So how do you do a dry run?

So how do you do a dry run without buying a new server? Look around/or build from Frys and find an overgrown desktop that can support HyperV and 64bit and stick at least 8 gigs of ram in there. You don't need a test lab with boxes all over the place, you do need a nice enough overgrown desktop that can handle virtualization and lots of RAM.

Right now the machine I'm using for my dry run is the server I ultimately plan to migrate to. But before that I have a box that is nothing but a virtual platform with even removable drive drays that I can slide drives and and out and make machines as I need them.

Like many things in tech, you can't just read, you have to do. Invest in yourself here.

Posted Fri, Nov 20 2009 7:12 by bradley | with no comments

Filed under: News

Migration Step Thirty-three: Setting a time sync

I did this already for the HyperV parent and I guess I forgot to do this on the child SBS 2008. When I demoted the SBS 2003 out, the SBS 2008 now needs this command.

Event

The time service detected a time difference of greater than 5000 milliseconds for 900 seconds. The time difference might be caused by synchronization with low-accuracy time sources or by suboptimal network conditions. The time service is no longer synchronized and cannot provide the time to other clients or update the system clock. When a valid time stamp is received from a time service provider, the time service will correct itself.

It's very easy and we've blogged about this before -- http://msmvps.com/blogs/bradley/archive/2007/01/03/need-to-set-up-the-sbs-box-as-an-authoritative-time-server.aspx

The hardest part is remembering what nist time peer I've used in the past.

1. Click Start, click Run, type cmd , and then press ENTER.

2. At the command prompt, type the following commands in the order that
they are given. After you type each command, press ENTER.

w32tm /config /manualpeerlist: NTP_server_IP_Address ,0x8/syncfromflags:MANUAL
net stop w32time
net start w32time
w32tm /resync

http://www.pool.ntp.org/en/use.html

w32tm /config /manualpeerlist: pool.ntp.org,Ox8/syncfromflags:MANUAL

net stop w32time

net start w32time

w32tm /resync

I had to do that last command twice.

And then we're good to go.

Posted Fri, Nov 20 2009 0:06 by bradley | with no comments

Filed under: Migration

The sensible deployment

I'm taking a break from the Migration dry run blogging tonight because I had to do a slide show for a group of folks I'm doing a presentation for tomorrow. My Dad's retired executives groups. All of those years that I had to listen to Dad, I now get to give a presentation to "Dads and Moms" about computer security. Or how to be paranoid just a little bit, without freaking yourself completely out.

Earlier this evening my Sister and I were chatting about software and she had heard that Office 2010 was coming out in beta. And she mentioned that at her office they were just NOW starting to deploy Office 2007 and that she didn't see that they'd be upgrading soon. There is the Microsoft upgrade cycle. The one that hopes you'll be migrating and ripping things out every two years. And then there's the reality of businesses, of change, of the economy. So while Microsoft is announcing and touting Exchange 2010 and TechEd Berlin, I'm just NOW deploying Exchange 2007.

Out here in the real world of deployment there's still a fair amount of Exchange 2003 deployed. And the reason it is, is the very reason that it has taken me this long to deploy Exchange 2007. There's a more sensible reason for the upgrade other than "it's got the latest cool thing". In my case it's a hardware upgrade that is making the decision.

For all those that have asked, btw, the methodology that I'm doing it the most closely aligned to the "Microsoft Method" and yes at the end I'll put all of these blog posts in a word document you can download. But keep in mind that I'm not really using anything other that these documents:

http://blogs.msdn.com/sbsdocsteam/archive/2009/11/12/the-windows-sbs-2008-migration-guides-are-updated.aspx

And this book:

http://www.packtpub.com/small-business-server-2008-installation-migration-configuration/book

Which it too is basically taking the Microsoft method and giving me screen shots so I know where I'm supposed to be at. Granted he does add the extras of the some scripts and things.

At the end of the day YOU have to do a dry run and practice. YOU have to establish a confidence in yourself. YOU have to take WHATEVER method you chose, tweak it and make it your own for the needs of your client base. What I've personally ended up with, isn't the Microsoft method, it's the "what Susan decided to do because she was the most comfortable with choosing it" method.

At the end of the day, that's what counts the most. You have to be comfortable in your skills, and surround yourself with the tools that make you feel that way.

Posted Thu, Nov 19 2009 23:17 by bradley | 1 comment(s)

Filed under: News

>>>Partner Community Hot issues November 2009 -- Client<<<

>>>Partner Community Hot issues November 2009<<<:
http://social.microsoft.com/Forums/en-US/partnerwinserver7rcthreads/thread/cf96edb8-afd7-48e2-aac9-519844f5d048

>>>Partner Community Hot issues November 2009<<<

TOP SUPPORT ISSUES
NEW & UPDATED KB ARTICLES

TOP SUPPORT ISSUES

[ISSUE 1]

Problem Description:
=============
Get intermittent network pauses on the Windows 7 computer.

Resolution:
==========
Disable auto-tunning.

Use the below command in command line on the Windows 7 computer:

netsh int tcp set global autotuninglevel=disabled

[ISSUE 2]

Issue:

===========

You cannot change the power settings on a Win 7 ultimate client that is member of a SBS2003 domain.

Cause Analysis:

===========

If the power options are configured via group policy, the following registry key should be added to the Win7 client:

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings]

We ran gpresult /v to generate a group policy results report on the problematic Win 7 client and found the GPO’s that configure the PowerSettings are:

Local Group Policy

Small Business Server - Windows Vista policy

Solution:

===========

Configure the settings under the Power Management node to Not Configured in both GPO

Remove the Vista GPO from the server and it is working now.

[ISSUE 3]

Problem

========

You have problem with inbound FTP connections from the public network if the Windows Firewall is enabled on the brand new Windows 7 Server.

Cause

========

FTP is a special case because of the way in which an FTP server establishes the data channel for an FTP file transfer. During a typical FTP user session, an FTP client initiates a control channel with an FTP server. When the FTP client transfers a file from the FTP server, the FTP server tries to establish a data channel with the FTP client by initiating communication on a TCP port different from the one used for the control channel.

Solution

========

Since you are using Windows Firewall with non-secure FTP traffic, to overcome the problem described above, Windows Firewall uses the Application Layer Gateway Service to provide dynamic port mapping for the FTP data channel, thereby facilitating the stateful filtering of FTP traffic. We can open port 21 and enable stateful FTP filtering on the Windows Firewall by using the following commands:

1. To open port 21 on the firewall, type the following syntax in a command prompt then hit ENTER:

netsh advfirewall firewall add rule name="FTP (non-SSL)" action=allow protocol=TCP dir=in localport=21

2. To enable stateful FTP filtering that will dynamically open ports for data connections, type the following syntax in a command prompt then hit ENTER:

netsh advfirewall set global StatefulFtp enable

Reference

========

I have also included some articles below, just for your reference. Hope they are helpful to you.

How Windows Firewall Works http://technet.microsoft.com/en-us/library/cc755604(WS.10).aspx

How to Configure Windows Firewall for a Passive Mode FTP Server http://technet.microsoft.com/en-us/library/dd421710(WS.10).aspx

Netsh Commands for Windows Firewall with Advanced Security http://technet.microsoft.com/en-us/library/cc771920(WS.10).aspx

[ISSUE 4]

Issue:

===========

Step-by-step document about TS gateway and remote app

Solution:

===========

Here is the basic sequence we should follow to deploy remote desktop service on windows server 2008 R2.

1. Licensing server.

Deploying Remote Desktop Licensing Step-by-Step Guide

http://technet.microsoft.com/en-us/library/dd983943(WS.10).aspx

2. Install Remote desktop service role.

Installing Remote Desktop Session Host Step-by-Step Guide

http://technet.microsoft.com/en-us/library/dd883275(WS.10).aspx

3. Create virtual desktop pool using remote desktop web access.

Deploying Virtual Desktop Pools by Using Remote Desktop Web Access Step-by-Step Guide

http://technet.microsoft.com/en-us/library/dd883265(WS.10).aspx

4. RDS(ts) gateway.

Deploying Remote Desktop Gateway Step-by-Step Guide

http://technet.microsoft.com/en-us/library/dd983941(WS.10).aspx

About application virtualization, this is entire solution for desktop level virtualization.

It has advantage over RDS like management, deployment and scale. However, it will remote more server and technical resource involved.

We are noticed that Application virtualization(previously called softgrid) is totally another solution. It use different protocol, different mechanism to implement application for client.

It has nothing to do with RDS(TS) anymore and client didn’t use “remote desktop” client anymore. User didn’t need to create a remote desktop session to access application running on server. It will “cache” the data on local machine and run it locally.

Here is some article for your reference.(A lot of document, really…)

Planning and Deployment Guide for the Application Virtualization System

http://technet.microsoft.com/en-us/library/cc843778.aspx

NEW & UPDATED KB ARTICLES

Computers that are running Windows 7 or Windows Server 2008 R2 stop responding at a black screen if a screen saver is enabled

http://support.microsoft.com/?kbid=976427

The "Run only allowed Windows applications" Group Policy setting displays no entries on a computer that is running Windows Vista, Windows Server 2008, or Windows 7

http://support.microsoft.com/?kbid=976922

Best regards,

Brandon Jiang
Partner Online Technical Community
-----------------------------------------------------------------------------------------
We hope you get value from our new forums platform! Tell us what you think:
http://social.microsoft.com/Forums/en-US/partnerfdbk/threads
------------------------------------------------------------------------------------------
This posting is provided "AS IS" with no warranties, and confers no rights.

Posted Thu, Nov 19 2009 7:10 by bradley | with no comments

Filed under: News

Migration Step Thirty Two: We see the finish line in view

Complete your post-migration tasks. Follow the instructions on pages 75 through 78 in the Microsoft migration document.
Manage natively joined computer objects in Windows SBS Console

This setting is only if you manually joined 'stuff' and thus it didn't end up in the MybusinessOU/SBSComputers bucket.

Drag and drop the computer objects from their current location to the SBSComputers container, and then click Yes in the warning dialog box.

If you were a good SBSer, you won't have to do a thing here.

Remove Source Server entries from DNS

To delete DNS entries that point to the Source Server

1. On the Destination Server, click Start, click Administrative Tools, and then click DNS.

2. Click Continue in the User Account Control dialog box.

3. In the DNS Manager console, expand the server name, and then expand Forward Lookup Zones.

4. Right-click the first zone, click Properties, and then click the Name Servers tab.

5. Click an entry in the Name servers text box that points to the Source Server, click Remove, and then click OK.

6. Repeat step 5 until all pointers to the Source Server are removed.

(basically expand all the trees and look for the old server name and the old server IP and remove them)

7. Click OK to close the Properties window.

8. In the DNS Manager console, expand Reverse Lookup Zones.

9. Repeat steps 4 through 7 to remove all Reverse Lookup Zones that point to the Source Server.

You'll see several LDAP records for the old server and remove these.

Configure POP3 Connectors

Some folks use pop connectors for legacy programs.. I don't use them at all. If you need to, it's in the Network tab under connectivity. It's pretty self explanatory what to do.

Update mailbox quotas

Yeah like we don't set any quotas in small business, other than tell people "I told you so" when their Outlook runs slow. I already took all the quotas off and we'll be leaving them off.

Share line-of-business and other application data folders

We already did that via David Overton's handy dandy script. You do need to poke holes in the server firewall as you need them for databases. More on this in another blog post as well.

Install 32-bit printer drivers on the server running SBS 2008. See the blog post http://blogs.technet.com/sbs/archive/2009/02/13/how-to-add-32-bit-print-drivers-to-sbs-2008.aspx for more information

This one is going to get it's own blog post. Stay tuned.

Fix client computer issues after migrating from SBS 2003

"When migrating to Windows SBS 2008 from Windows SBS 2003 Premium Edition with Microsoft Internet Security and Acceleration (ISA) Server installed, client computers on the network still have the Microsoft Firewall Client and Internet Explorer configured to use a proxy server. This causes connectivity issues on the client computers, because the proxy server no longer exists. If there is a different proxy server configured, the client computers continue to use the server running Windows SBS 2003 for the proxy server. To fix this issue, you must remove the Firewall Client on the client computers, and then reconfigure Internet Explorer either to not use a proxy server or to use the new proxy server."

Dude, if I just ripped out the SBS 2003 premium with ISA, I should have done this (which I did) as a preliminary step when I installed the brand new firewall. This needs to be done as a pre-step, not a post step. Now here is where you do want to reset someone's password, log in ON THEIR PROFILE and make sure everything works. Like ... oh.. the BOSS THAT PAYS YOUR BILLS would be a good one to log into and check.

Posted Thu, Nov 19 2009 0:11 by bradley | 4 comment(s)

Filed under: Migration

Migration Step Thirty one: Adding a bit of Group Policy

Delete the old Folder Redirection Group Policy object. Follow the instructions on pages 73 through 74 in the Microsoft migration document.

Give the built-in Administrator group the right to log on as a batch job for Windows SBS 2008 migration

Note

After you migrate, you should give the Administrator group the right to log on as a batch job.

After you migrate an existing Windows SBS 2003 domain to Windows SBS 2008, verify that the built-in Administrator group still has the right to log on as a batch job to the Destination Server. Administrators need this right in order to run an alert on the Destination Server without logging on.

To give the built-in Administrator group the right to log on as a batch job

1. On the Destination Server, click Start, click All Programs, and then click Administrative Tools.

2. In the Administrative Tools menu, select Group Policy Management.

3. In the Group Policy Management console tree, click Forest: <ServerName>, and then click Domains.

4. Click the name of your server, expand Domain Controllers, right-click Default Domain Controllers Policy, and then click Edit.

5. In the Group Policy Management Editor, click Default Domain Controllers Policy <ServerName> Policy, expand Computer Configuration, and then click Policies.

6. In the Policies tree, expand Windows Setting, and then click Security Settings.

7. In the Security Settings tree, expand Local Policies, and then click User Rights Assignment.

8. In the results pane, scroll to and then click Log on as a batch job.

9. In the Log on as a batch job Properties dialog box, click (on define ths policy setting then click on) Add User or Group.

10. In the Add User or Group dialog box, click Browse.

11. In the Select Users, Computers, or Groups dialog box, type Administrator.

12. Click Check Names to verify that the built-in Administrator account appears, and then click OK three times.

To delete the old Folder Redirection Group Policy object

1. On the Destination Server, click Start, click Administrative Tools, and then click Group Policy Management.

2. Click Continue in the User Account Control dialog box.

3. In the Group Policy Management navigation pane, expand Forest:<DomainName>, expand Domains, expand <DomainName>, and then expand Group Policy Objects.

4. Right-click Small Business Server Folder Redirection, and then click Delete.

5. Click Yes in the warning dialog box.

6. Close the Group Policy Management Console.

This is another one of those ... I don't want to put personal stuff from the workstations on the server and all of the sensitive client stuff should be on the server in the first place.

One step I don't have to do... so we can pass on that one.. but on this one I need to do:

Give the built-in Administrator group the right to log on as a batch job. Follow the instructions on pages 74 through 75 in the Microsoft migration document.

Posted Wed, Nov 18 2009 23:45 by bradley | with no comments

Filed under: Migration

Migration Step Thirty: DCpromoing the SBS 2003

At this point of the migration we need to physically remove any attached printers and attach them to the new server (more on that in another blog post).

And now we're ready to say goodbye to the SBS 2003 box.

Demote the Source Server

You must demote the Source Server from the role of an Active Directory Domain Services (AD DS) domain controller to the role of a domain member server.

Both the Source Server and the Destination Server must be connected to the network while the Group Policy changes are updated on the client computers. If you are about to demote and disconnect the Source Server from the network, ensure that Group Policy settings are applied to all client computers.

To force a Group Policy update on a client computer

1. Log on the client computer as an administrator.

2. Click Start, click All Programs, click Accessories, right-click Command Prompt, and then click Run as administrator.

3. At the command prompt, type gpupdate /force, and then press ENTER.

4. The process may require you to log off and log on again to finish. Click Yes to confirm.

To demote the Source Server

1. On the Source Server, click Start, click Run, type dcpromo, and then click OK.

2. Click Next twice.

It will warn you this is a GC... yes, you have another one in the SBS 2008

Important

Do not select This server is the last domain controller in the domain.

3. In the Summary dialog box, you are informed that Active Directory Domain Services (AD DS) will be removed from the computer and that the server will become a member of the domain. Click Next.

Now in my case I had to do this process twice as the first time it wouldn't uninstall the AD. Also you are prompted to set up a password

Add a Admin password.

Click next to confirm you are removing active directory.

The AD will begin to uninstall.

Uh oh mine didn't like this... when I googled they said to stop the netlogon service but when I checked it, it already was off. So I tried again, this time ensuring that netlogon service is turned off.

So I tried again....

And this time it worked.

Reboot the server.

4. Click Finish. The Source Server restarts.

5. After the Source Server restarts, make the Source Server a member of a workgroup before you disconnect it from the network.

Restart the server again.

After you make the Source Server a member of a workgroup and disconnect it from the network, you must remove it from AD DS on the Destination Server.

To remove the Source Server from AD DS

1. On the Destination Server, click Start, click Administrative Tools, and then click Active Directory Users and Computers.

2. In the User Account Control window, click Continue.

3. In the Active Directory Users and Computers navigation pane, expand the domain name, expand MyBusiness, expand Computers, and then expand SBSComputers.

4. Right-click the Source Server name if it still exists in the list of servers, click Delete, and then click Yes.

5. Verify that the Source Server is not listed, and then close Active Directory Users and Computers.

Remove the Source Server from the network

Remove the Source Server from the network, and keep it available for at least one week in case some necessary data was not migrated.

Edit the Software Updates Group Policy object on the Destination Server

After demoting and removing the Source Server, it is still included in the scope for the Update Services Group Policy object (GPO) on the Destination Server. This is now an unresolvable security identifier (SID) and should be removed in the Group Policy Management Console on the Destination Server.

To update the Software Updates GPO

1. On the Destination Server, click Start, click Administrative Tools, and then click Group Policy Management.

2. On the User Account Control dialog box, click Continue.

3. In the Group Policy Management console, in the navigation pane, expand Forest:DomainName, expand Domains, expand DomainName, and then expand Group Policy Objects.

4. Click Update Services Server Computers Policy.

5. In the results pane, click the Scope tab.

6. In the Security Filtering section, click the object that begins with S-1-5. This is the Source Server SID.

7. Click Remove, and then click OK.

Posted Wed, Nov 18 2009 22:20 by bradley

Filed under: Migration

QuickBooks 2009 Release 9 (R9) Won’t Be Backwards Compatible with Earlier Releases of the 2009 Software

New Release for QuickBooks 2009 Requires Special Care. See Web version.

	MAJOR QUICKBOOKS 2009 UPDATE

	Dear Susan Bradley, QuickBooks 2009 R9 is coming soon, and it is a different kind of update. It will require your careful review of what versions of QuickBooks your clients are using, and how you may be working with them to share files.

	WHAT: RELEASE 9 REQUIRES CARE, COORDINATION

	QuickBooks 2009 Release 9 (R9) Won’t Be Backwards Compatible with Earlier Releases of the 2009 Software Intuit QuickBooks 2009 R9, going out live as an Automatic Update on December 1, has important improvements for both you and your clients. [Note 1] We strongly recommend that both of you use the update. However, unlike other updates in recent history, this update will not be backwards compatible with earlier releases of QuickBooks 2009. Accountant's Copy Remains Good Alternative: Backwards compatibility continues for the Accountant's Copy. That is, if you update to QuickBooks 2009 R9, you will still be able to receive, open, and return an Accountant's Copy of your clients’ files in earlier releases of QuickBooks 2009 and QuickBooks 2008, and your client could accept and upload the Accountant's Copy without moving to QuickBooks 2009 R9. [Note 2] We provide more information on different use case scenarios at Appendix A.

	WHY: DATABASE UPDATE AND MORE

	QuickBooks 2009 R9 includes a patch to the underlying QuickBooks database that further improves data stability in significant ways. Specifically, QuickBooks 2009 R9 will take advantage of a new Sybase SA10 patch. [Note 3] While QuickBooks is already remarkably stable, we estimate this patch will remove many remaining data issues in whole or in part. The update will also improve speed of execution for heavy users, as well as improve performance in selected reports. Beyond the database updates, the release addresses a large number of specific issues. The full range of benefits of QuickBooks 2009 R9 will be identified in the Release Notes, available tomorrow, Nov. 19.

	WHEN: MANUAL AND AUTOMATIC UPDATES

	Our Schedule Intuit currently expects R9 to be released as follows: Tomorrow, Nov. 19, 2009: QuickBooks 2009 R9 release notes and the manual update are made available at the QuickBooks Updates site. Tuesday, Dec. 1, 2009: The Automatic Update is pushed out to appear as an update in-product. Users should be encouraged to allow automatic updates and to accept the patch. Early Notice. We are giving early notification so you can review your client base and determine your options. Depending on how you decide to handle the release, you may decide to reach out and advise your clients. See "Your Clients" in next section for more information.

	HOW: ADDITIONAL RESOURCES COMING SOON

	More Information on Its Way As noted above, Intuit will post detailed release notes tomorrow, Nov. 19. Intuit will also be posting a specific knowledge base item related to this unique release. Your Clients Left to their own devices, most clients will become aware of this update on Dec. 1, when they are prompted by in-product messaging. This means that you have two weeks to prepare clients about the update. The QuickBooks ProAdvisor Newsletter (expected in the next few days) will have further information around language you can use in an email message to your clients about the update.

	WHERE: LOCATION OF UPDATES AND INFORMATION

	All the Usual Places On our QuickBooks Updates site, you will have access to the manual download of Release 9 as well as full release notes, as of tomorrow, Nov. 19. In our knowledge base for accounting professionals, you will find one or more items available on or about the same date. The Knowledge Base or KB item on the general QuickBooks site will be posted here. A more "ProAdvisor-appropriate" version will be posted on the ProAdvisor support site tomorrow. The link for the item will be included in the next QuickBooks ProAdvisor Newsletter. In the desktop version of QuickBooks 2009, R9 will appear as an automatic update prompt, on or after Dec. 1. More Information in QuickBooks ProAdvisor Newsletter Your next copy of the QuickBooks ProAdvisor Newsletter is expected a day or two after the Manual update is posted. The issue will have more information on this release.

	NOTES

	The release affects Windows desktop versions of QuickBooks 2009 and QuickBooks Enterprise 9.0. It further affects backwards compatibility with earlier versions of the same software products. Backwards compatibility in the QuickBooks 2009 Accountant's Copy includes previous releases of QuickBooks 2009 and QuickBooks 2008. QuickBooks 2009 R9 will move the underpinnings of the QuickBooks database from Sybase SA10 patch 3712 to patch 3960. Intuit has tested the patch in multiple scenarios and found that with the patch, QuickBooks 2009 shows significant improvements in many areas of data handling, including those areas which are associated with rare instances of data corruption, especially among heavy users.

APPENDIX A: USE CASE SCENARIOS

See Which Situation Most Applies to You

The options related to backwards compatibility may be clearer if we review several use case scenarios between you and your client.

Use Case Scenario	Outcome
You and your client both have QuickBooks 2009.	Both you and the client should both upgrade to QuickBooks 2009 R9.
You and your client both have QuickBooks 2009. You have upgraded to R9 but your client has not or will not update, for whatever reason, to R9.	You can still share files via the Accountants Copy.
You have QuickBooks 2009 R9 and your client has QuickBooks 2008 and will not purchase new software to upgrade to QuickBooks 2009 R9.	You can still share files via the Accountant's Copy.
You and your client both have QuickBooks 2008 and are currently sharing 2008 files. In one directory you maintain QuickBooks 2008. In a separate directory you maintain a version of QuickBooks 2009, and you upgrade that version to QuickBooks 2009 R9.	You and your client will still be able to share files as long as you work with the client’s 2008 files in your 2008 copy of the software.
Same scenario as above but for QuickBooks 2007; you and client both continue to work in QuickBooks 2007.	Same outcome as above for QuickBooks 2007; you and client both continue to work in QuickBooks 2007.
Same scenario as above but for QuickBooks 2006 and earlier.	Intuit no longer supports QuickBooks 2006 and earlier under its service discontinuation policy. [Note 4] We recommend clients upgrade to a currently supported version of QuickBooks for many reasons, including security. [Note 5]
You have QuickBooks 2009 and your client has QuickBooks 2007 or earlier.	You will not be able to update the file and return it to the client, whether or not you are using the Accountant’s Copy. Your best option is to have the client upgrade to QuickBooks 2009 R9.
Your client upgrades to QuickBooks 2009 R9 but you want to remain on QuickBooks 2009 R8 because some R8 clients are refusing, for whatever reason, to upgrade to R9.	You have limited options: Upgrade your QuickBooks 2009 to R9. Or, install QuickBooks 2010 in its own directory and use the 2010 Accountant's Copy to share files with your client on QuickBooks 2009 R9, so you can maintain QuickBooks 2009 on R8. Or, less commonly, if you are in an office with multiple machines with QuickBooks, keep one machine on QuickBooks 2009 R8 for R8 clients.
You have QuickBooks 2010 and your client has QuickBooks 2009 (any release).	You can still share files via the Accountant's Copy.

	NOTES TO APPENDIX A

	Service Discontinuation Policy. Intuit has to balance the needs of its installed user base with the needs to continue to develop and grow the software. The result is the QuickBooks Service Discontinuation Plan, in which at least the three most current years’ QuickBooks are being supported at any one time. As we go to press, Intuit is currently supporting QuickBooks 2007, 2009, 2009, and the recently introduced 2010. See more details here. ActiveX Issue. Intuit has identified, and created a solution for, a potential security vulnerability in some of our QuickBooks desktop software (2009 and older supported versions) related to certain Windows ActiveX controls. However, patches are not available for nonsupported versions (that is, QuickBooks 2006 and earlier). To keep everyone’s data safe, users are encouraged to upgrade to a currently supported version of QuickBooks.

Posted Wed, Nov 18 2009 22:13 by bradley | 1 comment(s)

Filed under: quickbooks

Migration Step Twenty Nine and a half, part two: Uninstalling Exchange 2003

Let's try this again now...

And voila

You must uninstall Exchange Server 2003 from the Source Server before you demote it. This removes all references in AD DS to Exchange Server on the Source Server. You must have your Windows Small Business Server 2003 media to remove Exchange Server 2003.

Important

To remove Exchange Server 2003 from the Source Server, click Windows Small Business Server 2003 in Add or Remove Programs, and then click Remove. Follow the instructions to finish the procedure.

And we're done with that step.

Finally. The next step is dcpromo-ing down the SBS 2003.

But before ... remove printers physically attached to the SBS 2003...

Physically disconnect printers that are directly connected to the Source Server

Before demoting the Source Server, physically disconnect any printers that are directly connected to the Source Server and are shared through the Source Server. Ensure that no Active Directory objects remain for the printers that were directly connected to the Source Server. The printers can then be directly connected to the Destination Server and shared from Windows SBS 2008.

And... uh... I have none. They are all attached via IP addresses as they have print servers. Next up..a blog post about 32 versus 64 bit printer drivers and we dcpromo out our SBS 2003 and say goodbye.

Posted Wed, Nov 18 2009 6:42 by bradley | with no comments

Filed under: Migration

Migration Step Twenty Nine and a half: Uninstalling the Exchange 2003

You must uninstall Exchange Server 2003 from the Source Server before you demote it. This removes all references in AD DS to Exchange Server on the Source Server. You must have your Windows Small Business Server 2003 media to remove Exchange Server 2003.

Important

To remove Exchange Server 2003 from the Source Server, click Windows Small Business Server 2003 in Add or Remove Programs, and then click Remove. Follow the instructions to finish the procedure.

We're now at the step on step 29 where we are ready to remove the Exchange 2003. We've already done a dry run of turning off the SBS 2003 box (but keep in mind with the 2k3 box still in the active directory of SBS 2008 it makes the rebooting of that box kinda dicey as it makes the AD in the SBS 2008 box not the happiest in the world. The server still runs just fine, but it drags it's feet a bit booting up as it's looking for the turned off SBS 2003.

Stick Disk 2 in the cdrom, or stick the disk 2 iso in the HyperV cdrom drive.

click on Windows SBS 2003 (not the r2)

Click on change/remove, then click next. In my case it warned me I had the system on a machine with more than two processors and click next.

Go down to the Exchange server section pull the arrow key down and click change the check mark to remove.

Click next.

Confirm that you'll remove Exchange

The removal begins

It will then want the location of of the cdrom.

(note, do-do brain me downloaded the disk two of the SBS 2003 service pack 1 media. I'm now remote to the box at home and in my Jammies and can't walk over to the dvd drive and give it a disk. So I'm having to download the right disk 2 to remove the exchange. So step we're going to stop here at step twenty-nine and a half where I give the box the RIGHT disk 2 will have to wait until tomorrow. If for whatever reason you have a disk with a non functional cdrom drive you can always download the ISO, or convert it to an ISO and feed it into a usb drive and then mount the media using magicdisc )

Posted Tue, Nov 17 2009 22:13 by bradley | 4 comment(s)

Filed under: Migration

Migration Step Twenty Eight: Getting ready to remove the SBS 2003 box -- revisited

We're revisiting Migration Step Twenty Eight

This has always been a confusing step to me as it says "Here do these steps". What it should say is "Yo, go back and double check that you've done step 1, 2, 3, 4, 5, do steps 6 through 10.

Prepare your organization for removal of the last server running Exchange Server 2003

Tasks to complete prior to uninstalling Exchange Server 2003

1. Move all mailboxes.

2. Move all contents from the public folders.

3. Move the Offline Address Book Generation Process.

4. Remove the public folder mailbox and stores.

5. Verify that you can send and receive e-mail to and from the Internet.

6. Delete the routing group connectors.

7. Delete or reconfigure the Mailbox Manager policies.

8. Move the public folder hierarchy to the Exchange 2007 Administrative Group.

9. Delete the domain Recipient Update Services.

10. Delete the Enterprise Recipient Update Service.

For detailed instructions about how to complete these steps, see the section “To remove the last Exchange 2003 or Exchange 2000 server from an Exchange 2007 organization” in the article "How to Remove the Last Legacy Exchange Server from an Organization" at the Microsoft Web site (http://go.microsoft.com/fwlink/?LinkId=141927 ).

We have moved mailboxes. Check. We know this because our mailboxes say "User Mailbox" not "Legacy Mailbox" when you go into Exchange Management console, then Recipient configuration, then click on mailbox.

We have moved public folders. I know this because the SBS 2003 box is off, and I've gone into Toolbox, then into Public Folder Management console and my default public folders are there. I also fired up OWA on the box, logged into a mailbox, clicked on Public folders to confirm that the info is there.

We have moved the offline address book.

We have moved the public folders. See above.

We can send email. We've checked this.

We now need to delete the SBS 2003 <<>> SBS 2008 connector that bridges across.

We need to delete or reconfigure the mailbox policies For this I'll turn the SBS 2003 back on.

We will move the public folder hierarchy to the 2007 hiearchism.

We will MOVE (not delete) the Recipient update policies. We can delete if we so deem, but moving was easier than pulling out ADSIedit for sure.

So for the steps we have left, first up is to log back into the turned off SBS 2003 and to move the public folder hierachism.

We have to go back to the 2003 box because that's where our GUI is. If we did these steps on the SBS 2008 we'd be breaking out the Powershell. There's a nice overview of what was depreciated in Exchange 2007 from 2003. Obviously someone on the Exchange team has a thing for Powershell and a thing against GUI. You might also want to learn how to use this as well.

So we need to remove the connectors. As this article says you can do it via PowerShell/Exchange command shell or GUI. And as Philip showcases, just find the connectors and delete them out. It will say "are you sure" and it doesn't matter which one you delete first.

So next we will move the public folder hierachy to the 2007 box.

On your Exchange 2003 or Exchange 2000 server, perform the following steps to move the public folder hierarchy from the Exchange 2003 or Exchange 2000 administrative group to the Exchange 2007 administrative group:

In Exchange System Manager, expand Administrative Groups, right-click Exchange Administrative Group (FYDIBOHF23SPDLT), select New, and then select Public Folders Container.
Expand the Exchange 2003 or Exchange 2000 administrative group that contains the public folder tree, expand Folders, and then drag Public Folders to Folders under the Exchange 2007 administrative group.
Find them in the old server, copy/drag them over to the 2007 server

Deleting the receipient update services

Perform the following steps to delete the domain Recipient Update Services:
In Exchange 2003 or Exchange 2000 System Manager, expand Recipients, and then select Recipient Update Services.
Right-click each domain Recipient Update Service, and then select Delete.
Click Yes.

I want to remove this one as Michael B. Smith Exchange guru said "If you point it to the new box, then you still can create new users using the old tools, but their Exchange attributes will be fubar'ed. Not a good thing" Last night I browsed to the new box, tonight I'm changing my mind (like a female only should).

You will not be able to delete the Recipient Update Service (Enterprise Configuration) by using Exchange 2003 or Exchange 2000 System Manager. Perform the following steps to delete the Recipient Update Service (Enterprise Configuration) by using ADSI Edit (AdsiEdit.msc):

Open ADSI Edit, expand Configuration, expand CN=Configuration,CN=<domain>, expand CN=Services, expand CN=Microsoft Exchange, expand CN=<Exchange organization name>, expand CN=Address Lists Container, and then select CN=Recipient Update Services.
In the result pane, right-click Recipient Update Service (Enterprise Configuration), click Delete, and then click Yes to confirm the deletion.

On this one I can either delete or point it to the new box. (Pointing it to the new box was easier and if need be I can always come back and redo this)

Type in the new SBS 2008 server name, click check name and click okay.

And now we're ready for....

Uninstall Exchange 2003 or Exchange 2000 by using Add or Remove Programs from Control Panel. For more information, see How to Uninstall Exchange Server 2003 or How to Uninstall Exchange 2000 Server.

For this next step I'll need disk 2 of SBS 2003 or SBS 2003 R2.

And DON'T go in and remove the Exchange from where you think you need to remove Exchange, remove it from the SBS 2003 section. I need to download that media from TechNet plus to put it on that box. If you don't have access to your customer's media "any" SBS 2003 disk 2 media will do.

You must uninstall Exchange Server 2003 from the Source Server before you demote it. This removes all references in AD DS to Exchange Server on the Source Server. You must have your Windows Small Business Server 2003 media to remove Exchange Server 2003.

Important

To remove Exchange Server 2003 from the Source Server, click Windows Small Business Server 2003 in Add or Remove Programs, and then click Remove. Follow the instructions to finish the procedure.

Stay tuned for the next chapter in ... Migration...or how the Server turns...

Posted Tue, Nov 17 2009 18:12 by bradley | 1 comment(s)

Filed under: Migration

>>> Hot Issues for November 2009 <<< Exchange

>>> Hot Issues for November 2009 <<<:
http://social.microsoft.com/Forums/en-US/partnermsgexchange/thread/debeed23-4f55-4325-9db0-c38df36c9208

TOP SUPPORT ISSUES

[ISSUE 1]

Problem Description

================

W3wp.exe process consumes a lot of CPU resources (over 50%) when users synchronize the mailboxes via ActiveSync.

Environment:

==================

Exchange 2003 with SP2

iPhone

Assessment:

==================

Based on Process Explorer, we found the imon.dll thread within the w3wp.exe process consumes a lot of CPU resources and the value of Cswitch Delta is very high.

Resolution

==========

1. Installed the hotfix 941439 and set the valud of MaxAllocationIncrement to 4096.

2. Disabled IMON scanner which a sub-component of NOD32 anti-virus program.

[ISSUE 2]

Problem Description:

=============

When using ActiveSync, users are not prompted for changing password if it is expired or invalid. In addition, status code 0x85010014 is returned if the user's password is set to must be changed on next logon.

Cause:

=======

When configuring POP3 account, the user specifies a non-existent e-mail address.

Resolution:

===============

Under investigation, we noticed that ISA 2006 server is being used in the environment, hence we need to apply the hotfix KB958952.

ISA Server 2006 sends back an HTTP 502 error if invalid credentials are provided to an FBA Web listener

http://support.microsoft.com/kb/958952

[ISSUE 3]

Problem Description:

================

From ExBPA report, the Exchange server cannot access port 389 of a domain controller named studc1.

There are one parent domain and three child domains in this organization. The issue only occurs within one child domain.

Cause:

================

Based on the network trace, we found that that IP address of the domain controller does not map to the correct FQDN of the domain controller.

After further investigation, we found that there is an incorrect A record for this domain controller in the DNS server of the root domain.

Resolution:

================

Remove the incorrect DNS A record and add a correct one.

NEW & TOP DOWNLOADS

Exchange 2010

http://www.microsoft.com/exchange/2010/en/us/try-it.aspx

Best regards,

Ryan Ye
Partner Online Technical Community
-----------------------------------------------------------------------------------------
We hope you get value from our new forums platform! Tell us what you think:
http://social.microsoft.com/Forums/en-US/partnerfdbk/threads
------------------------------------------------------------------------------------------
This posting is provided "AS IS" with no warranties, and confers no rights.

Posted Mon, Nov 16 2009 23:48 by bradley | with no comments

Filed under: News

>>>Partner Community Hot issues November 2009<<<:

>>>Partner Community Hot issues November 2009<<<:
http://social.microsoft.com/Forums/en-US/partnerofficeword/thread/3c3e80b4-c1bd-49bb-b7f8-f85bbdceccb9

TOP SUPPORT ISSUES
NEW & UPDATED KB ARTICLES
NEW WEBCASTS

TOP SUPPORT ISSUES
===============
The following "hot topics" were posted and resolved during the month of October in Office and Messaging client:

<Issue 1>

Product: Office Outlook 2007

Issue Description:

------------------------------

Outlook 2007 with BCM v3 was originally installed on Windows XP machine. The user uninstalled Windows XP OS and completely installed a new Windows 7 OS. After recovering the backup file for BCM database, the customer found (2 months ago) data is missing. The user wants to know how to recover missing data.

Resolution:

------------------------------

If the user has original BCM backup files <databasename>_offline.ldf and <databasename>_offline.mdf, he can restore the BCM dataset by using scripts.

For your reference:

Restoring a BCM database from SQL .mdf and .ldf files

http://blogs.msdn.com/bcm/archive/2007/10/22/restoring-a-bcm-database-from-sql-mdf-and-ldf-files-windows-vista-or-xp.aspx

<Issue 2>

Product: Office Word 2003 and Word 2007

Issue Description:

------------------------------

Some files are slow to open in Word 2003 and Word 2007 on the network.

Cause:

------------------------------

Those files are created by a template and will always to load the template in a shared folder when they are opened.

Resolution:

------------------------------

In Word 2003, please click “Tools” > “Templates and Add-ins” and clear the template file path here.

In Word 2007, please click “Developer” tab and click “Document Template” to clear the template file path.

<Issue 3>

Product: Office Outlook 2007

Issue Description:

------------------------------

The Country/Region drop down list is empty when you edit the business phone number in Outlook 2007 with BCM

Cause:

----------------------------------

The phone and modem options are not configured.

Resolution:

---------------------------------

Configure the options for a new location:

1. Start / Run / Services.msc / OK.

2. Double-click the Telephony service.

3. Set the Startup type to Manual.

4. Press Apply and OK.

5. Shutdown and restart your computer.

6. Verify that the Telephony service is started.

7. Configure your New location in the Phone and Modem options.

<Issue 4>

Product: Office Outlook 2007

Issue Description:

------------------------------

Customer cannot search either your own Calendar items or shared Calendar items in Outlook 2007. Have totally reinstall Office 2007 SP2 to troubleshoot this issue.

Cause:

-----------------------------

Some MAPI related files are corrupt or missing.

Resolution:

---------------------------------

Run Fixmapi.exe tool and Rebuild the computer's index catalog

1. Click Start, click Run, type %windir%\system32\fixmapi.exe, and then click OK.

2. Restart the computer.

3. In Control Panel, double-click Indexing Options.

4. In the Indexing Options dialog box, click Advanced.

5. Click the Index Settings tab, and then click Rebuild.

6. Click OK when you are prompted to rebuild the indexed locations on the computer.

7. Click Close to close the Indexing Options dialog box.

<Issue 5>

Product: Office 2003

Issue description:

-------------------

When trying to add clip art in Office 2003, we got the error “Clip Organizer cannot complete the operation - No such interface Supported error code 0x80004002”

Cause:

-----------------------

A third party software made windows use the old versions of two dll's: msdasql.dll and msdaps.dll

Resolution:

----------------------

Register the two files msdasql.dll and msdaps.dll from %COMMONPROGRAMFILES%\system\ole db:

regsvr32 msdasql.dll

regsvr32 msdaps.dll

NEW & UPDATED KB ARTICLES

================

940726 Security warning when you start Outlook 2007 and then connect to a mailbox that is hosted on a server that is running Exchange Server 2007 or Exchange Server 2010: "The name of the security certificate is invalid or does not match the name of the site"

http://support.microsoft.com/default.aspx?scid=kb;EN-US;940726

942995 You are prompted unexpectedly to restart the computer after you install a 2007 Office service pack or a 2007 Office update

http://support.microsoft.com/default.aspx?scid=kb;EN-US;942995

924074 How to open and save Word 2007, Excel 2007, and PowerPoint 2007 files in earlier versions of Office programs

http://support.microsoft.com/default.aspx?scid=kb;EN-US;924074

950929 How to contact a Microsoft Product Activation Center

http://support.microsoft.com/default.aspx?scid=kb;EN-US;950929

NEW WEBCASTS
===================

Microsoft Office System Webcast: Extend the 2007 Microsoft Office System (Level 300)

https://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032422514&EventCategory=5&culture=en-US&CountryCode=US

Momentum Webcast: Using Microsoft Office for Business Intelligence (Level 100)

https://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032423637&EventCategory=5&culture=en-US&CountryCode=US

Posted Mon, Nov 16 2009 23:47 by bradley | with no comments

Filed under: News

>>>Hot Issue Nov-09 (Virtualization)<<<:

>>>Hot Issue Nov-09 (Virtualization)<<<:
http://social.microsoft.com/Forums/en-US/partnervirtualserver/thread/fbca5f4a-e1c2-4f0a-8068-0e6c495fe18e

Virtualization

TOP SUPPORT ISSUES

[ISSUE 1]

Problem Description:
=============
Both Hyper-V instances report event id 1054 several times a day.

Resolution:
==========
Add the following keys to the server

Registry subkey: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\System

Value name: GroupPolicyMinTransferRate

Value type: DWORD

Value Data: 0

Registry subkey: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System

Value name: GroupPolicyMinTransferRate

Value type: DWORD

Value Data: 0

[ISSUE 2]

Issue:

===========

Can I install the system and boot volume of a virtual machine direct to a physical hard disk from a DAS (direct attached storage)?

Solution:

===========

Look at table 2 of the following link, we can see guest can boot from VHD or passthrough disk when DAS/SAN on host.

http://blogs.technet.com/josebda/archive/2008/02/14/storage-options-for-windows-server-2008-s-hyper-v.aspx

Please note to attache the passthrough disk to IDE controller to successfully boot the VM.

Configuring Pass-through Disks in Hyper-V

http://blogs.technet.com/askcore/archive/2008/10/24/configuring-pass-through-disks-in-hyper-v.aspx

[ISSUE 3]

Problem

========

Hyper-V wbadmin error:

Creating a shadow copy of the volumes specified for backup...

The backup operation stopped before completing.

Summary of the backup operation:

------------------

The backup operation stopped before completing.

Detailed error: ERROR - A Volume Shadow Copy Service operation error has

occurred: (0x80042336)

The writer experienced a partial failure. Check the component level error state

for more information.

Solution

========

Register the following VSS .dlls

Please save the following commands as the .bat file

==========================

net stop "System Event Notification Service"

net stop "COM+ Event System"

net stop "Microsoft Software Shadow Copy Provider"

net stop "Volume Shadow Copy"

cd /d %windir%\system32

net stop vss

net stop swprv

regsvr32 /s ole32.dll

regsvr32 /s oleaut32.dll

regsvr32 /s vss_ps.dll

vssvc /register

regsvr32 /s /i swprv.dll

regsvr32 /s /i eventcls.dll

regsvr32 /s es.dll

regsvr32 /s stdprov.dll

regsvr32 /s vssui.dll

regsvr32 /s msxml3.dll

net start "System Event Notification Service"

net start "COM+ Event System"

net start "Microsoft Software Shadow Copy Provider"

net start "Volume Shadow Copy"

==========================

After run the .bat file and restart the server.

NEW KB articles

SCVMM: Adding a SCVMM 2008 host in a external trusted domain fails with error 2917

http://support.microsoft.com/Default.aspx?id=2002404

How to upgrade Windows Server 2008 systems that have the Hyper-V role installed to Windows Server 2008 R2

http://support.microsoft.com/Default.aspx?id=957256

NEW & TOP DOWNLOADS

Windows Server 2008 R2 Enterprise Edition x64 (Core Install) VHD

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=37264b32-c79f-4249-a5d4-b8696772a62a

Best regards,

Vicky Hu
Partner Online Technical Community
-----------------------------------------------------------------------------------------
We hope you get value from our new forums platform! Tell us what you think:
http://social.microsoft.com/Forums/en-US/partnerfdbk/threads
------------------------------------------------------------------------------------------
This posting is provided "AS IS" with no warranties, and confers no rights.

Posted Mon, Nov 16 2009 23:41 by bradley | with no comments

Filed under: Virtualization

Migration Step Twenty Eight: Getting ready to remove the SBS 2003 box

At this point in the migration process you should uninstall Exchange 2003 turn off the SBS 2003 and see if anything freaks out on you. This is a key step to ensure that you moved everything off the SBS 2008 box.

Leave it off for a full business day. Now if everything didn't freak out, no one yelled at you, and business was as usual, turn it back on and prepare the box to be removed from the domain. Play taps for that SBS 2003. Talk about the "good ol' days" of the Bobcat beta that lasted over a year, had us patching for SQL Slammer in the middle of it, and if memory serves me right, was supposed to have Exchange 2000 at one point in time but due to the infamous Bill Gates code standdown that had them stop coding for two months, meant that Exchange 2003 slipped into the mix and we caught upgrade rights to ISA 2004. I still have Bobcat beta disks stuff under my desk here at home somewhere if anyone really wants to go down memory lane some day.

Because when you get done, you can't use this box anymore as a SBS 2003 box. You will need to have another Windows OS of some kind to apply back on the box if you plan to repurpose it. So if you were thinking that you'd just merely dcpromo the SBS 2003, make it a member server and leave the line of business application running on that box, no way Jose, think again. Since it has SBS 2003 code on that box, in 21 days from the start of the migration (or when the SBS 2008 first installed in that domain and the two boxes saw each other) that SBS 2003 will shut down. And in fact as Philip Elder's migration checklist reminds me, the minute you dcpromo the box you have 7 days before it will really freak out. Look in the SBS 2003 log files and you'll see that sbscore is already freaking out.

So it's at this step of the process that a backup would be wise, and a good solid review of where you are at and if you can remove the SBS 2003 box very very soon. If you can't move it, need more time for a LOB migration, the 21 day clock is still ticking, so leave it there and don't dcpromo it down yet.

After you finish installing Windows SBS 2008 and you complete the tasks in the Migration Wizard, you must do the following:

Prepare your organization for removal of the last Exchange 2003 server
Uninstall Exchange Server 2003
Physically disconnect printers that are directly connected to the Source Server
Demote the Source Server
Remove the Source Server from the network
Edit the Software Updates Group Policy Object on the Destination Server
Repurpose the Source Server

This part of the instructions kinda make me scratch my head. The first task "prepare your organization for the removal of the last server running Exchange Server 2003 covers a lot of steps we already did.

So when they say in this step "move all mailboxes"... uh we did that already. And in fact turning off the old SBS 2003 for a day should give you a clue if anyone's mailbox got missed. You can also check this inside the Exchange 2007 console and if any mailbox says "legacy mailbox" that's a sign it's still on the Exchange 2003 server.

We've moved the public folders. We've moved the offline address book. We can send and receive email. We've deleted the routing group connectors.

Prepare your organization for removal of the last server running Exchange Server 2003

Tasks to complete prior to uninstalling Exchange Server 2003

Move all mailboxes. (we already did that)
Move all contents from the public folders. (we already did that)
Move the Offline Address Book Generation Process. (we already did that)
Remove the public folder mailbox and stores. (we already did that)
Verify that you can send and receive e-mail to and from the Internet. (we already did that)
Delete the routing group connectors. (We need to do that)
Delete or reconfigure the Mailbox Manager policies.
Move the public folder hierarchy to the Exchange 2007 Administrative Group.
Delete the domain Recipient Update Services. (I think we need to update rather than delete?)
Delete the Enterprise Recipient Update Service. (I think we need to update rather than delete?)

For detailed instructions about how to complete these steps, see the section “To remove the last Exchange 2003 or Exchange 2000 server from an Exchange 2007 organization” in the article "How to Remove the Last Legacy Exchange Server from an Organization" at the Microsoft Web site (http://go.microsoft.com/fwlink/?LinkId=141927).

When you go to the detailed instructions I scratch my head even more... since Philips' checklist instructions are different

http://blog.mpecsinc.ca/2009/06/sbs-2003-to-sbs-2008-migration-guide.html

The Exchange instructions say:

Perform the following steps to delete the domain Recipient Update Services:
In Exchange 2003 or Exchange 2000 System Manager, expand Recipients, and then select Recipient Update Services.
Right-click each domain Recipient Update Service, and then select Delete.
Click Yes.

Philip's says:

Update the Recipient Update Services on SBS 2003.

Recipient Update Service (SBSDOMAIN)
1. Click the Browse button, put SBS 2008’s name for the Exchange field and click the Check Names button before clicking OK.

I'm going with Philip's instructions.

The Exchange instructions say next:

You will not be able to delete the Recipient Update Service (Enterprise Configuration) by using Exchange 2003 or Exchange 2000 System Manager. Perform the following steps to delete the Recipient Update Service (Enterprise Configuration) by using ADSI Edit (AdsiEdit.msc):

Open ADSI Edit, expand Configuration, expand CN=Configuration,CN=<domain>, expand CN=Services, expand CN=Microsoft Exchange, expand CN=<Exchange organization name>, expand CN=Address Lists Container, and then select CN=Recipient Update Services.
In the result pane, right-click Recipient Update Service (Enterprise Configuration), click Delete, and then click Yes to confirm the deletion.

Philip's instructions say:

Recipient Update Service (Enterprise Configuration)
1. Exchange: SBS 2008 (as in right mouse click on properties, change the server name to the new server name and click okay)

I'm going with Philip's info for tonight's excercise. But honestly I've always felt that the minute the instructions point back to the Technet documentation is when I start to scratch my head and go "Okay...hmmm... do they really mean that? Or do they mean that?" especially when I see other information on the web. I still don't know if I need to move that public folder do-dad. Hang loose and will figure that out in part two of "getting ready to remove the SBS 2003 box" which will be continued in tomorrow's blog post. In the meantime what I will do tonight is shut down that SBS 2003 box and see what, if anything, freaks out on the SBS 2008.

Posted Mon, Nov 16 2009 22:15 by bradley | 2 comment(s)

Filed under: Migration

Making those shares

One of the steps I kinda slid over was the process of recreating the shares from the old SBS 2003 and putting them in again on the SBS 2008. Now if I was a strict person at the office I'd give everyone one drive letter and be done with it. But we don't. And some of the drive letters/shares are unique with permissions that limit them to certain people in the office.

So one of the sections of the David Overton book discusses the use of the rmtshar.exe tool to copy and recreate the shares from one machine to another. In addition the book includes additional scripts that help in the process. The script he includes does the following:

The script will open up a Notepad window with all the shares available on the
SBS 2003 system including those that cannot be migrated, such as printers, policy shares, or tools from SBS 2003 that are not relevant or are already provided with
SBS 2008 such as the fax client. Delete all the shares from the list that you do not
wish to migrate to the new server. This would normally include the following:
SYSVOL
clients
tsclient
tsweb
faxclient
clientapps
NETLOGON
Some file shares are shared with a $ sign at the end to stop them appearing on a network list, while applications and users can still access them. You need to evaluate if these should be moved across. Also, disks are shared as the drive letter followed by a $ sign. You normally do not want to migrate a whole disk, so these would normally also be removed.

Now mind you rather than using the straight robocopy, this is the preferred way of doing it, as it redoes the permissions AND does the robocopy at the same time.

For each share in the Notepad file, you will notice a section similar to the one shown in the following screenshot. You will need to change the destination folder setting to the location where you want a directory created, shared, and then the files copied into it.
REM MIGRATING backup
REM ===================================
SET Dest_Folder="c:\migrated_files\backup"

Bottom line once you run the script on the old server, edit the shares you don't want, move it over to the new server and run the edited script, it automates moving the shares over from one to the other.

Cool, huh!

The links for his scripts are on page 192 and 193 of the book (or PDF version) and more than make the book worth every penny.

The method of migration documented by Jeff Middleton of www.sbsmigration.com does the same sort of script helping and when I get this whole series of migration posts done I'll do a recap of why I chose the Microsoft method augmented by David Overton's book as compared to the www.sbsmigration.com method. [To give you a hint, while the www.sbsmigration.com method leaves the SBS 2003 totally intact and untouched, due to the number of classes, training sessions, and betas I've done for the Microsoft method I was more comfortable with the Microsoft methodology.

Posted Mon, Nov 16 2009 21:14 by bradley | with no comments

Filed under: Migration Extras

One of my software assurance benefits is now gone

Microsoft touts the new way of media fulfillment is so much better. We can go to the MVLS web site, put in our agreement number and immediately download the software. Except for SBS 2008 that is. Due to the way that SBS 2008 is licensed you have to order the physical media.

So in my zeal for migration I thought ...cool I should be getting my media automatically from Microsoft like I have for about umpteen years now.

Wrong. No longer do I get automatic media. I now have to contact my software reseller and ask them to order the new media. One problem. There appears to be no sku out there for SBS 2008 Premium with SP2 included. It appears to be SP1, but not SP2.

I have seen that if you order Open License that there's a button in there that allows you to order the media that does include SP2. One problem. Open Value doesn't have this button. I'm supposed to go through my vendor. The problem is that either my vendor is clueless (which I very much doubt) or Microsoft has made this process so horrifically complex that even the vendors that do this for a living can't find their way around the maze of Microsoft licesning.

On a related note, when you do get SP2 media, keep in mind that from the get go when you install it, Companyweb will not work. That's because Windows 2008 sp2 turns on the Kerberos on Companyweb. I'm debating with myself tonight after listening to Raymond Chen's "How Microsoft is different than School" about how I feel about bugs and "the bug bar".

I will be the first to admit that my bug bar is different than Microsoft's. In the newsgroup someone posted in that a brand new SBS 2008 sp2 installed media had the companyweb broken and that that was unacceptable. I think I've been dulled by the years of betas that now when Microsoft ships things in this state and thinks it's perfectly normal to use Windows/Microsoft update as a vehicle to patch the system up to full working ability, I don't fight it because that's their philosophy. But at the same time I think that I have been dulled by this. Shouldn't it at least be a goal that when the software ships that one doesn't have to go to Microsoft update to make the basic parts work?

Bottom line, when you start building boxes with SP2 included, make sure you get that SBS 2008 update rollup 3 on there (after you run the connect to internet and put in the domain name). That's when companyweb will fully work as it should. Don't panic if it doesn't before then.

Posted Mon, Nov 16 2009 18:42 by bradley | 3 comment(s)

Filed under: News

Whoda thunk it's in security settings

Whoda thunk that enabling the 64bit VT chip to enable either a 64bit guest or Windows 7 XP mode would mean that you needed to go into the security settings of the bios.

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&taskId=115&prodSeriesId=3429268&prodTypeId=12454&prodSeriesId=3429268&objectID=c01484896

www.grc.com/securable said it would support the HyperV technology, but it wasn't kicking in. I knew it was in the bios, but couldn't figure out where the VT ON switch was until I searched on the HP site.

Posted Mon, Nov 16 2009 17:26 by bradley | 3 comment(s)

Filed under: Virtualization

Your mailbox has been deactivated

The zip file attached has a low detection at this time...

Subject:    your mailbox has been deactivated
Date:    Mon, 16 Nov 2009 21:26:25 +0100
From:    support@msmvps.com <support@msmvps.com>
To:    <administrator@msmvps.com>

We are contacting you in regards to an unusual activity that was identified in your mailbox. As a result, your mailbox has been deactivated. To restore your mailbox, you are required to extract and run the attached mailbox utility.

Best regards, msmvps.com technical support.

Virustotal. MD5: 6d0898ff5ea2a6581f1ca3fdd55d840d Trojan.Dropper Win32:Trojan-gen Trojan.Agent-128597:
http://www.virustotal.com/analisis/6399729d05ff10775fa1e068369d1433e7173680d00ce00a6bb33e6fbed31970-1258403165

Posted Mon, Nov 16 2009 12:29 by bradley | 2 comment(s)

Filed under: Security

Tweaking monitoring

In the category of Migration extras, I'll add tweaking monitoring.

You can add unique custom alerts to the existing monitoring on SBS 2008 http://technet.microsoft.com/en-us/library/ee407455(WS.10).aspx

First you need to ensure that the existing monitoring emails out notifications.

Go into network, computers, and then view notification settings.

Enter the email address in there to get notifications from the server.

Now go to the reports tab, click on detailed network reports, and click on view report properties. Adjust the weekly report and make it daily.

Now go to www.codeplex.com/sbs and download the custom alerts to %programfiles%\Windows Small Business Server\Data\Monitoring\ExternalAlerts directory

You can also add in some custom info to add memory use and spec's in the monitoring email from http://www.sbsdeveloper.net/Plugins/SamplePlugins.htm

Download the xml files and copy them to Data\SHExtensions directory of your SBS 2008 installation. Restart your console and Windows SBS Manager service.

And then the following is now added to the monitoring email:

Posted Sun, Nov 15 2009 22:07 by bradley | 1 comment(s)

Filed under: Migration Extras

Search

News

Community

Syndication

Archives

Sharepoint

Exchange

Security

Microsoft Downloads

SBS - Blogs

ISA Server

SBS Team Blogs

Interesting Small Business Blogs

SBS - CRM

Interesting People I know

Patches

Blogs to Watch

[ISSUE 1]

[ISSUE 2]

[ISSUE 3]

[ISSUE 4]

[ISSUE 1]

[ISSUE 2]

[ISSUE 3]

[ISSUE 1]

[ISSUE 2]

[ISSUE 3]

Prepare your organization for removal of the last server running Exchange Server 2003