Exchange Server 2010 Tips and TricksEXL313

Scott SchnollPrincipal Technical WriterMicrosoft Corporation

Agenda

AnnouncementsThe BasicsPlanning and Deployment ToolsScripts and TroubleshootersThe Power of PowerShellWhat’s News?

ANNOUNCEMENTS

Exchange Virtualization Guidance Changes

Now Supported with Exchange 2010 SP1Combining DAGs with hypervisor-based clustering or migrationVirtualizing Unified Messaging Role

Requires minimum of 4 virtual processors and 16 GB memoryCan handle 40 concurrent calls with VP preview and 65 concurrent calls without

UM must be only Exchange guest VM on physical host (may change by TechEd)Consider network requirements (low latency, high bandwidth)

Role is susceptible to poor voice quality if undersized

Exchange Virtualization Guidance Changes

Attend this session for more details and Q&A:

EXL376-INT - Hewlett-Packard & Microsoft Q&A on Exchange Virtualization (May 17 @ 1:30pm in B303)

THE BASICS

Exchange Server 2010 Is…

RTM’d October 8, 2009GA since November 9, 2009

Downloadable from Microsoft Download Centerhttp://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=05741f65-2a7b-4070-879f-d74208d6171d

Hosting ~ 70 million mailboxes in the cloud!

Exchange Server 2010 SP1 Is…

Signed off for RTM at 11:08 AM PST on August 23, 2010RTW at 9:00 AM PST on August 25, 2010Available for download athttp://go.microsoft.com/fwlink/?LinkID=199950

Build no. 14.01.0218.015Supporting more languages than ever before

Unified Messaging languages: 25Client languages: 55Server languages: 15

Exchange Server 2010 SP1 Is…

Available in three Server EditionsStandard Edition (retail and volume)

MPC: 0264-385

Enterprise Edition (volume only)Includes all Exchange 2010 Standard features, plus support for up to 100 databases per serverMPC: 0264-2871

Hybrid Edition (volume only)This is a Standard Edition SKU designed to be a “gateway” for upgrading from previous versions of Exchange to Exchange OnlineMPC: 0264-2942 (offered for free)

Exchange 2010 Hybrid Edition

Can be used only for connecting on-premises environment with Office 365

If you move a mailbox to it, or leverage any features outside the scope of a hybrid deployment, you must purchase regular license and CALs

Multiple Hybrid Edition servers can be deployed, if neededCannot be licensed during Office 365 Beta

Customers should use Exchange 2010 SP1 trial bits during BetaAt commercial release of Office 365, request a key from Office 365 support

Not available for trial customers

Exchange Server 2010 SP1 Hosting Mode

For licensed hosters only!Installed using Setup.com /hosting switch

No GUI Setup for Hosting Mode

Requires new forest in Windows 2008 FFLSupported in a virtualized environmentIncludes cmdlets for creating and configuring Tenant Organization

Uses Service Plans to enable/disable specific features for Tenant OrganizationsUses Mailbox Plans during user provisioning to automatically populate user properties and assign default permissions

Exchange Server 2010 SP1 Hosting ModeFeatures not available in Hosting Mode

Co-existence with Exchange 2003 or Exchange 2007Exchange Management ConsolePublic FoldersUnified Messaging or Edge Transport rolesFederationCross-premise message tracking or calendar sharingIRMSupport for Outlook 2003Active Directory: Split Permissions; Multi-domain forestsSetup switches related to above features

See http://social.technet.microsoft.com/wiki/contents/articles/exchange-2010-sp1-information-for-hosted-service-providers.aspx

Exchange Server 2010 Updates

Latest SP1 updateUpdate Rollup 3 for Exchange Server 2010 SP1 (14.1.289.7)

Released April 6, 2011 (MSKB 2529939)

Latest RTM updateUpdate Rollup 5 for Exchange Server 2010 (14.0.726.0)

Released December 13, 2010 (MSKB 2407113)

See TechNet Wiki for more info -http://social.technet.microsoft.com/wiki/contents/articles/exchange-server-and-update-rollups-builds-numbers.aspx

PLANNING AND DEPLOYMENT TOOLS

Exchange Server Pre-Deployment Analyzer

http://msexchangeteam.com/archive/2010/02/24/454083.aspx

Focuses on overall topology readinessPerforms analysis of Exchange 2003/2007Supported on

Windows 7Windows Vista SP2Windows Server 2008 SP2Windows Server 2008 R2Windows Server 2003 SP2

Exchange Server Deployment Assistant

http://technet.microsoft.com/en-us/exdeploy2010On-Premises Only

Upgrade from Exchange 2003Upgrade from Exchange 2007Upgrade from Exchange 2003/2007New Exchange 2010 Org

Cloud OnlyMicrosoft Office 365 for Enterprises - http://go.microsoft.com/fwlink/?LinkId=203981

Hybrid Environment (On Premises + Cloud)Exchange 2003 and 2007 now; Exchange 2010 coming soon!

Mailbox Server Requirements Calculator

http://blogs.technet.com/b/exchange/archive/2009/11/09/3408737.aspx

Latest Version – v14.4User profileHigh availability architectureServer's CPU platformStorage architectureBackup architectureNetwork architecture

SCRIPTS AND TROUBLESHOOTERS

Exchange Remote Connectivity Analyzer

https://www.TestExchangeConnectivity.comUsed to verify a variety of client protocol connectivity from outside the organization

Exchange ActiveSyncExchange Web ServicesAutodiscover (ActiveSync and Outlook)Outlook AnywhereInbound and Outbound SMTP

scott@contoso.com

Mailbox Assistants Troubleshooter (SP1)

Mailbox Assistants perform event-based and time-based functions (e.g., free/busy, resource booking, conversations, calendar repair, etc.)Test-AssistantHealth can be used to verify the health of the Microsoft Exchange Mailbox Assistants services, to recover from health issues, and to report on the diagnosis or recovery actionIncludes ResolveProblems parameter which can

Start the service if it is not runningRestart the service if it is hung or deadlocked for more than 15 minutes

Database Log Growth Troubleshooter (SP1)

Troubleshoot-DatabaseSpace.ps1 detects excessive log growth issues and takes actionBy default

Runs every 15 minutes to determine available free spaceIf free space < 25%, tools runs an algorithm to determine if excessive log growth is cause

If it is cause, the tool quarantines or throttles mailboxes causing excessive growth, as appropriate

Defaults defined in StoreTSConstants.ps1

Database Log Growth Troubleshooter (SP1)

Tracks a variety of metrics, such as log generation rate and available disk space for database and log file disksDetermines top 25 users that accessed mailbox database during the last one-hour periodQuarantines mailboxes for 6 hours (users have no access to email)If it cannot drop the generation rate, it logs an event, removes the database from provisioning

Database Latency Troubleshooter (SP1)

Troubleshoot-DatabaseLatency.ps1 used by SCOM, but can be used outside of SCOM as a schedule task

Defaults defined in StoreTSConstants.ps1Checks for database latencies above value of LatencyThreshold (default is 70 ms)Checks disk’s transfer rate against read rate and read latency performance countersChecks to see if any user is using more than one thread for duration of TimeInServerThreshold (default is 10 min)

Database Latency Troubleshooter (SP1)

Disk’s transfers-per-second rate < DiskReadRateThresholdDisk’s seconds-per-transfer rate > DiskReadLatencyThreshold

If both conditions are true, it indicates that disk has high latency under low load, which often means the disk is going bad and needs replacing

User using more than one thread for duration of TimeInServerThreshold

Mailbox quarantined for 6 hours

Content Index Troubleshooter

Troubleshoot-CI.ps1 detects problems with content index catalogs-Action Detect is default setting

Use -Action DetectAndResolve or -Action Resolve to optionally attempt to fix different issues

DeadlockCorruptionStallBacklog

Troubleshoot-CI.ps1 -database DB1 -Symptom Corruption -Action Resolve

Easily Move the Transport Databases

No need to modify EdgeTransport.exe.config file to change location of transport databasesMove-TransportDatabase.ps1 moves the queue database, the IP filter database and the temporary storage locationsSame parameters as config file

QueueDatabasePathQueueDatabaseLoggingPathIPFilterDatabasePathIPFilterDatabaseLoggingPathTemporaryStoragePath

Easily Move the Transport Databases

Move-TransportDatabase.ps1 performs the following tasksIf moving to another drive, it validates free disk spaceCreates the specified paths, if they don’t already existPermissions the paths

Full control for NetworkService, LocalSystem and BuiltinAdministrators

Stops the Transport serviceBacks up the original config fileMoves the databases and associated filesStarts the Transport service

THE POWER OFPOWERSHELL

Using Exchange Management Tools

Exchange Management ShellGet-CommandGet-ExCommandFindparams (e.g., findparams *mailbox*)Wildcards (e.g., get-excommand *mailbox*)Pipelining (e.g., get-pssnapin *exchange* | add-pssnapinGet-tip (random tip of the day)

Exchange Management ConsoleUse Ctrl+C to copy scripts that are run by Wizards

Speaking of scripts…

In the Exchange Management Shell you can quickly navigate to the Scripts folder, no matter where your Exchange binaries are installed

cd $exscripts

What Edition am I running?

Quick, easy way to tell Edition of each Exchange Server

Get-ExchangeServer | ft Name, EditionGet-ExchangeServer <Server> | fl Edition

What Version am I running?

Get version information for all Exchange servers

Get-ExchangeServer | ft Name, *Version*

Get version information for specific Exchange server

Get-ExchangeServer <Server> | ft Name, *Version*

Handy and Powerful One-Liners

List servers by AD site and Server RoleGet-ExchangeServer | Sort Site,ServerRole,Name | ft -GroupBy Site -Property Name,ServerRole,AdminDisplayVersion –Auto

Create a shortcut for a cmdletNew-Alias -Name "get-opr" -Value "Get-OutlookProtectionRule"

Check service startup settingGet-WMIObject win32_service -filter "name = 'msExchangeRepl'"

Handy and Powerful One-Liners

List non-empty transport queues"$(date)"; Get-TransportServer | Get-Queue -filter {MessageCount -gt 0} | ft –Auto

View Remote Receive Connector IP RangesGet-ReceiveConnector “<Server>\<Connector>" | select remoteipranges | % {$_.remoteipranges} | % {$_.Lowerbound.tostring()}

Removing a Bulk Message

Delete one bulk message that’s clogging the systemGet-Queue | Get-Message | where{$_.MessageSubject -eq "Subject"} | Remove-MessageOptionally include the WithNDR parameter to specify whether a non-delivery report (NDR) is returned to the sender

Block Mode or File Mode (SP1)

Determine if continuous replication is operating in block mode or file mode

Get-Counter -ComputerName <DAGMemberName> -Counter "\MSExchange Replication(*)\Continuous replication - block mode Active“

Timestamp CounterSamples--------- --------------5/11/2011 1:50:14 PM \\ex1\\msexchange replication(db9)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db8)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db6)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db5)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db3)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db2)\continuous replication - block mode active : 1 \\ex1\\msexchange replication(db7)\continuous replication - block mode active : 0 \\ex1\\msexchange replication(db4)\continuous replication - block mode active : 0 \\ex1\\msexchange replication(db1)\continuous replication - block mode active : 0

Transport Dumpster Statistics

get-date;Get-MailboxServer | for each {get-databasecopystatus -MailboxServer $_.identity -DumpsterStatistics | ? {$_.SummaryCopyStatus -ne 'Mounted'}} | foreach {$_.DumpsterStatistics}

Server : E14EX2OldestItem : 4/21/2011 4:24:36 PMQueueSize : 1200NumberOfItems : 28

Getting All Logon Statistics from Outlook

Use Get-LogonStatistics to retrieve data such as logon time, last access time, client version, and adapter speedGet-LogonStatistics -Server <ServerName>

By default, Outlook 2010 and Outlook 2007 SP3 don’t transmit IP address, MAC address, username or machine name because it is considered PII

Check “Enable troubleshooting logging” checkbox or add registry entry to Outlook client to get this info

HKCU\Software\Policies\Microsoft\Office\14.0\Outlook\CancelRPC\EnablePerfTrackingHKCU\Software\Microsoft\Office\14.0\Outlook\CancelRPC\EnablePerfTracking

DWORD, Value: 0x00000028

WHAT’S NEWS?

Enable Kerberos Auth for MAPI Clients

We recommend enabling Kerberos authentication for MAPI clientsWe’ve made it easier to do this in Exchange 2010 SP1Why?

Exchange 2010 leverages a load-balanced namespace (RPC Client Access array) for MAPI access to mailbox dataBy default, Outlook and other MAPI clients that are configured to use Negotiate ultimately end up using NTLM authenticationAs the number of MAPI connections increases, there is potential for a bottleneck in handling of NTLM authentication

Enabling Kerberos Auth for MAPI Clients

Solution leverages an alternate service account (ASA) credential mechanismThe Microsoft Exchange Service Host service that runs on CAS has been extended to use a shared credential for Kerberos authentication

Monitors the local machine and when credentials are added or removed, the Kerberos authentication package on the local system and the network service context is updated and all client access services can use it for Kerberos authentication

See http://t.co/fpd6sNa for complete details on how to implement (uses rollalternateserviceaccountpassword.ps1)

SSL Offloading for Exchange Web Services

Using SSL Offloading requires you to disable SSL on CASIn Exchange 2010 RTM, enabling or disabling SSL for EWS virtual directory required you to use IIS Manager and to modify the web.config fileIn Exchange 2010 SP1, you only use IIS Manager

If you modify the web.config file, you’ll likely see WebHost Error 3 in the event log

See http://technet.microsoft.com/en-us/library/ee633481.aspx for details

Jetstress Field Guide Updated

April 2011 - 1.0.0.11Updated for version 14.01.225.017 of Jetstress Added Exchange Server 2003 instructions Added more troubleshooting information Added guidance for running Jetstress on a production Exchange Server Included guidance for testing Raid Arrays Included information and guidance on Background Database Maintenance General corrections and clarity improvements

Exchange Management Console and IE9

After installing Internet Explorer 9 on a system running the Exchange Management Tools, the console may fail to close

You must close all dialog boxes before you can close Exchange Management Console

Workaround: Use Task Manager to terminate mmc.exeThis is an IE bug, not an Exchange or MMC bugMay only repro when console is focused on Org Config | MailboxMay not manifest in other MMC apps

Exchange Team Blog Updates

Moved to a new home on TechNethttp://blogs.technet.com/exchange

Old namespace still works and should map to moved articlesClick the + symbol next to Library to get

DownloadsScriptsVideosExchange Documentation Library

Exchange Team Blog for Windows Phone 7

Get the Exchange Team Blog on your Windows Phone 7Search for EHLO in Zune Marketplace Apps

Related Content

EXL302 | Archiving and Discovery in Microsoft Exchange 2010 SP1 and Exchange Online

EXL306 | Best Practices for Virtualization of Microsoft Exchange 2010

EXL307 | Load Balancing with Microsoft Exchange Server 2010

EXL312 | Designing Microsoft Exchange 2010 Mailbox High Availability for Failure Domains

EXL401 | Exchange Server 2010 High Availability Management and Operations

EXL327 | Real-World Site Resilience Design in Microsoft Exchange Server 2010

Track Resources

Exchange Team Blog – http://blogs.technet.com/b/exchange

Exchange TechCenter – http://technet.microsoft.com/en-us/exchange/default.aspx

Lync TechCenter – http://technet.microsoft.com/en-us/lync

Lync Team Blog – http://blogs.technet.com/b/lync/

Resources

www.microsoft.com/teched

Sessions On-Demand & Community Microsoft Certification & Training Resources

Resources for IT Professionals Resources for Developers

www.microsoft.com/learning

http://microsoft.com/technet http://microsoft.com/msdn

Learning

http://northamerica.msteched.com

Connect. Share. Discuss.

Complete an evaluation on CommNet and enter to win!

MS Tag Placeholder Slide

© 2011 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to

be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS

PRESENTATION.