Installing Exchange 2010 Sp2 on Windows Server 2008 R2 Sp1

Installing Exchange 2010 Sp2 on Windows Server 2008 R2 Sp1

Posted on January 4, 2012 | Category :Exchange 2010, Installations | 25 Comments

Let us learn installing Exchange 2010 Sp2 on Windows Server 2008 R2 Sp1

I would install the Exchange 2010 Sp2 in a Environment where Exchange 2003 Server is already there .

Its as similar . where we need to prepare the legacy Exchange permission to get that installed and working properly

Step 1.

I installed Service pack 1 on Windows Server 2008 R2 where I can overcome without installing hotfixes for Exchange 2010

Prerequisites Differs with the operating Systems

This Technet article would provide you for other versions of operating systems

http://technet.microsoft.com/en-us/library/bb691354.aspx

Step 2.

Download and Install “Microsoft Filter Pack” (64bit Version)

http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=20109

Step 3.

On the Start menu, navigate to All Programs > Accessories > Windows PowerShell. Open an elevated Windows PowerShell console (Right Click – Run as administrator), and run the following command.

Import-Module ServerManager

And Running this command for typical installation where all the roles will be installed HUB , CAS and Mailbox Servers

Add-WindowsFeature NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,Web-Asp-Net,Web-Client-Auth,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Logging,Web-Http-Redirect,Web-Http-Tracing,Web-ISAPI-Filter,Web-Request-Monitor,Web-Static-Content,Web-WMI,RPC-Over-HTTP-Proxy -Restart

Step 4.

Reboot the Server

Now Prerequisites Installed successfully

Step 5.

Now open Command Prompt “Browse the Command prompt into the setup location”

and Run

setup /PrepareLegacyExchangePermissions or setup /pl

We run this as we prepare the legacy (Exchange 2003) Server permissions,

Running this command won’t harm your environment .

Befor Running this command make sure your Domain Function Level and Forest Functional level in Windows Server 2003 is in native mode and your Exchange 2003 is in native mode,

Otherwise , It won’t allow you to install Exchange 2010

Refer link :

http://technet.microsoft.com/en-us/library/bb125224.aspx

Step 6.

Preparing the Schema

Setup.com /PrepareSchema

Step 7.

Preparing Active Directory

Setup.com /preparead /OrganizationName:”First Organization”

This Switch can be removed if you have an Exchange Server already in your Organization

/OrganizationName:”First Organization”

Or if you want to change the organization name . you can use this switch

Step 8.

Now prepare the domain

Setup.com /Preparedomain

If you have multiple domains run Setup.com /preparealldomains

Step 9.

Now Start the Setup

Step 10.

Choose Typical to Install HUB,CAS and Mailbox

Give a Check mark for Automatically install Windows Server roles

Step 12.

If this is my internetfacing server , Give the external domain name

Step 13.

If Exchange 2003 Exists in your Environment , you will get this option to configure mail flow between these Servers

Step 14.

Now Setup will Run for some time

Step 15.

Reboot your Server

Remote Desktop Services - License Server 'Greyed Out'

The remote session was disconnected because there are no Remote Desktop Licence Servers available to provide a license. Please contact the server administrator.
I assumed this was simply because I had changed the IP structure at the main site so I jumped on to check the license server settings.
I could not change the licence server, it was greyed out, (It was the OLD ip of the server, in this case the license server role was on the same server).

Solution

In trying to formulate a 'fix' I came across the actual cause of the problem, the previous IT supplier had (when they had set it up), locked down the Remote Desktop Services License Server Settings using Group Policy. Remember all my RDP roles are on one server here so I just have to edit the local policy on this server.
1. Start > Windows Key+R > gpedit.msc {Enter}.
2. Navigate to;

Computer Configuration > Policies > Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Licensing > Use the specified Remote Desktop License Server

3. Edit the 'enabled' entry, to reflect the correct IP or FQDN of the Remote Desktop License Server, (I prefer IP addresses).

Windows Folder Redirection

Q. What is Folder Redirection?

A. Essentially you can take folders folders that hold stuff like your "My documents" or your "Favorites" folder, and put them out on a network server, that's great if you want to back that sort of information up for disaster recovery.

Q. What's the difference between this and a roaming / roving profile?

A. Folder redirection keeps information on a server and you access it remotely, Roaming profiles are designed to sync that information (and your WHOLE user profile) backwards and forwards to a network share as your users logon and log off.

Q. What folders can be redirected?

A. Assuming we are taking about a Server 2008 environment with Windows 7 clients the following can be redirected.

AppData(Roaming)
Desktop
Stat Menu
Documents
Pictures
Music
Videos
Favorites
Contacts
Downloads
Links
Searches
Saved Games

-------------------------------------------------------------------------------

1. On a server create a folder to hold the redirected data, In this case you will notice I've called my share Redir$ (The dollar sign just means it's a hidden share, and can't be seen if people are network browsing).

Folder Redirection: Permissions for the Root Folder

2. Set the share permissions to Everyone: Full Control (Don't worry we will secure it with NTFS permissions).

3. On the security tab of the folder click advanced.

4. Change Permissions.

5. Untick "Include Inheritable permissions from this objects parent" > At the warning click "Add".

6. Select each User in turn (You will need to add the everyone group) > Then Edit the permissions so that they are as follows.
CREATOR OWNER - Full Control (Apply onto: Subfolders and Files Only) System - Full Control (Apply onto: This Folder, Subfolders and Files) Domain Admins - Full Control (Apply onto: This Folder, Subfolders and Files) Everyone - Create Folder/Append Data (Apply onto: This Folder Only) Everyone - List Folder/Read Data (Apply onto: This Folder Only) Everyone - Read Attributes (Apply onto: This Folder Only) Everyone - Traverse Folder/Execute File (Apply onto: This Folder Only)

7. On your domain controller open the Group Policy Management Console (Under Administrative Tools) and either create a new USER policy of edit one that already linked to the users you want to enforce this policy upon.

8. I prefer to create a new policy and call it something sensible so if there's a problem it's easy to find in the future.

9. Navigate to:

User Configuration > Policies > Windows Settings > Folder Redirection

Locate the folder you want to redirect (In this case its just the documents folder) > Right click > Properties.

10. I'm going to redirect all my users documents to the one folder I created earlier, so I will choose basic.
Note: You can choose "Advanced" and redirect different groups folders to different locations.
Enter the path to the root folder AS A UNC PATH, DONT click the browse button and browse to it.

11. I'm going to accept the defaults on the settings tab, the option I've highlighted creates the folders with exclusive rights on the folders for the user in question and SYSTEM, so the domain admin had no access (this is OK, it's the same way user profiles work, you can still back them up).

12. Now as your users log on their folders will be redirected to the share you setup.

Backing up Redirected Folders
13. Even with exclusive rights you can still back this data up:

Windows 7 /2008 R2 - Remove Saved / Cached Network Passwords

1. Launch Credential Manager, either type "Credential" in the search/run box, and select it or,

If you have "Run" on your start menu you can, Start > Run > control keymgr.dll {enter} or,

You can also launch Credential Manager from, Start > cmd {Enter} > And execute a control keymgr.dll command.

2. Once open, you can locate the offending saved username and password and remove it.

3. The next time you attempt to connect to the required resource, you should be prompted to re-enter your credentials.

Alternative Method to Remove Cached / Network Passwords

You can also run the following command then remove the offending entry;

rundll32.exe keymgr.dll, KRShowKeyMgr

Configure Microsoft Outlook for Gmail

an account click Tools >Account settings > Add.

2. If you are in a domain environment it will try and auto configure your account, but you want to set things up manually, select "Manually configure server settings..."

3. We are setting up an IMAP account, so select Internet E-mail.

4. Note: To configure an IMAP account you need to enable IMAP in your Gmail settings > Log in > Settings > Forwarding and POP/IMAP > Enable IMAP > Save settings.

5.Enter you account details > the incoming server is imap.gmail.com the outgoing server is smtp.gmail.com > remember to tick "Remember password" > More settings.

6. On the Advanced tab > set the IMAP port to 993 > set IMAP to use SSL > Set the SMTP port to 25 > Set SMTP to use TLS.

7. Select the Outgoing server tab > tick the box "My Outgoing server (SMTP) requires authentication" > And "Use the same settings as my incoming mail server" is selected. > OK.

8. Next > Finish.

Outlook 2010 - Migrate Autocomplete Settings

The autocomplete/autosuggest file remembers your previously typed email addresses.

The good news is that you can still migrate the settings, only now you need to migrate a .dat file instead.

Solution

1. In this example I'll migrate the autocomplete from one user to another user (though in most cases the source and target user will be the same). From the administrator user (above) you will see there's an autocomplete entry for bob@testmail.com. On the SOURCE machine navigate to the following location:

C:\Users\%username%\AppData\Local\Microsoft\Outlook\RoamCache

The file we are looking for is called:

Stream_Autocomplete_0_{a long string of numbers/letters}.dat

Right click the file in question and copy it.

2. Copy this file to the TARGET machine.

3. Once again on the target machine navigate to the same location. Note: If there is no stream_autocomplete file you may need to send at least one email form the target outlook profile and restart Outlook. Once you have located the target autocomplete file, right click it, select rename, and copy the long number/letter string from it's name.

4. Return to the file you copied from the old profile, right click > rename > and paste in the long string of letters and numbers you copied (so this file now has the SAME NAME as the target file).

5. Copy the renamed file.

6. Paste the file into the target directory, and when prompted select copy and replace.

7. Now the new account has all the autocomplete settings from the original one.

Install and Configure Microsoft Lync 2010

Solution

Note: The following procedure is carried out on Server 2008 R2 with Windows 7 Clients, on my VMware test network.

Walkthrough

I know a lot of people don't like watching videos so heres my notes:

Pre-Requisites

1. Download and install, Microsoft Silverlight. (link)

2. IIS (Roles > Add Roles > Web Server IIS) > Next.

Also add:

i. ASP.NET
ii. Logging Tools
iii. Tracing
iv. Client Certificate Mapping Authentication.
v. Windows Authentication
vi. IIS Management Scripts and Tools

Next > Install > Finish.

3. RSAT Tools (Features > Add Features > Remote Server Administrative Tools > AD DS and LDS Tools) > Next > Install > Close > Select Yes to Reboot > Post Reboot Installation will continue > Close.

4. Have a Certification authority set up in your domain. OR a certificate ready for the Lync Server to import.

 

Install

1. Run Setup > It will ask to Install C++ let it do so.
2. Once it's finished, It will ask for the install location > change if required > Install.
3. Accept the EULA > OK.
4. When the Deployment Wizard starts > Select "Prepare Active Directory".

5. Prepare Schema > Run > Next > Finish.
6. Allow domain replication.
7. Prepare Current Forest > Run > Select Local Domain > Next > Finish.
8. Allow domain replication.
9. Prepare Domain > Run > Next > Finish.

10. When all are completed, add your administrators to the newly created AD group CSAdministrators > Then click "Back" to return to the main page of the Deployment Wizard.

11. Prepare First Standard Edition Server > Next > SQL Express will install > Finish.

12. Install Topology Builder > It installs very quickly and gets a green tick when complete.

13. Start > All Programs > Microsoft Lync Server 2010 > Lync Server Topology builder > When promoted select > New Topology > OK.

14. Save the topology as requested.

15. Under "Primary SIP Domain" > enter your domain name > Next.

16. Enter any additional domains if required > Next.

11. Give the site a name and description > Next.

12. Enter site details > Next > With the option to "Open the new front end wizard.." selected > Finish.

13. At the "Define a new front end pool" wizard > Next > Enter the FQDN of the server and select Standard Edition > Next.

14. Select features (Everything except PSTN, because I don't have a PSTN gateway) > Next.

15. Choose to Collocate Mediation Server > Next.
16. Don't add any further server roles > Next > Next.
17. Let it create a new share > Next.
(Note manually create the share and make sure it has appropriate permissions).

18. Set external URL if required > Next > we are not adding PSTN > Finish.
19. On the Topology Builder Select > Edit Properties > Central Management Server.

20. Add in the admin URL (Note: Make sure this resolves in DNS), and FQDN of the server > OK.

21. Select Publish Topology > Next > Next > Finish.

22. Re-launch or swap back to the Lync Server Deployment Wizard > Select Install or Update Lync Server System.

24. Run step one "Install Local Configuration Store" > Select "Retrieve directly..." > Next > Finish.

25. Run Step two "Setup or Remove Lync Server Components" > Next > (If you get a Prerequisite installation failed: Wmf2008R2 click the link) > Finish.
26. Run Step three "Request, Install, or Assign Certificates" > Request > Next > Send request immediately > Next.

27. Select your CA > Next > Next > Next.
28. Choose a friendly Name > Next.

29. Fill in your Organisation information > Next > Enter country > State and City > Next > Next > Next > Next > Next > Next > Finish. > Close.
30. Run Step 4 "Start Services" > Next > Finish.

31. Check the service status if you wish.
32. Close the deployment wizard.

Launch "Lync Server control Panel" and Configure

1. Launch the " Lync Server Control Panel" > Log in with an admin account (created above at step 10).

2. Navigate to Users > Add.

3. Add in your users and assign them to your pool.

Post Install Tasks

1. You need to create a DNS SRV (Service Location) so the client can locate the Lync server:

i. service: _sipintenaltls
ii. Protocol: _tcp
iii. Port Number: 5061
iv. Host offering service: the FQDN of the Lync Server.

Install the 'Lync Client' on the client machines.