Moving Exchange 2007 OAB's after migration to Exchange 2010
Hi.
I have migrated from exchange 2007 to exchange 2010 without any issues.
Now I am in the process of migrating from the temporary virtual server that I created, back to the physical hardware that the old exchange 2007 was runing on.
I have installed exchange 2010 on this box, and everything works fine.
I have moved all the roles and public folder replicas to the new server.
But I cant touch any of the OAB's on this server.
When i use the move command, I get a message about the object is an older version (2007), and cant be managed by this version of exchange.
**********
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:00
company OAB
Failed
Error:
Property LastTouchedTime can't be set on this object because it requires the object to have version 0.10 (14.0.100.0) or later. The object's current version is 0.1 (8.0.535.0).
Exchange Management Shell command attempted:
move-OfflineAddressBook -Identity '\company OAB' -Server 'server'
Elapsed Time: 00:00:00
******************
How do I upgrade them, and why didnt this just happen with the initial move?
I have tried going in with ADSIedit.msc and changing the ExchangeVersion property to the correct version, which allows me to get past this error, BUT I then get a premission error.
******************
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:01
company OAB
Failed
Error:
Active Directory operation failed on server.domain.tld. This error is not retriable. Additional information: Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
The user has insufficient access rights.
Exchange Management Shell command attempted:
move-OfflineAddressBook -Identity '\company OAB' -Server 'server'
Elapsed Time: 00:00:01
******************
I might mention that everything works fine for the users, there are about 200users and 12 OAB's
I need to move the OAB's so that I can delete the public folder on the other server, and uninstall it.
I'm not really familiar with changing access rights on OAB's, what commands could I look into etc. ?
Hope someone can help.
I have migrated from exchange 2007 to exchange 2010 without any issues.
Now I am in the process of migrating from the temporary virtual server that I created, back to the physical hardware that the old exchange 2007 was runing on.
I have installed exchange 2010 on this box, and everything works fine.
I have moved all the roles and public folder replicas to the new server.
But I cant touch any of the OAB's on this server.
When i use the move command, I get a message about the object is an older version (2007), and cant be managed by this version of exchange.
**********
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:00
company OAB
Failed
Error:
Property LastTouchedTime can't be set on this object because it requires the object to have version 0.10 (14.0.100.0) or later. The object's current version is 0.1 (8.0.535.0).
Exchange Management Shell command attempted:
move-OfflineAddressBook -Identity '\company OAB' -Server 'server'
Elapsed Time: 00:00:00
******************
How do I upgrade them, and why didnt this just happen with the initial move?
I have tried going in with ADSIedit.msc and changing the ExchangeVersion property to the correct version, which allows me to get past this error, BUT I then get a premission error.
******************
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:01
company OAB
Failed
Error:
Active Directory operation failed on server.domain.tld. This error is not retriable. Additional information: Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
The user has insufficient access rights.
Exchange Management Shell command attempted:
move-OfflineAddressBook -Identity '\company OAB' -Server 'server'
Elapsed Time: 00:00:01
******************
I might mention that everything works fine for the users, there are about 200users and 12 OAB's
I need to move the OAB's so that I can delete the public folder on the other server, and uninstall it.
I'm not really familiar with changing access rights on OAB's, what commands could I look into etc. ?
Hope someone can help.
ASKER
I have already looked hard at that article, but I will give it a try again...
Could you perhaps specify what part of the article I should concentrate on?
Could you perhaps specify what part of the article I should concentrate on?
ASKER
I cant apply mandatory properties to the OAB's
[PS] C:\Windows\system32>set-of
MinAdminVersion -2147453113 does not match Exchange Version 0.10 (14.0.100.0) (should be -536840812).
+ CategoryInfo : NotSpecified: (\1000fryd OAB:ADObjectId) [Set-OfflineAddressBook], DataValidationExcepti
on
+ FullyQualifiedErrorId : 6D91DAF9,Microsoft.Exchang
[PS] C:\Windows\system32>set-of
MinAdminVersion -2147453113 does not match Exchange Version 0.10 (14.0.100.0) (should be -536840812).
+ CategoryInfo : NotSpecified: (\1000fryd OAB:ADObjectId) [Set-OfflineAddressBook], DataValidationExcepti
on
+ FullyQualifiedErrorId : 6D91DAF9,Microsoft.Exchang
ASKER
I have been through the haystack with adsi eddit, and checked effective premissions.
My administrator account has full access to all OAB's on the server.
My administrator account has full access to all OAB's on the server.
You need to update them and then move them.
Update-OfflineAddressBook -Identity MyOAB
http://technet.microsoft.com/en-us/library/aa995979.aspx
Update-OfflineAddressBook -Identity MyOAB
http://technet.microsoft.com/en-us/library/aa995979.aspx
ASKER
Narayah singh : I have aready tried that.
It does not update the properties of the object in the ad.
IT still remains the same version, and therefor I am unable to move it.
And again, if I manually update the properties, the object is still unmoveable because of a premissions error.. :(
It does not update the properties of the object in the ad.
IT still remains the same version, and therefor I am unable to move it.
And again, if I manually update the properties, the object is still unmoveable because of a premissions error.. :(
ASKER
FYI, I noticed that I cant even create a new OAB from the EMC.
though strangely enough my custom oab provisioning scripts are able to do this...
HAve not been able to tell a difference between the script and the command executed by the emc..
though strangely enough my custom oab provisioning scripts are able to do this...
HAve not been able to tell a difference between the script and the command executed by the emc..
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Brilliant Narayan!
I had not noticed that exchange servers group required access, I was hooked on my administrative users access, and totally disregarded the need for the server itself to have write access...
I have disabled inheritance for other reasons, but adding full control to the exchange servers group AND modifying the Exchange version attribute of the object to 44220983382016
allowed me to do the move!
updating and applying mandatory properties afterwards didnt do anything neverthe less, so I will just have to take my chances that the objects will behave propertly in their new location.
I had not noticed that exchange servers group required access, I was hooked on my administrative users access, and totally disregarded the need for the server itself to have write access...
I have disabled inheritance for other reasons, but adding full control to the exchange servers group AND modifying the Exchange version attribute of the object to 44220983382016
allowed me to do the move!
updating and applying mandatory properties afterwards didnt do anything neverthe less, so I will just have to take my chances that the objects will behave propertly in their new location.
I performed the exact same move/upgrade you did and got the
Property LastTouchedTime can't be set on this object because it requires the object to have version 0.10 (14.0.100.0) or later. The object's current version is 0.1 (8.0.535.0).
error as well. But rather than using ADSIedit.msc, I loaded Exchange 2007 management tools on my desktop, "ran as admin" and tried the "move request" again. It worked! Not sure why the OAB's version didn't change when I did the initial move from 2007 to 2010.
Property LastTouchedTime can't be set on this object because it requires the object to have version 0.10 (14.0.100.0) or later. The object's current version is 0.1 (8.0.535.0).
error as well. But rather than using ADSIedit.msc, I loaded Exchange 2007 management tools on my desktop, "ran as admin" and tried the "move request" again. It worked! Not sure why the OAB's version didn't change when I did the initial move from 2007 to 2010.
Please go through.
http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/exchange-2007-issues-mailbox-management.html