“The User Profile Service service failed the logon” på Microsoft Exchange

Jag vet inte hur många gånger jag sagt till mig själv att jag skall skriva en post om detta problem

Ibland när man försöker logga in på en Exchange 2010 server kan man få upp följande felmeddelande:

The User Profile Service service failed the Logon
User Profile Cannot Be Loaded

problemet är åtkomst till en fil i användarens profil. Denna kopieras från defaultprofilen så det hjälper inte att ta bort sin profil och skapa en ny.

Filen är:

C:\Users\Default\AppData\Local\Microsoft\Exchange Server\V14\CmdletSqmData3700_100.sqm

Lösningen är ändra rättigheterna på filerna i default profilen till Everyone – Full Control

Edit: flyttade runt lite text då jag inte korrläst ordentligt. Tack Anders A

Too many devices…

Idag har jag stött på ett angenämt problem… Jag har för många tekniska gadgets. En del av er säger säkert att det är omöjligt… men enligt Microsoft Excahnge går gränsen vid 10…

image

Lösningen är ganska enkelt. Bärja med att skapa en ny ThrottlingPolicy som tillåter det antal enheter du vill öka till:

New-Throttlingpolicy "More Gadgets" -EasMaxDevices 20 -EasMaxConcurrency 20

Knyt policyn till den mailbox du vill skall kunna åtnjuta lyxen av flera enheter:

Set-Mailbox nissehult -ThrottlingPolicy "More Gadgets"

För att ändra den nya policyn till att tillåta ännu fler enheter:

Set-Throttlingpolicy "More Gadgets" -EasMaxDevices 25 -EasMaxConcurrency 25

Mest prylar när man dör vinner…

/Johan

Force update of Exchange 2010 address lists

If you add a new mailbox or a distribution list to your Exchange 2010 server you need to either wait for the address lists to update you can force them to update.

In the Exchange management prompt run:

Get-GlobalAddressList | update-GlobalAddressList
Get-AddressList | update-AddressList
Get-OfflineAddressBook | Update-OfflineAddressBook

On the Clients you might need to update the Offline Address Book by going to Send/Receive – Send/Receive Groups – Download Address Book…

/Johan

ActiveSync

Idag stötte jag på ett litet knivigt ActiveSync problem…

Vi har bytt SBS server hos en kund vilket innebär att de fått en ny Exchange 2010 server . Telefonerna som synkar ansluter till samma adress med samma inloggning och lösenord. En telefon visade sig inte funka… en SE Xperia X10i.

Spontant trodde jag att det var ett problem med ActiveSync klienten i telefonen (jag har haft vissa erfarenheter av att AS klienterna i Android inte är världens stabilaste). Efter lite testande visade det sig att jag kunde koppla samma telefon mot ett annat konto i samma mailserver… Skumt.

Jag letade lite i Eventloggen och sprang på följande:

   1: An exception occurred and was handled by Exchange ActiveSync. This may have been caused by an outdated or corrupted Exchange ActiveSync device partnership. This can occur if a user tries to modify the same item from multiple computers. If this is the case, Exchange ActiveSync will re-create the partnership with the device. Items will be updated at the next synchronization. 

   2:  

   3: URL=/Microsoft-Server-ActiveSync/default.eas?User=UserID&DeviceId=ApplXXXXXX&DeviceType=Android&Cmd=Sync

   4: --- Exception start ---

   5: Exception type: Microsoft.Exchange.AirSync.AirSyncPermanentException

   6: Exception message: A null value was received for the NTSD security descriptor of container CN=ExchangeActiveSyncDevices,CN=User Name,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=Domain,DC=local.

   7: Exception level: 0

   8: HttpStatusCode: 500

   9: AirSyncStatusCode: 110

  10: XmlResponse: 

  11: This request does not contain a WBXML response.

  12: Exception stack trace:    at Microsoft.Exchange.AirSync.ADDeviceManager.SetActiveSyncDeviceContainerPermissions(ActiveSyncDevices container)

  13:    at Microsoft.Exchange.AirSync.ADDeviceManager.CreateActiveSyncDeviceContainer(Boolean retryIfFailed)

  14:    at Microsoft.Exchange.AirSync.ADDeviceManager.CreateActiveSyncDevice(GlobalInfo globalInfo, ExDateTime syncStorageCreationTime, Boolean retryIfFailed)

  15:    at Microsoft.Exchange.AirSync.ADDeviceManager.CreateActiveSyncDevice(GlobalInfo globalInfo, ExDateTime syncStorageCreationTime)

  16:    at Microsoft.Exchange.AirSync.Command.UpdateADDevice(GlobalInfo globalInfo)

  17:    at Microsoft.Exchange.AirSync.Command.CompleteDeviceAccessProcessing()

  18:    at Microsoft.Exchange.AirSync.Command.WorkerThread()

  19: --- Exception end ---

Sökte lite och hittade så småningom en antydan till vad problemet kan bero på – Rättigheter i Active Directory.Det visade sig att Exchange Servern inte kunde skapa en relation med telefonen på användarens AD konto.

Lösningen är att i Active Directory Users and Computers aktivera Advanced Features i View menyn, öppna egenskaper för kontot, gå till fliken Security.

Klicka på knappen Advanced och i fliken Permissions klicka i “Include inheritable permissions from this objects parent”.

Exchange Server Blog: Room Mailbox Scripts Exchange Server 2007

Today i was looking for some good scripts for handling room mailboxes. I found these:

 

new-Mailbox -alias “Meeting Room” -database “Mailbox Database” -name “Meeting-Room” -resourcetype room –userPrincipalName room-meetingroom@exch.local –OU “Resource Mailboxes/Company”

Creates a new Room Mailbox

Set-MailboxCalendarSettings MeetingRoomAlias -AutomateProcessing:AutoAccept

Enables Auto Accept

Set-MailboxCalendarSettings MeetingRoomAlias – AddAdditionalResponse $True
Set-MailboxCalendarSettings MeetingRoomAlias – Additional Response “This is the custom Response”

Sets alternate decline response.

Links

Exchange Server Blog: Room Mailbox Scripts Exchange Server 2007

Enable Search folders in Outlook Web Access

I have started using this method for organizing my mail and since it is very reliant on search folders I wanted to be able to access my search folders from Outlook Web Access.

To get this working you need to do the following:

 

  1. Disable Cached Mode in Outlook
  2. Connect to the start Outlook and connect to the Exchange Server
  3. Refresh your Search Folders

 

If you re-enable Cached Mode it will still work but you will not be able to add new Search Folders

Links:

http://support.microsoft.com/kb/831400

Installing Exchange 2007 on Windows Server 2008

I have collected some links that I used when I did the install… Remember to fix the IPv6 problem

Links

http://www.simple-talk.com/exchange/exchange-articles/deploying-exchange-2007-on-windows-server-2008/
http://www.msexchange.org/articles_tutorials/exchange-server-2007/migration-deployment/installing-exchange-2007-windows-server-2008.html
http://technet.microsoft.com/en-us/library/bb691354.aspx

IPv6

http://msmvps.com/blogs/ehlo/archive/2008/06/12/1634433.aspx

Changing the SMTP Banner on Exchange 2003

When you set up a new Microsoft Exchange 2003 Server You get the following default SMPT Banner

220 internal.domain.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.3959 ready at  Thu, 20 Sep 2007 20:00:00 –0500

To change this you need to do two things:

 

Change the FQDN address in Exchange System Manager

  1. Open Exchange System Manager.

  2. Right-click YourServerProtocolsSMTPDefault SMTP Virtual Server (or your SMTP virtual server) and select Properties.

  3. On the Delivery tab, click Advanced…

  4. Under Fully-qualified domain name: enter the name you want to broadcast to the world.

 

Change the banner message

goto the folder Drive:InetpubAdminscripts and execute this:

cscript adsutil.vbs set smtpsvc/vsi number/connectresponse “Your Text”. Thos Changes the “Microsoft ESMTP MAIL Service, Version: 6.0.3790.3959 ready at” to “Your Text”

The vsinumber is usually 1 (the number of your SMTP host).

 

Links

http://forums.microsoft.com/TechNet/ShowPost.aspx?PostID=2164469&SiteID=17
http://support.microsoft.com/kb/836564