?
Solved

Best practices to update Exchange 2013 servers

Posted on 2014-11-21
9
Medium Priority
?
228 Views
Last Modified: 2014-12-15
Apart from probably staggering the schedules for downtime for critical and security update installs, amongst one's Exchange 2013 clusters, is there any information on best practices for critical and security update installations?

We have two physical sites, say (a) and (b).  Site (a) has one main virtual Exchange 2013 server, along with a 2nd. Exchange 2013 server from site (b) for possible disaster recovery, in that, if site (b) goes down, site (b) can continue to function as it has a server at site (a), etc.

Is there a routine or order in which the servers are updated and then rebooted?
0
Comment
Question by:nurturer69
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40459112
You can only update passive servers - if you attempt to patch an active server then it will failover to become the passive.
Therefore the rule is usually to do the current passive first (rather than trigger a failover), then failover and do the active.
However be aware that in a lot of cases, once you have failed over to the later version, you cannot fail back to an older version. This is because changes are made to the database.

The CAS role is AD site wide, so you will have clients using all servers in an AD site for CAS connectivity - it doesn't matter which DAG the server is a member of. As such, you should patch both servers in the same AD site so that the CAS role is at the same version, then patch the other site.

Simon.
0
 

Author Comment

by:nurturer69
ID: 40462868
The updates to install are from Windows Update in Control Panel, or is there a different setup file or executable to run?
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40463206
Windows Update will just update Windows and other applications - it doesn't do Exchange.
Exchange 2013 Cumulative Updates have to be done separately by downloading the update file and running setup.exe

Simon.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 

Author Comment

by:nurturer69
ID: 40464719
Will the server need to be placed into maintenance mode thru power shell on the server to be updated?

Example:

Set-ServerComponentState –Identity Server1 –Component HubTransport –State Draining –Requester Maintenance Get-Queue –Server Server1 | Format-Table Identity, MessageCount
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40465639
It doesn't have to be, although you can choose to do so.
I usually do so, but every now and then will not, which gives the failover capability a test.

Simon.
0
 

Author Comment

by:nurturer69
ID: 40465679
And is it necessary to update the schema?
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40465750
If the update requires it then it will do it for you.

Simon.
0
 

Author Comment

by:nurturer69
ID: 40466900
So, as a synopsis:

PART 1:
1) Download Cumulative update to passive server on site 1
2) Place server in maintenance mode (or don't - decision is arbitrary)
3) Launch Cumulative update setup.exe file
4) Wait for completion of updates
5) When complete, reboot server.

PART2:
1) Fail active server as passive, making recently updated passive server the active server on site 1
2) Download Cumulative update to passive server (normally active server) on site 1
2) Place server in maintenance mode (or don't - decision is arbitrary)
3) Launch Cumulative update setup.exe file
4) Wait for completion of updates
5) When complete, reboot server.
6) Fail active server over making it the passive server again.

STEP 3:
Perform testing by logging into EAC and OWA to check mailbox accessibility and Outlook functionality.

STEP 4:
Repeat same steps for site 2

Am I missing anything?
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 1500 total points
ID: 40469720
That is pretty much it. It isn't a difficult process by any means.
However if the schema master is not in the same site as the first server you are updating, you may find you have to wait for the schema updates to fully replicate before you can continue.

Simon.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In this Micro Tutorial viewers will learn how to use Windows Server Backup to create full image of their system. Tutorial shows how to install Windows Server Backup Feature on Windows 2012R2 and how to configure scheduled Bare Metal Recovery backup.…
In this Micro Tutorial viewers will learn how to restore their server from Bare Metal Backup image created with Windows Server Backup feature. As an example Windows 2012R2 is used.
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question