Wednesday, 22 February 2017

FAILED TO DOWNLOAD OUTLOOK ADDRESS BOOK (OAB) IN OUTLOOK CLIENT

Symptom
Some of users failed to download the Outlook Address Book from outlook client, the downloading process,  keep loading and take time to finish.


Cause
The downloading process failed from outlook client, because the Web Gateway blocked the access.

Resolution
The workaround, add the Exchange CAS name on the Exceptions list in the Internet Explorer Settings.

Troubleshooting steps:

Step 1:  Verify and check the OAB URL from the Outlook client, Test E-mail Autoconfiguration.  Uncheck the option "Use Guessmart" and "Secure Guessmart Authentication" and click Test.  Go to the XML tab and copy the OABURL, Example OAB URL path:
<OABURL>Http://cas_server_name.domain.com/0000000-0000-0000-0000/</oaburl> 

Step 2:  Copy the OABURL and paste the internet browser and edit the URL as example below and press enter;
Http://cas_server_name.domain.com/0000000-0000-0000-0000/oab.xml  

Step 3.  We should see the OAB content with combination word & number in encryption.  If you see the different page, such as Web Gateway as below;.  So we need to add the Exchange CAS name on the Exceptions list in the Internet Explorer Settings at every user that has the problem.



No comments:
Labels:

Monday, 20 February 2017

EASILY MANAGE FILES/PICTURES FROM ONEDRIVE TO LOCAL COMPUTER

Based on my experience, to make it easy.  We need to download the OneDrive app from the URL https://onedrive.live.com/about/en-za/download/ and install the OneDrive app on the local computer.  Then login with using Microsoft account and let the OneDrive app do the synchronization until finish.  After finished the sync, so we can easily manage the files/photos on the local computer.
No comments:
Labels:

Monday, 6 February 2017

RENEW CERTIFICATE ON EXCHANGE SERVER

If the certificate is already expired on Exchange server (07/10).  Below is the steps to renew it:

Step 1:  Verify and check the current certificate installed on exchange (CAS) server.  With run the ExchangeShell command syntax as below:

get-exchangecertificate | FL

Step 2:  Generate CSR from the exchange (CAS) server.  With run the ExchangeShell command syntax as below:

New-ExchangeCertificate -GenerateRequest -KeySize 2048 -Path c:\CertCSR.txt -SubjectName "c=MY, l=Kuala Lumpur, s=WP, o=Company, cn=webmail.company.com.my" -DomainName webmail.company.com.my, ex01.company.com.my, ex02.company.com.my, autodiscover.company.com.my, ex01, ex02, -PrivateKeyExportable:$true

Step 3:  Send the CSR file to the trusted certificate provider or internal certificate authority server.

Step 4 :  After received the .cer file from certificate provider or certificate authority server. We need to import the certificate (*.cer) to the Certificate, Personal Store.  And enable the certificate to the services.  Run the exchangeShell command syntax as below:

Import-ExchangeCertificate -Path c:\Cert\cert_name.cer | Enable-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS"

 Note:  The .PFX file are required if we have other exchange (CAS) server or reverse proxy (ISA/TMG) for Web publishing (OWA, ActiveSync, Outlook Anywhere).

Step 5:  To Generate the PFX file, you can export the PFX file from the exchange (CAS) server that you just installed the new certificate.
a.  Go to Run, and type MMC.
b.  On MMC, go to File and select Add/Remove Snap-in..
c.  Select Certificate, and click Add
d.  Chose Computer Account and click Next and Finish. 
e.  Click OK.
f.  Expand the Certificate, Personal
g.  Select the certificate that you just renew and select Export.
h.  On the Certificate Export wizard, the Personal Information Exchange (.PFX) selected and click Include all certificate..... and Export all......
i.  On the Certificate Export wizard enter the password and click Next with take note the PFX file will be stored..go trough the wizard until finish.  Then you need to copy the .PFX file to other server for the certificate install.


Reference URL:

 Exchange 2007 CSR Creation Instructions
https://www.digicert.com/csr-creation-microsoft-unified-communications.htm
https://www.digicert.com/csr-creation-microsoft-exchange-2010.htm

Check CSR online
https://www.sslshopper.com/csr-decoder.html

SSL Certificate Installation in Exchange 
https://www.digicert.com/ssl-certificate-installation-microsoft-unified-communications.htm
https://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm

No comments:
Labels:

Thursday, 2 February 2017

IIS FTP TROUBLESHOOTING

For IIS FTP Log Troubleshooting, we can refer to the URL as below:

https://support.microsoft.com/en-ca/help/969061/the-ftp-7.0-status-codes-in-iis-7.0
https://support.microsoft.com/en-us/help/173054/file-time-stamp-mismatch-using-ftp-client
https://en.wikipedia.org/wiki/List_of_FTP_commands
No comments:
Labels:

Thursday, 3 November 2016

INSTALL AD MODULE IN WINDOWS SERVER 2008

There is no ActiveDirectory Module available on the Windows Server 2008 Domain Controller, you need to install the Active Directory Management Gateway Service/Active Directory Web Service on the Windows Server 2008 or Windows Server 2008 SP2.  .Net Framework 3.5 SP1 and 2 Hotfix may required if you get the alert "The update does not apply to your system".  
And then, on the Windows 7 client (Domain Computer with Domain Admin Right) you need to install the RSAT and use the following power shell command (case sensitive) to import the Active Directory module:
Import-module ActiveDirectory 
You may download the Active Directory Management Gateway Service/Active Directory Web Service from URL as below:

You may download the RSAT for Windows 7 from URL as below:
https://www.microsoft.com/en-us/download/details.aspx?id=7887 

2 Hotfix may required as URL below:
https://support.microsoft.com/en-us/kb/969166
https://support.microsoft.com/en-us/kb/967574 

Or you may download the Hotfix KB 969166 from my source, this file I got it from PSS.  Because on the KB 969166 article page not provide the link/source to download.
https://drive.google.com/drive/folders/0B4E0ILJDNhMSdmxodEt3TWZCdlk?usp=sharing    
2 comments:
Labels:

Wednesday, 19 October 2016

UPDATE STATISTIC AT SQL SERVER

Example steps to perform Update Statistic as below;

1. Open new query on the SSMS (SQL Server Management Studio).
2. Write it the query as below
use <Database_Name>
Exec sp_updatestats

3. Select the query and click the button query.

use <Database_Name>
Exec sp_updatestats

4. On the result pane, you should see the result as below, and the status query is executed successfully.

Updating [sys].[queue_messages_1977058079]
[queue_clustered_index], update is not necessary...
{queue_secondary_index], update is not necessary...
0 index(es)/statistic(s) have been updated, 2 did not require update.

5. Done.
No comments:
Labels:

Thursday, 28 April 2016

ACTIVE DIRECTORY HEALTH CHECK SCRIPT

Hi, I just want to share a script for AD health check. Usually I run this script to gather the information on each domain controller, and from the data outcome, I will identify and create a health check document. 

Below is the scripts that I use it and I hope everyone can use it also.  InsyaAllah.. You may copy it and paste to the notepad, save it as a batch file (*.bat). If you run it on the domain controller, it will create a folder at path C:\%computername% and all the output data will stored in this folder.

 "md c:\%computername%
cd c:\%computername%
whoami >loginacc.txt
systeminfo >sysinfo.txt
netdom query fsmo >fsmo.txt
repadmin /replsum >replsum.txt
repadmin /showrepl >showrepl.txt
repadmin /showreps >showreps.txt
repadmin /queue >queue.txt
dcdiag /v >dcdiagv.txt
dcdiag /test:dns >dnstest.txt
ipconfig /all >ipconfig.txt
net share >netshare.txt
w32tm /query /source >w32tm.txt
end"

You may download the batch file from this URL https://drive.google.com/file/d/0B4E0ILJDNhMSZHdycE03aXBaWkk/view?usp=sharing 
No comments:
Labels:

Wednesday, 23 March 2016

TROUBLESHOOT ACCOUNT LOCKED OUT ON ACTIVE DIRECTORY


  1. If the user accessing email (MS Exchange) using smart phone/ipad, please make sure user configure using the right username & password. 
  2. Services - verify and check if this user has registered her account on the services.
  3. Clear save password - In Windows Vista, 7 and 8 you can check your WINDOWS VAULT (similar to the Mac Keychain) using the CREDENTIAL MANAGER which can be found in the Control Panel.
  4. Clear virus – Conficker, Downadup and others will try to make network connections over and over again and will lock your account.  You can try a free safety scan on this URL  https://www.microsoft.com/en-us/security/pc-security/malware-removal.aspx.
For further troubleshooting we can use Account Locked Out tools and refer to the article below:
https://www.microsoft.com/en-us/download/details.aspx?id=15201
http://social.technet.microsoft.com/wiki/contents/articles/4585.account-locked-out-troubleshooting-eventcombmt.aspx
http://social.technet.microsoft.com/wiki/contents/articles/15997.using-url-rewrite-to-block-certain-clients-from-exchange.aspx

 Exchange Active Sync Related
http://blogs.technet.com/b/messaging_with_communications/archive/2012/06/26/activesync-disabled-accounts-and-devices-continuing-to-sync.aspx
http://blogs.technet.com/b/messaging_with_communications/archive/2012/06/27/part-ii-outlook-amp-owa-disabled-accounts-and-users-still-being-able-to-access.aspx

No comments:
Labels: , ,

Thursday, 3 March 2016

FORCE MOVE ACTIVE MAILBOX WHEN THE ACTIVE MAILBOX FAILED

We found this problem happen on the Microsoft Exchange 2010 Mailbox server. Suddenly, one of the member of DAG (Exch01 server) with Active mailbox is down, because the storage issue. So the user request to move the Active mailboxes to another DAG member (Exch02 server), based on checking before the problem happen the replication status is healthy. So we decided to move active mailboxes by using the command as below;

 move-activemailboxdatabase -identity  mailbox_db1  -activateonserver Exch02 -mountdialoverride:none -skip activationchecks -skiplagchecks -skipclientExperiencechecks
No comments:
Labels:

Monday, 29 February 2016

FAILED TO MOUNT DATABASE ON EXCHANGE 2010


We found a problem to mount the mailbox database on Exchange 2010 server, below is the error details & screen capture. 

An Active Manager operation failed. Error An Active Manager operation encounter an error.  To perform this operation, the server must be a member of a database availability group and the database availability group must have quorum.  Error: Automount consensus not reached.



Based on my troubleshooting, the issue resolved after we start the DAG with ExchangeShell command as below;

Start-DatabaseAvailabilityGroup -Identity "DAG_Name" -MailboxServer "MBX_name"

To identify the DAG name you may run this command on exchange shell
 
Get-DatabaseAvailabilityGroup
1 comment:
Labels:
Subscribe to: Comments (Atom)