Solved

Applying Service Pack, Rollup Update and Windows update on Exchange Server

Posted on 2014-10-23
7
1,262 Views
Last Modified: 2014-10-24
Can anyone here please suggest me which steps or sequence that I need to follow in order to successfully bring up the Exchange Server 2010 to the latest service pack and the security updates ?

as at the moment the Version is 14.02.0387.000 (SP2) so I wonder if there is SP3 with Rollup Updates 7 slipstream already installed can be applied once on top of my current SP2 ?

also I haven't done much of Windows Update so there are quite a few updates to the OS that I need to do as well, so which order that I can do or apply ?

I will not install .NET Framework pushed by the Windows Update as it can be notoriously breaks Exchange functionality.
0
Comment
  • 4
  • 3
7 Comments
 
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 500 total points
ID: 40401211
There are no slipstream installations for Exchange 2010 and rollups. You can do it for NEW installations only, but not for updates.

Depending on how out of date the system is, I would usually service pack Exchange first. Then reboot.
When the machine is back, run Microsoft Update. That will include the rollup and leave that to get on with it.

I have never seen a netframework update break Exchange. I patch many Exchange servers each month, some that I built and some that I didn't and they just go straight in.

Simon.
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 40401222
The most risky part I guess is the CAS where the Webservices and auto discover relies on .NET framework mainly.

But shall I leave the windows update at the very last steps or after SP before the Rollup Updates ?

I'm still on SP2
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 40401781
As I wrote above, I do the service pack first, unless the machine is heavily out of date (so the service pack complains about missing updates). Then run Microsoft update to update both Windows and Exchange.

Simon.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 40401786
Cool,

So in this case is it recommended to take the snapshot before applying the update for CAS/HT role or the mailbox server can also be snapshot-ted before applying the update ?

I'm worried that if the Update causes some problem that prevents the server to perform the way it should.
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40401794
Snapshots are bad for Exchange, I never use them and I have seen nothing but problems from people who do.

Exchange is a living product, it makes changes to the AD domain. If you were to take a snapshot and the update was to fail, you would be unable to go back because of the changes it makes. Your only option would be to rebuild the machine.

Take an Exchange aware backup of the databases if you are that concerned, so that a rebuild is possible.
Hub/CAS role servers don't need a backup, if that fails they can be recovered in less than 90 minutes.

Simon.
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 40401815
Ah, I've never knew that before.

I was under the impression that only the mailbox server cannot be taken by snapshot due to the mailbox server used by the Outlook client to stores email.

now I have just learned something new as well that not even HT/CAS can use the VMware VSS snapshot.

Thank Simon
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40402309
Mailbox role is probably the one most affected, so you might get away with doing it on a hub/cas, but it isn't something I would recommend - particularly as you should upgrade the hub/cas first. If you were snapshot before the upgrade and then the upgrade failed midway through, then your snapshot would be an older version than the domain was expecting!

Simon.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article runs through the process of deploying a single EXE application selectively to a group of user.
This article outlines the process to identify and resolve account lockout in an Active Directory environment.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question