The installation of SP1 can be very frustrating, despite it’s great features. There is always some side-IIS elements that were not installed, and they need to be installed before you can move forward. The hotfixes are the key. When you start with an OS, e.g. Server 2008 R2, make sure you first have all of the OS updates installed. Visit Windows Updates and make sure you install any that are available. Then you want to visit the Microsoft Exchange Team site and find all the hot fixes for your Exchange 2010 installation. Make sure all of those hot fixes are installed as well. Then, even though you can install roles and features with checkboxes, it’s better to use the import-modules servermanager commandlet with PowerShell and copy the text for installing roles and features.
Go to the Upgrade order if you’re going to upgrade from 2007.
Use the Matrix of Updates Required chart. Use the chart and don’t just go with what the Exchange installer tells you. You don’t want to miss one; you may be shown that you finished completely, but end up having to go back to ADSI edit etc. So make sure you have the hotfixes based off the chart.
In my case, all of the updates in the matrix were not required by my system, and the SP1 install went well with my latest install. After the SP1 install, it’s a good idea to install the update roll-up #5 released by Microsoft here:
After the update roll-up has been installed, be sure to check Windows Update a few times to ensure you have the latest patches and updates.
After SP1 is installed, and the updates have been installed as well, open up the Exchange console, click on the Organization Configuration, and then Mailbox, and you should see two new Retention tabs:
A good majority of the content provided in my Blog’s Exchange series is derived from J. Peter Bruzzese’ excellent Train Signals Exchange Server 2010 Video Disk Series, as well as my own Exchange 2010 lab. Trainsignal.com is an invaluable source for accurate, easy to understand, IT information and training. http://www.trainsignal.com
You can technically install Exchange 2010 on a server that is your Active Directory Server and your DNS server (case in point, Small Business Server)
Typical or Custom Installations:
Exchange 2010 can be deployed through either a Typical or a Custom Installation
1. Typical: will install the Hub Transport, Client Access and Mailbox Server roles
2. Custom: You can install one server type, or some, or all of the roles
If you install the Edge Transport (greys out other roles), you cannot install other roles. Can only exist on a DMZ
If you are installing one of the other roles, you can combine them together (you may install them on separate servers all together.)
You don’t need the Unified Messaging Server role in order for your organization to function. The same with the Edge Transport server, not required but is recommended by Microsoft to provide better protection for Exchange.
The installation itself is fairly typical, and if your prerequisites have been installed you should not encounter any errors.
After installation, if your Exchange server is not licensed, you will have approximately 120 days to activate or license the server.
Be sure to check for critical updates for your exchange server after installation. If you don’t see any updates for exchange in Windows Update, even after a reboot, you may need to start the Exchange Setup.exe Installer again, and click on “Step 5: Get critical updates for Microsoft Exchange”. This is the only way I could force Windows/Exchange to find new updates, for example Exchange Update Rollup 5 for Exchange Server 2010 KB2407113.
Everything we need installed for a working Exchange environment has been accomplished.
When starting the Exchange 2010 Management Console, we are not simply opening it for this server, but for our Exchange Organziation. Whether on a single server, or a multitude of servers, the console will manage the entire Exchange Organization system.
For the Edge Transport Server
We will install Active Directory Lightweight Directory Services. Even though the Edge Transport Server is not a part of the AD (for our own safety) it still requires a directory to work with. We can install it via the GUI, or through the PowerShell.
For the Edge Transport server, we will use the code:
When running the command you may receive the following result error:
PS C:UsersAdministrator> Add-WindowsFeature NET-Framwork,RSAT-ADDS,ADLDS -Restart
Add-WindowsFeature : ArgumentNotValid: Invalid role, role service, or feature: 'NET-Framwork'. The name was not found.
At line:1 char:19
+ Add-WindowsFeature <<<< NET-Framwork,RSAT-ADDS,ADLDS -Restart
+ CategoryInfo : InvalidData: (:) [Add-WindowsFeature], Exception
+ FullyQualifiedErrorId : NameDoesNotExist,Microsoft.Windows.ServerManager.Commands.AddWindowsFeatureCommand
Success Restart Needed Exit Code Feature Result
------- -------------- --------- --------------
False No Invali... {}
If you receive this error, it means that the prerequisite, .NET Framework 3.5.1 is required. See screenshot below. An easy way to install the prerequisite is to use the GUI role installation feature, which will prompt you to install the framework. Be sure to apply all critical updates and service packs to .NET prior completing the installation of Lightweight Directory Services; remember, this is your public-facing computer.
Once .NET and the rest of the Edge Transport role is installed, you’ve rebooted, updated and have rebooted again, now would be a good time to backup the Edge Transport server with either a bare metal/VM system snapshot. Although snapshots are beneficial, an Edge Transport XML export/backup should be performed as well on a regular basis. I exported my first as Edge_BaselineXML.
Note: The Windows Backup feature is not installed by default on a newly installed Server2008 R2 installation. You can quickly install the backup feature at the powershell using the following two commands:
> import-module servermanager
> add-WindowsFeature backup
When logging into the Edge Server, and launching the Management Console, I encountered the following error:
[ERROR] Provisioning layer initialization failed: ‘Active Directory error 0x8007052E occurred while searching for domain controllers in domain
The problem was that I had logged into the local machine only and not the domain, and when trying to run the console, it was not logged in as a domain user. I logged off, logged back in as DOMAINAdministrator, and then found the Management Console to work correctly and identify my machine as an Edge Transport Server.
Another error I hit was the following:
The following error occurred when searching for On-Premises Exchange Server:
The term ‘C:Program FilesMicrosoftExchange Server V14BinConnectFunctions.ps1′ is not recongnized as the name of a cmdlet, function, script files, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again. It was running the command’. ‘C:Program FilesMicrosoftExchange ServerV14BinConnectFunctions.ps1’
(Click here to retry)
By following the workaround here: http://blogs.technet.com/b/nawar/archive/2010/09/03/exchange-management-shell-ems-missing-after-applying-exchange-2010-sp1.aspx I was able to continue with the configuration and open up the Exchange Console. However, all roles were available, which is incorrect. We should only see the Edge Transport role. After re-installing only the Edge Transport Role through the Exchange Setup, I now have the Edge Transport Role up and running. The Exchange Management Console should show only the Edge Transport Role on the Edge Transport server itself.
This makes it clear what we’re working on. We’re on an Edge Transport server and that is all we can work on.
At this point we now have the ability to send mail internally from one mailbox to another. We do not have the ability to send email to the internet or from the internet because we have not configured DNS, or our Send/Receive connectors. We will save these tasks for a different post.
A good majority of the content provided in my Blog’s Exchange series is derived from J. Peter Bruzzese’ excellent Train Signals Exchange Server 2010 Video Disk Series, as well as my own Exchange 2010 lab. Trainsignal.com is an invaluable source for accurate, easy to understand, IT information and training. http://www.trainsignal.com
You can technically install Exchange 2010 on a server that is your Active Directory Server and your DNS server (case in point, Small Business Server)
Typical or Custom Installations:
Exchange 2010 can be deployed through either a Typical or a Custom Installation
1. Typical: will install the Hub Transport, Client Access and Mailbox Server roles
2. Custom: You can install one server type, or some, or all of the roles
If you install the Edge Transport (greys out other roles), you cannot install other roles. Can only exist on a DMZ
If you are installing one of the other roles, you can combine them together (you may install them on separate servers all together.)
You don’t need the Unified Messaging Server role in order for your organization to function. The same with the Edge Transport server, not required but is recommended by Microsoft to provide better protection for Exchange.
The installation itself is fairly typical, and if your prerequisites have been installed you should not encounter any errors.
After installation, if your Exchange server is not licensed, you will have approximately 120 days to activate or license the server.
Be sure to check for critical updates for your exchange server after installation. If you don’t see any updates for exchange in Windows Update, even after a reboot, you may need to start the Exchange Setup.exe Installer again, and click on “Step 5: Get critical updates for Microsoft Exchange”. This is the only way I could force Windows/Exchange to find new updates, for example Exchange Update Rollup 5 for Exchange Server 2010 KB2407113.
Everything we need installed for a working Exchange environment has been accomplished.
When starting the Exchange 2010 Management Console, we are not simply opening it for this server, but for our Exchange Organziation. Whether on a single server, or a multitude of servers, the console will manage the entire Exchange Organization system.
For the Edge Transport Server
We will install Active Directory Lightweight Directory Services. Even though the Edge Transport Server is not a part of the AD (for our own safety) it still requires a directory to work with. We can install it via the GUI, or through the PowerShell.
For the Edge Transport server, we will use the code:
When running the command you may receive the following result error:
PS C:UsersAdministrator> Add-WindowsFeature NET-Framwork,RSAT-ADDS,ADLDS -Restart
Add-WindowsFeature : ArgumentNotValid: Invalid role, role service, or feature: 'NET-Framwork'. The name was not found.
At line:1 char:19
+ Add-WindowsFeature <<<< NET-Framwork,RSAT-ADDS,ADLDS -Restart
+ CategoryInfo : InvalidData: (:) [Add-WindowsFeature], Exception
+ FullyQualifiedErrorId : NameDoesNotExist,Microsoft.Windows.ServerManager.Commands.AddWindowsFeatureCommand
Success Restart Needed Exit Code Feature Result
------- -------------- --------- --------------
False No Invali... {}
If you receive this error, it means that the prerequisite, .NET Framework 3.5.1 is required. See screenshot below. An easy way to install the prerequisite is to use the GUI role installation feature, which will prompt you to install the framework. Be sure to apply all critical updates and service packs to .NET prior completing the installation of Lightweight Directory Services; remember, this is your public-facing computer.
Once .NET and the rest of the Edge Transport role is installed, you’ve rebooted, updated and have rebooted again, now would be a good time to backup the Edge Transport server with either a bare metal/VM system snapshot. Although snapshots are beneficial, an Edge Transport XML export/backup should be performed as well on a regular basis. I exported my first as Edge_BaselineXML.
Note: The Windows Backup feature is not installed by default on a newly installed Server2008 R2 installation. You can quickly install the backup feature at the powershell using the following two commands:
> import-module servermanager
> add-WindowsFeature backup
When logging into the Edge Server, and launching the Management Console, I encountered the following error:
[ERROR] Provisioning layer initialization failed: ‘Active Directory error 0x8007052E occurred while searching for domain controllers in domain
The problem was that I had logged into the local machine only and not the domain, and when trying to run the console, it was not logged in as a domain user. I logged off, logged back in as DOMAINAdministrator, and then found the Management Console to work correctly and identify my machine as an Edge Transport Server.
Another error I hit was the following:
The following error occurred when searching for On-Premises Exchange Server:
The term ‘C:Program FilesMicrosoftExchange Server V14BinConnectFunctions.ps1′ is not recongnized as the name of a cmdlet, function, script files, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again. It was running the command’. ‘C:Program FilesMicrosoftExchange ServerV14BinConnectFunctions.ps1’
(Click here to retry)
By following the workaround here: http://blogs.technet.com/b/nawar/archive/2010/09/03/exchange-management-shell-ems-missing-after-applying-exchange-2010-sp1.aspx I was able to continue with the configuration and open up the Exchange Console. However, all roles were available, which is incorrect. We should only see the Edge Transport role. After re-installing only the Edge Transport Role through the Exchange Setup, I now have the Edge Transport Role up and running. The Exchange Management Console should show only the Edge Transport Role on the Edge Transport server itself.
This makes it clear what we’re working on. We’re on an Edge Transport server and that is all we can work on.
At this point we now have the ability to send mail internally from one mailbox to another. We do not have the ability to send email to the internet or from the internet because we have not configured DNS, or our Send/Receive connectors. We will save these tasks for a different post.
A good majority of the content provided in my Blog’s Exchange series is derived from J. Peter Bruzzese’ excellent Train Signals Exchange Server 2010 Video Disk Series, as well as my own Exchange 2010 lab. Trainsignal.com is an invaluable source for accurate, easy to understand, IT information and training. http://www.trainsignal.com
* Consider it like the blueprint for all your objects and attributes within AD.
Do you need to update the schema?
* Not in smaller environments (unless it is a policy) because it will occur automatically if you install Exchange with an account that has permissions to prepare AD and the domain.
We prepare ahead of time from the command line the commands are:
You can confirm that these commands completed successfully by looking for the organizational unit called Microsoft exchange security groups (10-11 security groups created).
Give this time to replicate throughout the organization.
You can co-exist with an existing 2007 environment. So you can be running Exchange 2007 and 2010 at the same time. However, you cannot install/run Exchange 2007 after 2010 is installed first.
Once this finishes, you will run
D: setup /PrepareDomain
That’s it, your environment is now ready to install the Exchange 2010 system in your domain.
A good majority of the content provided in my Blog’s Exchange series is derived from J. Peter Bruzzese’ excellent Train Signals Exchange Server 2010 Video Disk Series, as well as my own Exchange 2010 lab. Trainsignal.com is an invaluable source for accurate, easy to understand, IT information and training. http://www.trainsignal.com