Solved

Exchange 2010 - Unable to create public folder

Posted on 2015-01-10
21
96 Views
Last Modified: 2015-01-30
I am in the process of migrating my domain and Exchange 2010 to a different server.  Since I don't use the public folders I didn't replicate the public folders to the new server thinking I would just re-create the public folder database on the new server.  I have replicated AD on the new server.  I have exchange installed and all the mailboxes on the new server.   Exchange functions fine in that regard.
I have disconnected the old server and seized all of the FSMO roles to the new server.  Now when I try to create a new public folder database it won't let me.

This the command and results that I am getting:

[PS] C:\Windows\system32>new-publicfolderdatabase -Server 'MIGRATIONSERVER' -Name 'Public Folders' -EdbFilePath 'C:\Prog
ram Files\Microsoft\Exchange Server\V14\Mailbox\Public Folders\Public Folders.edb' -LogFolderPath 'C:\Program Files\Micr
osoft\Exchange Server\V14\Mailbox\Public Folders'
You must provide a value for this property.
    + CategoryInfo          : NotSpecified: (0:Int32) [New-PublicFolderDatabase], DataValidationException
    + FullyQualifiedErrorId : 3F52E9E4,Microsoft.Exchange.Management.SystemConfigurationTasks.NewPublicFolderDatabase

I know that I need a public folder database for offline address box functions, etc.  So I need to get this resolved before Monday when the office staff returns.

Any help would be appreciated.
0
Comment
Question by:David Barman
  • 11
  • 5
  • 3
  • +1
21 Comments
 
LVL 37

Expert Comment

by:Neil Russell
Comment Utility
"Although Exchange Server 2010 continues to support public folders, public folders are no longer required for access to the global address list or the offline ..."

You do NOT need public folders for that.

SOURCE
0
 

Author Comment

by:David Barman
Comment Utility
Regardless, I want the public folder database for the use of "public folders".  Please advise
0
 

Author Comment

by:David Barman
Comment Utility
In addition, the problem seems to move involved that I thought.

I also discovered that my offline address book is not valid.  However, when I try to create to new offline address book it won't let me.  it gives me the same error "You must provide a value for this property"

So there is some Exchange property that doesn't exist that is preventing any new items from being created.

Any ideas?
0
 
LVL 37

Expert Comment

by:Neil Russell
Comment Utility
You need to tidy up using ADSIEDIT.

You have not migrated everything that you had before so it is "Confused"

Use adsiedit to remove reference to the public folders.

Great blog article HERE on step by step how to do it.
0
 

Author Comment

by:David Barman
Comment Utility
Ok.  I looked at the Exchange 2010 instructions.

Under databases, I had already deleted the old public folder database.  I have NOT deleted the old Mailbox database from the old server (I didn't think that was a big deal at this point)

So I am not sure where to go from here.

Please advise.

thank you.
0
 
LVL 37

Expert Comment

by:Neil Russell
Comment Utility
So did you not do a proper migration? You can expect troubles for a long way ahead if you didnt follow a proper migration plan
0
 

Author Comment

by:David Barman
Comment Utility
I did a proper migration.  I replicated AD, installed exchange moved all of the mailboxes to the new server.
Then turned off the old server.  I seized all of the FSMO roles, performed metadata cleanup.  However, when I did the metadata cleanup for some reason it got an access denied error when removing the old server from AD.  So I had to manually removed the old DC in ADUC.  I am guessing this is why I am having a few quirks.

So I need to know how to manually fix what ever it is not seeing so I can get this server operational before Monday morning when the staff returns.

Any ideas?
0
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
I think command given missing one parameter
try adding public folder db name after new-publicfolderdatabase
It should be some thing like below
New-PublicFolderDatabase 'PFolder1' –Server 'ExServer1' -EdbFilePath 'D:\Exchange\PF\PFDatabase.edb'
–LogFolderPath 'D:\Exchange\PF\'

http://technet.microsoft.com/en-in/library/dd335208(v=exchg.141).aspx#UseShell
0
 

Author Comment

by:David Barman
Comment Utility
I thought I did.  As stated earlier this is the command I executed:  

new-publicfolderdatabase -Server 'MIGRATIONSERVER' -Name 'Public Folders' -EdbFilePath 'C:\Prog
ram Files\Microsoft\Exchange Server\V14\Mailbox\Public Folders\Public Folders.edb' -LogFolderPath 'C:\Program Files\Micr
osoft\Exchange Server\V14\Mailbox\Public Folders'

What do you think?
0
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
I seen that already
The command error clearly telling that value for property is missing
Can you try below please:
new-publicfolderdatabase -Name 'Public Folders' -Server 'MIGRATIONSERVER' -EdbFilePath 'C:\Program Files\Microsoft\Exchange Server\V14\Mailbox\Public Folders\Public Folders.edb' -LogFolderPath 'C:\Program Files\Micr
 osoft\Exchange Server\V14\Mailbox\Public Folders'


Right now I don't have exchange console, but I suspect that after new-publicfolderdatabase name must be there
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 

Author Comment

by:David Barman
Comment Utility
Ok.  I tried and this is what happened:

[PS] C:\Windows\system32>new-publicfolderdatabase -Name 'Public Folders' -Server 'MIGRATIONSERVER' -EdbFilePath 'C:\Pro
ram Files\Microsoft\Exchange Server\V14\Mailbox\Public Folders\Public Folders.edb' -LogFolderPath 'C:\Program Files\Mic
osoft\Exchange Server\V14\Mailbox\Public Folders'
You must provide a value for this property.
    + CategoryInfo          : NotSpecified: (0:Int32) [New-PublicFolderDatabase], DataValidationException
    + FullyQualifiedErrorId : 3DCFCBC4,Microsoft.Exchange.Management.SystemConfigurationTasks.NewPublicFolderDatabase

[PS] C:\Windows\system32>
0
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
OK
please run dcdiag /v and paste output here to see if anything wrong with AD
0
 

Author Comment

by:David Barman
Comment Utility
dcdiag /v results:

C:\Users\administrator.VALPAK>dcdiag /v

Directory Server Diagnosis

Performing initial setup:
   Trying to find home server...
   * Verifying that the local machine MigrationServer, is a Directory Server.
   Home Server = MigrationServer
   * Connecting to directory service on server MigrationServer.
   * Identified AD Forest.
   Collecting AD specific global data
   * Collecting site info.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=valpakdet,DC=c
om,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
   The previous call succeeded
   Iterating through the sites
   Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
   Getting ISTG and options for the site
   * Identifying all servers.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=valpakdet,DC=c
om,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
   The previous call succeeded....
   The previous call succeeded
   Iterating through the list of servers
   Getting information for the server CN=NTDS Settings,CN=MIGRATIONSERVER,CN=Ser
vers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   Getting information for the server CN=NTDS Settings,CN=SERVER,CN=Servers,CN=D
efault-First-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   * Identifying all NC cross-refs.
   * Found 2 DC(s). Testing 1 of them.
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\MIGRATIONSERVER
      Starting test: Connectivity
         * Active Directory LDAP Services Check
         Determining IP4 connectivity
         * Active Directory RPC Services Check
         ......................... MIGRATIONSERVER passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\MIGRATIONSERVER
      Starting test: Advertising
         The DC MIGRATIONSERVER is advertising itself as a DC and having a DS.
         The DC MIGRATIONSERVER is advertising as an LDAP server
         The DC MIGRATIONSERVER is advertising as having a writeable directory
         The DC MIGRATIONSERVER is advertising as a Key Distribution Center
         The DC MIGRATIONSERVER is advertising as a time server
         The DS MIGRATIONSERVER is advertising as a GC.
         ......................... MIGRATIONSERVER passed test Advertising
      Test omitted by user request: CheckSecurityError
      Test omitted by user request: CutoffServers
      Starting test: FrsEvent
         * The File Replication Service Event log test
         There are warning or error events within the last 24 hours after the
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause
         Group Policy problems.
         A warning event occurred.  EventID: 0x800034C4
            Time Generated: 01/10/2015   10:23:36
            Event String:
            The File Replication Service is having trouble enabling replication
from SERVER to MIGRATIONSERVER for c:\windows\sysvol\domain using the DNS name S
ERVER.valpakdet.com. FRS will keep retrying.
             Following are some of the reasons you would see this warning.

             [1] FRS can not correctly resolve the DNS name SERVER.valpakdet.com
 from this computer.
             [2] FRS is not running on SERVER.valpakdet.com.
             [3] The topology information in the Active Directory Domain Service
s for this replica has not yet replicated to all the Domain Controllers.

             This event log message will appear once per connection, After the p
roblem is fixed you will see another event log message indicating that the conne
ction has been established.
         A warning event occurred.  EventID: 0x800034C5
            Time Generated: 01/10/2015   10:32:59
            Event String:
            The File Replication Service has enabled replication from SERVER to
MIGRATIONSERVER for c:\windows\sysvol\domain after repeated retries.
         ......................... MIGRATIONSERVER passed test FrsEvent
      Starting test: DFSREvent
         The DFS Replication Event Log.
         Skip the test because the server is running FRS.
         ......................... MIGRATIONSERVER passed test DFSREvent
      Starting test: SysVolCheck
         * The File Replication Service SYSVOL ready test
         File Replication Service's SYSVOL is ready
         ......................... MIGRATIONSERVER passed test SysVolCheck
      Starting test: KccEvent
         * The KCC Event log test
         Found no KCC errors in "Directory Service" Event log in the last 15 min
utes.
         ......................... MIGRATIONSERVER passed test KccEvent
      Starting test: KnowsOfRoleHolders
         Role Schema Owner = CN=NTDS Settings,CN=SERVER,CN=Servers,CN=Default-Fi
rst-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         Role Domain Owner = CN=NTDS Settings,CN=SERVER,CN=Servers,CN=Default-Fi
rst-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         Role PDC Owner = CN=NTDS Settings,CN=SERVER,CN=Servers,CN=Default-First
-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         Role Rid Owner = CN=NTDS Settings,CN=SERVER,CN=Servers,CN=Default-First
-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         Role Infrastructure Update Owner = CN=NTDS Settings,CN=SERVER,CN=Server
s,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         ......................... MIGRATIONSERVER passed test
         KnowsOfRoleHolders
      Starting test: MachineAccount
         Checking machine account for DC MIGRATIONSERVER on DC MIGRATIONSERVER.
         * SPN found :LDAP/MigrationServer.valpakdet.com/valpakdet.com
         * SPN found :LDAP/MigrationServer.valpakdet.com
         * SPN found :LDAP/MIGRATIONSERVER
         * SPN found :LDAP/MigrationServer.valpakdet.com/VALPAK
         * SPN found :LDAP/566a4f7b-ac1f-423d-b7e9-6261d23efcc4._msdcs.valpakdet
.com
         * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/566a4f7b-ac1f-423d-b7
e9-6261d23efcc4/valpakdet.com
         * SPN found :HOST/MigrationServer.valpakdet.com/valpakdet.com
         * SPN found :HOST/MigrationServer.valpakdet.com
         * SPN found :HOST/MIGRATIONSERVER
         * SPN found :HOST/MigrationServer.valpakdet.com/VALPAK
         * SPN found :GC/MigrationServer.valpakdet.com/valpakdet.com
         ......................... MIGRATIONSERVER passed test MachineAccount
      Starting test: NCSecDesc
         * Security Permissions check for all NC's on DC MIGRATIONSERVER.
         The forest is not ready for RODC. Will skip checking ERODC ACEs.
         * Security Permissions Check for
           CN=Schema,CN=Configuration,DC=valpakdet,DC=com
            (Schema,Version 3)
         * Security Permissions Check for
           CN=Configuration,DC=valpakdet,DC=com
            (Configuration,Version 3)
         * Security Permissions Check for
           DC=valpakdet,DC=com
            (Domain,Version 3)
         ......................... MIGRATIONSERVER passed test NCSecDesc
      Starting test: NetLogons
         * Network Logons Privileges Check
         Verified share \\MIGRATIONSERVER\netlogon
         Verified share \\MIGRATIONSERVER\sysvol
         ......................... MIGRATIONSERVER passed test NetLogons
      Starting test: ObjectsReplicated
         MIGRATIONSERVER is in domain DC=valpakdet,DC=com
         Checking for CN=MIGRATIONSERVER,OU=Domain Controllers,DC=valpakdet,DC=c
om in domain DC=valpakdet,DC=com on 1 servers
            Object is up-to-date on all servers.
         Checking for CN=NTDS Settings,CN=MIGRATIONSERVER,CN=Servers,CN=Default-
First-Site-Name,CN=Sites,CN=Configuration,DC=valpakdet,DC=com in domain CN=Confi
guration,DC=valpakdet,DC=com on 1 servers
            Object is up-to-date on all servers.
         ......................... MIGRATIONSERVER passed test
         ObjectsReplicated
      Test omitted by user request: OutboundSecureChannels
      Starting test: Replications
         * Replications Check
         * Replication Latency Check
            CN=Schema,CN=Configuration,DC=valpakdet,DC=com
               Latency information for 8 entries in the vector were ignored.
                  8 were retired Invocations.  0 were either: read-only replicas
 and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
 latency information (Win2K DC).
            CN=Configuration,DC=valpakdet,DC=com
               Latency information for 8 entries in the vector were ignored.
                  8 were retired Invocations.  0 were either: read-only replicas
 and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
 latency information (Win2K DC).
            DC=valpakdet,DC=com
               Latency information for 8 entries in the vector were ignored.
                  8 were retired Invocations.  0 were either: read-only replicas
 and are not verifiably latent, or dc's no longer replicating this nc.  0 had no
 latency information (Win2K DC).
         ......................... MIGRATIONSERVER passed test Replications
      Starting test: RidManager
         * Available RID Pool for the Domain is 18118 to 1073741823
         * SERVER.valpakdet.com is the RID Master
         * DsBind with RID Master was successful
         * rIDAllocationPool is 7118 to 7617
         * rIDPreviousAllocationPool is 7118 to 7617
         * rIDNextRID: 7119
         ......................... MIGRATIONSERVER passed test RidManager
      Starting test: Services
         * Checking Service: EventSystem
         * Checking Service: RpcSs
         * Checking Service: NTDS
         * Checking Service: DnsCache
         * Checking Service: NtFrs
         * Checking Service: IsmServ
         * Checking Service: kdc
         * Checking Service: SamSs
         * Checking Service: LanmanServer
         * Checking Service: LanmanWorkstation
         * Checking Service: w32time
         * Checking Service: NETLOGON
         ......................... MIGRATIONSERVER passed test Services
      Starting test: SystemLog
         * The System Event log test
         Found no errors in "System" Event log in the last 60 minutes.
         ......................... MIGRATIONSERVER passed test SystemLog
      Test omitted by user request: Topology
      Test omitted by user request: VerifyEnterpriseReferences
      Starting test: VerifyReferences
         The system object reference (serverReference)
         CN=MIGRATIONSERVER,OU=Domain Controllers,DC=valpakdet,DC=com and
         backlink on
         CN=MIGRATIONSERVER,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Co
nfiguration,DC=valpakdet,DC=com
         are correct.
         The system object reference (serverReferenceBL)
         CN=MIGRATIONSERVER,CN=Domain System Volume (SYSVOL share),CN=File Repli
cation Service,CN=System,DC=valpakdet,DC=com
         and backlink on
         CN=NTDS Settings,CN=MIGRATIONSERVER,CN=Servers,CN=Default-First-Site-Na
me,CN=Sites,CN=Configuration,DC=valpakdet,DC=com
         are correct.
         The system object reference (frsComputerReferenceBL)
         CN=MIGRATIONSERVER,CN=Domain System Volume (SYSVOL share),CN=File Repli
cation Service,CN=System,DC=valpakdet,DC=com
         and backlink on
         CN=MIGRATIONSERVER,OU=Domain Controllers,DC=valpakdet,DC=com are
         correct.
         ......................... MIGRATIONSERVER passed test VerifyReferences
      Test omitted by user request: VerifyReplicas

      Test omitted by user request: DNS
      Test omitted by user request: DNS

   Running partition tests on : Schema
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation

   Running partition tests on : Configuration
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation

   Running partition tests on : valpakdet
      Starting test: CheckSDRefDom
         ......................... valpakdet passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... valpakdet passed test CrossRefValidation

   Running enterprise tests on : valpakdet.com
      Test omitted by user request: DNS
      Test omitted by user request: DNS
      Starting test: LocatorCheck
         GC Name: \\MigrationServer.valpakdet.com
         Locator Flags: 0xe00031fc
         PDC Name: \\SERVER.valpakdet.com
         Locator Flags: 0xe00033fd
         Time Server Name: \\MigrationServer.valpakdet.com
         Locator Flags: 0xe00031fc
         Preferred Time Server Name: \\SERVER.valpakdet.com
         Locator Flags: 0xe00033fd
         KDC Name: \\MigrationServer.valpakdet.com
         Locator Flags: 0xe00031fc
         ......................... valpakdet.com passed test LocatorCheck
      Starting test: Intersite
         Skipping site Default-First-Site-Name, this site is outside the scope
         provided by the command line arguments provided.
         ......................... valpakdet.com passed test Intersite
0
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
AD health sounds OK
Please check exchange events related to public folder creation in event viewer for which you may get resolution
0
 

Author Comment

by:David Barman
Comment Utility
I have looked and nothing is referring to the public folders.
I get similar errors when I try to create an offline address book.

On both it states:  You must provide a value for this property.

There is something missing that it is looking for but I don't know how to figure out what property it cannot find.
0
 
LVL 12

Expert Comment

by:Dave
Comment Utility
1. Do the full file paths exist that you are using. In fact why are you creating databases in "program files". This is not really a great place for public folders. Try creating a folder with a short name and creating a folder in there"

2. Do you have the correct permissions?

3. When you say you "deleted the public folders" what commands did you use to delete the public folders?

4. What happens if you add a "-DomainController" parameter pointing to your new Domain Controller...
0
 
LVL 12

Expert Comment

by:Dave
Comment Utility
Also If you look at the properties of the mailbox database what does it show for the associated public folder database?
0
 

Author Comment

by:David Barman
Comment Utility
I contacted Microsoft support.  There was missing/wrong information in AD.  He had to manually delete and create some entries with ADSIEDIT.  I am trying to see if I can get some detailed information as to what they did to resolve it.

However, afterwards, I was able to delete the existing offline address book and also create a public folders.  Upon doing so, I was able to install Exchange on my new server and start migrating the mailboxes from this server to the new server.
0
 
LVL 35

Expert Comment

by:Mahesh
Comment Utility
Thanks for update
If you could please publish what exact issue happened and how it got resolved, it will be really helpful
0
 

Accepted Solution

by:
David Barman earned 0 total points
Comment Utility
The following is Microsoft's notes as to what was done to resolve the issue:

  Open ADSIEDIT.MSC on the standard server and load the configuration naming context.

  Browse to the following location : Configuration\Services\Microsoft Exchange\[Your organization Name]\Administrative Groups\[Your administrative group]

  Under databases removed the old database entry for the old server.

  Created the folder hierarchies under the administrative group for the exchange using the following steps:
                =====================================

            1) Right click on your administrative group and select New Object.

2) Select msExchContainer as class and click next.

3) Enter the following as value: Folder Hierarchies.

=====================================


  Next we created the public folder tree object using the following steps:
=====================================

1) Right click Folder Hierarchies and select New Object.
           
2) Select msExchPFTree as class and click Next.

3) Enter the following as value: Public Folders and click Next.

4) Click on More Attributes button, drop down the “select a property to view” list, select msExchPFTreeType and set the attribute to 1.

5) Click ok and Finish.
=====================================

  Created the public folder database successfully.

  On the SBS 2011 server opened the command prompt and browse to the directory : C:\program files\Windows Small Business Server\BIN\CMPNENTS\EXCHANGE14_SP1.

  Ran setup.com /pad and setup.com /ps for updating the AD and the schema.

  Ran the setup for exchange but it failed.

  Opened adsiedit.msc and load the default naming context.

  Deleted the user FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042.

  Installed Mailbox server role from the command prompt using the setup.com /m:install /r:m.

  Created a new mailbox for the user FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042 using the below mentioned command on the Exchange PowerShell:

==========================================

New-Mailbox -Arbitration -Name FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042 -UserPrincipalName FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042@domain.com
0
 

Author Closing Comment

by:David Barman
Comment Utility
Paying Microsoft for support was the solution to the issue.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now