Once I had my Exchange 2010 server up and running, I had a need to create a new store. Unfortunately, things didn't look so great when the store wouldn't mount after I created the store in the GUI console. There were even some fine error messages in the logs letting me know that Exchange was unable to mount the store. If you search the Web for answers to this problem, you'll find all sorts of potential solutions and ideas.
Turns out the thing that worked best for me was some patience. Exchange 2010 is deeply ingrained in Active Directory and Active Directory does things at it's own pace. Sometimes immediately, sometimes in 5 minutes and sometimes in fifteen.
So go ahead and read all those links you found in the great WWW and then after about 5 minutes, go back and try to mount that database again. Chances are, it'll work just fine.
Monday, November 28, 2011
Saturday, November 19, 2011
The Next Rev: ImageRight 5.4
My office is a week or so post-upgrade to ImageRight 5.4 from version 5.2. While this version integrates some post-5.2 hotfixes to resolve some annotation and image display issues, it comes with it’s own post-5.4 hotfixes that need to be installed after the primary installation. If you deploy the desktop client with Group Policy, you’ll need to create an MSI file and a third policy to fully deploy the software and hotfixes automatically.
While the desktop client hasn’t changed much from a user standpoint, there were some security additions and tweaks that are important to know about.
Overall, ImageRight 5.4 brought several new features and welcome changes to the document management product, with a relatively easy upgrade process from 5.2.
While the desktop client hasn’t changed much from a user standpoint, there were some security additions and tweaks that are important to know about.
- Alphabetizing Lists and Annotations – In previous versions, many of the lists that users interacted with were sorted by creation date. This was less than ideal when selecting from a long list of private annotations or selecting from the document type tree drop-down. Those list displays are now alphabetized.
- Read/Write permissions added to File Notes – while this is a great addition as a security feature, it’s turned on by default post-upgrade with the result being that users can’t see or add any file notes. I needed to make a support call to find the odd place that permission change was located. (The Security properties of the "Storage Types" container in the EMC.)
- Annotations Limited to Specific File Types - There is a feature in version 5 where you can filter or limit on what file types an annotation is available for use. When migrating from version 4 to 5.2 the system defaulted all the private annotations to be available on all file types (which was the behavior in previous version), but didn’t automatically check the “include all file types” option box. In version 5.4, the check box status is enforced, which may make private annotations seem to disappear for the end users.
- New Permissions for "Desktop - Modify Document Date" - also defaulted to not having any permission set in 5.4, users will need this permission added to change a document date. Also new is some functionality to track the date and time a document is received ("Desktop - Modify Receive Date and Time"), you may or may not want to let users change that.
Overall, ImageRight 5.4 brought several new features and welcome changes to the document management product, with a relatively easy upgrade process from 5.2.
Wednesday, November 16, 2011
From BlackBerry to Windows Phone
Last week, I landed myself brand-new Samsung Focus Flash phone with Windows 7.5. I had debated about going with the older Samsung Focus model in mid-October, but figured it was probably worth the wait for some new hardware too.
Having a physical keyboard on the BlackBerry was hard to give up, but outside of the lack of real keys, I pretty much love everything about it right now. One of the big factors in deciding on what phone to select was my ability to hold it and have a reasonable chance of being able to type with one hand. The Focus Flash is the only phone in the Samsung Focus line that is the same width as the BlackBerry Bold 9700. If I wanted a tablet, I would have bought one that has a screen larger than 4.3 inches.
As someone who spends a good amount of time using Twitter and dabbling in the other popular social media sites (depending on where my friends are), the People Hub has got to be the best idea since sliced bread. Being able to group certain friends and family members and highlighting a tile for that group on home page is fantastic. Even after a week, I feel less like I have to constantly watch my Twitter stream or check Facebook because I can easily view the postings from the people I care about the most. The native integration for interacting with Facebook and Twitter lack some of the more robust features, but it certainly good enough for the majority of my social media interactions.
The live tiles on the home page are great for highlight the next appointment and the latest status updates from the People Hub. Not having to open the calendar to see my next appointment is a nice bonus. Plus having a miniature "digital picture frame" that highlights my favorite photos is a fun feature.
I know many iPhone lovers may find faults in some of current features in the Windows Phone. There isn't the extensive catalog of apps yet and some of the ones that exist lack some of the more refined functions that more mature apps for iPhone and BlackBerry have. But I think it's only a matter of time before those app offerings catch up. And I have a list of things that I do miss from the BlackBerry - battery life being one of them and I'm developing a wish-list of things I hope to see change or become available in 2012, but that's a post of its own!
Having a physical keyboard on the BlackBerry was hard to give up, but outside of the lack of real keys, I pretty much love everything about it right now. One of the big factors in deciding on what phone to select was my ability to hold it and have a reasonable chance of being able to type with one hand. The Focus Flash is the only phone in the Samsung Focus line that is the same width as the BlackBerry Bold 9700. If I wanted a tablet, I would have bought one that has a screen larger than 4.3 inches.
As someone who spends a good amount of time using Twitter and dabbling in the other popular social media sites (depending on where my friends are), the People Hub has got to be the best idea since sliced bread. Being able to group certain friends and family members and highlighting a tile for that group on home page is fantastic. Even after a week, I feel less like I have to constantly watch my Twitter stream or check Facebook because I can easily view the postings from the people I care about the most. The native integration for interacting with Facebook and Twitter lack some of the more robust features, but it certainly good enough for the majority of my social media interactions.
The live tiles on the home page are great for highlight the next appointment and the latest status updates from the People Hub. Not having to open the calendar to see my next appointment is a nice bonus. Plus having a miniature "digital picture frame" that highlights my favorite photos is a fun feature.
I know many iPhone lovers may find faults in some of current features in the Windows Phone. There isn't the extensive catalog of apps yet and some of the ones that exist lack some of the more refined functions that more mature apps for iPhone and BlackBerry have. But I think it's only a matter of time before those app offerings catch up. And I have a list of things that I do miss from the BlackBerry - battery life being one of them and I'm developing a wish-list of things I hope to see change or become available in 2012, but that's a post of its own!
Wednesday, November 2, 2011
Exchange 2010 and External Relays (Migration - Part 3)
The "Receive" Connector is a funny thing in Exchange 2010. The receive connectors on my system seem to double as "Send" connectors depending on who's doing the sending. Once my new server was up and running, it was a no brainer to make a proper "Send" connector so the server could access the Internet to deliver mail to external parties. I was also able to quickly bring up "Receive" connector to collect mail from our Barracuda appliance.
Then I started tackling the servers within our organization that send alerts and reports via email. I added their network addresses to the same connector I used for the Barracuda device, since they are all on the same network.
All the devices seemed happy until I ran across one that needed to send messages to external recipients. Turns out that on Exchange 2003, I was using the same connector for both internal and external relaying without issue, but Exchange 2010 is a little pickier from a security standpoint (a good thing) and I had to create a special receive connector to handle external relaying.
So why are we using "receive" connectors to relay external mail? The receive connectors collect mail coming to the Exchange 2010 server which are then sent out using the Internet send connector. So while all your devices are sending mail, the Exchange server is both receiving it and sending it.
Of course, I wouldn't be writing a post about External Relays if there wasn't something special about them.
When creating an external relay you want to be sure to un-check all the security mechanisms from the Authentication tab, since it's likely you are relaying mail for things like your UPS which might be "phoning home" with updates to a support provider or copier/scanners that might need to send a scanned items to an outside party - all types of devices that likely won't have a mechanism to authenticate to your mail server.
You also need to set your "Permission Groups" to Anonymous, but the configuration doesn't end there. Be sure to kick off this little extra PowerShell as well.
Get-ReceiveConnector "External Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Recipient"
Now that this relay is pretty wide open, so lock down which IP addresses from your network are allowed to use it so that its well controlled. If you need some screenshots for the configuration, check out this post from the Lazy Network Admin.
http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/149-exchange-2010-configure-anonymous-relay-to-external-domains
Then I started tackling the servers within our organization that send alerts and reports via email. I added their network addresses to the same connector I used for the Barracuda device, since they are all on the same network.
All the devices seemed happy until I ran across one that needed to send messages to external recipients. Turns out that on Exchange 2003, I was using the same connector for both internal and external relaying without issue, but Exchange 2010 is a little pickier from a security standpoint (a good thing) and I had to create a special receive connector to handle external relaying.
So why are we using "receive" connectors to relay external mail? The receive connectors collect mail coming to the Exchange 2010 server which are then sent out using the Internet send connector. So while all your devices are sending mail, the Exchange server is both receiving it and sending it.
Of course, I wouldn't be writing a post about External Relays if there wasn't something special about them.
When creating an external relay you want to be sure to un-check all the security mechanisms from the Authentication tab, since it's likely you are relaying mail for things like your UPS which might be "phoning home" with updates to a support provider or copier/scanners that might need to send a scanned items to an outside party - all types of devices that likely won't have a mechanism to authenticate to your mail server.
You also need to set your "Permission Groups" to Anonymous, but the configuration doesn't end there. Be sure to kick off this little extra PowerShell as well.
Get-ReceiveConnector "External Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Recipient"
Now that this relay is pretty wide open, so lock down which IP addresses from your network are allowed to use it so that its well controlled. If you need some screenshots for the configuration, check out this post from the Lazy Network Admin.
http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/149-exchange-2010-configure-anonymous-relay-to-external-domains
Subscribe to:
Posts (Atom)
-small.jpg)
