We allow the public to use our facilities, since they are in effect their 
facilities. So a girl scout troop calls this user and says I want to use the 
gym at such and such a school on Feb 14th.  This secretary records that event 
in the calendar so there are no dups along with all the other arrangements that 
need to be made.

The end game is what I said it is. This person is somewhat mentally challenged, 
she will mess up…she will overwrite appointments or somehow totally blow up the 
caldandar. There are 15 calendars…one for each building.

I need to bring back one specific calendar to how it was yesterday.



From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Daniel Chenault
Sent: Friday, February 13, 2015 9:57 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: Re: [Exchange] Public folder calendar brick level.

I'll say it for him: there are technological solutions for behavioral problems.

What is the desired end-game here? Why is this user performing this action?

On Feb 13, 2015, at 6:21, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
While I miss Ed Crowley I am glad he isn’t reading this.

Exchange 2010

So I just fired up 15 public calendars to schedule events at 15 buildings.  The 
secretary in charge of doing this will, on average every 30 days, copy and 
paste a single appointment into a calendar several hundred times or so. It is 
inevitable, and there is no training that will prevent this and this 
responsibility will not be assigned to someone else.

So I am thinking an automated export to PST each night. Then I can restore the 
PST to my mailbox…then kill the bad calendar and replace with the PST restored 
one. Any suggestions gang?

[Exchange] Setup Key or So Confused today.

[Kennedy, Jim]

So I am refreshing our Exchange Servers.  Just the hardware, sticking with 
2010.  Dig out my old keys...and I am downloading the iso from MSVL.  I notice 
there are keys there for virtually every MS product around. Now I get some cool 
stuff with my Campus agreement but not that cool. I googling and digging 
around...don't ask me why...I punched my key into google. It's all over the 
place, the whole world uses the same key as I do. No my key didn't get out.

I will admit I pay virtually no attention to licensing issues or requirements. 
I know that with our campus agreement I have every desktop license and cal 
along with office, Outlook and the Exchange Cal and so on.  I just buy server 
licenses separately from CDWG. Which is exactly where my Exchange came from.

What is the deal with this key?

RE: [Exchange] Setup Key or So Confused today.

[Kennedy, Jim]

You stole my key!!!  Haha, thanks Susan.

I found a whole page of KSM keys for 7, 8.x on Microsoft's support site. Bottom 
line, they know who I am and what I own. I just activated it, it certainly did 
phone homethey know it's me and they know I own a valid license. The key 
means nothing I suspect.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Susan Bradley
Sent: Friday, February 6, 2015 4:16 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] Setup Key or So Confused today.

I've seen that as well and I forget the reasoning why.  Apparently they figure 
no one trying to steal/pirate Microsoft software would even think of stealing 
Exchange.  I mean what sane person would want to patch and maintain it?

http://boot2rk.blogspot.com/2011/07/microsoft-product-keys.html
Scroll to the bottom, mine is that key too.

Susan Bradley
  

On 2/6/2015 12:14 PM, Kennedy, Jim wrote:

 So I am refreshing our Exchange Servers.  Just the hardware, sticking 
 with 2010.  Dig out my old keys...and I am downloading the iso from 
 MSVL.  I notice there are keys there for virtually every MS product 
 around. Now I get some cool stuff with my Campus agreement but not 
 that cool. I googling and digging around...don't ask me why...I punched my 
 key into google. It's all over the place, the whole world uses the 
 same key as I do. No my key didn't get out.

 I will admit I pay virtually no attention to licensing issues or 
 requirements. I know that with our campus agreement I have every 
 desktop license and cal along with office, Outlook and the Exchange 
 Cal and so on.  I just buy server licenses separately from CDWG. Which 
 is exactly where my Exchange came from.

 What is the deal with this key?

RE: [Exchange] Ex2013 all messages stuck in undefined submission

[Kennedy, Jim]

There are alot messages that are ndr

Ok, that concerns me. Ndr's for what?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of J- P
Sent: Thursday, January 22, 2015 12:45 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Ex2013 all messages stuck in undefined submission

I restarted the server, and ONE message came in, but the queue is starting to 
build again-

There are alot messages that are ndr/healthmonitor etc... in 2010 I used to be 
able to rt click an delete with or w/o ndr
is there a different way to do this?


Date: Thu, 22 Jan 2015 12:34:01 -0500
Subject: Re: [Exchange] Ex2013 all messages stuck in undefined submission
From: rich...@gmail.commailto:rich...@gmail.com
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
If you filter the application log for source=MSExchangeTransport, are there any 
warnings?  Any 15004 events at all?

On Thu, Jan 22, 2015 at 12:26 PM, Woody Blackman 
woody.black...@oit.edumailto:woody.black...@oit.edu wrote:
What about the protocol logs?

Exchange Server\V15\TransportRoles\Logs\FrontEnd\ProtocolLog\SmtpSend
Exchange Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpReceive

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of J- P
Sent: Thursday, January 22, 2015 9:15 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: RE: [Exchange] Ex2013 all messages stuck in undefined submission

there is no last error, its like its not even trying (and I have over 200gb 
free space)


Jean-Paul Natola


From: woody.black...@oit.edumailto:woody.black...@oit.edu
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Date: Thu, 22 Jan 2015 08:53:50 -0800
Subject: RE: [Exchange] Ex2013 all messages stuck in undefined submission
What is the Last Error displayed in the messages queues?

I had a similar problem, although with a Split Exchange 2013 Mailbox CAS 
implementation.  The remediation steps may be helpful in your case if  the 
errors are DNS related.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of J- P
Sent: Thursday, January 22, 2015 8:12 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: RE: [Exchange] Ex2013 all messages stuck in undefined submission

its in submission, appears both ways although we can send nothing ever 
leaves, and nothing has come in (internal or external)


Jean-Paul Natola


From: gavin.wi...@smppartners.commailto:gavin.wi...@smppartners.com
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: RE: [Exchange] Ex2013 all messages stuck in undefined submission
Date: Thu, 22 Jan 2015 16:03:26 +
Stuck where? In the outbound queue or coming into the exchange?

Gavin Wilby
IT Support Engineer

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of J- P
Sent: 22 January 2015 15:37
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Ex2013 all messages stuck in undefined submission

As the title says, all messages stuck since last night, I have restart the 
transport services and no joy-

People can connect (owa/outlook) they can send , but obviously not receiveing

2012r1/EX2013 hyper v , running on 2012r1

thanks
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley,  A.J. Dowling, P. Duchars, P.N. Eckersley, J.J. Scott, 
S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.
This email is confidential and is subject to disclaimers. Details can be 

[Exchange] RE: Exchange 2010 SP3 UR8 withdrawn...

[Kennedy, Jim]

Looks like it was re-released.

http://support.microsoft.com/kb/2986475


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, December 10, 2014 3:02 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Exchange 2010 SP3 UR8 withdrawn...

If you have plans to install it - change those plans until a re-release.

If you already installed it, you are recommended to revert to SP3 UR7.

Exchange Team blog post expected Real Soon Now.

[Exchange] RE: Attachment Size Redux

[Kennedy, Jim]

I had a user send 8 emails of 50 MB each to 200 people in the span of 60 
seconds. It didn’t crash but it created some backlogs on the queues for 20 to 
30 minutes.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Mayo, Bill
Sent: Tuesday, December 9, 2014 12:36 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Attachment Size Redux

Are you saying that there is no upper limit for attachment size in Exchange 
2010? If so, is it still true that large attachments cause performance problems?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Sunday, December 07, 2014 7:31 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Attachment Size Redux

You have a good memory. I wrote an article about that for a magazine that 
discussed the Exchange 2003 transport service. It doesn’t apply to modern 
(64-bit) versions of Exchange.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, December 5, 2014 12:44 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Attachment Size Redux

I know this topic has come up before, but I am running into a discussion about 
it again.  I am almost certain that Michael B. Smith had a particularly 
informational post about this sometime back, but I cannot find it (swore I 
saved it, but can’t find it—also searched the current archives unsuccessfully). 
 It is my recollection that it explained how it delayed delivery of other mail, 
but most importantly, that there was some maximum over which Microsoft would 
not support it.  Did I dream all that, because I can’t seem to find this 
documented anywhere?

I would greatly appreciate it if anyone someone has that info, whether in my 
recalled format or elsewhere.  I would also appreciate any other links or 
individual information anyone has on the topic of how big is too big for email 
attachments.  I have all the old “straw poll” messages, so I know what people 
are/were using as the limit, I am looking more for documentation of the 
potential issues caused by allowing larger attachments.

Bill Mayo

[Exchange] RE: Attachment Size Redux

[Kennedy, Jim]

I’m ok with that, as long as they give me the resources to support it.  I’m in 
favor of anything that is easier for them as long as it is safe and supportable.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Maglinger, Paul
Sent: Tuesday, December 9, 2014 1:02 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Attachment Size Redux

Exchange – the new ftp server…  *sigh*


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Tuesday, December 09, 2014 11:42 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Attachment Size Redux

I had a user send 8 emails of 50 MB each to 200 people in the span of 60 
seconds. It didn’t crash but it created some backlogs on the queues for 20 to 
30 minutes.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Tuesday, December 9, 2014 12:36 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Attachment Size Redux

Are you saying that there is no upper limit for attachment size in Exchange 
2010? If so, is it still true that large attachments cause performance problems?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Sunday, December 07, 2014 7:31 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Attachment Size Redux

You have a good memory. I wrote an article about that for a magazine that 
discussed the Exchange 2003 transport service. It doesn’t apply to modern 
(64-bit) versions of Exchange.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Mayo, Bill
Sent: Friday, December 5, 2014 12:44 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Attachment Size Redux

I know this topic has come up before, but I am running into a discussion about 
it again.  I am almost certain that Michael B. Smith had a particularly 
informational post about this sometime back, but I cannot find it (swore I 
saved it, but can’t find it—also searched the current archives unsuccessfully). 
 It is my recollection that it explained how it delayed delivery of other mail, 
but most importantly, that there was some maximum over which Microsoft would 
not support it.  Did I dream all that, because I can’t seem to find this 
documented anywhere?

I would greatly appreciate it if anyone someone has that info, whether in my 
recalled format or elsewhere.  I would also appreciate any other links or 
individual information anyone has on the topic of how big is too big for email 
attachments.  I have all the old “straw poll” messages, so I know what people 
are/were using as the limit, I am looking more for documentation of the 
potential issues caused by allowing larger attachments.

Bill Mayo

[Exchange] RE: Monitor Ex2010:

[Kennedy, Jim]

Ten bucks a month. Have not used them in a long time but they worked well back 
in the old days.

https://www.site24x7.com/mail-server-monitoring.html


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Orlebeck, Geoffrey
Sent: Monday, December 1, 2014 2:15 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] Monitor Ex2010:

Just had an issue over the weekend where two separate environments running on 
top of our DMZ cluster stopped receiving external email after a networking 
change on the ESX hosts. Both environments are setup with one edge server and 
one HUB/CAS server (Ex2010 SP3 UR4 across all VMs). Emails were timing out and 
senders were receiving 4.4.7 NDRs from their servers. Restarting the Microsoft 
Exchange Transport service allowed mail to begin flowing again. We understand 
how/why the issue occurred, however, none of our regular SCOM alerts flagged 
any issues (no queue growth, ports are open, services were running, etc.). 
After the fact, we noticed our 3rd party spam filter was receiving Message 
refused errors. We are working with the vendor to see if we can setup a 
baseline alert if/when this issue comes up, but from a strictly Exchange 
perspective, we are lacking any alerting on an event such as this.

I'm curious if anyone else has setup either a SCOM monitor or perhaps 
PowerShell script for testing external connectivity for something like this? I 
use the Exchange connectivity test a lot in troubleshooting, but that has to be 
performed manually. We'd like to setup an automated monitor confirming mail 
delivery and returning values based on outcome. The part I'm trying to figure 
out is the external portion, and how best to test against it, since all 
internal traffic was fine and nothing on the server itself showed any obvious 
problems. I have skimmed through a few of the logs on the Edge server but do 
not see any real differences from pre/post ESX host change that caused email to 
stop flowing.

Any insight or even general direction is greatly appreciated. Thank you!

-Geoff
Confidentiality Notice: This is a transmission from Community Hospital of the 
Monterey Peninsula. This message and any attached documents may be confidential 
and contain information protected by state and federal medical privacy 
statutes. They are intended only for the use of the addressee. If you are not 
the intended recipient, any disclosure, copying, or distribution of this 
information is strictly prohibited. If you received this transmission in error, 
please accept our apologies and notify the sender. Thank you.

[Exchange] RE: Outlook 2010 not working on several machines after patches

[Kennedy, Jim]

The Cert on your CAS, is it SHA-1.  There are issues with the 066 update and 
SHA-1 that might cause this.


From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of David McSpadden [dav...@imcu.com]
Sent: Saturday, November 15, 2014 9:54 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] Outlook 2010 not working on several machines after patches

I brought my exchange CAS and mailbox server up to date last night and this 
morning about 25 workstations across my WAN can not open Outlook.
It keeps asking for their credentials.   I have removed the profile and readded 
it.
It says it can not communicate with the server?


This e-mail and any files transmitted with it are property of Indiana Members 
Credit Union, are confidential, and are intended solely for the use of the 
individual or entity to whom this e-mail is addressed. If you are not one of 
the named recipient(s) or otherwise have reason to believe that you have 
received this message in error, please notify the sender and delete this 
message immediately from your computer. Any other use, retention, 
dissemination, forwarding, printing, or copying of this email is strictly 
prohibited.


Please consider the environment before printing this email.

[Exchange] RE: Logging mailbox access

[Kennedy, Jim]

Domain Admins, Ent Admins and I think Exh Org Admins have a Bypass Auditing 
right as of SP 2. I think you can take it away, scroll down to Bypass Auditing 
there are some powershell commands.

http://technet.microsoft.com/en-us/library/ee331009.aspx?


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kelsey, John
Sent: Friday, November 14, 2014 9:22 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Logging mailbox access

Follow up question.

I've turned on the folder access logging to medium and I see all kinds of 
events in there, and that looks like the information I need.

Howeverit doesn't seem to be logging any events for domain administrators.  
Even when I open my own mailbox no event is logged.  Is that the normal 
behavior and how do I make sure to include that in the logging?  Is it just a 
matter of turning the log level up?

Thanks all.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kelsey, John
Sent: Thursday, November 13, 2014 10:52 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Logging mailbox access

Perfect.

Many thanks!

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Thursday, November 13, 2014 10:27 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Logging mailbox access

http://www.msexchange.org/articles-tutorials/exchange-server-2007/compliance-policies-archiving/exchange-2007-mailbox-access-auditing-part1.html




From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kelsey, John
Sent: Thursday, November 13, 2014 10:22 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] Logging mailbox access

Single Exchange 2007 server, all patched up.

Is there some way to log/monitor who is accessing each users inbox?  Our 
support folks will often open another users inbox(File, Open, Other Users 
Folder) and I need a log of who opened what and when.

Thanks all!

***
John C. Kelsey
Penn Highlands DuBois
*:  814.375.3073
*  :   814.375.4005
*:   jckel...@phhealthcare.orgmailto:jckel...@phhealthcare.org
***



This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

[Exchange] RE: Logging mailbox access

[Kennedy, Jim]

http://www.msexchange.org/articles-tutorials/exchange-server-2007/compliance-policies-archiving/exchange-2007-mailbox-access-auditing-part1.html




From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kelsey, John
Sent: Thursday, November 13, 2014 10:22 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] Logging mailbox access

Single Exchange 2007 server, all patched up.

Is there some way to log/monitor who is accessing each users inbox?  Our 
support folks will often open another users inbox(File, Open, Other Users 
Folder) and I need a log of who opened what and when.

Thanks all!

***
John C. Kelsey
Penn Highlands DuBois
*:  814.375.3073
*  :   814.375.4005
*:   jckel...@phhealthcare.org
***



This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of Penn Highlands 
Healthcare or its affiliates.. Warning: Although precautions have been taken to 
make sure no viruses are present in this email, the company cannot accept 
responsibility for any loss or damage that arise from the use of this email or 
attachments.

[Exchange] RE: Account lockout from CAS

[Kennedy, Jim]

Beat the user.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Jason Benway
Sent: Wednesday, November 12, 2014 8:02 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Can't because the partnership was already removed. :(

jb

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Tuesday, November 11, 2014 4:45 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Wipe the device.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 4:41 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

So what I'm hearing is if there is a device that the user can't get access to 
for some reason and it has activesync setup with a bad password. I might just 
continue to lock the user out and there is nothing we can do but block the IP 
or change the username?

We've been blocking IP's right now but one of the devices keeps moving so the 
IP changes almost daily

Urg

jb

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Tuesday, November 11, 2014 4:16 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Two different things.

A partnership is an object attached to an AD user that defines the 
folders/items/etc. attached to a specific device, by useragent and serialnumber.

Disabling activesync indicates that a particular authenticated user is not 
authorized to perform activesync. However, the user must still be authenticated 
prior to making the authorization decision.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, November 11, 2014 4:09 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Account lockout from CAS

It will log as disabled so I would hope it won't get to do a password attempt. 
But I am unsure.

User MungedUser cannot synchronize their mobile phone with their mailbox 
because  Exchange ActiveSync has been disabled for this user.



From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 4:05 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Once I remove the partnership and bounce the CAS, will that device be able to 
try to authenticate with a bad password enough to lock an account?

jb

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, November 11, 2014 3:55 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Regarding the activesync partnerships bounce the CAS, the connections often 
have a life of their own.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 3:50 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Account lockout from CAS


We have a handful of users getting their accounts locked out multiple times a 
day. We've looked the security logs on the CAS and can see the external IPs 
locking these account, in some cases the external IP changes daily.

We've removed all activesync partnerships and I tried disabling OWA and 
activesync access on these accounts, but they are still getting locked from 
outside.

Anything else I can look for or at before we go the extreme route and change 
their username?

Does removing the partnership remove the username password from the mobile 
device or does it just keep trying to sync?

Does blocking OWA and activesync for the user, still allow someone to browse to 
the OWA site enter the username and then keep entering a bad password to lock 
the account?

This is Exchange 2010.


Thanks,jb

Jason Benway
Infrastructure Manager
616-850-1208 fax
www.jsjcorp.comhttp://www.jsjcorp.com
[cid:image001.jpg@01CFFE54.6699B0D0]

JSJ Corporation
700 Robbins Road
Grand Haven, MI 49417


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee,
you must not use, copy, disclose or take any action based on this message or 
any information herein. If you have received this message in error,
please advise the sender immediately by reply e-mail and delete this message. 
Thank you for your cooperation.

[Exchange] RE: Account lockout from CAS

[Kennedy, Jim]

It will log as disabled so I would hope it won't get to do a password attempt. 
But I am unsure.

User MungedUser cannot synchronize their mobile phone with their mailbox 
because  Exchange ActiveSync has been disabled for this user.



From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 4:05 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Once I remove the partnership and bounce the CAS, will that device be able to 
try to authenticate with a bad password enough to lock an account?

jb

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, November 11, 2014 3:55 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Regarding the activesync partnerships bounce the CAS, the connections often 
have a life of their own.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 3:50 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Account lockout from CAS


We have a handful of users getting their accounts locked out multiple times a 
day. We've looked the security logs on the CAS and can see the external IPs 
locking these account, in some cases the external IP changes daily.

We've removed all activesync partnerships and I tried disabling OWA and 
activesync access on these accounts, but they are still getting locked from 
outside.

Anything else I can look for or at before we go the extreme route and change 
their username?

Does removing the partnership remove the username password from the mobile 
device or does it just keep trying to sync?

Does blocking OWA and activesync for the user, still allow someone to browse to 
the OWA site enter the username and then keep entering a bad password to lock 
the account?

This is Exchange 2010.


Thanks,jb

Jason Benway
Infrastructure Manager
616-850-1208 fax
www.jsjcorp.comhttp://www.jsjcorp.com
[cid:image001.jpg@01CFFDC9.C1F9EF70]

JSJ Corporation
700 Robbins Road
Grand Haven, MI 49417


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee,
you must not use, copy, disclose or take any action based on this message or 
any information herein. If you have received this message in error,
please advise the sender immediately by reply e-mail and delete this message. 
Thank you for your cooperation.

[Exchange] RE: Account lockout from CAS

[Kennedy, Jim]

Got it, tyvm sir.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Tuesday, November 11, 2014 4:16 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Two different things.

A partnership is an object attached to an AD user that defines the 
folders/items/etc. attached to a specific device, by useragent and serialnumber.

Disabling activesync indicates that a particular authenticated user is not 
authorized to perform activesync. However, the user must still be authenticated 
prior to making the authorization decision.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, November 11, 2014 4:09 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Account lockout from CAS

It will log as disabled so I would hope it won't get to do a password attempt. 
But I am unsure.

User MungedUser cannot synchronize their mobile phone with their mailbox 
because  Exchange ActiveSync has been disabled for this user.



From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 4:05 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Once I remove the partnership and bounce the CAS, will that device be able to 
try to authenticate with a bad password enough to lock an account?

jb

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Tuesday, November 11, 2014 3:55 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Account lockout from CAS

Regarding the activesync partnerships bounce the CAS, the connections often 
have a life of their own.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Jason Benway
Sent: Tuesday, November 11, 2014 3:50 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Account lockout from CAS


We have a handful of users getting their accounts locked out multiple times a 
day. We've looked the security logs on the CAS and can see the external IPs 
locking these account, in some cases the external IP changes daily.

We've removed all activesync partnerships and I tried disabling OWA and 
activesync access on these accounts, but they are still getting locked from 
outside.

Anything else I can look for or at before we go the extreme route and change 
their username?

Does removing the partnership remove the username password from the mobile 
device or does it just keep trying to sync?

Does blocking OWA and activesync for the user, still allow someone to browse to 
the OWA site enter the username and then keep entering a bad password to lock 
the account?

This is Exchange 2010.


Thanks,jb

Jason Benway
Infrastructure Manager
616-850-1208 fax
www.jsjcorp.comhttp://www.jsjcorp.com
[cid:image001.jpg@01CFFDCA.EC5C8060]

JSJ Corporation
700 Robbins Road
Grand Haven, MI 49417


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee,
you must not use, copy, disclose or take any action based on this message or 
any information herein. If you have received this message in error,
please advise the sender immediately by reply e-mail and delete this message. 
Thank you for your cooperation.

RE: [Exchange] Autoresponder for Customer Service

[Kennedy, Jim]

There is no need to have it logged in somewhere forever and Exchange knows 
when a sender has already received and out of office message from a 
recipient--this is to prevent the bounce loop

The two above sentences are why it does need to be a rule and not an OOF, a 
customer would email this system more than once I would suspect and not get the 
response that the 'important' people want them to get. So your first response 
that this isn't a job for email is the correct answer.  A ticketing system or 
the like is the right tool for this.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of ccollins9
Sent: Wednesday, November 5, 2014 1:39 PM
To: exchange
Subject: Re: [Exchange] Autoresponder for Customer Service

The best thing you could do, if able, would be to get a ticketing system that 
checks the inbox of a designated account and generate tickets based on email 
sitting in there, then it will auto-reply to those messages explaining a ticket 
was created and generate an ID for the user.  Footprints and Track-It are 
products i've used to do this.  Maybe since the important folks want you all 
do make these improvements they would be willing to pony up some dough so you 
all can take the customer service to the next level.

But short of that,


Here's what I would do:

1. Delete the Distribution List--so you can reuse the SMTP address that it has

2. Create a new user mailbox using the same SMTP address of the deleted DL

3. There is no need to have it logged in somewhere forever.  You can simply 
go into https://OWAAddress/ECP, manage another user, then setup an out of 
office auto-reply with no ending date. This is done from the server side and 
outside of Outlook, so there is no need to have Outlook running, ever. The 
only down side to this would be that the user would only get the out of office 
reply once.  Exchange knows when a sender has already received and out of 
office message from a recipient--this is to prevent the bounce loop.

4. Then I would decide exactly how I want email flow to work.  For example, If 
I want any messages sent to this new address to also get sent to all my 
technicians I would do this:

Create a new DL containing all the technicians.  Go into the EMC  and bring up 
the account properties of the new mailbox created in step 2, under Delivery 
Options enable forwarding, then check the option to deliver message to both 
forwarding address and mailbox.  Checking this will ensure that the message is 
both forwarded to your technician's DL address AND the out of office reply is 
generated and sent.



On Wed, Nov 5, 2014 at 12:29 PM, Kurt Buff 
kurt.b...@gmail.commailto:kurt.b...@gmail.com wrote:
All,

We currently have a DL for customer service/technical support, and
some (important) folks would like to set up an autoresponder for the
address.

We are running Exchange 2010, and transitioning from Outlook 2010 to 2013.

I've pointed out that you can't put up an autoresponder on a DL, and
that there are basically three options (AFAICT - please correct me if
I'm wrong!):

o- Move the SMTP address to a mailbox with a rule and have it logged
in somewhere forever

o- Move the SMTP address to a PF and set an autoresponder on it

o- Use a third-party product.

I've pointed out the risk of a bounce war, and they don't seem to care...

Also, AFAICS, a transport rule will only generate a bounce message
that looks weird and has only limited characters.

Can you folks recommend a (fairly cheap) third party autoresponder for
this kind of thing?

Thanks,

Kurt

[Exchange] RE: Reset Default permissions

[Kennedy, Jim]

For grins, what about a MailboxRepairRequest.

http://www.msexchangeblog.nl/2010/10/20/mailbox-repair-exchange-server-2010-sp1/


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Miller Bonnie L.
Sent: Wednesday, November 5, 2014 2:18 PM
To: exchange@lists.myitforum.com
Cc: Miller Bonnie L.
Subject: [Exchange] RE: Reset Default permissions

So, I found the PS command to fix the permissions, but still have the error 
happening on her mailbox.  I actually went through and fixed numerous folders 
that were wrong-probably from way back in the day (Contacts, Inbox, Calendar, 
Journal, Notes,  Tasks all missing anonymous and had an unknown SID that had 
been delegated at one time).  Any other ideas?

Command used:

Add-mailboxfolderpermission -identity Username:\Contacts -AccessRights None 
-User Anonymous

-Bonnie

From: Miller Bonnie L.
Sent: Wednesday, November 05, 2014 9:20 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Cc: Miller Bonnie L.
Subject: Reset Default permissions

Outlook 2010 SP2 online mode, Exchange 2013 cu6 two servers in a DAG with 
Barracuda LBs.

I have a user who can't save any contact when right-clicking an external 
address and choosing to Save as Outlook Contact-don't know how long it's been 
broken, but I'm guessing this isn't new.  Here is the error message generated:
[cid:image001.png@01CFF904.35F55650]

I've narrowed it to her mailbox (same error on another computer with my admin 
account connected, other users don't have the issue) and I'm not finding much 
love on this searching google (a lot of dead-end threads).  She doesn't have a 
pst nor oab, and wasn't migrated from Google.  Some of these addresses are 
actually already saved as contacts, so it should just link and open them up.  
Internal addresses seem to open up the tool.

So I started looking at permissions, and I think it may be because her Contacts 
subfolder is missing the anonymous user, which shows up on other 
mailboxes/folders, albeit with None on viewable permission levels.  Top-level 
mailbox permissions look normal.

So, is there a tool or utility I can use to either reset permissions on her 
Contact subfolder to default, or to add the anonymous user account back?  The 
Outlook GUI only allows me to browse existing users-can't type in Anonymous.  
Still searching around for a tool or ps command, but would appreciate if 
someone knows what I should be looking for.

I didn't try the /resetfolders switch, but I think that will just recreate if 
the default folders are missing.

Thanks,
Bonnie

[Exchange] RE: Reset Default permissions

[Kennedy, Jim]

Don't know for sure but I would bet it still does take it offline.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Miller Bonnie L.
Sent: Wednesday, November 5, 2014 2:45 PM
To: 'exchange@lists.myitforum.com'
Cc: Miller Bonnie L.
Subject: [Exchange] RE: Reset Default permissions

Haven't used that one before either.  Does it still interrupt the mailbox use 
if you only run with the -DetectOnly switch?  I might have to wait to run it 
until off hours.

-Bonnie

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, November 05, 2014 11:24 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Reset Default permissions

For grins, what about a MailboxRepairRequest.

http://www.msexchangeblog.nl/2010/10/20/mailbox-repair-exchange-server-2010-sp1/


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Miller Bonnie L.
Sent: Wednesday, November 5, 2014 2:18 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Cc: Miller Bonnie L.
Subject: [Exchange] RE: Reset Default permissions

So, I found the PS command to fix the permissions, but still have the error 
happening on her mailbox.  I actually went through and fixed numerous folders 
that were wrong-probably from way back in the day (Contacts, Inbox, Calendar, 
Journal, Notes,  Tasks all missing anonymous and had an unknown SID that had 
been delegated at one time).  Any other ideas?

Command used:

Add-mailboxfolderpermission -identity Username:\Contacts -AccessRights None 
-User Anonymous

-Bonnie

From: Miller Bonnie L.
Sent: Wednesday, November 05, 2014 9:20 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Cc: Miller Bonnie L.
Subject: Reset Default permissions

Outlook 2010 SP2 online mode, Exchange 2013 cu6 two servers in a DAG with 
Barracuda LBs.

I have a user who can't save any contact when right-clicking an external 
address and choosing to Save as Outlook Contact-don't know how long it's been 
broken, but I'm guessing this isn't new.  Here is the error message generated:
[cid:image001.png@01CFF907.6E61BC60]

I've narrowed it to her mailbox (same error on another computer with my admin 
account connected, other users don't have the issue) and I'm not finding much 
love on this searching google (a lot of dead-end threads).  She doesn't have a 
pst nor oab, and wasn't migrated from Google.  Some of these addresses are 
actually already saved as contacts, so it should just link and open them up.  
Internal addresses seem to open up the tool.

So I started looking at permissions, and I think it may be because her Contacts 
subfolder is missing the anonymous user, which shows up on other 
mailboxes/folders, albeit with None on viewable permission levels.  Top-level 
mailbox permissions look normal.

So, is there a tool or utility I can use to either reset permissions on her 
Contact subfolder to default, or to add the anonymous user account back?  The 
Outlook GUI only allows me to browse existing users-can't type in Anonymous.  
Still searching around for a tool or ps command, but would appreciate if 
someone knows what I should be looking for.

I didn't try the /resetfolders switch, but I think that will just recreate if 
the default folders are missing.

Thanks,
Bonnie

RE: [Exchange] Autoresponder for Customer Service

[Kennedy, Jim]

That type of a rule is client side only.. You could do it a Transport Rule with 
a bounce message.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of J- P
Sent: Wednesday, November 5, 2014 3:18 PM
To: exchange@lists.myitforum.com
Subject: RE: [Exchange] Autoresponder for Customer Service

But can't you just create a server side rule instead of an OoO ?

Rule
For all messages , reply with bla bla bla






 Date: Wed, 5 Nov 2014 11:02:17 -0800
 Subject: Re: [Exchange] Autoresponder for Customer Service
 From: kurt.b...@gmail.com
 To: exchange@lists.myitforum.com

 Oh, wait...

 OoO only responds once per customer during the period while it's
 configured. We'd have to turn if off and on again on a regular basis
 (daily, weekly), and that's not going to work...

 Kurt

 On Wed, Nov 5, 2014 at 10:38 AM, ccollins9 ccolli...@gmail.com wrote:
  The best thing you could do, if able, would be to get a ticketing system
  that checks the inbox of a designated account and generate tickets based
  on email sitting in there, then it will auto-reply to those messages
  explaining a ticket was created and generate an ID for the user. Footprints
  and Track-It are products i've used to do this. Maybe since the important
  folks want you all do make these improvements they would be willing to pony
  up some dough so you all can take the customer service to the next level.
 
  But short of that,
 
 
  Here's what I would do:
 
  1. Delete the Distribution List--so you can reuse the SMTP address that it
  has
 
  2. Create a new user mailbox using the same SMTP address of the deleted DL
 
  3. There is no need to have it logged in somewhere forever. You can
  simply go into https://OWAAddress/ECP, manage another user, then setup an
  out of office auto-reply with no ending date. This is done from the server
  side and outside of Outlook, so there is no need to have Outlook running,
  ever. The only down side to this would be that the user would only get the
  out of office reply once. Exchange knows when a sender has already received
  and out of office message from a recipient--this is to prevent the bounce
  loop.
 
  4. Then I would decide exactly how I want email flow to work. For example,
  If I want any messages sent to this new address to also get sent to all my
  technicians I would do this:
 
  Create a new DL containing all the technicians. Go into the EMC and bring
  up the account properties of the new mailbox created in step 2, under
  Delivery Options enable forwarding, then check the option to deliver
  message to both forwarding address and mailbox. Checking this will ensure
  that the message is both forwarded to your technician's DL address AND the
  out of office reply is generated and sent.
 
 
 
  On Wed, Nov 5, 2014 at 12:29 PM, Kurt Buff kurt.b...@gmail.com wrote:
 
  All,
 
  We currently have a DL for customer service/technical support, and
  some (important) folks would like to set up an autoresponder for the
  address.
 
  We are running Exchange 2010, and transitioning from Outlook 2010 to 2013.
 
  I've pointed out that you can't put up an autoresponder on a DL, and
  that there are basically three options (AFAICT - please correct me if
  I'm wrong!):
 
  o- Move the SMTP address to a mailbox with a rule and have it logged
  in somewhere forever
 
  o- Move the SMTP address to a PF and set an autoresponder on it
 
  o- Use a third-party product.
 
  I've pointed out the risk of a bounce war, and they don't seem to care...
 
  Also, AFAICS, a transport rule will only generate a bounce message
  that looks weird and has only limited characters.
 
  Can you folks recommend a (fairly cheap) third party autoresponder for
  this kind of thing?
 
  Thanks,
 
  Kurt
 
 
 

[Exchange] RE: Certificate prompt after upgrading cert to SHA2

[Kennedy, Jim]

No one will know but you. It is a public cert, so no one will need to import it 
or do anything.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of David McSpadden
Sent: Wednesday, October 29, 2014 11:10 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Certificate prompt after upgrading cert to SHA2

Not wanting to Hijack so I will keep this within the context of the subject.
I am going to  import my new GoDaddy SSL SAN cert (Keyed with new SHA) tonight.
Will this require my users that use iPhone to do anything special on their 
phones?
Power cycle them?
Delete and re add mail account?
Physically add a new cert once the cert is in place?
Thanks for your input.
As always.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Maglinger, Paul
Sent: Wednesday, October 22, 2014 4:43 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Certificate prompt after upgrading cert to SHA2

Did that already - and double-checked.

-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Knoch, James W
Sent: Wednesday, October 22, 2014 2:56 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Certificate prompt after upgrading cert to SHA2

Make sure to check with your certificate provider and see if there was an 
intermediate certificate that needs to be installed as well on the servers.  
They are usually different than the previous ones if they were required before.

If it is a Digicert certificate, they provide a utility that will help check 
for it and install any missing intermediates.


-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Maglinger, Paul
Sent: Wednesday, October 22, 2014 12:49 PM
To: New Exchange List (exchange@lists.myITforum.com)
Subject: [Exchange] Certificate prompt after upgrading cert to SHA2

 Hoping for some help to understand what is going on here.
Rekeyed my SHA1 certs to SHA2 and imported them into my certificate store.  
They showed up in Exchange and I assigned IMAP, POP, IIS and SMTP to it.  So 
much for that.
Exchange 2010 SP2 UR8 - 2 sites, flat domain.
Each site has 2 CAS/HUB, 2 MB, and 1 CAS/HUB/MB.  The 2 CAS/HUB servers are 
configured as a CAA.
What I'm seeing is that SOME users that are opening Outlook 2010 in site A are 
getting a certificate error The name of the security certificate is invalid or 
does not match the name of the site from the CAS/HUB/MB server (ROMAIL3) in 
site A.  All things working correctly they shouldn't even see that server.

The CAS/HUB servers have 2 NICs - one of which on each is set up with Windows 
Load Balancing for the CAA (designated as LB in the name). 
DNS is set up as the attached diagram shows.  The LB IP addresses are not in 
DNS.

When the problem started showing up the event logs on HQMAIL1 were getting 
2601, 2604, and 2501 errors every 15 minutes - all having to do with the 
MSEXCHANGEADTOPOLOGY service:

2501 - The site monitor API was unable to verify the site name for this 
Exchange computer - Call=DsctxGetContext Error code=8007077f. Make sure that 
Exchange server is correctly registered on the DNS server.

2604 - When updating security for a remote procedure call (RPC) access for the 
Microsoft Exchange Active Directory Topology service, Exchange could not 
retrieve the security descriptor for Exchange server object HQMAIL1 - Error 
code=8007077f.  The Microsoft Exchange Active Directory Topology service will 
continue starting with limited permissions.

2601 - When initializing a remote procedure call (RPC) to the Microsoft 
Exchange Active Directory Topology service, Exchange could not retrieve the SID 
for account WKGUID=1A9E54D37856378B478743286FF00932782,CN=Microsoft 
Exchange,CN=Services,CN=Configuration,... - Error code=8007077f. 
 The Microsoft Exchange Active Directory Topology service will continue 
starting with limited permissions.  

I checked DNS and the entries for HQMAIL1 and HQMAIL2 were missing.  I re-added 
them and pushed out the changes. I then rebooted HQMAIL1 and the error went 
away in the event log - but on rebooting Outlook I still got the certificate 
pop-up.

I left to get supper and figured I'd work from home using VPN.  Coming in that 
way my Outlook didn't throw the cert error.  Going through things on HQMAIL1 I 
found that if I pinged HQMAIL1 by name from itself it returned with a 
123.100.200.31 instead of what DNS should have returned as 123.100.200.1.  
Searching I found that I could change the priority of the NICs, which I did and 
it started pinging correctly from itself.  I rebooted HQMAIL1 to clear up any 
lingering effects of the NIC priority and started getting the 2501, 2604, and 
2601 errors again.  They occurred until I restarted the MS Exchange AD Topology 
service (which restarted a boat-load of 

[Exchange] RE: Really noob question

[Kennedy, Jim]

You are going to install them on the server, then assign them to the needed 
services on the server. Servers with client access need them for active sync, 
owa and so on. You will also need them on your Transport servers if you use TLS.

http://exchangeserverpro.com/configure-an-ssl-certificate-for-exchange-server-2010/


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 11:35 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Really noob question

Import needs to be done on all Exchange 2010 servers in my environment?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: Wednesday, October 22, 2014 11:24 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Really noob question

You should be able to install all of those side by side with the existing 
certs..then flip them to use the new cert...test real fast and back out if need 
be.

*should*

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 11:20 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Really noob question

If I update my SSLcerts today with GoDaddy on my TMG, CAS, and Mailbox servers 
will it take anyone down?
Will it require a reboot of Mobile devices?
Basically will my exec's be impaired at all because of the cert being updated??


This e-mail and any files transmitted with it are property of Indiana Members 
Credit Union, are confidential, and are intended solely for the use of the 
individual or entity to whom this e-mail is addressed. If you are not one of 
the named recipient(s) or otherwise have reason to believe that you have 
received this message in error, please notify the sender and delete this 
message immediately from your computer. Any other use, retention, 
dissemination, forwarding, printing, or copying of this email is strictly 
prohibited.


Please consider the environment before printing this email.

This e-mail and any files transmitted with it are property of Indiana Members 
Credit Union, are confidential, and are intended solely for the use of the 
individual or entity to whom this e-mail is addressed. If you are not one of 
the named recipient(s) or otherwise have reason to believe that you have 
received this message in error, please notify the sender and delete this 
message immediately from your computer. Any other use, retention, 
dissemination, forwarding, printing, or copying of this email is strictly 
prohibited.


Please consider the environment before printing this email.

[Exchange] RE: DNS external records and Testconnectivity

[Kennedy, Jim]

It worked for you before because one of the fallback connection attempts is:

https://autodiscover.domain.com/Autodiscover/Autodiscover.xml

Something in your TMG broke that url. Mine has always run that way, no SRV here.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 2:09 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

Yeah how the hell have I been working all year like this?
No rule in TMG
No SRV internal or external
What the heck...
:)
I will start SRV record externally
Then work on the TMG
Then get my certs straight.
Geez
Thanks all


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Orlebeck, Geoffrey
Sent: Wednesday, October 22, 2014 2:02 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

Well (someone can jump in and correct me if I'm wrong), the SRV record is what 
will allow Autodiscover of devices to actually work. The MS connectivity test 
may succeed since it attempts to resolve the A record autodiscover.imsu.com. In 
that case, as long as the TMG is properly publishing the rule to allow the 
/Autodiscover/* path, you should be good. There was an error about SSL certs, 
so you may want to double-check that the SSL listener's cert is good, but 
perhaps one step at a time is the best approach here. Anyway, some of this is a 
bit foggy in my memory, so if anyone else wants to add details or correct me in 
any of the above, please do so.

Thanks,
Geoff

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 10:56 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

That is internal? Or both?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Orlebeck, Geoffrey
Sent: Wednesday, October 22, 2014 1:51 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

And actually just saw you have an A record for Autodiscover but no mention of 
an SRV record. You'll want to make sure externally you have an SRV record that 
points to an A record with the IP of your TMG (in this case the 
Autodiscover.imcu.com).

Example:
[cid:image001.png@01CFEE02.04CDB890]

Thanks,
Geoff

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 10:42 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

Thing is it has been working for about a year now.
Just trying it now prior to getting new certs and it is failing.  So since I 
don't test daily I am not sure when it broke.
I will look at the TMG but I believe I have a rule there already.


From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Orlebeck, Geoffrey
Sent: Wednesday, October 22, 2014 1:38 PM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: DNS external records and Testconnectivity

I ran into this a couple months back. IIRC the /Autodiscover/* path had to be 
added to the publishing rule in TMG. I may have created a separate rule 
strictly for Autodiscover, though I am not sure if that was necessary or I did 
it to isolate the changes being made.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of David McSpadden
Sent: Wednesday, October 22, 2014 10:25 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] DNS external records and Testconnectivity

I have the below set externally with Ultradns and Fisolv:

Autodiscover.imcu.com 'A' 38.109.185.193
Mx1.imcu.com  'A' 38.109.185.193
LegacyMail.imcu.com  'A' 38.109.185.193
Mail.imcu.com 'A' 38.109.185.193
193.185.109.38.in-addr.arpa 'PTR' mail.imcu.com
193.185.109.38.in-addr.arpa 'PTR' mx1.imcu.com
'MX' mx1.imcu.com
'TXT' v=spf1 ip4:184.72.242.195 ip4:38.109.185.193 ~all

I have the below set internally with server 2012 DNS:

Outlook.imcu.com 'A' 10.0.55.58
Autodiscover.imcu.com 'A' 10.0.55.58
LegacyMail.imcu.com 'A' 10.0.50.4
Mail.imcu.com 'A' 10.0.55.58
58.55.0.10.in-addr.arpa 'PTR' mail.imcu.com
58.55.0.10.in-addr.arpa 'PTR' outlook.imcu.com
58.55.0.10.in-addr.arpa 'PTR' autodiscover.imcu.com
'MX' mail.imcu.com

My question is do I have all the DNS settings I need for an Exchange 2010 with 
TMG in the DMZ?

Because with I do a testconnectivity I get bad Autodiscover responses:
See below:

The Microsoft Connectivity Analyzer is testing Exchange ActiveSync.
 The Exchange ActiveSync 

RE: [Exchange] 421 4.2.1 Unable to connect errors

[Kennedy, Jim]

What are the domains? Could be bad bounces from spam to non-existent domains  
Your server can not contact them, so it tried alternates either in dns or per 
the RFC’s (for example A record of domain.com) and that failed. So it is still 
trying.

Do an MX lookup from your transport server to verify your DNS is working. Then 
try telnet port 25 from the transport server to that IP to verify connectivity. 
What do you get?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 3:42 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] 421 4.2.1 Unable to connect errors

Odd errors in my mail queue.  Just started appearing yesterday.  Most mail gets 
sent, but from certain domains I get these errors.  Attempted failover to 
alternate host, but that did not suceed.  Anyone see this before?  Exchange 
2010 on Windows 2008 R2.

RE: [Exchange] 421 4.2.1 Unable to connect errors

[Kennedy, Jim]

Toss us a domain so we can try from ours. Go off list if need be.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 4:02 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] 421 4.2.1 Unable to connect errors

Yes, already tried that.  I can do a MX lookup, but cannot telnet to the 
server.Also getting this in the logs Error Code: 10061, Error Message: No 
connection could be made because the target machine actively refused it
That seems to point to us being blacklisted, but I come up clean on the 
mxtoolbox tests.

On Tue, Oct 7, 2014 at 2:48 PM, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
What are the domains? Could be bad bounces from spam to non-existent domains  
Your server can not contact them, so it tried alternates either in dns or per 
the RFC’s (for example A record of domain.comhttp://domain.com) and that 
failed. So it is still trying.

Do an MX lookup from your transport server to verify your DNS is working. Then 
try telnet port 25 from the transport server to that IP to verify connectivity. 
What do you get?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 3:42 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] 421 4.2.1 Unable to connect errors

Odd errors in my mail queue.  Just started appearing yesterday.  Most mail gets 
sent, but from certain domains I get these errors.  Attempted failover to 
alternate host, but that did not suceed.  Anyone see this before?  Exchange 
2010 on Windows 2008 R2.

RE: [Exchange] 421 4.2.1 Unable to connect errors

[Kennedy, Jim]

No, their MX is correct. Was just posting it so you could compare what I got to 
what you get. If they match, they are blocking you, imnsho. Lets try a copy 
paste from Notepad to clean it up.

Non-authoritative answer:
animikisee.ca   MX preference = 10, mail exchanger = mail.animikisee.ca
mail.animikisee.ca  internet address = 184.70.35.78



From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of Steve Ens [stevey...@gmail.com]
Sent: Tuesday, October 07, 2014 4:36 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] 421 4.2.1 Unable to connect errors

Sorry Jim, I don't get your answer.  The animikisee.cahttp://animikisee.ca 
domain is the one that won't accept the messages.  Is there something awry with 
the mx record?

On Tue, Oct 7, 2014 at 3:24 PM, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
Good from here. As long as your MX lookup on your exchange server looks as 
below they don’t want to talk to you.

Non-authoritative answer:
animikisee.cahttp://animikisee.ca   MX preference = 10, mail exchanger = 
mail.animikisee.cahttp://mail.animikisee.ca

mail.animikisee.cahttp://mail.animikisee.ca  internet address = 
184.70.35.78

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 4:12 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: Re: [Exchange] 421 4.2.1 Unable to connect errors

one of the domains is animikisee.cahttp://animikisee.ca but I can send to it 
from gmail no problem.  Test the email address 
s...@animikisee.camailto:s...@animikisee.ca


On Tue, Oct 7, 2014 at 3:06 PM, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
Toss us a domain so we can try from ours. Go off list if need be.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 4:02 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: Re: [Exchange] 421 4.2.1 Unable to connect errors

Yes, already tried that.  I can do a MX lookup, but cannot telnet to the 
server.Also getting this in the logs Error Code: 10061, Error Message: No 
connection could be made because the target machine actively refused it
That seems to point to us being blacklisted, but I come up clean on the 
mxtoolbox tests.

On Tue, Oct 7, 2014 at 2:48 PM, Kennedy, Jim 
kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote:
What are the domains? Could be bad bounces from spam to non-existent domains  
Your server can not contact them, so it tried alternates either in dns or per 
the RFC’s (for example A record of domain.comhttp://domain.com) and that 
failed. So it is still trying.

Do an MX lookup from your transport server to verify your DNS is working. Then 
try telnet port 25 from the transport server to that IP to verify connectivity. 
What do you get?

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Tuesday, October 7, 2014 3:42 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] 421 4.2.1 Unable to connect errors

Odd errors in my mail queue.  Just started appearing yesterday.  Most mail gets 
sent, but from certain domains I get these errors.  Attempted failover to 
alternate host, but that did not suceed.  Anyone see this before?  Exchange 
2010 on Windows 2008 R2.

[Exchange] Chrome showModalDialog depreciation.

[Kennedy, Jim]

Has anyone heard if we should expect a rollup/change for Exchange 2010 to fix 
the issue with Chrome depreciating showModalDialog?  I ask because if it isn’t 
going to happen I will just train my users now to not use Chrome for OWA. But 
if there is hope I will push the GPO to turn it back on and buy some time until 
a fix is released.

RE: [Exchange] Exchange permissions.

[Kennedy, Jim]

Seldom are there technological solutions for behavioral issues.

Beat the helpdesk people into submission.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Paul Cookman
Sent: Monday, June 30, 2014 10:11 AM
To: 'exchange@lists.myitforum.com'
Subject: RE: [Exchange] Exchange permissions.

Yes but some of the helpdesk tend to raise users individually if they ask 
nicely.. So I was looking for a way to prevent it if possible.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of J- P
Sent: 26 June 2014 19:51
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: RE: [Exchange] Exchange permissions.

Can you just set the limits at the database level?


From: paul.cook...@selection.co.ukmailto:paul.cook...@selection.co.uk
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Exchange permissions.
Date: Thu, 26 Jun 2014 09:52:40 +
Hi,

Does anyone know of a way I can just block admins raising mailbox limits on 
individual mailboxes permission wise?

Exchange 2010 SP2

Regards,

Paul.



__
This email has been scanned by Selection Services Ltd using the Symantec Email 
Security.cloud service.
__

__
This email has been scanned by Selection Services Ltd using the Symantec Email 
Security.cloud service.
__

__
This email has been scanned by Selection Services Ltd using the Symantec Email 
Security.cloud service.
__

[Exchange] RE: Kaspersky vs McAfee vs Symantec

[Kennedy, Jim]

Barracuda in front of Exchange for email.  Strong, well run filter for the 
internet.   Fully patched pc's with EMET and no AV.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Liby Philip Mathew
Sent: Monday, June 9, 2014 9:16 AM
To: Admin Issues (exchange@lists.myitforum.com)
Subject: [Exchange] Kaspersky vs McAfee vs Symantec

Hi guys,
I have been told to identify the pros  cons of Kaspersky vs McAfee vs Symantec 
including the cost.
I am looking to protect end user PC, Server, centralized management  MS 
Exchange 2010 / 2013 AV/spam/phish/spoof etc.
What are your experiences / suggestions?
TIA


Regards
Liby Philip Mathew


Disclaimer

[The information contained in this e-mail message and any attached files are 
confidential information and intended solely for the use of the individual or 
entity to whom they are addressed. This transmission may contain information 
that is privileged, confidential or exempt from disclosure under applicable 
law. If you have received this e-mail in error, please notify the sender 
immediately and delete all copies. If you are not the intended recipient, any 
disclosure, copying, distribution, or use of the information contained herein 
is STRICTLY PROHIBITED. Path Solutions accepts no responsibility for any 
errors, omissions, computer viruses and other defects.]
P Protect our planet: Do not print this email unless necessary.

[Exchange] RE: OWA notifications via reverse proxy.

[Kennedy, Jim]

You know what, this is only a concern when they are internal. I just flipped 
the dns so internal webmail directly connects. That should be the end of that.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Thursday, May 29, 2014 8:35 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: OWA notifications via reverse proxy.

ARR is on the box, but just using a straight URL rewrite. Sorry for the delay. 
Was out yesterday.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Tuesday, May 27, 2014 5:30 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: OWA notifications via reverse proxy.

Are you using ARR, WAP, or straight URL rewrite?

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Tuesday, May 27, 2014 10:16 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] OWA notifications via reverse proxy.

Publishing my OWA 2010 SP3 RU 5 via a 2012 URL rewrite. No fancy rules on the 
URL rewrite just straight up publishing of a few fqdn's. I switched from an ISA 
server to 2012 URL rewrite. Notifications were working prior the changeover. It 
is the dreaded little bell that says 'Notifications couldn't be retrieved'.   
Google mentions the issue but supposedly fixed in RU 5. Not finding many clues 
there.

[Exchange] OWA notifications via reverse proxy.

[Kennedy, Jim]

Publishing my OWA 2010 SP3 RU 5 via a 2012 URL rewrite. No fancy rules on the 
URL rewrite just straight up publishing of a few fqdn's. I switched from an ISA 
server to 2012 URL rewrite. Notifications were working prior the changeover. It 
is the dreaded little bell that says 'Notifications couldn't be retrieved'.   
Google mentions the issue but supposedly fixed in RU 5. Not finding many clues 
there.

RE: [Exchange] Disabling Forwarding of Meetings

[Kennedy, Jim]

You could make it harder with IRM. Or add a disclaimer to the bottom ‘Anyone 
forwarding this meeting invite will be fired’

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Adm
Sent: Monday, May 19, 2014 3:36 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] Disabling Forwarding of Meetings

This would also need to apply to anyone who received the  meeting invite.
I'm sensing this is not possible. :)

On Mon, May 19, 2014 at 3:27 PM, ccollins9 
ccolli...@gmail.commailto:ccolli...@gmail.com wrote:
To my knowledge (someone may know differently), not if you want the assistant 
to be able to edit the calendar items (like if a meeting time has to be 
changed).  That's the rub with delegated access. If you trust someone enough to 
create and edit your calendar items, then you would need to trust them not to 
forward them to people that they shouldn't be forwarded to.  Through Outlook, 
right-click the COO's calendar  properties  Permissions  find the assistant, 
then listed are all the permissions he/she has.  There is a way to make it so 
they can only create items and view items, that would eliminate the ability to 
forward, but it also eliminates the ability to edit events.

On Mon, May 19, 2014 at 2:53 PM, Adm 
sms...@gmail.commailto:sms...@gmail.com wrote:
His meetings are setup by his admin.
He does not want any of his meetings forwarded to anyone not on the invite list.

On Mon, May 19, 2014 at 1:52 PM, Michael B. Smith 
mich...@smithcons.commailto:mich...@smithcons.com wrote:
I don’t understand.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Adm
Sent: Monday, May 19, 2014 1:46 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Disabling Forwarding of Meetings

Request from our COO:
Does not want his meetings set up by his admin forwarded.

Possible?

Thx in advance


--
smsadm




--
smsadm

[Exchange] RE: Active Sync and passwords.

[Kennedy, Jim]

Making sure I got this right. If I:

Set-ActiveSyncOrganizationSettings -DefaultAccessLevel Quarantine

A new user will try and connect, it will get held on their properties tab and 
denied until I approve that device? Correct? As it is now, I have to rely on my 
mini-me to disable active sync after he creates a new account.



From: Kennedy, Jim
Sent: Friday, May 9, 2014 9:20 AM
To: exchange@lists.myitforum.com
Subject: RE: Active Sync and passwords.

Absolutely. Don't like you are free to use webmail.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, May 9, 2014 9:19 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Active Sync and passwords.

I went through this with a customer this week.  Their decision was: company 
email. Company rules. Deal with it.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Gavin Wilby
Sent: Friday, May 9, 2014 9:11 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Active Sync and passwords.

The device will receive the new policy and then refuse to download any further 
items until this has been set up.

I just hope that these are company devices and not the users own ones, as this 
opens up another path of madness.

Gavin Wilby
IT Support Engineer

SMP Partners Ltd
Clinch's House, Lord Street,
Douglas, Isle of Man IM99 1RZ
Tel +44 1624 682214
Mob +44 7624 480575
gavin.wi...@smppartners.commailto:gavin.wi...@smppartners.com 
www.smppartners.comhttp://www.smppartners.com/

A member of the SMP Partners Group of Companies

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 09 May 2014 14:02
To: exchange
Subject: [Exchange] Active Sync and passwords.

So we have only allowed a very limited number of devices to use Active Sync on 
our exchange 2010 system.  Next week we are going to open up the floodgates, 
some what, and require pin locks and/or passwords.

My question is, what happens to a device that is already set up for Active Sync 
that gets the new policy? Hopefully the answer is it will stop Active Sync 
until they get one set up?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley, A.J. Cowley, A.J. Dowling, P. Duchars, P.N. Eckersley, 
J.J. Scott, S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.

This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

[Exchange] RE: Active Sync and passwords.

[Kennedy, Jim]

Ack, setting that just now disabled currently connected devices.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Kennedy, Jim
Sent: Monday, May 12, 2014 9:55 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Active Sync and passwords.


Making sure I got this right. If I:

Set-ActiveSyncOrganizationSettings -DefaultAccessLevel Quarantine

A new user will try and connect, it will get held on their properties tab and 
denied until I approve that device? Correct? As it is now, I have to rely on my 
mini-me to disable active sync after he creates a new account.



From: Kennedy, Jim
Sent: Friday, May 9, 2014 9:20 AM
To: exchange@lists.myitforum.com
Subject: RE: Active Sync and passwords.

Absolutely. Don't like you are free to use webmail.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Michael B. Smith
Sent: Friday, May 9, 2014 9:19 AM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] RE: Active Sync and passwords.

I went through this with a customer this week.  Their decision was: company 
email. Company rules. Deal with it.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Gavin Wilby
Sent: Friday, May 9, 2014 9:11 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Active Sync and passwords.

The device will receive the new policy and then refuse to download any further 
items until this has been set up.

I just hope that these are company devices and not the users own ones, as this 
opens up another path of madness.

Gavin Wilby
IT Support Engineer

SMP Partners Ltd
Clinch's House, Lord Street,
Douglas, Isle of Man IM99 1RZ
Tel +44 1624 682214
Mob +44 7624 480575
gavin.wi...@smppartners.commailto:gavin.wi...@smppartners.com 
www.smppartners.comhttp://www.smppartners.com/

A member of the SMP Partners Group of Companies

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 09 May 2014 14:02
To: exchange
Subject: [Exchange] Active Sync and passwords.

So we have only allowed a very limited number of devices to use Active Sync on 
our exchange 2010 system.  Next week we are going to open up the floodgates, 
some what, and require pin locks and/or passwords.

My question is, what happens to a device that is already set up for Active Sync 
that gets the new policy? Hopefully the answer is it will stop Active Sync 
until they get one set up?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley, A.J. Cowley, A.J. Dowling, P. Duchars, P.N. Eckersley, 
J.J. Scott, S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.

This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

RE: [Exchange] RE: Active Sync and passwords.

[Kennedy, Jim]

So

$Devices = Get-ActiveSyncDevice -ResultSize Unlimited
$Devices | Foreach-Object{Set-CASMailbox $_.DistinguishedName 
-ActiveSyncAllowedDeviceIDs @{Add=$_.DeviceId}}

Is not liking Apple device names. They all have this odd character as below.

iPad§ApplDQTFNEQHDFHW

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of ccollins9
Sent: Monday, May 12, 2014 11:38 AM
To: exchange
Subject: Re: [Exchange] RE: Active Sync and passwords.

| %{Set-CASMailbox -Identity $_.smtpaddress -ActiveSyncEnabled $true}

something like this.

This will not accomplish his goal.  This command would just simply allow that 
user's account to interface with ActiveSync devices (which I am presuming is 
already set on all his user's mailbox accounts). It will not classify a 
previously blocked device as allowed.  See my other email for the link that 
will accomplish that goal.

On Mon, May 12, 2014 at 11:30 AM, Javier Santana 
javier.sant...@ipsoft.commailto:javier.sant...@ipsoft.com wrote:
| %{Set-CASMailbox -Identity $_.smtpaddress -ActiveSyncEnabled $true}

something like this.

[Exchange] RE: Active Sync and passwords.

[Kennedy, Jim]

Yes, company devices only, and only certain special people get one. It has 
always been that way, just being expanded considerably and not doing this 
sooner was an error on my part.


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Gavin Wilby
Sent: Friday, May 9, 2014 9:12 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Active Sync and passwords.

The device will receive the new policy and then refuse to download any further 
items until this has been set up.

I just hope that these are company devices and not the users own ones, as this 
opens up another path of madness.

Gavin Wilby
IT Support Engineer

SMP Partners Ltd
Clinch's House, Lord Street,
Douglas, Isle of Man IM99 1RZ
Tel +44 1624 682214
Mob +44 7624 480575
gavin.wi...@smppartners.commailto:gavin.wi...@smppartners.com 
www.smppartners.comhttp://www.smppartners.com/

A member of the SMP Partners Group of Companies

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 09 May 2014 14:02
To: exchange
Subject: [Exchange] Active Sync and passwords.

So we have only allowed a very limited number of devices to use Active Sync on 
our exchange 2010 system.  Next week we are going to open up the floodgates, 
some what, and require pin locks and/or passwords.

My question is, what happens to a device that is already set up for Active Sync 
that gets the new policy? Hopefully the answer is it will stop Active Sync 
until they get one set up?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley, A.J. Cowley, A.J. Dowling, P. Duchars, P.N. Eckersley, 
J.J. Scott, S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.

This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

[Exchange] RE: Active Sync and passwords.

[Kennedy, Jim]

Absolutely. Don't like you are free to use webmail.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Friday, May 9, 2014 9:19 AM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Active Sync and passwords.

I went through this with a customer this week.  Their decision was: company 
email. Company rules. Deal with it.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Gavin Wilby
Sent: Friday, May 9, 2014 9:11 AM
To: 'exchange@lists.myitforum.com'
Subject: [Exchange] RE: Active Sync and passwords.

The device will receive the new policy and then refuse to download any further 
items until this has been set up.

I just hope that these are company devices and not the users own ones, as this 
opens up another path of madness.

Gavin Wilby
IT Support Engineer

SMP Partners Ltd
Clinch's House, Lord Street,
Douglas, Isle of Man IM99 1RZ
Tel +44 1624 682214
Mob +44 7624 480575
gavin.wi...@smppartners.commailto:gavin.wi...@smppartners.com 
www.smppartners.comhttp://www.smppartners.com/

A member of the SMP Partners Group of Companies

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim
Sent: 09 May 2014 14:02
To: exchange
Subject: [Exchange] Active Sync and passwords.

So we have only allowed a very limited number of devices to use Active Sync on 
our exchange 2010 system.  Next week we are going to open up the floodgates, 
some what, and require pin locks and/or passwords.

My question is, what happens to a device that is already set up for Active Sync 
that gets the new policy? Hopefully the answer is it will stop Active Sync 
until they get one set up?
SMP Partners Limited, SMP Trustees Limited and SMP Fund Services Limited are 
licensed by the Isle of Man Financial Supervision Commission. SMP Accounting  
Tax Limited is a member of the ICAEW Practice Assurance Scheme.
SMP Partners Limited registered in the Isle of Man, Company Registration No: 
000908V
Directors: M.W. Denton, M.J. Derbyshire, P.N. Eckersley, S.E McGowan, O. Peck, 
J.J. Scott, S.J. Turner
SMP Trustees Limited registered in the Isle of Man, Company Registration No: 
068396C
Directors: A.C. Baggesen, M.W. Denton, O. Peck, J.J. Scott, J. Watterson, J. 
Cubbon
SMP Fund Services Limited registered in the Isle of Man, Company Registration 
No: 120288C
Directors: V. Campbell, M.W. Denton, P.N. Eckersley, D.A. Manser, S.E McGowan, 
O. Peck, J.J. Scott, R.K. Corkill
SMP Accounting  Tax Limited registered in the Isle of Man, Company 
Registration No: 001316V
Directors: I.F. Begley, A.J. Cowley, A.J. Dowling, P. Duchars, P.N. Eckersley, 
J.J. Scott, S.J. Turner
SMP Capital Markets Limited registered in the Isle of Man, Company Registration 
No: 002438V
Directors: M.W. Denton, M.J. Derbyshire, D.F Hudson, S.E McGowan, O. Peck, J.J. 
Scott.
SMP Partners Limited, SMP Trustees Limited, SMP Fund Services Limited, SMP 
Accounting  Tax Limited and SMP Capital Markets Limited are members of the SMP 
Partners Group of Companies.

This email is confidential and is subject to disclaimers. Details can be found 
at: http://www.smppartners.com/disclaimer.html
__
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
__

RE: [Exchange] CAS exposure - Exchange 2013 SP1

[Kennedy, Jim]

“A reverse proxy is not wanted…”

I have to ask why because in my mind that is the best thing to do in this 
situation. If they won’t allow access to 443 from the outside to a specific 
location why have an internet connection?

“….and NAT through the firewall to the CAS array is deemed too dangerous. “

And again why, because that would be the second best solution imho. This sounds 
like predisposed beliefs that exposing Exchange OWA to the world is dangerous. 
Back in 5.5 days I would have been on that page but I don’t think that is the 
case now.

“…for the single CAS in the DMZ.”

And this sounds like the worst idea of them all. You will have lots of ports 
open from the CAS to the internal to make that CAS work. So now that box gets 
popped out there and the bad guy now has the whole world of all the AD ports at 
their disposal to your internal network.

Be interesting to see what my learned colleges here on the list think. But the 
above is what I am going with.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Tommy Fudge
Sent: Friday, May 9, 2014 11:08 AM
To: exchange@lists.myITforum.com
Subject: [Exchange] CAS exposure - Exchange 2013 SP1

Morning,

My work is concerned about exposing our CAS array to the public internet.  
Initial thoughts are to place a single CAS in the DMZ with ports open to our 
internal network.  I have obvious concerns with this approach, but it is 
gaining traction, so I need to know if this will even work.  On our internal 
network are two AD sites, each site contains 2 CAS and 2 MBX (single DAG) and 
each has independent internet connectivity.  Varying thoughts are floating 
around such as using mail.domain.comhttp://mail.domain.com for the internal 
CAS array, and mobile.domain.comhttp://mobile.domain.com for the single CAS 
in the DMZ.  Autodiscover will point to mail which should allow internal 
clients to auto configure.  There is no desire for external clients to auto 
configure (or even laptops to function out of the office using Outlook 
Anywhere).  Mobile devices would be statically configured to use the mobile 
namespace by IT, and external clients would connect to OWA via mobile as well.

A reverse proxy is not wanted, and NAT through the firewall to the CAS array is 
deemed too dangerous.  I know the single CAS is a hole in the firewall anyway 
and also unsupported by MS, but would this scenario even work?  Is there any 
impact to Outlook clients on the internal network seeing the CAS in the DMZ?  
Would I need to make the internal CAS array non internet-facing and the single 
DMZ based CAS internet-facing?  Can a single AD site support both 
internet-facing and non facing CAS?

Definitely open to suggestions here.  This is not production yet - no 
coexistence as we use an old Linux mail server right now.

Thanks,

Tommy

RE: [Exchange] CAS exposure - Exchange 2013 SP1

[Kennedy, Jim]

Ok, I have decided that ideas 2 and 3 as I listed them below equally bad. 
Reverse proxy.

From: Kennedy, Jim
Sent: Friday, May 9, 2014 11:18 AM
To: exchange@lists.myITforum.com
Subject: RE: [Exchange] CAS exposure - Exchange 2013 SP1

“A reverse proxy is not wanted…”

I have to ask why because in my mind that is the best thing to do in this 
situation. If they won’t allow access to 443 from the outside to a specific 
location why have an internet connection?

“….and NAT through the firewall to the CAS array is deemed too dangerous. “

And again why, because that would be the second best solution imho. This sounds 
like predisposed beliefs that exposing Exchange OWA to the world is dangerous. 
Back in 5.5 days I would have been on that page but I don’t think that is the 
case now.

“…for the single CAS in the DMZ.”

And this sounds like the worst idea of them all. You will have lots of ports 
open from the CAS to the internal to make that CAS work. So now that box gets 
popped out there and the bad guy now has the whole world of all the AD ports at 
their disposal to your internal network.

Be interesting to see what my learned colleges here on the list think. But the 
above is what I am going with.

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Tommy Fudge
Sent: Friday, May 9, 2014 11:08 AM
To: exchange@lists.myITforum.commailto:exchange@lists.myITforum.com
Subject: [Exchange] CAS exposure - Exchange 2013 SP1

Morning,

My work is concerned about exposing our CAS array to the public internet.  
Initial thoughts are to place a single CAS in the DMZ with ports open to our 
internal network.  I have obvious concerns with this approach, but it is 
gaining traction, so I need to know if this will even work.  On our internal 
network are two AD sites, each site contains 2 CAS and 2 MBX (single DAG) and 
each has independent internet connectivity.  Varying thoughts are floating 
around such as using mail.domain.comhttp://mail.domain.com for the internal 
CAS array, and mobile.domain.comhttp://mobile.domain.com for the single CAS 
in the DMZ.  Autodiscover will point to mail which should allow internal 
clients to auto configure.  There is no desire for external clients to auto 
configure (or even laptops to function out of the office using Outlook 
Anywhere).  Mobile devices would be statically configured to use the mobile 
namespace by IT, and external clients would connect to OWA via mobile as well.

A reverse proxy is not wanted, and NAT through the firewall to the CAS array is 
deemed too dangerous.  I know the single CAS is a hole in the firewall anyway 
and also unsupported by MS, but would this scenario even work?  Is there any 
impact to Outlook clients on the internal network seeing the CAS in the DMZ?  
Would I need to make the internal CAS array non internet-facing and the single 
DMZ based CAS internet-facing?  Can a single AD site support both 
internet-facing and non facing CAS?

Definitely open to suggestions here.  This is not production yet - no 
coexistence as we use an old Linux mail server right now.

Thanks,

Tommy

RE: [Exchange] CAS exposure - Exchange 2013 SP1

[Kennedy, Jim]

Thinking out loud.

Load balancer out front balancing a group of reverse proxies.

From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of ccollins9 [ccolli...@gmail.com]
Sent: Friday, May 09, 2014 12:34 PM
To: exchange
Subject: Re: [Exchange] CAS exposure - Exchange 2013 SP1

Yes, EX2013 supports client certs and we have them turned on and working.  The 
issue with reverse proxy from the load balancers, it needs to decrypt the 
packet at the LB to read the header to know where to send the connection (owa 
vs. ActiveSync, vs. EWS, etc.), and for that it would need to support 
decrypting with respect to client certificate.  We haven't been able to get it 
working.  But i do see that with a recent software update, my LB supports 
client certs, so maybe it will work if I set the AS directory back to Basic 
Auth/No client certs and require the client cert at the LB.  This is similar to 
what we had to do in order to have EX2013 proxy client cert connections to 
EX2010 CAS servers.  We needed to reset EX2010 to basic auth/no certs and 
EX2013 took care of the connections coming in with client certs.  FYI, EX2013 
supports client certs and works, but the line I got from  MS Premier support is 
that THEY won't support it until perhaps EX2013 SP1 CU1.  Which I thought was 
just plain stupid.  But it works so far.


On Fri, May 9, 2014 at 12:05 PM, Michael B. Smith 
mich...@smithcons.commailto:mich...@smithcons.com wrote:
I suspect I need a diagram. Exchange 2013 supports client certs for ActiveSync 
(and for all the other web protocols also).

[Exchange] RE: Antivirus placement - Exchange 2010

[Kennedy, Jim]

Email AV gateway appliance (vm or physical) (Trend, Barracuda, etc.)

Specifically a Cuda. Only one email virus in a decade of using them. I block 
exe's, password protected zips and the usual suspect file types with it, that 
certainly helps.



From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of Stringham, Steven [sstring...@lrrlaw.com]
Sent: Tuesday, April 22, 2014 5:53 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] Antivirus placement - Exchange 2010

Antivirus software and Exchange 2010 – where should  I put it? I am looking at 
this as a performance, security balancing act.  So, my thoughts are where do 
you folks put it.  A little poll please…

 AntiSpam outside service – before my internal systems see it.

 Email AV gateway appliance (vm or physical) (Trend, Barracuda, etc.)

 Edge Gateway role servers

 Hub Transport servers

 Mailbox servers


Personally, I think this is a bit of an all of the above type thing, but, where 
would you put AV for Email.

And, do you use separate brands for different spots?

Thanks
Steven Stringham





This message and any attachments are intended only for the use of the 
individual or entity to which they are addressed. If the reader of this message 
or an attachment is not the intended recipient or the employee or agent 
responsible for delivering the message or attachment to the intended recipient 
you are hereby notified that any dissemination, distribution or copying of this 
message or any attachment is strictly prohibited. If you have received this 
communication in error, please notify us immediately by replying to the sender. 
The information transmitted in this message and any attachments may be 
privileged, is intended only for the personal and confidential use of the 
intended recipients, and is covered by the Electronic Communications Privacy 
Act, 18 U.S.C. §2510-2521.

In accordance with Internal Revenue Service Circular 230, we advise you that if 
this message or any attachments contains any tax advice, such tax advice was 
not intended or written to be used, and it cannot be used, by any taxpayer for 
the purpose of avoiding penalties that may be imposed on the taxpayer.

RE: [Exchange] RE: Antivirus placement - Exchange 2010

[Kennedy, Jim]

Kurt said:  Mostly, I get these from China (or at least the emails use Chinese 
character sets.)

Which reminded me, I drop all packets from China, actually all of Asia,  Africa 
and South America. No offense to those people, we don't get legit mail from 
there. So that its the key to my success.

From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on behalf 
of Kurt Buff [kurt.b...@gmail.com]
Sent: Tuesday, April 22, 2014 7:24 PM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] RE: Antivirus placement - Exchange 2010

Your results are more the outcome of your settings to block certain
attachments than to the Barracuda's prowess in AV detection.

I am not allowed to block attachments, we have a 410, and I regularly
see infectious emails come through.

Whenever I get an unexpected email with an attachment, I submit the
attachment to 
http://www.threattracksecurity.com/resources/sandbox-malware-analysis.aspx
and to https://malwr.com/ and regularly see results that make me
shudder...

Those submissions are in parallel to my submission to virustotal, and
invariably the attachment has already been scanned, and nobody has a
signature for it.

Mostly, I get these from China (or at least the emails use Chinese
character sets.)


Kurt

On Tue, Apr 22, 2014 at 4:13 PM, Kennedy, Jim
kennedy...@elyriaschools.org wrote:

 Email AV gateway appliance (vm or physical) (Trend, Barracuda, etc.)

 Specifically a Cuda. Only one email virus in a decade of using them. I block
 exe's, password protected zips and the usual suspect file types with it,
 that certainly helps.


 
 From: listsad...@lists.myitforum.com [listsad...@lists.myitforum.com] on
 behalf of Stringham, Steven [sstring...@lrrlaw.com]
 Sent: Tuesday, April 22, 2014 5:53 PM
 To: exchange@lists.myitforum.com
 Subject: [Exchange] Antivirus placement - Exchange 2010

 Antivirus software and Exchange 2010 – where should  I put it? I am looking
 at this as a performance, security balancing act.  So, my thoughts are where
 do you folks put it.  A little poll please…



  AntiSpam outside service – before my internal systems see it.



  Email AV gateway appliance (vm or physical) (Trend, Barracuda, etc.)



  Edge Gateway role servers



  Hub Transport servers



  Mailbox servers





 Personally, I think this is a bit of an all of the above type thing, but,
 where would you put AV for Email.



 And, do you use separate brands for different spots?



 Thanks

 Steven Stringham






 

 This message and any attachments are intended only for the use of the
 individual or entity to which they are addressed. If the reader of this
 message or an attachment is not the intended recipient or the employee or
 agent responsible for delivering the message or attachment to the intended
 recipient you are hereby notified that any dissemination, distribution or
 copying of this message or any attachment is strictly prohibited. If you
 have received this communication in error, please notify us immediately by
 replying to the sender. The information transmitted in this message and any
 attachments may be privileged, is intended only for the personal and
 confidential use of the intended recipients, and is covered by the
 Electronic Communications Privacy Act, 18 U.S.C. §2510-2521.

 In accordance with Internal Revenue Service Circular 230, we advise you that
 if this message or any attachments contains any tax advice, such tax advice
 was not intended or written to be used, and it cannot be used, by any
 taxpayer for the purpose of avoiding penalties that may be imposed on the
 taxpayer.

RE: [Exchange] Relaying

[Kennedy, Jim]

If these are because of non-existent accounts, which is usually the cause, turn 
on recipient filtering. That way your server rejects them during the smtp 
phase. What you are probably doing now is accepting then realizing they are 
invalid addresses….and generating the ndr.

http://www.gn.apc.org/support/minimising-backscatter-your-office-server


From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Steve Ens
Sent: Thursday, April 10, 2014 10:07 AM
To: exchange@lists.myitforum.com
Subject: Re: [Exchange] Relaying

I think that is exactly what is going on here.  I can't see any other traffic 
out of the network besides the NDR's
Mark what did you end up doing in the end?

On Thu, Apr 10, 2014 at 8:09 AM, Reimer, Mark 
mark.rei...@prairie.edumailto:mark.rei...@prairie.edu wrote:
Blue host caught me too. I was getting spammed (to non-existant accounts), and 
my server was sending NDR’s. Of course, the NDR’s were going to people who 
didn’t exist, and they blocked our email. And as in Steve’s case, we weren’t 
listed on mxtoolbox.

My two cents.

Mark

From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com 
[mailto:listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com] 
On Behalf Of Steve Ens
Sent: Wednesday, April 09, 2014 3:06 PM

To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: Re: [Exchange] Relaying

It was a site called bluehost.  If I went to mxtoolbox, we weren't listed 
anywhere.

On Wed, Apr 9, 2014 at 4:04 PM, J- P 
jnat...@hotmail.commailto:jnat...@hotmail.com wrote:
When you were blacklisted do you see what RBL you were listed on, or why you 
were listed?
I had a site where there was a lone workstation in the far end of the warehouse 
used only for checking schedules, sure enough that was the affected/infected PC 
that was part of bot-net causing the blacklisting.


Jean-Paul Natola


Date: Wed, 9 Apr 2014 11:54:11 -0500

Subject: Re: [Exchange] Relaying
From: stevey...@gmail.commailto:stevey...@gmail.com
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
I've also put a firewall rule into the default domain policy to block all port 
25 traffic between clients.  I'll see if that helps.

On Wed, Apr 9, 2014 at 11:49 AM, J- P 
jnat...@hotmail.commailto:jnat...@hotmail.com wrote:
You can get blacklisted without SMTP traffic, simply by machines trying to 
access certain websites known as sinkhole servers
http://www.spamhaus.org/faq/section/Spamhaus%20XBL





Date: Tue, 8 Apr 2014 21:55:27 -0500
Subject: Re: [Exchange] Relaying
From: stevey...@gmail.commailto:stevey...@gmail.com
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com

I think Don has not been in this conversation yet, and i do use Vipre for 
backscatter and spam protection.  I don't think having 600 messages undelivered 
in the queue is reasonable.  We have been blacklisted a couple of times and 
been delisted so far.  I also have all traffic on port 25 blocked out of the 
firewall except for the Exchange box. I'm looking at the smtp logs and can;t 
seem anything off yet.

On Tue, Apr 8, 2014 at 7:07 PM, Richard Stovall 
rich...@gmail.commailto:rich...@gmail.com wrote:
I think this answer is correct in some circumstances, but not universally by 
any means.  Don, do you have any backscatter protection enabled?  This would 
eliminate these as NDRs resulting from spam from spoofed addresses you own.  If 
you don't have backscatter protection, my guess is that spam which does spoof 
existing addresses would be far more problematic than that which does not.

On Tue, Apr 8, 2014 at 7:13 PM, Mike Tavares 
miketava...@comcast.netmailto:miketava...@comcast.net wrote:
the sender  is normal exchange NDR’s being delivered.  Since your exchange 
server is authoritative for you domain any messages addressed to non existent 
email address will cause these, since a lot of spam has bogus address you tend 
to see them sitting in your ques for a while.  They will eventually time out 
and go away on their own.

Nothing to worry about.


From: Steve Ensmailto:stevey...@gmail.com
Sent: Tuesday, April 08, 2014 4:30 PM
To: exchange@lists.myitforum.commailto:exchange@lists.myitforum.com
Subject: [Exchange] Relaying

I'm running exchange 2010 here with all the service packs.  I think that I must 
have misconfigured one of my receive connectors.  I know I am not an open relay 
from the outside, but I think I have a machine inside my network that is 
compromised and using exchange to send out since I have many messages sitting 
in my queue that are undeliverable.  Any suggestions as to how I'd determine 
from which IP these messages are originating?  The sender always looks like   
I've opened up the message tracking logs, but can't find any incriminating 
evidence there.