Wiley Publishing, Inc.

MCITP:

Microsoft

®

Exchange Server 2007 Messaging Design and Deployment

Study Guide

Rawlinson Rivera

81461ffirs.fm Page iii Thursday, December 13, 2007 9:52 AM

File AttachmentC1.jpg

81461ffirs.fm Page ii Thursday, December 13, 2007 9:52 AM

MCITP:

Microsoft

®

Exchange Server 2007 Messaging Design and Deployment

Study Guide

81461ffirs.fm Page i Thursday, December 13, 2007 9:52 AM

81461ffirs.fm Page ii Thursday, December 13, 2007 9:52 AM

Wiley Publishing, Inc.

MCITP:

Microsoft

®

Exchange Server 2007 Messaging Design and Deployment

Study Guide

Rawlinson Rivera

81461ffirs.fm Page iii Thursday, December 13, 2007 9:52 AM

Acquisitions Editor: Jeff KellumDevelopment Editor: Brenda FrinkTechnical Editor: Rodney R. FournierProduction Editor: Elizabeth CampbellCopy Editor: Candace EnglishProduction Manager: Tim TateVice President and Executive Group Publisher: Richard SwadleyVice President and Executive Publisher: Joseph B. WikertVice President and Publisher: Neil EddeMedia Associate Project Supervisor: Laura AtkinsonMedia Assistant Producer: Josh FrankMedia Quality Assurance: Angie DennyBook Designers: Judy Fung and Bill GibsonCompositor: Craig Woods, Happenstance Type-o-RamaProofreader: Amy McCarthyIndexer: Ted LauxAnniversary Logo Design: Richard PacificoCover Designer: Ryan SneedCopyright © 2008 by Wiley Publishing, Inc., Indianapolis, IndianaPublished simultaneously in CanadaISBN: 978-0-470-18146-1No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Legal Department, Wiley Publishing, Inc., 10475 Crosspoint Blvd., Indianapolis, IN 46256, (317) 572-3447, fax (317) 572-4355, or online at http://www.wiley.com/go/permissions.Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of fitness for a particular purpose. No warranty may be created or extended by sales or promotional materials. The advice and strategies contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or Website is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or Website may provide or recommendations it may make. Further, readers should be aware that Internet Websites listed in this work may have changed or disappeared between when this work was written and when it is read.For general information on our other products and services or to obtain technical support, please contact our Customer Care Department within the U.S. at (800) 762-2974, outside the U.S. at (317) 572-3993 or fax (317) 572-4002.Wiley also publishes its books in a variety of electronic formats. Some content that appears in print may not be available in electronic books.Library of Congress Cataloging-in-Publication DataRivera, Rawlinson, 1976- MCTIP : Microsoft Exchange Server 2007 messaging design and deployment study guide (70-237 and 70-238) / Rawlinson Rivera. p. cm. ISBN 978-0-470-18146-1 (pbk. : CD-ROM)1. Microsoft Exchange server. 2. Client/server computing. 3. Telecommunication--Message processing. I. Title. II. Title: Microsoft Exchange Server 2007 messaging design and deployment study guide. QA76.9.C55R58 2007 005.7'1376--dc22 2007043722

TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other countries, and may not be used without written permission. Microsoft is a registered trademark of Microsoft Corporation in the United States and/or other countries. All other trademarks are the property of their respective owners. Wiley Publishing, Inc., is not associated with any product or vendor mentioned in this book.10 9 8 7 6 5 4 3 2 1

81461ffirs.fm Page iv Thursday, December 13, 2007 9:52 AM

Dear Reader,

Thank you for choosing

MCITP: Microsoft Exchange Server 2007 Messaging Design and Deployment Study Guide

. This book is part of a family of premium quality Sybex books, all written by outstanding authors who combine practical experience with a gift for teaching.

Sybex was founded in 1976. More than thirty years later, we’re still committed to producing consistently exceptional books. With each of our titles we’re working hard to set a new standard for the industry. From the paper we print on, to the authors we work with, our goal is to bring you the best books available.

I hope you see all that reflected in these pages. I’d be very interested to hear your comments and get your feedback on how we’re doing. Feel free to let me know what you think about this or any other Sybex book by sending me an email at

nedde@wiley.com

. Or, if you think you’ve found a technical error in this book, please visit

http://sybex.custhelp.com

. Customer feedback is critical to our efforts at Sybex.

Best regards,

Neil EddeVice President and PublisherSybex, an Imprint of Wiley

81461ffirs.fm Page v Thursday, December 13, 2007 9:52 AM

This book is dedicated to the loving memory of the people who have made a big

impact on my life by providing me with advice and guidance and by believing in me.

To Aurelio Rivera, Joe Lopez, John Camejo, and Frank Yautz, thanks for the oppor-

tunities and excellent advice. All of your help and guidance has made me a better

person and more efficient and successful in profession.

81461ffirs.fm Page vi Thursday, December 13, 2007 9:52 AM

Acknowledgments

I never thought that I would enjoy writing and teaching as much as I do now. In fact I love it. I enjoy writing about existing technology, sharing my experiences with students and colleges everywhere. I’ve trained people all around the world and it’s been a great experience, so great that I plan to con-tinue doing it for as long as I live. There is no question that technology is my passion and I’m very fortunate to live my passion.

I want to thank Chris McCain, my mentor for showing me the way and giving me the opportunity to take part in so many great projects including writing this book. Now I can share my passion with the rest of the world. Because of you, I had the privilege of being involved in different capacities with Microsoft Learning in the development of the certification and the courseware development for Exchange Server 2007, Windows Server 2008, Windows Vista, WSS 3.0, and SharePoint Server 2007.

I learned during this project that writing a book of this magnitude is not easy and is time-consuming. Writing books is never the product of a single person, but rather the collective effort of many. I want to thank all the people who were involved with this project, Joel Stidley, Andy Schan, Ilse Van Criekinge, Siegfried Jagott, Bob Lawler, and Tariq Azid. Your work, sacrifices, and efforts are greatly appreciated. I’d like to thank the developmental editor Brenda Frink and the technical editors, Rodney R. Fournier and Randy Muller, for providing constructive feedback and detail suggestions. My thanks also go to the copy editor, Candace English; the production editor, Elizabeth Campbell; the proofreader, Amy McCarthy; and to the compositor, Craig Woods.

A special thanks to Jeff Kellum and the staff at Wiley for the patience and the opportunity.

—Rawlinson Rivera

81461ffirs.fm Page vii Thursday, December 13, 2007 9:52 AM

About the Author

Rawlinson Rivera, an 11-year veteran of the IT consulting and training field, has worked with a variety of technologies ranging from IBM to VMware to Microsoft. He has developed a specialization in architecting secure messaging and collaboration infrastructures with Win-dows Server 2000/2003, Office SharePoint Server 2007, Exchange Server 2000/2003/2007, and VMware Virtual Infrastructure 3.

Rawlinson is a senior consultant of RawlsNet Technologies, LLC, a firm he founded that focuses on consulting, training, and developing industry-leading content. He has authored content for Microsoft Learning for various technologies, including the latest release of Microsoft Exchange Server 2007.

Rawlinson also delivers VMware’s Virtual Infrastructure classes around the world. He is the co-author of

Mastering VMware Infrastructure 3

, published by Sybex, an imprint of Wiley Publishing, Inc.

Rawlinson holds the following technical certifications: MCT, MCSE: Messaging, MCSE: Security, MCITP: Enterprise Messaging Administrator, and VMware Certified Professional.

81461ffirs.fm Page viii Thursday, December 13, 2007 9:52 AM

Contributing Authors

Joel Stidley

is a senior solutions engineer at Terremark Worldwide, Inc. who has been working with Microsoft Exchange Server since the 5.0 beta release. He led an engineering team to create a shared Exchange 2000 hosting platform before Microsoft provided an official solution. He is a member of the Microsoft Exchange 2007 TAP program. Joel started an Exchange community and blog website called ExchangeExchange.com. Joel also has worked on several non-Exchange-related projects, including engineering large hosted VMware ESX environments and Microsoft server-based products. Joel has an upcoming book titled

Professional PowerShell for Exchange 2007 SP1

, which will be published by Wrox, an imprint of Wiley Publishing, Inc.

Ilse Van Crickinge

is currently a consultant, trainer, and business development manager at Global Knowledge Belgium bvba. Her previous experience has focused on Exchange migra-tions and deployments, and she has been an Exchange trainer for more than five years. Being an MCT, Ilse offered several companies guidance in their Exchange and MOM deploy-ments, and audited the disaster recovery capabilities in their mail environment. As one of the five Exchange mentors chosen worldwide, she also has helped other trainers to become familiar with Exchange 2003. During the last year, she has ignited many IT professionals with the power of Exchange 2007 by delivering training and by cofounding a new user group in Belgium, Pro-Exchange, focused on Exchange Server. Ilse lives with her husband, Serge, and their son, Robin.

Andy Schan

has been an MCSE since 1996 and holds the MCSE: Messaging and Exchange Server 2007 Technical Specialist certifications. He has been working with Microsoft Exchange in enterprise-level deployments since Exchange 4.0, and he worked on MS Mail prior to that. He was the senior engineer on the first deployment of Exchange Server 2003 in the Canadian federal government, and acted as a technical advisor to that department's CIO for the Canadian Anti-Spam Task Force. He has been working with Exchange Server 2007 since Beta 1. Andy’s current position is as senior consultant with Titus International in Ottawa, Canada, where he engages with large enterprise customers in the public and private sector in both the United States and Canada.

Siegfried Jagott

works as a senior systems architect and team lead for the Messaging and Collaboration team in Siemens IT Solutions located in Munich, Germany. He is part of the Siemens central architecture team that works closely with Microsoft to plan future enhance-ments of Windows, Exchange, and other products. He hosts a monthly column for

Windows IT Magazine

, “Exchange & Outlook UPDATE: Outlook Perspectives” and writes about Out-look 2007 topics. He is a frequent writer for various international magazines and speaks at conferences on Windows and Exchange topics. He holds an MBA and a diploma in manage-ment from Open University in England, and has been an MCSE since 1997.

81461ffirs.fm Page ix Thursday, December 13, 2007 9:52 AM

x

Contributing Authors

Tariq bin Azad

has been working in the IT industry for the past 15 years, 8 years of which have been spent as a system analyst/consultant. Throughout his career, Tariq has had the opportunity to work on a diverse set of technical projects and to participate in the development of several business solutions. Some projects involved in-depth technical knowledge, while other projects took advantage of his soft skills. During the latter portion of Tariq's career, he has been concen-trating mostly on Microsoft Windows 2000/2003, Exchange 2000/2003/2007, Active Direc-tory, Microsoft Virtual Server, VMware, and Citrix implementations. Tariq currently holds MCT, MCSE 2003, CCEA, VCP, and numerous other certificates from other vendors.

81461ffirs.fm Page x Thursday, December 13, 2007 9:52 AM

Contents at a Glance

Introduction xxvii

Assessment Test xxxviii

Part I 70-237 Pro: Designing Messaging Solutions With Microsoft Exchange Server 2007 1

Chapter 1

Designing and Planning Messaging Services 3

Chapter 2

Designing and Planning Server High Availability 45

Chapter 3

Designing Recovery and Messaging Services to Meet Business Demands 83

Chapter 4

Designing and Planning Coexistence and Migrations 131

Chapter 5

Defining Policies and Security Procedures 189

Part II 70-238: Pro: Deploying Messaging Solutions with Microsoft Exchange Server 2007 237

Chapter 6

Planning an Upgrade to Exchange Server 2007 239

Chapter 7

Planning a Migration to Exchange Server 2007 285

Chapter 8

Planning Exchange Server 2007 Interoperability 353

Chapter 9

Planning a Highly Available Exchange Server 2007 Implementation 383

Chapter 10

Planning a Backup and Recovery Solution for Exchange Server 2007 417

Chapter 11

Planning the Exchange Server 2007 Storage Group Deployment 445

Chapter 12

Planning the Exchange Server 2007 Server Role Deployment 473

Chapter 13

Planning the Deployment of Exchange Server 2007 Services 497

Chapter 14

Planning Antivirus and Antispam for Exchange Server 2007 557

Chapter 15

Planning Exchange Server 2007 Security 621

81461ffirs.fm Page xi Thursday, December 13, 2007 9:52 AM

xii

Contents at a Glance

Chapter 16

Planning Exchange Server 2007 Compliance 669

Chapter 17

Planning for Exchange Server 2007 Messaging Infrastructure Improvements and Maintenance 725

Appendix A

About the Companion CD 777

Glossary

781

Index 805

81461ffirs.fm Page xii Thursday, December 13, 2007 9:52 AM

Contents

Introduction xxvii

Assessment Test xxxviii

Part I 70-237 Pro: Designing Messaging Solutions With Microsoft Exchange Server 2007 1

Chapter 1 Designing and Planning Messaging Services 3

Evaluating and Recommending Active Directory Configuration 4Defining Active Directory Prerequisites 4Designing an Administrative Model 9

Evaluating and Planning Server Deployment Based on Best Practices, Budget, and Other Business Factors 15

Planning Exchange Server 2007 Placement 15Exchange Server 2007 Roles 18Exchange Server 2007 Editions and Licenses 20Making Up a Server-Placement Plan 22

Evaluating Network Topology and Providing Technical Recommendations 23

Reviewing Current and Planned Network Topology 23Avoiding Pitfalls by Providing Technical Recommendations 24

Designing and Planning for New Exchange Features 24The Exchange Management Shell 25Unified Messaging 25Edge Transport 26

Designing Organization Configuration to Meet Routing Requirements 27

Internal Message Routing 28External Message Routing 32Viewing the Routing Table 34

Summary 35Exam Essentials 35Review Questions 37Answers to Review Questions 42

Chapter 2 Designing and Planning Server High Availability 45

Evaluate Role Availability Requirements and Design Solutions 46Implementing Fault Tolerance and Redundancy within

Your Environment 47Redundancy for Active Directory Services 49

81461ftoc.fm Page xiii Thursday, December 13, 2007 8:58 AM

xiv

Contents

Define High Availability Solutions Based on Client Types and Client Loads 49

Implementing Redundancy for Hub Transport Servers 49Implementing Redundancy for Client Access Servers 51Implementing Redundancy for Unified Messaging 54Implementing Redundancy for Mailbox Servers 56Implementing Redundancy for Edge Transport Servers 62

Plan Policies to Handle Unsolicited Email and Virus Outbreaks 64Implementing Message Hygiene 64Defense-in-Depth 64Antivirus Scanning 64Attachment Filtering 66Exchange Server 2007 Antispam Features 66Hosted Services 67Anti-Malware Product Considerations 68

Summary 70Exam Essentials 70Review Questions 72Answers to Review Questions 79

Chapter 3 Designing Recovery and Messaging Services to Meet Business Demands 83

Designing Disaster Recovery, Backup, and Restore Solutions 84Exchange-Aware Backup Application 84Designing Disaster Recovery 90Restoring Exchange 2007 Storage Groups and Stores 98High Availability Public Folders 115

Evaluating Existing Business Requirements to Define Supporting Infrastructure 116

Designing and Recommending Strategies for Dependent Services that Impact High Availability 118

Summary 118Exam Essentials 120Review Questions 121Answers to Review Questions 128

Chapter 4 Designing and Planning Coexistence and Migrations 131

Designing and Planning Migration of Legacy Exchange Features 132

Free/Busy Functionality 132Migrating Public Folders 137Offline Address Books 150Recipient Update Service Migration 156

81461ftoc.fm Page xiv Thursday, December 13, 2007 8:58 AM

Contents

xv

Designing Migration Strategies 158Message Routing 158Exchange Server 2007 and Administrative Groups 158Managing Mailboxes in a Coexistence Environment 159Discontinued Features 159Inter-Forest Migration 160Intra-Organization Migration 165

Planning Coexistence for Exchange Server 2003 and Exchange Server 2007 173

Message Routing Differences 173Administration Differences 175Server Role Coexistence 176

Summary 177Exam Essentials 178Review Questions 179Answers to Review Questions 185

Chapter 5 Defining Policies and Security Procedures 189

Designing a Solution to Address Regulatory and Legal Requirements 190

Legal-Compliance Requirements 190Company-Compliance Requirements 192Messaging Policies 193Message Classifications 199

Designing Procedures for Message Content Filtering 202Exchange Hosted Services 203Antispam 203Antivirus 210

Designing Secure Messaging 214Administrative Security 214Securing SMTP Email 216Information Rights Management 219

Summary 225Exam Essentials 226Review Questions 227Answers to Review Questions 233

Part II 70-238: Pro: Deploying Messaging Solutions with Microsoft Exchange Server 2007 237

Chapter 6 Planning an Upgrade to Exchange Server 2007 239

Planning for Migration of Legacy Exchange Features 240Exchange 2000 Server Features Not Supported in

Exchange Server 2007 241

81461ftoc.fm Page xv Thursday, December 13, 2007 8:58 AM

xvi

Contents

Exchange 2003 Server Features Not Supported inExchange Server 2007 244

De-Emphasized Features in Exchange Server 2007 250Planning the Exchange Server 2007 Upgrade Implementation 252

Documenting Your Existing Infrastructure 253Checking Your Organization’s Readiness for

Exchange Server 2007 255Preparing Active Directory for Exchange Server 2007 259Deploying Exchange Server 2007 266

Summary 273Exam Essentials 273Review Questions 275Answers to Review Questions 282

Chapter 7 Planning a Migration to Exchange Server 2007 285

Key Vocabulary for This Chapter 287Migrating from Exchange Server 5.5 288Migrating from Exchange 2000 Server or Exchange

Server 2003 289Exchange Server 2007 and Windows Server

Operating Systems: Upgrading to x64-bit 290Choosing between Exchange 2007 Standard Edition

and Enterprise Edition 291Choosing between Exchange 2007 Standard CAL

and Enterprise CAL 292Readiness Checklist: Nine Steps to Getting Your

Organization Ready for Exchange Server 2007 294Preparing Active Directory for Exchange 2007 304Installing Exchange 2007 in an Exchange 2003

Organization 309Finalizing Your Exchange 2007 Installation 317Coexistence: Life After Installation 321

Migrating from Third-Party Messaging Systems 328Step 1: Installing the Notes Client and Transporter

Suite for Lotus Domino 2007 331Step 2: Establishing Messaging Connectivity 333Step 3: Establishing Directory Synchronization 335Step 4: Configuring the Free/Busy Connector 337Step 5: Establishing Directory Synchronization 339Step 6: Application Migration 340Step 7: Decommissioning Domino Servers 341

Decommissioning the Old Infrastructure 341Summary 344Exam Essentials 344

81461ftoc.fm Page xvi Thursday, December 13, 2007 8:58 AM

Contents

xvii

Review Questions 346Answers to Review Questions 351

Chapter 8 Planning Exchange Server 2007 Interoperability 353

Planning Coexistence with Exchange 2000 Server and Exchange Server 2003 in a Single Organization 354

Planning for Coexistence of Messaging Services 356Preparing for Coexistence with Legacy Exchange servers 359Planning for Management Tools Coexistence with

Legacy Versions of Exchange 363Planning Interoperability with Exchange in Separate

Organizations 366Planning Directory Synchronization 366Planning Free/Busy Calendaring Interoperability for

Exchange Server 2007 Organizations 367Planning Free/Busy Availability Interoperability

for Exchange Server 2007 and Exchange 2003 Organizations 368

Planning Interoperability with Third-Party Messaging Systems 369

Planning Directory Synchronization with Third-Party Messaging Systems 370

Planning Messaging Coexistence with Third-Party Messaging Systems 370

Planning Free/Busy Availability Interoperability withThird-Party Messaging Systems 372

Planning Messaging Connectivity: SSL and TLS 374Summary 375Exam Essentials 375Review Questions 376Answers to Review Questions 380

Chapter 9 Planning a Highly Available Exchange Server 2007 Implementation 383

Planning the Service’s High-Availability Implementation 384Implementing High Availability for Non-Mailbox

Server Roles 386Implementing High Availability for Mailbox Server

Roles by Using a Single-Copy Cluster (SCC) 393Planning a Data-Redundancy Implementation 397

Implementing Local Continuous Replication (LCR) 399Implementing Cluster Continuous Replication (CCR) 401Deciding Which Mailbox-Availability Strategy to Adopt 405

Using Dial-Tone Recovery 406

81461ftoc.fm Page xvii Thursday, December 13, 2007 8:58 AM

xviii

Contents

Implementing Database Portability 407Summary 409Exam Essentials 409Review Questions 411Answers to Review Questions 415

Chapter 10 Planning a Backup and Recovery Solution for Exchange Server 2007 417

Planning Backup and Recovery 418Planning and Implementing Backup Solutions for

Mailbox Server Roles 419Implementing Streaming Backups 420Implementing Restores Using Streaming Backups 422Implementing Volume Shadow Copy Service (VSS)

for Backups 424Implementing Backup Schedules 431

Planning and Implementing Backup and Recovery Solutions for Non-Mailbox Server Roles 432

Backup and Recovery for Edge Transport Servers 432Backup and Recovery for Hub Transport Servers 433Backup and Recovery for Client Access Servers 434Backup and Recovery for Unified Messaging Servers 436

Summary 437Exam Essentials 437Review Questions 438Answers to Review Questions 442

Chapter 11 Planning the Exchange Server 2007 Storage Group Deployment 445

Planning the Storage Group Quantities and Layout 446Planning the Number of Databases to Use 447Planning the Maximum Database Size 448Planning the Disk Volume Size and Configuration 451Planning for I/O Requirements 454Planning for Recovery Storage Groups 465Summary 465Exam Essentials 466Review Questions 467Answers to Review Questions 471

Chapter 12 Planning the Exchange Server 2007 Server Role Deployment 473

Defining the Server Role Implementation Sequence 474

81461ftoc.fm Page xviii Thursday, December 13, 2007 8:58 AM

Contents

xix

Defining Server Configurations Based on Roles 475Configuring the Client Access Server Role 479Configuring the Edge Transport Server Role 480Configuring the Hub Transport Server Role 480Configuring the Mailbox Server Role 481Configuring the Unified Messaging Server Role 483Configuring Multiple Server Roles 484

Verifying that Dependent Services Meet Requirements 484Requirements for the Client Access Server Role 486Requirements for the Edge Transport Server Role 486Requirements for the Hub Transport Server Role 487Requirements for the Mailbox Server Role 487Requirements for the Unified Messaging Server Role 488

Summary 488Exam Essentials 488Review Questions 490Answers to Review Questions 494

Chapter 13 Planning the Deployment of Exchange Server 2007 Services 497

Implementing Autodiscover 498How Do Clients Find the Autodiscover Agent? 500Configuring Exchange Services for the

Autodiscover Service 504Configuring ActiveSync Autodiscover Settings 508Additional Considerations when Deploying the

Autodiscover Service 508Implementing the Availability Service 509

Process Flow for the Availability Service 509Out-of-Office Information 511Additional Considerations When Deploying the

Availability Service 512Implementing Mobile Devices 512

Windows Mobile Version Feature Matrix 512Exchange ActiveSync Mailbox Policies 514Managing Mobile Devices 517Managing Microsoft-Server-ActiveSync Virtual Directory 519

Implementing Microsoft Outlook Web Access 519Managing Outlook Web Access Virtual Directories 520Managing Outlook Web Access URLs 521Additional Considerations for Outlook Web Access 525

Implementing Outlook Anywhere 529Deploying Outlook Anywhere 529Managing Outlook Anywhere 530

81461ftoc.fm Page xix Thursday, December 13, 2007 8:58 AM

xx

Contents

Implementing POP3/IMAP4 531Implementing Public Folders 534

Creating and Configuring the Public Folder Databases 534Creating and Configuring Public Folders 535

Implementing Connectors 537Send Connectors 538Receive Connectors 542Foreign Connectors 544

Implementing Content Indexing 545Implementing DSAccess 545Summary 546Exam Essentials 547Review Questions 549Answers to Review Questions 554

Chapter 14 Planning Antivirus and Antispam for Exchange Server 2007 557

Understanding Microsoft Exchange Hosted Services 558Microsoft Exchange Hosted Filtering 560Microsoft Exchange Hosted Archiving 560Microsoft Exchange Hosted Continuity 561Microsoft Exchange Hosted Encryption 561

Planning and Implementing Exchange Server 2007 Antispam Features 563

Connection Filtering 565IP Allow and IP Block 566Real-Time Allow/Block Lists 576Sender and Recipient Filtering 581Sender ID Filtering 587Content Filtering 591Attachment Filtering 601Sender Reputation Filtering 606

Understanding Microsoft Exchange Forefront Security 609Implementing Antivirus Software 612Summary 612Exam Essentials 613Review Questions 614Answers to Review Questions 618

Chapter 15 Planning Exchange Server 2007 Security 621

Planning the Network Layer Security Implementation 622Defining Firewall Rules 622Defining Secure Communication Solutions Using

IPSec, VPN, and TLS 627

81461ftoc.fm Page xx Thursday, December 13, 2007 8:58 AM

Contents

xxi

Planning the Transport Rules Implementation 635Using Transport Rules 636Using Edge Rules 636Implementing Transport Rules 637

Implementing S/MIME 641Implementing Message Journaling 645

Journal Reports 645Journaling Mailboxes 646Standard Journaling 647Premium Journaling 648

Protecting Exchange Server 2007 with ISA 2006 651Routing SMTP Messages 652Configuring Client Access 653

Summary 659Exam Essentials 660Review Questions 661Answers to Review Questions 666

Chapter 16 Planning Exchange Server 2007 Compliance 669

Email Compliance 670Messaging Records Management 672

MRM Requirements 674Planning MRM 674Managed Folders 674Managed Content Settings 679Managed Folder Mailbox Policies 682Managed Folder Assistant 686

Message Classification 689Dependencies of Message Classification 693Configuring Message Classifications for

Different Locales 695Configuring Message Classifications for Outlook 2007 695Assigning Message Classifications with Transport Rules 702

Rights Management Service (RMS) Integration 705RMS and Exchange Server 2007 710

Summary 715Exam Essentials 715Review Questions 717Answers to Review Questions 723

Chapter 17 Planning for Exchange Server 2007 Messaging Infrastructure Improvements and Maintenance 725

Planning for Infrastructure or Configuration Changes 726Documenting Your Exchange Server 2007 Organization 727Analyzing Business Requirements 733

81461ftoc.fm Page xxi Thursday, December 13, 2007 8:58 AM

xxii

Contents

Defining the Issue and Identifying the Changes Necessary 735Preparing Your Change Deployment 736Case Study: Improving Outlook Web Access Availability 737

Planning Change Management 748Creating a Request for Change (RFC) 749Assessing and Classifying the Change 750Seeking Change Approval 751Developing the Change 752Deploying the Change 752Reviewing the Change 753

Planning Patch and Service Pack Implementation 755Phase 1: Assess 756Phase 2: Identify 757Phase 3: Evaluate and Plan 759Phase 4: Deploy 759

Planning a Monitoring and Reporting Solution 759Using Windows and Exchange Tools

for Monitoring and Reporting 760Using MOM 2005 SP1 for Monitoring and Reporting 761Exchange Server 2007 Management Pack

Reporting Services 763Summary 765Exam Essentials 765Review Questions 767Answers to Review Questions 773

Appendix A

About the Companion CD 777

What You’ll Find on the CD 778Sybex Test Engine 778PDF of the Book 778Adobe Reader 778Electronic Flashcards 779

System Requirements 779Using the CD 779Troubleshooting 779

Customer Care 780

Glossary

781

Index 805

81461ftoc.fm Page xxii Thursday, December 13, 2007 8:58 AM

Table of Exercises

Exercise 1.1

Looking at the Exchange Configuration . . . . . . . . . . . . . . 5

Exercise 3.1

A Detailed Overview of Database Portability . . . . . . . . . . . 103

Exercise 3.2

Detailed Overview of Dial-Tone Recovery . . . . . . . . . . . . 109

Exercise 4.1

Configuring the External URL for the Availability Service . . . . . . 136

Exercise 4.2

Public Folder Database Creation . . . . . . . . . . . . . . . . 141

Exercise 4.3

Migrating Public Folders with Exchange System Manager . . . . . 145

Exercise 4.4

Migrating Public Folders with Scripts . . . . . . . . . . . . . . 149

Exercise 4.5

Migrating an Offline Address Book with Exchange Management Console . . . . . . . . . . . . . . . . . . . . 152

Exercise 4.6

Cross-Forest Mailbox Moves . . . . . . . . . . . . . . . . . . 164

Exercise 5.1

Configuring Attachment Filtering to Block Attachments by MIME Type and File Name. . . . . . . . . . . . . . . . . . . 212

Exercise 5.2

Delegating the Exchange Server Administrator Role to a New Administrator Using the Exchange Management Console . . . . . 215

Exercise 5.3

Steps to Restrict Permissions in Microsoft Office Outlook 2007 Using IRM . . . . . . . . . . . . . . . . . . . . . . . . . 221

Exercise 6.1

Running the Exchange 2007 Readiness Check. . . . . . . . . . . 258

Exercise 6.2

Running Setup /PrepareLegacyExchangePermissions . . . . . . . 261

Exercise 6.3

Running Setup /PrepareSchema . . . . . . . . . . . . . . . . 262

Exercise 6.4

Running Setup /PrepareAD . . . . . . . . . . . . . . . . . . 264

Exercise 6.5

Running Setup /PrepareDomain . . . . . . . . . . . . . . . . 266

Exercise 7.1

Changing the Domain Functional Level to Native or Higher . . . . . 297

Exercise 7.2

Changing the Forest Functional Level to Windows 2000 Server Native or Higher . . . . . . . . . . . . . . . . . . . . . . . 298

Exercise 7.3

Changing the Exchange 2003 Operation Mode from Mixed to Native . 300

Exercise 7.4

Running an Exchange 2007 Readiness Check . . . . . . . . . . . 302

Exercise 7.5

Running Setup.com /PrepareLegacyExchangePermissions . . . . . 305

Exercise 7.6

Running /PrepareSchema . . . . . . . . . . . . . . . . . . . 306

Exercise 7.7

Running /PrepareAD . . . . . . . . . . . . . . . . . . . . . 307

Exercise 7.8

Running /PrepareAllDomains . . . . . . . . . . . . . . . . . 308

Exercise 7.9

Installing Exchange Server 2007 Prerequisites . . . . . . . . . . 311

Exercise 7.10

Installing Exchange Server 2007 . . . . . . . . . . . . . . . . 313

Exercise 7.11

Licensing Exchange Server 2007 . . . . . . . . . . . . . . . . 320

Exercise 7.12

Moving Mailboxes Using the Move Mailbox Wizard . . . . . . . . 323

81461.book Page xxiii Wednesday, December 12, 2007 4:49 PM

xxiv

Table of Exercises

Exercise 7.13

Moving Public Folders Using the PFMigrate Utility . . . . . . . . . 327

Exercise 7.14

Installing the Lotus Notes 7.x Client . . . . . . . . . . . . . . . 331

Exercise 7.15

Installing the Transporter Suite for Lotus Domino 2007 . . . . . . . 332

Exercise 7.16

Establishing Messaging Connectivity . . . . . . . . . . . . . . 333

Exercise 7.17

Creating the Directory Connector . . . . . . . . . . . . . . . . 335

Exercise 7.18

Establishing Directory Synchronization . . . . . . . . . . . . . . 336

Exercise 7.19

Configuring the Free/Busy Connector . . . . . . . . . . . . . . 338

Exercise 7.20

Migrating Domino Users . . . . . . . . . . . . . . . . . . . . 340

Exercise 8.1

Making a Registry Change . . . . . . . . . . . . . . . . . . . 360

Exercise 8.2

Installing and Configuring the Directory Connector Service . . . . . 370

Exercise 8.3

Creating a Foreign Domain Document . . . . . . . . . . . . . . 373

Exercise 11.1

Using Jetstress to Determine I/O Requirements . . . . . . . . . . 455

Exercise 11.2

Configuring Jetstress for Testing . . . . . . . . . . . . . . . . 458

Exercise 11.3

Analyzing the Test Results . . . . . . . . . . . . . . . . . . . 464

Exercise 13.1

Autodiscovery with a Domain-Joined Computer . . . . . . . . . . 500

Exercise 13.2

Autodiscovery with a Non–Domain-Joined Computer. . . . . . . . 502

Exercise 13.3

Create and Apply an Exchange ActiveSync Mailbox Policy to a User . 515

Exercise 13.4

Simplify Outlook Web Access URL . . . . . . . . . . . . . . . 522

Exercise 13.5

Redirection from HTTP to HTTPS . . . . . . . . . . . . . . . . 523

Exercise 13.6

Creating a New Send Connector Using the Exchange Management Console . . . . . . . . . . . . . . . . . . . . . 538

Exercise 14.1

Enabling Filtering Agents on the Hub Transport Server . . . . . . . 565

Exercise 14.2

Configuring an IP Allow List . . . . . . . . . . . . . . . . . . 567

Exercise 14.3

Configuring the IP Block List . . . . . . . . . . . . . . . . . . 571

Exercise 14.4

Configuring an Real-Time IP Block List Provider . . . . . . . . . . 577

Exercise 14.5

Configuring a Real-Time IP Allow List Provider . . . . . . . . . . 579

Exercise 14.6

Configuring Sender Filtering . . . . . . . . . . . . . . . . . . 582

Exercise 14.7

Testing Sender Filtering . . . . . . . . . . . . . . . . . . . . 584

Exercise 14.8

Configuring Recipient Filtering . . . . . . . . . . . . . . . . . 585

Exercise 14.9

Testing Recipient Filtering . . . . . . . . . . . . . . . . . . . 587

Exercise 14.10

Creating an SPF Record . . . . . . . . . . . . . . . . . . . . 588

Exercise 14.11

Configuring the Sender ID Filtering Agent . . . . . . . . . . . . 590

Exercise 14.12

Configuring the Content-Filtering Agent . . . . . . . . . . . . . 593

Exercise 14.13

Creating a Quarantine Mailbox . . . . . . . . . . . . . . . . . 594

Exercise 14.14

Designating the Quarantine Mailbox . . . . . . . . . . . . . . . 595

81461.book Page xxiv Wednesday, December 12, 2007 4:49 PM

Table of Exercises

xxv

Exercise 14.15

Configuring to Allow Keywords and Phrases . . . . . . . . . . . 596

Exercise 14.16

Configuring to Block Keywords and Phrases . . . . . . . . . . . 597

Exercise 14.17

Defining the Exceptional List . . . . . . . . . . . . . . . . . . 598

Exercise 14.18

Configuring the SCL Threshold Values. . . . . . . . . . . . . . 599

Exercise 14.19

Excluding Specific Senders and Sending Domains. . . . . . . . . 601

Exercise 14.20

Configuring Sender Reputation Filtering . . . . . . . . . . . . . 608

Exercise 15.1

Implementing a Company Disclaimer . . . . . . . . . . . . . . 638

Exercise 15.2

Manually Enable S/MIME Encryption in Outlook 2007 . . . . . . . 643

Exercise 15.3

Configuring a Journal Rule . . . . . . . . . . . . . . . . . . 650

Exercise 16.1

Creating Managed Custom Folders . . . . . . . . . . . . . . . 677

Exercise 16.2

Creating Managed Content Settings. . . . . . . . . . . . . . . 680

Exercise 16.3

Defining Managed Folder Mailbox Policies . . . . . . . . . . . . 683

Exercise 16.4

Configuring the Managed Folder Assistant . . . . . . . . . . . . 688

Exercise 16.5

Deploying Message Classifications . . . . . . . . . . . . . . . 696

Exercise 17.1

MOM 2005 SP1 Agent Action Account Configuration . . . . . . . . 762

81461.book Page xxv Wednesday, December 12, 2007 4:49 PM

81461.book Page xxvi Wednesday, December 12, 2007 4:49 PM

Introduction

Microsoft has recently changed its certification program to contain three primary series: Tech-nology, Professional, and Architect. The Technology Series is intended to allow candidates to target specific technologies and is the basis for obtaining the Professional Series and Architect Series certifications. The certifications in the Technology Series consist of one to three exams, focus on a specific technology, and do not include job-role skills. By contrast, the Professional Series focuses on a job role and is not necessarily focused on a single technology, but rather on a comprehensive set of skills for performing the job role being tested. The Architect Series offered by Microsoft includes premier certifications that consist of passing a review board con-sisting of previously certified architects. To apply for the Architect Series of certifications, you must have a minimum of 10 years of industry experience.

When you’ve obtained a Technology Series certification, you are recognized as a Microsoft Certified Technology Specialist (MCTS) on the specific technology or technologies that you have been tested on. The Professional Series certifications include Microsoft Certified IT Professional (MCITP) and Microsoft Certified Professional Developer (MCPD). Passing the review board for an Architect Series certification will allow you to become a Microsoft Certified Architect (MCA).

This book has been developed to give you the critical skills and knowledge you need to pre-pare for the exam for obtaining the MCITP: Enterprise Messaging Administrator certification (Exams 70-237 and 70-238).

The Microsoft Certified Professional Program

Since the inception of its certification program, Microsoft has certified more than 2 million people. As the computer network industry continues to increase in both size and complexity, this number is sure to grow—and the need for

proven

ability also will increase. Certifications can help companies verify the skills of prospective employees and contractors.

Microsoft has developed its Microsoft Certified Professional (MCP) program to give you credentials that verify your ability to work with Microsoft products effectively and professionally. Several levels of certification are available based on specific suites of exams. Microsoft has recently created a new generation of certification programs:

Microsoft Certified Technology Specialist (MCTS)

The MCTS can be considered the entry-level certification for the new generation of Microsoft certifications. The MCTS certification program targets specific technologies instead of specific job roles. You must take and pass one to three exams.

Microsoft Certified IT Professional (MCITP)

The MCITP certification is a Professional Series certification that tests network and systems administrators on job roles, rather than only on a specific technology. The MCITP certification generally requires completion of one to three exams, in addition to obtaining an MCTS-level certification.

Microsoft Certified Professional Developer (MCPD)

The MCPD certification is a Professional Series certification for application developers. Similar to the MCITP, the MCPD is focused on a job role rather than on a single technology. The MCPD certification generally requires completion of one to three exams, in addition to obtaining an MCTS-level certification.

81461.book Page xxvii Wednesday, December 12, 2007 4:49 PM

xxviii

Introduction

Microsoft Certified Architect (MCA)

The MCA is Microsoft’s premier certification series. Obtaining the MCA requires a minimum of 10 years of experience and requires the candidate to pass a review board consisting of peer architects.

How Do You Become Certified as an MCITP: Enterprise Messaging Administrator?

The MCITP: Enterprise Messaging Administrator certification requires an individual to pass two examinations and have an MCTS: Exchange Server 2007 Configuring certification. The two exams are the 70-237 and the 70-238, and they require extensive training in Exchange Server 2007 to complete.

Attaining a Microsoft certification has always been a challenge. In the past, students have been able to acquire detailed exam information—even most of the exam questions—from online “brain dumps” and third-party “cram” books or software products. For the new generation of exams, this is simply not the case.

Microsoft has taken steps to protect the security and integrity of its new certification tracks. Prospective candidates must complete a course of study that develops detailed knowledge about a wide range of topics. It supplies them with the true skills needed, derived from work-ing with the technology being tested.

Make sure you take a Microsoft Skills Assessment for Exchange Server 2007 to help you focus your exam preparation. You can find the assessments at

http://assessment.learning.microsoft.com/test/home.asp

.

The new generation of Microsoft certification programs is heavily weighted toward hands-on skills and experience. It is recommended that candidates have troubleshooting skills acquired through hands-on experience and working knowledge.

Fortunately, if you are willing to dedicate the time and effort to learn Exchange Server 2007, you can prepare yourself well for the exams by using the proper tools. By working through this book, you can successfully meet the exam requirements to pass the Designing Messaging Solu-tions with Microsoft Exchange Server 2007 and Deploying Messaging Solutions with Microsoft Exchange Server 2007 exams.

This book is part of a complete series of Microsoft certification Study Guides published by Sybex, which together cover the new exams and the core MCSA and MCSE operating-system requirements. Please visit the Sybex website at

www.sybex.com

for complete program and product details.

MCITP Exam Requirements

Candidates for MCITP certification on Exchange Server 2007 must pass three Exchange Server 2007 exams (in the case of this book, the Microsoft Certified IT Professional: Enter-prise Messaging Administrator, Exams 70-237 and 70-238). For a more detailed description of the Microsoft certification programs, including a list of all the exams, visit the Microsoft Learning website at

www.microsoft.com/learning/mcp

.

81461.book Page xxviii Wednesday, December 12, 2007 4:49 PM