[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More







Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Share tech news, updates, or what's on your mind.

Sign up to Post

This is Exchange Server 2010
An external user sent an email to A, and CC'd B and C. All 3 users are on the same domain hosted on Exchange 2010.
A and C did not receive this email but B did.
I checked "Tracking Log Explorer" in the Toolbox from Exchange Management Console, it did not show the email arrived at A and C's mailbox, but it showed the email arrived at B's mailbox.
I also checked the antivirus software's log, it did not block anything related to the missing email.

What could be wrong?

Creating Active Directory Users from a Text File
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

AD Azure connect is syncing the local AD and Azure.  All mailboxes have been migrated.   My understand is that we have to purchase as many CALs as number of mailboxes we have, no matter where the mailboxes are stored (on premise or Office 365)   As we no longer run anything on the on premise Exchange I would have liked to decommission the server.

But it looks like we need to run at least one one premise Exchange to keep syncing some attributes.

Workaround is not supported by Microsoft.  

Is there something we could think of to get rid of the on premise Exchange?  

1.      Installed a new 2012 r2 server for a client as a new Domain Controller to replace their current 2011 Small Business Server.  (Using Virtual Machines)
2.      Installed Exchange 2013 on the server as client insists it has to be on the same server. New Exchange is set up and ready to go live with new emails as they are eliminating the other emails due to company name change.  However, they want to keep the old email (on Exchange 2010) until all of their contacts (old and new) have the new email address.
3.      Now need to move the old Exchange mailbox from the old 2010 Small Business Server to the new 2012 r2 server with Exchange 2013.
4.      Would like to have both emails on the Exchange 2013 server if possible
We have an Exchange 2016 server running on Server 2012. Last night our Exchange server stopped running and we attempted to run a Setup.exe /mode:recoverserver and originally we were receiving a buildtobuildupgrade error that would not allow us to proceed. After removing the BuildtoBuild entries in regedit we are now getting a new error when we try to run the installer. This is the error. I tried to find information on it but no one has seen this error before.

The following error was generated when "$error.Clear();
      buildToBuildUpgrade-ExsetdataAtom -AtomName MDB -DomainController $RoleDomainController

" was run: "Microsoft.Exchange.Management.Deployment.ExsetdataException: An error occurred with error code '3221685277' and message 'The service did not respond to the start or control request in a timely fashion.'.
   at Microsoft.Exchange.Configuration.Tasks.Task.ThrowTerminatingError(Exception exception, ErrorCategory category, Object target)
   at Microsoft.Exchange.Management.Deployment.ManageExsetdataAtom.HandleExsetdataReturnCode(UInt32 scErr)
   at Microsoft.Exchange.Management.Deployment.ManageExsetdataAtom.BuildToBuildUpgradeAtom(AtomID atomID)
   at Microsoft.Exchange.Management.Deployment.BuildToBuildUpgradeExsetdataAtom.InternalProcessRecord()
   at Microsoft.Exchange.Configuration.Tasks.Task.<ProcessRecord>b__91_1()
   at Microsoft.Exchange.Configuration.Tasks.Task.InvokeRetryableFunc(String funcName, Action func, Boolean …
I need to update the SSL Cert in my Exchange 2013 environment (2 MB servers, 2 CAS servers, 1 MB+CAS server).  The existing explicitly named cert expires in 2 weeks.  I want to update it to a different, already existing wildcard cert that we use for other servers.  (eg - existing cert is mail.domainname.com.  New cert is *.domainname.com)

So my question is, what is the process for installing this existing wildcard cert to my Exchange environment since I don't need to "renew" or create a CSR...I already have the cert.

Thanks in advance.
Question, when moving mailboxes to Office 365 (Exchange Online), the mailboxes don't seem to have AuditEnabled $True on the mailboxes, although the Org. Config is set to enable it by default.  

Get-OrganizationConfig | Select AuditDisabled


Any ideas as to why? we basically want AuditEnabled $True on by default as posted here: Link without us having to run the command manually after every mailbox is migrated.

Get-Mailbox -Identity Joe@contoso.com | FL *audit*

AuditEnabled     : False
AuditLogAgeLimit : 90.00:00:00

I'm looking at Votiro, Proofpoint & Israel email security products
to reduce spam, emails from bad reputation IP, emails with
malicious attachments & URL.

What are the features/criteria to assess or look out for?

Esp if I'm on O365.

a) can link to SpamHaus, RBL etc to get bad reputation IP?
b) offers CDR, sandboxing?
c) can claw back malicious emails from users' mailbox once
    Sandboxing completed analysis that an email or attachmt
    is malicious (Proofpoint has one such  product)
d) can withstand email blasting (eg: 80000/minute)
e) in the event the device has an issue, the ease / turnaround
    time to disable it (without changing MX record)
f) allows us to specify IOCs (bad reputation IP obtained from
    threat intelligence or specific payload's hash)
g) the ability to integrate with DLP products : is this supposed
    to be a function of O356 Exchange Online or the filter
    device (as usually such device will be registerd in MX):
    I recall Proofpoint used to be able to integrate with a
    network DLP Codegreen or am I mistaken?
h) ... help add on ...
Currently to allow the sending of mail from applications or printers (scan to mail) we used an anonymous smtp server. Our network team wants us to go as much as possible through a smtp server with authentication. To do this, we need to create one service account per application or printers.  
The question that is being debated between the AD/network and messaging team is: do all the service accounts that will be used have to have a mailbox to allow applications or printers to send mail?
Could you please confirm the good practice or what needs to be done for an application to send emails using the smtp server with authentication? With or without a mailbox for the service account?

we want to use our exchange servers for sending emails with authentication.

Additional question: is it possible to do it through Office 365?

Thank you in advance for your explanations and clarifications.

Exchange serveur 2010 SP3 and Office 365 : hybrid mode
Windows serveur 2008 R2.
I had created user accounts in active directory , they are synced though AAD syn to office 365 as unlicensed users.

can email flow to them as unlicensed users , if so is it for 30 days

in order to convert them to shared mailbox do I need to assign license first .

and make them regular mailbox first.

how to convert mailbox to shared mailbox.

what is the advanatage of having shared mailbox
We have Exchange 2016 server and would like to increase the size of email to 50 MB. We can increase the size at send connector and at transport config to 50 MB with the following commands.

Set-SendConnector <Connector Name> –MaxMessageSize 50MB

Set-TransportConfig –MaxSendSize 50MB –MaxReceiveSize 50MB

However, I am not sure about the receive connector. As there are many receive connectors again one Exchange server so should I have to increase the limit of all receive connectors of Exchange server with the below command?  Please guide me on this case.

Get-ReceiveConnector | Set-ReceiveConnector -MaxMessageSize 50MB
Determine the Perfect Price for Your IT Services
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

How can i run the query below against a csv file?  Or import the list from the CSV to run against the query;

Get-MailboxPermission -Identity <mailbox> | where  { ($_.AccessRights -eq "FullAccess") -and ($_.IsInherited -eq $false) -and -not
($_.User -like "NT AUTHORITY\SELF") } | ft @{Name="Identity";expression={($_.Identity -split "/")[-1]}}, User –AutoSize

Many thanks!
Hybrid Exchange 2010 with Exchange On-Line/Office 365.
AD Cloud Sync with on-Prem AD Server.
Skype For Business as Part Of Office 365 Premium

Years ago I tried installing a Lync Server, though never got all the way though. My Exchange User had a SIP email address entry in it.  This was Causing my Outlook to complain that My SIP and SMTP Addresses were not the same.   No One else in the Organization had a SIP email entry so I just removed mine. After that I could no longer login to Skype For Business. Did the Delete of the Appropriate files on my Machine, cleared the Stored Credentials, waited 24 hours and I still cannot login to Skype on ANY Machine (Mac/PC/PC) I can login to Exchange OWA, office Portal, Sharepoint, etc. Just not Skype. I seem to be the only affected user, other users are not affected.

Reading though many google searches I came across Update-CsUserDatabase which is supposed to Pull a copy of the User's Attributes from AD, though when I go to run that Command I get: "Update-CsUserDatabase' is not recognized as the name of a cmdlet"
Though I can execute other get-Cs Commands with no issues, so I know I have a Good connection to the back end SfB.   (See Below) I can cycle though other Update-Cs Commands, just not the Update-CsUserDatabase one.

Is there a new way to refresh the backend User Database foe Skype For Business when its part of Office365?

PS C:\Windows\system32> remove-PSSession $cssession
PS C:\Windows\system32>

Open in new window



$dls = Get-DistributionGroup -ResultSize Unlimited
foreach($dl in $dls)
 $mem = get-distributiongroupmember -identity $dl.name
 if($mem.count -eq 0)
 write-host $dl.name

how do I pipe above command to csv file

In an Exchange 2007 environment, right clicking "remove" on a mailbox deletes the mailbox and the AD object. Does anybody know how long that process takes for the AD object to remove? I ask, because I removed some mailboxes over a week ago and the AD objects are still present. My deleted mailbox retention policy is only 3 days.

Hope somebody can offer some advice.


I have followed the "Step-by-step Exchange 2007 to 2013 migration" made by Mohammed Saeed Abdelaziz at this link


I have done it in a test environment, and have testet everything except the mailflow from outtside, and everything seems to work fine, but I have one single question I hope someone could answer.

When i reach "Move mailboxes" in part 3, I can see that the user can use his/hers mailbox under migration and after that ends, he/shes been asked to reopen the outlook client, and then outlook connects to the mailbox on the new server.

My question is If there's incomming mails while the mailbox migtrate, what happens to those mails?, are they migrated at the end or what?

I hope you can help
Excahage 2013 Active Sync stopped working.

In IIS ActiveSync Authentication is set to Basic. And HTTP redirect is not enabled.

Connectivity analyzer shows the following error:

             Attempting to send the OPTIONS command to the server.
       Testing of the OPTIONS command failed. For more information, see Additional Details.
              Additional Details
       An HTTP 403 forbidden response was received. The response appears to have come from IIS7. Body of the response: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>IIS 8.5 Detailed Error - 403.0 - Forbidden</title> <style type="text/css"> <!-- body{margin:0;font-size:.7em;font-family:Verdana,Arial,Helvetica,sans-serif;} code{margin:0;color:#006600;font-size:1.1em;font-weight:bold;} .config_source code{font-size:.8em;color:#000000;} pre{margin:0;font-size:1.4em;word-wrap:break-word;} ul,ol{margin:10px 0 10px 5px;} ul.first,ol.first{margin-top:5px;} fieldset{padding:0 15px 10px 15px;word-break:break-all;} .summary-container fieldset{padding-bottom:5px;margin-top:4px;} legend.no-expand-all{padding:2px 15px 4px 10px;margin:0 0 0 -12px;} legend{color:#333333;;margin:4px 0 8px -12px;_margin-top:0px; font-weight:bold;font-size:1em;} a:link,a:visited{color:#007EFF;font-weight:bold;} a:hover{text-decoration:none;} h1{font-size:2.4em;margin:0;color:#FFF;} h2{font-size:1.7em;margin:0;color:#CC0000;} …
I've been tasked to move Exchange 2010 mailboxes to another 2010 server. After moving a mailbox to a new database/server what is the best way to update a users Outlook profile to reflect the new server. I thought Auto-discovery would take care of this but in my testing that appears not to be the case. Or is the best approach to recreate the profile? If so what tool/script is best for this. Thanks for the help.
Hello Experts

Within about 24 hours after a reboot of my edge server, mail stops flowing from the edge server to the mailbox server.

I have one edge server and one mailbox server.  The mailbox is Exchange 2016 on Server 2012 R2 and the edge is Exchange 2016 on Server 2016.  The edge server is in a public-IP-addressed DMZ.  This edge server is a new deployment.  The old edge server was was on the same subnet as the mailbox server and did not have this problem.

This has been going on for a week.  I restore mail flow by rebooting the edge server with its windows firewall turned off.  Then mail flows to the mailbox server for about a day.  When I reboot the edge server with the windows firewall still up, mail does not start flowing.  I turn the windows firewall back on immediately after rebooting.  

The Application event log on the edge server shows events 1022, 12025, and 8019 after reboot regardless whether the firewall was up or down.

Nslookup on edge shows that it obtains DNS for the Active Directory DNS server and for the mailbox server.

Telnet port 25 from edge to mailbox, and mailbox to edge, is successful.

A port query tool on the mailbox server indicates port 50636 on edge is listening.

Test-EdgeSynchronization is always "Normal".

The edge firewall has an inbound rule allowing traffic on all ports from the mailbox server.

I believe this all shows that DNS and edge synchronization are working correctly.

As time goes by, after a reboot of …
I performed an Exchange 2010 to 2016 migration for a customer last month.  There is a user account that shows up in Exchange EMC that does not exist in AD and has no mailbox (as queried from ECP.)  It shows no disconnected mailboxes or anything.  I believe in-house IT removed this user years ago (perhaps improperly) when they were on Exchange 2010.

When you highlight or open (edit) the user in ECP the warning shows:  The operation couldn't be performed because object '8f83fce7-02bc-4e0f-b9d6-eae8777a9320' couldn't be found on 'DC.domain.local'.

If you try to remove (delete) the user or disable the mailbox you receive the error:
Recipient "domain.local/Users/User Name CNF:8f83fce7-02bc-4e0f-b9d6-eae8777a9320" couldn't be read from domain controller "DC.domain.local" This may be due to replication delays. Switching out of Forest mode should allow this operation to complete successfully.

Again, this user does not exist in AD and I believe this issue also existed in Exchange 2010 as I did not migrate a mailbox for this user.

Any ideas how to completely purge this account out?
Big Business Goals? Which KPIs Will Help You
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

Global catalog server cannot see the objects from child domains, so they cannot access their mailboxes if the child domains controller is down,                                  note that the organization has one exchange 2016 server in parent domain only
We having Exchange Server 2013 and now planning to move to Office 365 exchange online.

What i should need to do to migrate by moving some users to Office 365 and keep the rest users in Exchange on-premises server
Hi all

I've got an issue in my organization.
I've configured for user A send on behalf to rights in Exchange 2010 of shared mailbox A.
Also User B, User C and so on...

Now, User A is sending a mail from shared mailbox A on behalf of.
But in send items it said: User B on behalf of shared mailbox A.

How is this possible?
We installed Exchange Management tools CU6 version  on my  PC. I removed it from my PC in order to install cu10. I am now unable to install CU10 version of Mgmt tools.
It error out at the prerequisite check stage, the PC has met the requirement in the CU6 installation and also  .Net 4.7.1 is in the PC.
I ran setup /role:mt /IAcceptExchangeserverlicenseterms. it was copying the file then checking the prerequisites and error out.
I want to query 1 mailbox for 1 email

I want to confirm that email is with that user

I have the subject of the email
I am having an issue of uninstalling the Exchange management tools.
It has completed the pre-checking part and failed at stopping services.
I tired via CMD at BIN dir as well as through control panel.
Error in the log as below.

the task 'Start-PreSetup'
[11/09/2018 17:40:41.0702] [1] Setup launched task 'Start-PreSetup -Mode 'Uninstall' -Roles @()'  
[11/09/2018 17:40:41.0717] [1] Unexpected error [0x11B36DCD] while executing command 'Start-PreSetup -Mode 'Uninstall' -Roles @()'.
[11/09/2018 17:40:41.0717] [1] Cannot bind argument to parameter 'Roles' because it is an empty array.
[11/09/2018 17:40:41.0717] [0] Exception has been thrown by the target of an invocation.
[11/09/2018 17:40:41.0717] [0] Unexpected error [0x11B36DCD] while executing command 'Start-PreSetup -Mode 'Uninstall' -Roles @()'.
[11/09/2018 17:40:41.0717] [0] Cannot bind argument to parameter 'Roles' because it is an empty array.
[11/09/2018 17:40:41.0717] [0] CurrentResult SetupLauncherHelper.loadassembly:444: 1
[11/09/2018 17:40:41.0717] [0] The Exchange Server setup operation didn't complete.  More details can be found in ExchangeSetup.log located in the <SystemDrive>:\ExchangeSetupLogs folder.
[11/09/2018 17:40:41.0717] [0] CurrentResult main.run:235: 1
[11/09/2018 17:40:41.0717] [0] CurrentResult setupbase.maincore:396: 1






Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.