Archive for February, 2010

Redirecting to OWA & HTTP to HTTPS Automatically

Posted in Exchange Server with tags , on February 23, 2010 by Karim Hamdy

Most Customers requires auto redirection from HTTP to HTTPS and to OWA virtual directory , here is the way on how to do it :

Redirecting to OWA Virtual Directory :

  1. Start the Internet Information Services (IIS) Manager snap-in.
  2. Expand the local computer, expand Sites, and then click Default Web Site.
  3. At the bottom of the Default Web Site Home pane, click Features View if this option is not already selected.
  4. In the IIS section, double-click HTTP Redirect.
  5. Click to select the Redirect requests to this destination check box.
  6. Type the absolute path of the /owa virtual directory. For example, type https://mail.contoso.com/owa.
  7. Under Redirect Behavior, click to select the Only redirect requests to content in this directory (not subdirectories) check box.
  8. In the Status code list, click Found (302).
  9. In the Actions pane, click Apply.
  10. For the new settings to take effect, open a Command Prompt window, and then type iisreset /noforce to restart IIS.

Redirecting to HTTPS from HTTP :

Open note pad create new file and paste the following code in it :

<!– beginning of HttpRedirect.htm file –>
<script type=”text/javascript”>
function redirectToHttps()
{
var httpURL = window.location.hostname + window.location.pathname;
var httpsURL = “https://&#8221; + httpURL ;
window.location = httpsURL ;
}
redirectToHttps();
</script>
<!– end of HttpRedirect.htm file –>

<!– beginning of HttpRedirect.htm file –><script type=”text/javascript”>function redirectToHttps(){var httpURL = window.location.hostname + window.location.pathname;var httpsURL = “https://&#8221; + httpURL ;window.location = httpsURL ;}redirectToHttps();</script>

<!– end of HttpRedirect.htm file –>

save it as “HttpRedirect.htm”

Now go to IIS Manager and create New Error Page with code 403.4

from response action click insert content from static location and from file path insert the Httpredirect.htm path

from Action Menu click edit feature settings , and select Custom Error Page and set the default page to the HttpRedirect.htm file path and that’s It.

Check Out the Photos for more info.

Advertisements

Exchange 2010 ActiveSync Issue

Posted in Exchange Server on February 22, 2010 by Karim Hamdy

Today i’ve faced an issue regarding ActiveSync in Exchange 2010 , users cannot connect to ActiveSync after checking EventViewer the following error found :

Exchange ActiveSync doesn’t have sufficient permissions to create the “CN=<name>,OU=<OU Name>,DC=****,DC=****,DC=***” container under Active Directory user “Active Directory operation failed on <server>. This error is not retriable. Additional information: Access is denied.

with EventID 1053. after searching it appears to be this user does not have permissions on Exchange Servers . so here is how to resolve it.

Open Active Directory Users and Computers > Advanced Features > Open the user account Properties > Security > Advanced >Select Exchange Servers, and tick the Include inheritable permissions togglethen Apply and OK.

it seems to be this is a bug when upgrading from Exchange 2003 to Exchange 2010 although any new created users does not suffer this issue.

Installing RU1 for Exchange 2010

Posted in Exchange Server on February 17, 2010 by Karim Hamdy

When Installing RU1 for Exchange 2010  you might get Error 1603 in event viewer and the installation ends with no apparent reason All you have to do is Install the RU from an elevated Power Shell.

Also if you experience  long time in “Creating native images for .NET assemblies”  you have 2 choices either to Expose the Exchange server to the internet to allow it to download CRL files or disable this option in IE :

Tools \ Internet Options \ Security \ Check for Publishers Certificate Revocation

OCS & CCM

Posted in OCS/UC on February 14, 2010 by Ahmed Elnaggar

Last week, I was in a multinational   IT company to deploy OCS 2007 R2 server (Office Communication Server 2007 R2). This company wanted to use OCS service to decrease cost and to use OCS features which will help company’s needs and employee’s connections.

They decided to implement OCS 2007 R2 Standard Edition because they will test OCS features in a narrow scope or with a few number of company’s Employees and they wanted to implement the mediation server. But the company depends on Cisco Call Manager server as an IP telephone system and they wanted to make a migration between OCS & CCM to enable users to send & receive calls using their phones devices without needing OCS handsets.

So, as OCS implementers, I was in need to migrate OCS with CCM. I was in need to SIP trunk (Session Initiation Protocol) to enabling this migration process.

Now, I can say with a lot of confidence that the most critical step in this OCS implementation case was the migration process between OCS & CCM via this SIP trunk because we must be in sure that this trunk  really initiated correctly and we must keep in mind that if the migration process is failed, we will be in () case. Why?

We will think in two ways, the first that is the failure belongs to mediation server configuration? The second is the failure belongs to SIP trunk configuration in CCM Server?  So, we should keep in minds that we have to take care in initiation SIP trunk.

For more details, Kindly find below our documentation for creating SIP trunk in CCM Console.SIP Trunk01

Re-enable Disabled Mailbox

Posted in Exchange Server on February 13, 2010 by Karim Hamdy

when you accidently disable mailbox for certain user , so you go to disconnected mailboxes and look for it and it ain’t there ! it could be a problem especially when the disabled mailbox is for a CEO or a director or something , here is the way to get it back :

from PS run the following command

Clean-MailboxDatabase “Database Name”

it should appear on the disconnected mailboxes section in EMC , then you can reconnect it.

Error details: MapiExceptionNotFound: Unable to delete mailbox. (hr=0x8004010f, ec=-2147221233)

Posted in Uncategorized with tags , , , , on February 13, 2010 by Mahmoud Magdy

Hi,
Today we met a weired issue, we were in the middle of a migration from Exchange 2003 to Exchange 2010, mailboxes were moved to the Exchange 2010 but the source mailbox wasn’t deleted and we got the move request done with the following warning Error details: MapiExceptionNotFound: Unable to delete mailbox. (hr=0x8004010f, ec=-2147221233)

to solve this issue please apply service pack 2 to the Exchange 2003 servers, apply rollup update 1 to the Exchange 2010 and the following hotfix to the Exchange 2003 servers: http://support.microsoft.com/kb/940012

the issues should be resolved.
Mahmoud

Enabling NLA on Windows XP for Win 2008 Terminal Services

Posted in Active Directory with tags , on February 12, 2010 by Karim Hamdy
   
 

When connecting to a Windows 2008 Server using remote desktop from a Windows XP client running service pack 2 or earlier, you get the following error message:

The remote computer requires Network Level Authentication, which your computer does not support.

To enable NLA in XP machines; first install XP SP3, then edit the registry settings on the XP client machine to allow NLA

• Configure Network Level Authentication

1. Click Start, click Run, type regedit, and then press ENTER.
2. In the navigation pane, locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
3. In the details pane, right-click Security Packages, and then click Modify.
4. In the Value data box, type tspkg. Leave any data that is specific to other SSPs, and then click OK.
5. In the navigation pane, locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
6. In the details pane, right-click SecurityProviders, and then click Modify.
7. In the Value data box, type credssp.dll. Leave any data that is specific to other SSPs, and then click OK.
8. Exit Registry Editor.
9. Restart the computer.

If you get this error “An authentication error has occurred (Code: 0×80090303)”  All you have to do is request the following Hotfix from Microsoft

http://support.microsoft.com/kb/953760