Professional Documents
Culture Documents
3. 4. 5. 6.
7. 8. 9.
10. In the Connection Settings dialog box, in the Connection Point section, in the Select a well known Naming Context list, click Configuration, and thenclick OK. 11. In the left pane, expand Configuration[NYC-DC1.Contoso.com], and thenclick CN=Configuration,DC=Contoso,DC=com. 12. Expand CN=Services, and verify that the CN=Microsoft Exchange has notbeen created. 13. Close ADSI Edit.
3.
4. 5.
6.
At the command prompt, type _ldap._tcp.dc._msdcs.Contoso.com, and thenpress ENTER. Verify that an SRV record is returned. Close the command prompt.
7.
3. 4. 5. 6.
7.
8. 9.
10. In the Control Panel, click Programs. 11. In the Programs window, click Programs and Features. Verify that MicrosoftFilter Pack 1.0 is installed. Close the Programs and Features window.
Results: After this exercise, you should have evaluated the requirements for Active Directory directory service, DNS, and servers
3. 4.
5.
6. 7. 8. 9.
Click Next. On the Web Server (IIS) page, click Next. On the Select Role Services page, under Security, select the DigestAuthentication check box. Under Performance, select the Dynamic Content Compression check box.
10. Under IIS 6 Management Compatibility, select the IIS 6 ManagementConsole check box. 11. Click Next, and then click Install. 12. Click Close. 13. Click Start, point to Administrative Tools, and click Services. 14. In the Services list, double-click Net.Tcp Port Sharing Service. 15. In the Net.TCP Port Sharing Service Properties dialog box, in the Startuptype drop down list, click Automatic, then click Apply. 16. Click Start, wait for the service to start, click OK, and then close the Servicesconsole.
2. 3.
4. 5. 6. 7.
Results: After this exercise, you should have installed the Windows Server 2008 server roles and features, and prepared AD DS for an Exchange Server 2010 installation.
2. 3. 4. 5. 6. 7.
8. 9.
10. On the Configure Client Access server external domain page, click Next. 11. On the Customer Experience Improvement Program page, click I dont wish to join the program at this time, and click Next. A readiness check takes place to ensure that Exchange is ready to install on the server. This check takesseveral minutes to complete. 12. Click Install. The installation begins, and takes approximately 15-20 minutesto complete. 13. Click Finish. 14. Click Close and Yes to exit Exchange Server 2010 Setup. You are not obtaining the critical updates for Exchange Server 2010 because the virtualmachine does not have Internet connectivity.
Results: After this exercise, you should have installed Exchange Server 2010.
3.
4.
3. 4.
2.
3.
4.
5. 6. 7.
8. 9.
In the User logon name box, type TestUser. In the Password and Confirm password boxes, type Pa$$w0rd.
10. Click Next. 11. On the Mailbox Settings page, in the Alias box, type TestUser, and then clickNext to accept the mailbox settings. 12. On the Archive Settings page, click Next. 13. Click New to create the new mailbox. 14. Click Finish. 15. Click Start, point to All Programs, and then click Internet Explorer. 16. In the Address bar, type https://NYC-SVR2/owa, and then press ENTER. 17. Click Continue to this website (not recommended) to proceed. 18. Log on as Contoso\TestUserwith a password of Pa$$w0rd. 19. Click OK to accept the default Outlook Web App settings. 20. Click New to create a new message. 21. Click Continue to this website (not recommended). 22. In the Tobox, type Administrator. 23. In the Subject box, type Test Message, and then click Send. 24. Close Internet Explorer. 25. Click Start, point to All Programs, and then click Internet Explorer. 26. In the Address bar, type https://NYC-SVR2/owa and press ENTER. 27. Click Continue to the website (not recommended) to proceed. 28. Log on as Contoso\Administrator with a password of Pa$$w0rd. 29. Click OK to accept the default Outlook Web App settings. 30. Double-click the message from TestUserto read it. Click Continue to thiswebsite (not recommended). 31. Close the message from TestUser. 32. Close Internet Explorer.
4. 5. 6. 7. 8. 9.
10. When the scan is complete, click the View a report of this Best Practices scanlink. 11. On the Critical Issues tab, click Unrecognized Exchange signature. This gives you the option to get information about how to fix the problem or hidethe message. 12. Click Tell me more about this issue and how to resolve it. This opens the Microsoft Exchange Server Best Practices Analyzer Help, and provides specificinformation about the warning and troubleshooting it. 13. Close Exchange Server Best Practices Analyzer Help. 14. Close the Exchange Server Best Practices Analyzer Tool.
Results: After this exercise, you should have verified the successful installation ofExchange Server 2010 by viewing the Exchange Server services and folders. Youshould also have created a new user and sent a test message to that user. Finally,you should have used the Exchange Server Best Practices Analyzer tool to viewinformation about any installation issues.
Important: Start the VAN-DC1 virtual machine first, and ensure that it is fully started before starting the other virtual machines.
6. 7.
Wait for VAN-DC1 to start, and then start VAN-EX1. Connect to the virtual machine. Wait for VAN-EX1 to start, and then start VAN-EX3. Connect to the virtual machine.
2.
3. 4. 5.
6. 7. 8. 9.
2. 3. 4. 5. 6.
4. 5. 6. 7. 8.
Results: After this exercise, you should have created a new database, set the specified limits, and moved the existing Accounting database to a new folder.
2.
3. 4.
5. 6. 7. 8. 9.
2. 3. 4.
5. 6. 7. 8. 9.
2. 3. 4. 5.
2. 3. 4.
5. 6. 7. 8.
On the General tab, note the Total Items and Size of the items in the publicfolder. Click OK. Close the Public Folder Management Console. Close the Exchange Management Console.
Results: After this exercise, you should have created a new public folder databaseon VAN-EX3 and added replicas for each public folder.
Important: Start the VAN-DC1 virtual machine first, and ensure that it is fullystarted before starting the other virtual machines.
6. 7.
Wait for VAN-DC1 to start, and then start VAN-EX1. Connect to the virtualmachine. Wait for VAN-EX1 to start, and then start VAN-CL1. Connect to the virtualmachine.
2.
3. 4. 5. 6. 7. 8. 9.
10. In the Fully qualified domain name (FQDN) box, typevan-dc1.adatum.com, click OK, and then click Next. 11. On the Configure smart host authentication settings page, click Next. 12. On the Source Server page, ensure that VAN-EX1 is listed, and then clickNext. 13. On the New Connector page, click New, and then click Finish.
2. 3. 4. 5. 6. 7. 8. 9.
10. In the Internet Receive Connector window, on the General tab, in theProtocol logging level list, click Verbose.
11.
On the Permission Groups tab, select the Anonymous userscheck box, andthen click OK.
2. 3.
4.
5. 6.
7.
8. 9.
2. 3. 4.
5. 6. 7. 8.
Note: If the VAN-DC1.adatum.com message queue is not empty, verify that theSimple Mail Transfer Protocol (SMTP) service is running on VAN-DC1.
9.
On VAN-DC1, click Start, point to All Programs, point to Accessories, andthen click Command Prompt.
10. At the command prompt, type telnet van-ex1 smtp, and then press ENTER. 11. Type helo, and press ENTER. 12. Type mail from:info@internet.com, and press ENTER.Response: 250 2.1.0 Sender OK 13. Type rcpt to:WeiYu@adatum.com, and press ENTER.Response: 250 2.1.5 Recipient OK 14. Type data, and press ENTER.Response: 354 Start mail input; end with <CRLF>.<CRLF> 15. Type Subject: Test from Internet, and press ENTER. 16. Press the PERIOD key, and then press ENTER. 17. Type Quit, and press ENTER. 18. On VAN-EX1, start Internet Explorer, and connect to https://VANEX1.adatum.com/OWA. 19. Log on as Adatum\Wei with the password Pa$$w0rd. 20. Verify that the mail with the subject Test from Internet mail has arrived inthe Junk E-Mail folder. Close Internet Explorer.
Results: After this exercise, you should have configured Internet message transportby configuring Send and Receive connectors, enabling anti-spam functionality, andverifying Internet message delivery.
7. 8. 9.
10. On VAN-EX2, start Internet Explorer, and connect to https://VANEX2.adatum.com/OWA. 11. Log on as Adatum\Anna with the password Pa$$w0rd. 12. On the Microsoft Outlook Web App page, click OK. 13. Reply to the mail Test Mail to VAN-EX2 from Wei. 14. Switch back to VAN-EX1, and check the Inbox in Microsoft Outlook WebApp to see if the mail has arrived.
3. 4. 5. 6. 7.
8. 9.
On the Queues tab, click Site2, and scroll to the right to view the Last Errorcolumn. Read the Last Error message of that Queue.
10. Click Start, point to All Programs, point to Accessories, and then clickCommand Prompt. 11. At the command prompt, type telnet van-ex2 smtp, and press ENTER. Verifythat you receive a Connect failed error. 12. On VAN-EX2, open the Exchange Management Console. Expand MicrosoftExchange On-Premises, expand Server Configuration, click Hub Transport,and then click VAN-EX2 in the Hub Transport pane. 13. On the Receive Connectors tab, notice that only the Client VAN-EX2connector exists. This is the reason the server does not accept a port 25connection. 14. In the Actions pane, click New Receive Connector. 15. In the New Receive Connector window, in the Name box, type InternalVAN-EX2. 16. In the Select the intended use for this Receive connector list, click Internal,and then click Next. 17. On the Remote Network settings page, click Next. 18. On the New Connector page, click New, and then click Finish. 19. Switch to VAN-EX1, and in Exchange Management Console, click Toolbox. 20. In the Toolbox pane, under Mail flow tools, click Queue Viewer. 21. Right-click site2, and then click Retry to force an immediate retry of themessage delivery. Verify that the queue now has a message count of 0. 22. Switch to VAN-EX2, and check Annas Inbox in Outlook Web App to see thatthe message is now delivered.
Results: After this exercise, you should have verified routing logs, and used theother troubleshooting tools in Exchange Server to troubleshoot message transport.
5. 6.
7.
8. 9.
10. Click Search. 11. In the Search Results window, select the message with the subject AnotherMail to Internet from VANEX2, and then click Details. 12. In the middle pane of the Delivery Report window, notice that the Status ofthe message is Pending. 13. Review the Delivery Report pane as it lists every route the message has takenin the Exchange Organization. At the end of the list, you will see the reasonwhy the message is pending.
14. Click Close in the Delivery Report pane. 15. In Exchange Management Console, click Toolbox. 16. In the Toolbox pane, under Mail flow tools, double-click Mail FlowTroubleshooter. 17. On the Updates and Customer Feedback page, click Do not check forupdates on startup and I dont want to join the program at this time. ClickGo to Welcome Screen. 18. On the Exchange Mail Flow Troubleshooter page, in the Enter anidentifying label for this analysis text box, type Internet Message DeliveryFailure. 19. Under What symptoms are you seeing?, click Messages are backing up inone or more queues on a server. Click Next. 20. On the Enter Server and User Information page, enter the followinginformation, and then click Next: Exchange Server Name: VAN-EX1 Global Catalog Server Name: VAN-DC1 21. On the Basic Server Information page, review the information, and then clickNext. 22. On the Initial Queue Analysis Results page, click the displayed item, reviewthe information, and then click Next. 23. On the Remote Delivery Queue(s) Initial Analysis Results page, review theinformation, scroll down, and then click Next. 24. On the DNS Availability Check Results, review the information, and thenclick Next. 25. On the DNS Record Analysis Results, review the information, and then clickNext. 26. On the Remote Delivery Queue(s) DNS Records Analysis Results, noticethat the wizard has identified a possible root cause, and then click Next. 27. On the Remote Delivery Queue(s) Connectivity Test Results page, reviewthe information, and then click Next. 28. On the Remote Delivery SMTP Instance Configuration Analysis Resultspage, click Next. 29. On the Remote SMTP Service Diagnosis Results page, click Next. 30. On the Remote Delivery Queue(s) Message Tracking Log Analysis Resultspage, click Next. 31. On the Remote Delivery Queue(s) SMTP Commands Analysis Results page,click Next. 32. On the Third-Party Application Analysis Results, click Next. 33. On the View results page, click the Root Causes tab, review the displayedinformation, and then close the Troubleshooting Assistant. 34. Switch to VAN-DC1, click Start, point to All Programs, point to Accessories,and then click Command Prompt.
35. At the command prompt, type nslookup, and then press ENTER. 36. Type set querytype=MX, and press ENTER. 37. Type internet.com, and press ENTER. The query will timeout, which indicatesthat the domain name cannot be resolved. This means that the host cannotdirectly resolve a Domain Name System (DNS) domain and has to use a smarthost to send a message to the internet. 38. On VAN-EX1, in Exchange Management Console, expand OrganizationConfiguration, and then click Hub Transport. 39. On the Send Connectors tab, double-click Internet Send Connector. 40. Click the Network tab, select Route mail through the following smart hosts,and then click Add. 41. In the Add smart host dialog box, in the Fully qualified domain name(FQDN) box, type vandc1.adatum.com, click OK, and then click OK again. 42. In Exchange Management Console, click Toolbox. 43. In the Toolbox pane, under Mail flow tools, double-click Queue Viewer. 44. Right-click internet.com, and then click Retry to force message delivery retry.
Results: After this exercise, you should have identified and resolved issues inInternet message delivery by using the Exchange Server troubleshooting tools suchas Message Tracking and Mail Flow Troubleshooter.
Important: Start the VAN-DC1 virtual machine first, and ensure that it is fullystarted before starting the other virtual machines.
6. 7.
Wait for VAN-DC1 to start, and then start VAN-EX1. Connect to the virtualmachine. Wait for VAN-EX1 to start, and then start VAN-SVR1. Connect to the virtualmachine.
2.
3. 4. 5.
6. 7.
2.
3. 4.
5.
6.
7. 8. 9.
10. Beside Subscription file, click Browse. Browse to the C:\ clickVAN-SVR1.XML click Open, and then click New. 11. On the Completion page, click Finish.
Task 3: Verify that EdgeSync is working and that Active DirectoryLightweight Directory Services contains data
1. On VAN-EX1, click Start, point to All Programs, point to Microsoft Exchange Server 2010, and then click Exchange Management Shell. In Exchange Management Shell, at the command prompt, typeStart-EdgeSynchronization, and then press ENTER. At the command prompt, type Test-EdgeSynchronization, and then pressENTER. Ensure that the result displayed includes SyncStatus: Normal, otherwise youneed to wait for another minute and run Test-EdgeSynchronizationagain. At the command prompt, type Get-User -Identity Wei | ft Name, GUID, andthen press ENTER. Write down the first eight characters of the globally unique identifier (GUID) in your notes. Switch to VAN-SVR1, click Start, point to All Programs, point to Accessories,and then click Command Prompt. At the command prompt, type LDP, and then press ENTER. In the LDP window, click Connection on the menu bar, and then clickConnect.
2.
3. 4.
5. 6. 7.
8. 9.
10. In the Connect window, type VAN-SVR1 in the Server box, type 50389 in thePort box, and then click OK. 11. Click Connection on the menu bar, and then click Bind. 12. In the Bind window, in the Bind type pane, click Bind as currently logged onuser, and then click OK. 13. Click View on the menu bar, and then click Tree. 14. In the Tree View dialog box, clear any entry in the BaseDNfield, and thenclick OK. 15. In the LDP window, in the left pane, double-click OU=MSExchangeGatewayto expand it. 16. Double-click CN=Recipients,OU=MSExchangeGateway. 17. By using the GUID you entered in previous steps, you can locate the recipient. It starts with CN=<GUID>. After you find it, double-click the recipient GUID,and review the data that is available for this recipient. Close LDP.
1.
On VAN-EX1, in Exchange Management Console, expand Organization Configuration, and then click Hub Transport. Click the Send Connectors tab. Double-click EdgeSync - Default-First-Site-Name to Internet. Click the Network tab, click Route mail through the following smart hosts,and then click Add. In the IP address field, type 10.10.0.10, and then click OK twice. In Exchange Management Shell, type Start-EdgeSynchronization, and then press ENTER. At the command prompt, type Exit, and then press ENTER. Start Windows Internet Explorer, and connect to https://VANEX1.adatum.com/owa. Log on as Adatum\Wei using the password Pa$$w0rd.
2. 3. 4. 5. 6. 7. 8. 9.
10. On the Microsoft Outlook Web App page, click OK. 11. Create and send a new e-mail to Info@Internet.com with the subject TestMail to Internet. 12. Verify that you do not get a non-delivery report message.
Results: After this exercise, you should have installed an Edge Transport server role,and configured Edge Synchronization between a Hub Transport and an EdgeTransport server.
5.
2. 3. 4. 5. 6.
7.
8.
9.
This will send 11 messages with the following spam confidence level (SCL) ratings:
Mail sender Msg1@contoso.com Msg2@contoso.com Msg3@contoso.com Msg4@contoso.com Msg5@contoso.com Msg6@contoso.com Msg7@contoso.com Msg8@contoso.com Msg9@contoso.com Msg10@contoso.com Msg11@contoso.com
SCL level
7 8 7 7 8 6 8 7 6 6 8
10. On VAN-EX1, start Internet Explorer, and connect to https://VANEX1.adatum.com/OWA. 11. Log on as Adatum\Wei using the password Pa$$w0rd. 12. In the Mail pane, click Inbox. You should see three new messages in theInbox. If not, wait for another minute until they arrive. 13. In the Inbox pane, double-click the message from Msg10@contoso.com. 14. In the message window, click Message Details on the toolbar. 15. In the Message details window, identify the SCL level of this message bylooking for X-MS-ExchangeOrganization-SCL in the Internet Mail Headersbox. Then click Close to close Message Details. Close the message window. 16. In the Mail pane, click Junk E-Mail. You should see eight new messages in theJunk E-Mail folder that have been identified as junk mail as their SCL level wasmore than six. You can verify this by looking at the Message Details of themessages. 17. Delete all messages in the Inbox and Junk E-Mail folders.
2. 3. 4. 5. 6. 7.
they have a SCL level of 7 or more. Thus, only three messages willreach Weis Inbox, and the other messages should not be delivered to theusers Junk E-Mail folder. 8. 9. On VAN-EX1, start Internet Explorer, and connect to https://VANEX1.adatum.com/OWA. Log on as Adatum\Wei using the password Pa$$w0rd.
10. In the Mail pane, click Inbox. Notice the three new messages in the Inbox. 11. To delete all messages in the Inbox, select them, and then click Delete.
6. 7. 8. 9.
10. In the Mail pane, click Inbox. You should see 11 new messages in the Inbox. 11. Double-click one message, and review the Message Detail. The SCL ratingshould be -1. When the sending SMTP server is added to the IP Allow List,content filtering is not applied to the messages. 12. To delete all messages in the Inbox, select them, and then click Delete.
Results: After this exercise, you should have configured different SCL levels, andverified the behavior of junk mail in user mailboxes. You should also haveconfigured a Block List Provider.
Important: Start the VAN-DC1 virtual machine first, and ensure that it is fullystarted before starting the other virtual machines.
6. 7. 8.
Wait for VAN-DC1 to start, and then start VAN-EX1. Connect to the virtualmachine. Wait for VAN-EX1 to start, and then start VAN-EX2. Connect to the virtualmachine. Wait for VAN-EX2 to start, and then start VAN-EX3. Connect to the virtualmachine.
3.
3. 4.
5. 6. 7. 8.
4.
5.
On the Exchange Configuration page, expand Client Access server (OutlookWeb App), and then select both the Outlook Web App is on the Intranet andOutlook Web App is on the Internet check boxes. Verify thatMail.adatum.com is displayed in the second text box. Expand Client Access server (Exchange ActiveSync), and then verify thatExchange Active Sync is enabled check box is selected. Expand Client Access server (Web Services, Outlook Anywhere, andAutodiscover). Enter mail.adatum.com as the external host name. Ensure that both the Autodiscover used on the Internet check box and theLong URL option are selected, and then click Next. In the Autodiscover URLto use field, delete all entries except for autodiscover.adatum.com, and thenclick Next. On the Certificate Domains page, click Next.
6.
7.
8.
9.
10. On the Organization and Location page, enter the following information: Organization: A Datum Organizational Unit: Messaging Country/region: Canada City/locality: Vancouver State/province: BC 11. Click Browse, type CertRequestas the File name, and then click Save. 12. Click Next, click New, and then click Finish.
6. 7. 8. 9.
11. On the Advanced Certificate Request page, click Submit a certificate requestby using a base-64encoded CMC or PKCS#10 file, or submit a renewalrequest by using a base-64-encoded CMC or PKCS#7 file. 12. On the Submit a Certificate Request or Renewal Request page, click in theSaved Request field, and then press CTRL+V to paste the certificate requestinformation into the field. 13. In the Certificate Template drop-down list box, click Web Server, and thenclick Submit. Click Yes. 14. On the Certificate Issued page, click Download certificate. 15. In the File Download dialog box, click Save. 16. In the Save As dialog box, click Save. 17. In the Download complete dialog box, click Open. 18. In the Certificate dialog box, on the Details tab, click Subject AlternativeName. Verify that the certificate includes several Subject Alternative Names(SANs), and then click OK.
Task 5: Import and assign the IIS Exchange Service to the NewCertificate
1. 2. 3. 4. 5. 6. 7. 8. 9. In the Exchange Management console, click Server Configuration. Click ADatum Mail Certificate, and in the Actions pane, click CompletePending Request. On the Complete Pending Request page, click Browse. Under Favorites, click Downloads. Click certnew.cer and click Open. Click Complete, and then click Finish. In the Exchange Management console, click Server Configuration. In the results pane, click VAN-EX2. In the bottom pane, click Adatum MailCertificate. In the Actions pane, click Assign Services to Certificate.
10. On the Select Servers page, verify that VAN-EX2 is listed, and then click Next. 11. On the Select Services page, select the Internet Information Services checkbox, click Next, click Assign, and then click Finish.
3. 4. 5. 6.
On the Outlook 2007 Startup page, click Next. On the E-Mail Accounts page, click Next. On the Auto Account Setup page, click Next. On the Configuring page, click Finish.
Note: If Microsoft Office Outlook cannot connect to the server, ensure that all ofthe Microsoft Exchange Server services on VAN-EX2 that are set to Automatic startare started. Start all services that have not started, and try connecting again.
7. 8. 9.
In the User Name dialog box, click OK. On the Privacy Options page, clear all check boxes, and then click Next. On the Sign up for Microsoft Update page, click I dont want to useMicrosoft Update, and then click Finish.
10. In the Microsoft Office Outlook dialog box, click No. 11. In Office Outlook, click Tools, and then click Account Settings. 12. Click MollyDempsey@adatum.com, and then click Change. 13. Verify that the user mailbox is located on VAN-EX2, click Cancel, and thenclick Close. 14. Close Outlook.
5.
2. 3. 4. 5. 6.
Click Features. In the Features list, verify that the RPC over HTTP Proxyfeature is listed. On VAN-EX2, if required, open the Exchange Management Console. In the Exchange Management Console, expand Server Configuration, andthen click Client Access. Click VAN-EX2, and in the Actions pane, click Enable Outlook Anywhere. On the Enable Outlook Anywhere page, in the External host name field, typeMail.adatum.com. Under Client authentication method, click NTLMauthentication, and then click Enable. On the Completion page, click Finish. Close all open windows, and then restart VAN-EX2.
7. 8.
3. 4. 5. 6.
7.
8. 9.
10. On the Change E-mail Account page, click Finish. 11. On the E-mail Accounts page, click Close, and then click Close again to closethe Mail Setup - Outlook dialog box.
3. 4.
If an Outlook dialog box appears, click No. Verify that the Outlook connection indicator states Connected to MicrosoftExchange.
Note: If Outlook cannot connect to the server, ensure that all of the ExchangeServer services on VAN-EX2 that are set to Automatic start are started. Start allservices that have not started, and try connecting again.
5.
Press and hold CTRL, and then right-click the Office Outlook icon in theWindows 7 operating system notification area. You may need to click the uparrow in the Windows 7 notification area to view the Office Outlook icon. Click Connection Status. Confirm that the Conn column lists HTTPS as theconnection method. Click Close. Press and hold CTRL, and then click the Outlook icon in the Windows taskbar notification area. Click Test E-mail AutoConfiguration. In the Password field, type Pa$$w0rd.
6. 7. 8.
9.
10. Clear the Use Guessmartand Secure Guessmart Authentication checkboxes. 11. Click Test. View the information displayed on the Results tab. 12. Click the Log tab to view how the client completed Autodiscover. 13. Close the Test E-mail AutoConfigurationdialog box. 14. Close Microsoft Outlook, and then log off VAN-CL1.
Lab 8: Configuring Client AccessServers for Outlook Web App andExchange ActiveSync
Exercise 1: Configuring Outlook Web App
Task 1: Configure IIS to use the Internal CA certificate
1. On VAN-EX2, click Start, point to Administrative Tools, and then clickInternet Information Services (IIS) Manager. Expand VAN-EX2 (ADATUM\Administrator), expand Sites, expand DefaultWeb Site, and then click owa. In the center pane, and under IIS, double-click SSL Settings. Notice that SSL isrequired by default. Under Sites, click Default Web Site, and in the Actions pane, click Bindings. In the Site Bindings dialog box, click https, and then click Edit. In the SSL Certificate drop-down list, verify that Adatum Mail Certificate isselected Click OK, click Close, and then close the Internet Information Services (IIS)Manager.
2.
3. 4. 5. 6. 7.
2.
3.
4. 5. 6. 7.
8.
9.
10. Type Set-OwaVirtualDirectory -identity Owa (Default Web Site) FilterWebBeaconsAndHtmlFormsForceFilter, and then press ENTER. 11. Type IISReset /noforce, and then press ENTER. If you get a message that theservice did not start, open the Services Microsoft Management Console(MMC), and start the World Wide Web Publishing Service. 12. Close the Exchange Management Shell.
Task 3: Configure an Outlook Web App Mailbox Policy for the BranchManagers
1. On VAN-EX2, in Exchange Management Console, expand OrganizationConfiguration, and then click Client Access. In the Actions pane, click New Outlook Web App Mailbox Policy. In the New Outlook Web App Mailbox Policy page, type Branch ManagersPolicy as the policy name. In the list of features, click Change Password, and then click Disable. Click New, and then click Finish. Right-click Branch Managers Policy, and then click Properties. On the Public Computer File Access tab, clear all check boxes. On the Private Computer File Access tab, clear all check boxes, and then clickOK. Under Recipient Configuration, click Mailbox.
2. 3. 4. 5. 6. 7. 8. 9.
10. Click the Organizational Unit column heading to sort the view byorganizational units (OU). 11. Select all the users in the Branch Managers OU, right-click, and then clickProperties. 12. On the Mailbox Features tab, click Outlook Web App, and then clickProperties. 13. Select the Outlook Web App mailbox policy check box, and then clickBrowse. 14. Click Branch Managers Policy, and then click OK four times.
4. 5.
6.
On the Organize E-Mail tab, verify that you cannot create a new Inbox rule.Close Microsoft Internet Explorer. Open Internet Explorer. In the address field, type https://mail.Adatum.com/owa, and then pressENTER. Log on to Outlook Web App as Adatum\Johnson using the passwordPa$$w0rd. Johnson is in the Branch Managers OU. Click OK.
7. 8. 9.
10. Verify that the Tasks folder is listed in the user mailbox. 11. On the Outlook Web App page, click Options. 12. In the left pane, click Settings. Notice that you do not have an option tochange passwords. Close Internet Explorer.
2.
3. 4.
2. 3. 4. 5.
6.
3. 4.
5. 6. 7.
8.
9.
10. In Windows Mobile 6 Professional, click Start, click Programs, and then clickActiveSync. 11. Read the Microsoft ActiveSync information, and then click the set up yourdevice to sync with it link. 12. On the Enter Email Address page, in the Email address box, typeScottMacDonald@adatum.com, and then click Next. The device will attempt touse Autodiscover to configure the user settings. 13. On the User Information page, type Scott in the User Name field, typePa$$w0rd in the Password field, and Adatumin the Domain field, and thenclick Next. 14. On the Edit Server Settings page, in the Server Address field, type VANEX2.adatum.com. Clear the This server requires an encrypted (SSL)connection check box. In the ActiveSync message, click OK, and then clickNext. 15. In the Choose the data you wish to synchronize box, click Calendar, andthen click Settings. 16. In the Synchronize only the past list, click All, and in the upper-right corner,click OK. 17. In the Choose the data you wish to synchronize box, click E-mail, and thenclick Settings. 18. In the Download the past list, click All, and in the upper-right corner, clickOK. 19. Confirm that the Contacts, Calendar, E-mail, and Tasks check boxes areselected, and then click Finish. 20. In the ActiveSync dialog box, click OK. After synchronization is complete,click the X in the upper-right corner to close ActiveSync. Close the Programswindow.
21. On VAN-CL1, open Internet Explorer, and connect tohttps://mail.adatum.com/owa. 22. Log on as Adatum\Wei using the password Pa$$w0rd. Click OK. 23. Click New, and then in the Tofield, type Scott, and then press CTRL+K toresolve the name. 24. In the Subject line, type Test Message from Wei. 25. In the message body, type Testing mobile messaging, and then click Send. 26. On VAN-CL1, in Windows Mobile 6 Professional, wait for a minute and thennotice the animated Synchronization arrows indicating that the device issynchronizing automatically, triggered by the arrival of a message in Scottsmailbox. Wait for the Windows Mobile device to complete synchronization. 27. At the bottom of the Today screen, view the notification stating that a newmessage has arrived. Click View. 28. Open the message. Click Reply at the bottom of the message window. 29. In the message body, type Test Reply, and then click Send. 30. Wait until the device finishes synchronizing, and then, on VAN-EX1, inOutlook Web App, click the Check Messages icon or press F5 to refresh thescreen, and then confirm that the message from Scott was received. CloseInternet Explorer.
6. 7.
8. 9.
10. Right-click EAS Policy 1, and then click Properties. Notice that the Generaltab has additional options. 11. Click the Password tab. Notice the additional password-option list that wasnot available when creating the mobile mailbox policy.
12. On the Sync Settings tab, review the configuration options. 13. On the Device tab, review the configuration options. 14. On the Device Applications tab, review the configuration options. Toimplement these settings, you must have an Enterprise Client Access Licensefor each mailbox. 15. On the Other tab, review the options for allowing or blocking specificapplications, and then click OK. 16. In the console tree, expand Recipient Configuration, and then click Mailbox. 17. In the result pane, right-click Scott MacDonald, and then click Properties. 18. Click the Mailbox Features tab, click Exchange ActiveSync, and then clickProperties. 19. In the Exchange ActiveSync Properties dialog box, click Browse. 20. Select EAS Policy 1, and then click OK. 21. Click OK twice to save and apply the changes.
5. 6. 7. 8.
9.
In Windows Mobile 6 Professional, wait for a minute, and then notice theanimated Synchronization arrows. These indicate that the device issynchronizing automatically, and that the arrival of a message in Scottsmailbox triggered the synchronization. Wait for the Windows Mobile device tocomplete synchronization.
10. At the bottom of the Today screen, view the notification stating that a newmessage has arrived. Click View. 11. In the message window, double-click certnew.p7b. 12. In the Certificate Installer dialog box, click OK. 13. On VAN-EX2, click Start, point to Administrative Tools, and then clickInternet Information Services (IIS) Manager. 14. In Internet Information Services (IIS) Manager, expand VAN-EX2(ADATUM\administrator), expand Sites, expand Default Web Site, andthen click Microsoft-Server-ActiveSync. 15. In the center pane, double-click SSL settings. 16. Select the Require SSL check box, and then click Apply. Close the InternetInformation Services (IIS) Manager. 17. On VAN-CL1, in the Windows Professional emulator, click Menu, click Tools,and then click Options. 18. Click Outlook E-mail, and then select the The server requires an encrypted(SSL) connection check box. 19. Click Nexttwo times, and then click Finish. 20. Click Menu, click Send\Receive, and verify that synchronization is successful.If prompted for the password, type Pa$$w0rd.
10. In the Microsoft Exchange warning message, click Yes, and then click Finish. 11. In Windows Mobile 6 Professional, and wait for the device to synchronize. Youcan also force synchronization by opening Exchange ActiveSync, and thenclicking Sync. Confirm that the device is wiped. If the device goes blank, it isrebooting after performing the remote wipe. 12. On the Windows Mobile 6.1.4 Professional window, click File, and then clickExit.
Important: Start the VAN-DC1 virtual machine first, and ensure that it is fullystarted before starting the other virtual machines.
6. 7.
Wait for VAN-DC1 to start, and then start VAN-EX1. Connect to the virtualmachine. Wait for VAN-EX1 to start, and then start VAN-EX2. Connect to the virtualmachine.
2.
3.
4.
5.
6. 7.
8. 9.
10. In the Manage Database Availability Group Membership Wizard, click Manageto complete the changes, wait for the installation to finish, and then clickFinish to close the wizard.
2.
3. 4. 5. 6. 7.
8.
4.
5.
4.
5.
Results: After this exercise, you should have created a DAG and a mailbox databasecopy of the Accounting database. The Accounting database copy on VAN-EX2should remain in a suspended state.
Results: At the end of this exercise, you should have created a client access arrayand assigned it to the databases.
2.
3. 4. 5.
6. 7.
8. 9.
10. In the Fully qualified domain name (FQDN) box, typevan-dc1.adatum.com, and then click OK. 11. On the Network settings page, click Next. 12. On the Configure smart host authenticates settings page, ensure Noneisselected, and then click Next. 13. On the Source server page, click Add. 14. On the Select Hub Transport or Subscribed Edge Transport Server dialogbox, hold the CTRL key, click VAN-EX1 and VAN-EX2, and then click OK. 15. On the Source server page, click Next. 16. Click New to create the connector, and then click Finish to close the wizard.
2. 3.
In the Console Tree, expand Configuration, and then click Services. In the Results pane, click Simple Mail Transfer Protocol (SMTP), and then inthe Actions pane, under Simple Mail Transfer Protocol (SMTP) click MoreActions, and then click Stop.
4. 5. 6. 7. 8. 9.
10. In the third drop-down menu, select Shadow Redundancy. 11. Click Apply Filter.
12. Examine the shadow-redundancy queue contents. 13. Click on the Messages tab, and then click Create Filter. 14. In the first drop-down menu, select From Address. 15. In the second drop-down menu, select Equals. 16. In the third drop-down menu, type JasonCarlson@adatum.com. 17. Click Apply Filter. 18. Examine the message in the VAN-EX3\Shadow queue.
Task 6: Verify that the messages were removed from the shadowredundancy queue
1. 2. 3. On VAN-EX2, in the Queue Viewer, verify that you are connected to VAN-EX3. Click the Queues tab, and verify that the Shadow Redundancy filter is stillbeing applied. Examine the contents of the shadow redundancy queue.
Note: You may need to wait a few minutes for the message to be removed from theShadow redundancy queue.
Task 7: Verify the copy status of the Accounting database, and resumethe database copy
1. On VAN-EX1, in the Exchange Management Console, locate the Console Tree,expand Organization Configuration, and then click Mailbox. In the Results pane, click the Database Management tab, and then clickAccounting. In the bottom Work pane, view the Copy Status column for each databasecopy, click the Accounting entry that has a Suspended copy status, right-clickon it, and then choose Properties from the context menu. View the Status, Copy queue length, and Replay queue length on theGeneral tab, and then click on the Status tab. On the Status tab, view the Seeding, Latest available log time, Last inspectedlog time, Last copied log time, and Last replayed log time properties, andthen click OK. Click the Accounting entry that has a Suspended copy status, right-click on it,and then choose Resume Database Copy from the context menu.
2. 3.
4.
5.
6.
7. 8.
On the Resume Mailbox Database Copy dialog box, click Yes. Wait until the copy status of the Accounting database copy on VAN-EX2 isHealthy. You may need to refresh the display.
Task 8: Perform a switchover on the Accounting database to make theVAN-EX2 copy active
1. In the bottom Work pane, view the Copy Status column for each databasecopy, click the Accounting entry that has a Healthy copy status, right-click onit, and then choose Activate Database Copy from the context menu. In the Activate Database Copy dialog box, verify Noneis selected, and thenclick OK.
2.
2.
3.
Results: After this exercise, you should have verified that the mailbox databasescould fail over and switch between DAG servers, and that Hub Transport shadowredundancy is working properly.
Question: Are any retention policy tags listed? If so, which ones? Answer: There are no retention policy tags listed. 2. In the Exchange Management Shell, type the following command, and then press ENTER: Get-RetentionPolicyTag IncludeSystemTags
Question: Are any retention policy tags listed? If so, which ones? Answer: Autogroup, personal tag, DeleteAndAllow recovery after 30 days. ModeratedRecipients, personal tag, DeleteAndAllow recovery after 5 days. Personal 1 Year move to archive, personal tag, MoveToArchive after 365days. Default 2 year move to archive, default/All, MoveToArchive after 730 days. Personal 5 year move to archive, personal tag, MoveToArchive after 1825days. Personal never move to archive, personal tag, MoveToArchive, retention isnot enabled.
2.
1. 2.
On VAN-EX1, in the Exchange Management Shell, type the following command, and then press ENTER: Get-Mailbox Database Mailbox Database 1 | format-table Name,RetentionPolicy In the Exchange Management Shell, type the following command, and then press ENTER: Get-Mailbox Database Mailbox Database 1 | Set-Mailbox RetentionPolicy Standard Mailbox Retention Policy In the Exchange Management Shell, type the following command, and then press ENTER: Get-Mailbox Database Mailbox Database 1 | format-table Name,RetentionPolicy
3.
Results: After this exercise, you should have prevented messages classified asCompany Internal from being sent to the Internet, created a retention policy andapplied it to all of the mailboxes in Mailbox Database 1.