?
Solved

Applying Service Pack, Rollup Update and Windows update on Exchange Server

Posted on 2014-10-23
7
Medium Priority
?
1,315 Views
Last Modified: 2014-10-24
Can anyone here please suggest me which steps or sequence that I need to follow in order to successfully bring up the Exchange Server 2010 to the latest service pack and the security updates ?

as at the moment the Version is 14.02.0387.000 (SP2) so I wonder if there is SP3 with Rollup Updates 7 slipstream already installed can be applied once on top of my current SP2 ?

also I haven't done much of Windows Update so there are quite a few updates to the OS that I need to do as well, so which order that I can do or apply ?

I will not install .NET Framework pushed by the Windows Update as it can be notoriously breaks Exchange functionality.
0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 2000 total points
ID: 40401211
There are no slipstream installations for Exchange 2010 and rollups. You can do it for NEW installations only, but not for updates.

Depending on how out of date the system is, I would usually service pack Exchange first. Then reboot.
When the machine is back, run Microsoft Update. That will include the rollup and leave that to get on with it.

I have never seen a netframework update break Exchange. I patch many Exchange servers each month, some that I built and some that I didn't and they just go straight in.

Simon.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 40401222
The most risky part I guess is the CAS where the Webservices and auto discover relies on .NET framework mainly.

But shall I leave the windows update at the very last steps or after SP before the Rollup Updates ?

I'm still on SP2
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 2000 total points
ID: 40401781
As I wrote above, I do the service pack first, unless the machine is heavily out of date (so the service pack complains about missing updates). Then run Microsoft update to update both Windows and Exchange.

Simon.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 40401786
Cool,

So in this case is it recommended to take the snapshot before applying the update for CAS/HT role or the mailbox server can also be snapshot-ted before applying the update ?

I'm worried that if the Update causes some problem that prevents the server to perform the way it should.
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40401794
Snapshots are bad for Exchange, I never use them and I have seen nothing but problems from people who do.

Exchange is a living product, it makes changes to the AD domain. If you were to take a snapshot and the update was to fail, you would be unable to go back because of the changes it makes. Your only option would be to rebuild the machine.

Take an Exchange aware backup of the databases if you are that concerned, so that a rebuild is possible.
Hub/CAS role servers don't need a backup, if that fails they can be recovered in less than 90 minutes.

Simon.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 40401815
Ah, I've never knew that before.

I was under the impression that only the mailbox server cannot be taken by snapshot due to the mailbox server used by the Outlook client to stores email.

now I have just learned something new as well that not even HT/CAS can use the VMware VSS snapshot.

Thank Simon
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40402309
Mailbox role is probably the one most affected, so you might get away with doing it on a hub/cas, but it isn't something I would recommend - particularly as you should upgrade the hub/cas first. If you were snapshot before the upgrade and then the upgrade failed midway through, then your snapshot would be an older version than the domain was expecting!

Simon.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Course of the Month9 days, 9 hours left to enroll

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question