Archive for November, 2009
Updates to the Exchange Supportability Matrix
With the release of Exchange 2007 SP2 we provided a Supportability Matrix which outlined the supported configurations for Exchange 2000 SP3, Exchange 2003 SP2, and Exchange 2007 (RTM, SP1, and SP2). But as many are aware, with the release of Windows Server 2008 R2 there have been a variety of questions raised about our support policies and a multitude of feedback. Two pieces of feedback occurred numerous times - the need to support Exchange 2007 on Windows Server 2008 R2 and the need to support Exchange 2003 against Windows Server 2008 R2 Active Directory servers.
In response to this feedback we will be making several updates to the supportability matrix.
- As I recently blogged about, we will be adding support for Exchange 2007 on the Windows Server 2008 R2 platform. While we had hoped to add this application/operating system combination quickly, unfortunately adding this support requires code changes to setup in Exchange 2007. Therefore, our vehicle for adding this support will be via a third Service Pack for Exchange 2007 in the second half of calendar year 2010.
- Exchange 2003 SP2 will now be supported against writeable Windows Server 2008 R2 Active Directory Servers. Additionally, with the General Availability of Exchange Server 2010, and those looking to standardize on Windows Server 2008 R2 we have enhanced the supportability of forest and domain functional levels up to Windows Server 2008 R2. This change is effective immediately on Exchange 2003 SP2.
- Exchange 2007 is now supported on servers running .NET Framework 3.5 SP1 provided that the .NET platform was upgraded from .NET Framework 2.0. This change is also effective immediately on Exchange 2007 SP2.
Each of these changes are being made to provide the flexibility you requested – to change your operating system architecture without changing your messaging architecture. In addition to the existing combinations, we will be adding supportability guidance for Exchange 2010 to the matrix. Note that all of these changes may not immediately appear on the supportability matrix, but be assured that any documentation update lag will not affect your supportability with Microsoft Support.
Finally I do want to update all on one other piece of feedback we have received – allowing the in place upgrade of the operating system under Exchange. Technically the work required to provide this capability is consistent with the work we would need to do to support an in-place upgrade of Exchange itself. As such the amount of work needed is outside the scope and complexity of what we can do in a post release product update. Still we do understand the demand and desire and it is something we will continue to look at for future versions of the product.
While we hope these changes are welcome news and address questions you may have had, we also understand we have areas to improve in. Our desire is to simplify and improve the support experience with Exchange. If you have more feedback, please continue to provide it.
General Manager, Exchange Customer Experience
1. Start the Exchange Management Console.
2. In the console tree, expand Organization Configuration, and then click Mailbox.
3. In the result pane, click the Offline Address Book tab, and then select the OAB for which you want to move the generation to a new server.
4. In the action pane, click Move. The Move Offline Address Book wizard appears.
5. On the Move Offline Address Book page, click Browse to open the Select Mailbox Server dialog box.
6. Select the server to which you want to move the OAB generation process, and then click OK.
7. Click Move to move the OAB generation process to the new server.
8. View the status of the move operation. The wizard will move the generation of your OAB to the new server and copy the existing files for the OAB to the new server.
9. On the Completion page, confirm whether the OAB generation process was moved successfully. A status of Completed indicates that the wizard completed the task successfully. A status of Failed indicates that the task was not completed. If the task fails, review the summary for an explanation, and then click Back to make any configuration changes.
10. Click Finish to complete the Move Offline Address Book wizard.
Click in the browse and select E2K7 and then click on move
If you want to perform it from powershell follow this command
Move-OfflineAddressBook -Identity "My OAB" -Server SERVER01
I hope this article is being very informative for you all. Thank you for your time and patience for going through this article.
This topic usually draws from the deepest of emotions from the tech field due to intense personal experiences we’ve all had. Some of us like McAfee, some swear by Norton, others by AVG or Kaspersky. Anti-virus while all moving towards the same goals, get there in completely different fashions. The following is NOT fact based in any way shape or form, so consume my views and opinions with a grain of salt.
I have used a plethora of Anti-Virus apps in my days. Ranging from One care (/shiver) , McAfee, CA, PC-cillin, AVG, Kaspersky, Norton 360 and even the new kid on the block – Microsoft Security Essentials. Some of these apps have tried (and failed) at being an "all-in-one" solution, * cough, cough – Norton 360…Cough * and have failed miserably. I fall on the side of the fence where I would rather prefer multiple dedicated and specialized products than a single massive or suite of solutions from one provider. The McAfee and Norton’s of the industry try to do this. I feel personally they are positioning themselves to the home consumer as a silver bullet or one stop shop solution for the basic, non-tech savvy consumer. The end user feels heavily protected by all the interfaces and pop-ups and warnings… but at what cost? I’ve found these total solution style packages to be resource robbing and they themselves should come up in a scan for mal-ware! I regularly joke that Norton’s suites are a virus themselves.
Some of the more dedicated providers may lack some of the development back end that larger companies can forego. AVG (since it’s free) and Kaspersky yes your ears should be burning by now. I have experienced they have done little to nothing on my system other than take up real estate in my notification area (system tray for you old schoolers!) So what I was looking for was a best of both scenarios between them. A free product with a big enough company to really dedicate a team and dollars to make sure the product stays relevant and up to speed with emerging threats. Microsoft my old buddy has come through! Microsoft Security Essentials.
"Oh dear Lord, we don’t need another One Care in these parts!" Yes I too shared your lack of optimism when I heard they were coming out with a new anti-virus app, so soon after washing their hands and admittedly throwing up the white flag on the one-care product. I tested it, for about 8 hrs. It slowed my Vista box down so much I thought it was a massive tumor in the OS. Lifehacker.com has recently compiled the 5 best anti-virus apps voted by the community and guess which one was in there. MSE. AVG was in there too. Seeing a commonality amongst the top vote getters? Dedicated apps, low to no cost. Do you see any of these on the shelf at Best Buy or Wal-Mart? Um, no.
I was part of the Microsoft Connect Beta for this product and was very early on impressed with the ease of install, config and navigation of its tools. Now that the final product is RTM and on the streets, I have been telling anyone with a spare minute about this great product. I use it exclusively on all my systems.
One drawback… not supported on server OS’s. Sorry Charlie, you can’t have your cake and eat it too!
- A DirectAccess server (a Windows Server 2008 R2 joined to an Active Directory® domain with DirectAccess Management Console feature added and cannot be behind a Network Address Translation, or NAT, device) with two network adapters: one connected to the Intranet, and the other to the internet with at least two consecutive public IPv4 addresses
- All DirectAccess clients running Windows 7
- At least one domain controller and Domain Name System (DNS) server running Windows Server 2008 SP2 or Windows Server 2008 R2
- A Public Key Infrastructure (PKI) for issuing computer certificates, smart card certificates, and, for Network Access Protection (NAP), health certificates
- IPsec policies to specify protection for traffic
- IPv6 transition technologies, i.e. ISATAP (RFC 4214), Teredo (RFC 4380), and 6to4 (RFC 3056), for DirectAccess server
- Optionally, a non-Microsoft NAT-PT (RFC 2766) device to provide access to IPv4-only resources for DirectAccess clients
Role Based Access Control (RBAC) is the new permissions model in Microsoft Exchange Server 2010. With RBAC, you don’t need to modify and manage access control lists (ACLs), which was done in Exchange Server 2007 and earlier. On the flip side – as with anything new, RBAC can seem a bit intimidating at first.
I am going to try an explain how to think about RBAC, and the order to create things in so that you end up with a working RBAC setup that does exactly what you want….
Continued at source (You Had Me at EHLO)….. RBAC explanation at MS Exchange team blog