THE OFFICIAL BLOG OF THE SBS "DIVA"

Error message when you try to install Exchange Server 2010 SP2: "AuthorizationManager check failed":
http://support.microsoft.com/kb/2668686/en-us?sd=rss&spid=13965
Consider the following scenario:

• You install Microsoft Exchange Server 2010 or Microsoft Exchange Server 2010 Service Pack 1 (SP1). (okay SBS 2011 includes Exchange 2010 sp1 - check)
• You use the Group Policy Management Console (GPMC) or the Local Group Policy Editor (Gpedit.msc) to create a Group Policy Object (GPO) or a local policy . (We do have group policies - check)
• The GPO or the local policy sets the Windows PowerShell Execution policy to a status other than Undefined. (SBS 2011 does NOT do this and thus will not be impacted by this)
• You install Microsoft Exchange Server 2010 Service Pack 2 (SP2).

When this error occurs, Exchange Server 2010 does not work and is not listed in Add or Remove Programs. Additionally, you cannot reinstall Exchange Server 2010.

This issue occurs because the Windows Management Instrumentation (WMI) service is stopped during the installation process. Therefore, the ServiceControl.ps1 Windows PowerShell script that runs as part of the Exchange Server 2010 SP2 installation process cannot call the WMI service to verify the execution permissions.

To resolve this issue, follow these steps:

1. Recover the server that is running Exchange Server 2010

Ouch.  Bottom line, SBS is not impact.  But for anyone else out there installing SP2, you might want to check your PowerShell and ensure you have not set a policy.

Description of Update Rollup 6 for Exchange Server 2007 Service Pack 3:
http://support.microsoft.com/kb/2608656/en-us?sd=rss&spid=10926
Microsoft has released Update Rollup 6 for Microsoft Exchange Server 2007 Service Pack 3 (SP3) that is dated January 25, 2012.


Released: Update Rollup 6 for Exchange 2007 Service Pack 3 - Exchange Team Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/exchange/archive/2012/01/26/released-update-rollup-3-for-exchange-2007-service-pack-3.aspx

Earlier today the Exchange CXP team released Update Rollup 6 for Exchange Server 2007 SP3 to the Download Center.

Note: The post title erroneously referred to Update Rollup 3. It has been updated to reflect the correct rollup number.

This update contains a number of customer-reported and internally found issues since the release of RU5. See KB 2608656: Description of Update Rollup 6 for Exchange Server 2007 Service Pack 3' for more details.

We would like to specifically call out the following fixes which are included in this release:

• DST Cadence Release for Dec 2011 - Exchange 2007
• 22656040 An Exchange Server 2007 Client Access server may respond slowly or stop responding when users try to synchronize the Exchange ActiveSync devices with their mailboxes
• 2498852 "0x80041606" error message when you perform a prefix search by using Outlook in online mode in an Exchange Server 2007 environment
• 22653334 The reseed process is unsuccessful on the SCR passive node when the circular logging feature is enabled in an Exchange Server 2007 environment
• 22617784 Journal reports are expired or lost when the Microsoft Exchange Transport service is restarted in an Exchange Server 2007 environment
• 2289607 The week numbers displayed in OWA do not match the week numbers displayed in Outlook for English users and French users in an Exchange Server 2007 environment

General Notes:

For DST Changes: http://www.microsoft.com/time.

Note for Forefront Protection for Exchange users For those of you running Forefront Protection for Exchange, be sure you perform these important steps from the command line in the Forefront directory before and after this rollup's installation process. Without these steps, Exchange services for Information Store and Transport will not start after you apply this update. Before installing the update, disable ForeFront by using this command: fscutility /disable. After installing the update, re-enable ForeFront by running fscutility /enable.

<please note, this isn't anti cloud, rather it's a plea to vendors to provide value for services>

For background, see this post

If you hired me and I did work for you for several years and then I came to you and said that I'd be bumping up the price by 1400% (that's not a typo) would you want me to justify that what you provided to me increased in value that much as well? 

You know what bugs me the most about putting key business assets lock stock and barrel inside of cloud deployments?  It's the problem that OpenDNS just showcased to me.  I'd better have an exit strategy that is relatively painless otherwise I'm going to be scrambling to exit should my cloud vendor jack up the price tag.  I'm guessing that OpenDNS's major shift in pricing is a sign that their venture capital firms want the free ride to go away.  That they want value as well for the dollars they are investing.  Fair enough.  Fair value for what they do.  But that's the thing, right now I have no idea of OpenDNS's business model.  I wanted to pay to ensure that the company stayed financially viable.  But I have no idea if $1500 per year is really what I cost to OpenDNS or if it's a means to get rid of small companies like mine.

It's the concerns I have regarding the pricing plans and options of offerings like Office 365.  Microsoft doesn't release the details of the financials behind Office 365 so I have no idea if the price per mailbox I'm seeing now truly is a reasonable fee for the product or if they are loss leading the prices to suck in customers.  Getting onto cloud services is relatively easy.  Getting off, perhaps not so easy.  In this case of OpenDNS, they are not sticky enough and hard enough to migrate off of, nor (in my opinion) provide $1500 of value to my firm that I can't find elsewhere for much cheaper amount.

But it's that "are you really making a decent living from what I am paying you or are you going to jack up the price tag once you no longer have your cash cows of Windows and Office to carry the load" that honestly concerns me because I have no means to make that decision based on the financials of Microsoft - and I'm a shareholder.

So all of you cloud vendors that want to get me on board as a smb customer?  Charge a reasonable price tag for your service up front.  Don't loss lead it.  Don't discount it so much to get customers that when you finally do increase the price tag for what it actually costs that you give your customers heart attacks. 

And ask yourself (if you are a big company), put yourself in my shoes of making decisions.  Would you pay what you are asking me to pay?  If you increased pricing, would you also consider this unreasonable?

I think even http://twitter.com/davidu would be shocked if he was paying $1500 for protecting just himself and no one else.

Recently during a migration someone found that public folder mail enabled routing was not working.  Turns out this was the problem:

When sending e-mail messages to a mail-enabled public folder that have been replicated from old Exchange Server 2000/2003/2007, Exchange Server 2010 environment mails are rejected with NDR.:
http://social.technet.microsoft.com/Forums/en-US/exchangesvrgeneral/thread/e8e78736-be67-4e4a-b929-2c3ce61e0eb6

Also read this:

http://social.technet.microsoft.com/Forums/en-TT/exchange2010/thread/49e06d4a-1b32-4067-999a-c85abd349c68

Drives are running out of free space (SharePoint Foundation 2010)

http://technet.microsoft.com/en-us/library/ff805057.aspx




Log Name: Application

Source: Microsoft-SharePoint Products-SharePoint Foundation

Date: 4/14/2011 12:00:02 PM

Event ID: 2138

Task Category: Health

Level: Warning

Keywords:

User: DOMAIN\spfarm

Computer: SERVER.DOMAIN.local

Description:

The SharePoint Health Analyzer detected a condition requiring your attention. Drives are at risk of running out of free space.

Available drive space is less than five times the value of physical memory. This is dangerous because it does not provide enough room for a full memory dump with continued operation. It also could cause problems with the Virtual Memory swap file: SBS 2011 (SERVER - C:\).

Examine the failing servers and delete old logs or free space on the drives. For more information about this rule, see http://go.microsoft.com/fwlink/?LinkID=142688.

Resolution for SBSers:

The issue is you have a server with lots of physical ram.  SharePoint calculates this multiplys by 5 and expects that amount of free space on your C drive even though SharePoint is probably not on your C drive.

Go into the SharePont configuration.

Go into monitoring

Go into review rule definitions

Scroll down into the drives are running out of free space

Pull it up and edit it

Unclick the enabled box and save.

But Susan, don't we need to know when drives will run out of space?  There's already an alert that alerts you when your drives are less than 10% free.  You don't need another one.  And you certainly don't need one looking for five TIMES your RAM on your C drive where the SharePoint isn't even on.

But Susan, why can't this be fixed?  I bugged it, the SBS sustaining engineering team sees this as a 'by design' by the SharePoint team, and as such is not addressable in SBS's code and thus won't fix it.

SharePoint team considers everyone that runs SharePoint as admins that shouldn't be molly coddled by GUIs or something and deems that Admins should fix it themselves. http://technet.microsoft.com/en-us/library/ee663479.aspx

Bottom line, if you have lots of RAM, uncheck that box.

Missed my rant against OpenDNS, my presentation on Windows Storage Server 2008 r2 Essentials and WordPress?

You can catch it here:

Susan Bradley has invited you to view a Microsoft Office Live Meeting recording.
View Recording
Recording Details

    Subject: SMBTNFresno on WordPress/Storage Server Offerings
    Recording URL: https://www.livemeeting.com/cc/winserver_usergroup/view
    Recording ID: 8ZQTN8
    Attendee Key: 8^-\zqX

I like what you offer.  I really do.  But you gave me a shock today.  One that I've seen with other subscription model vendors lately.

It's what happens when a subscription service changes the rules and the pricing and you have to then figure out if that service is really worth it and how hard it is to move off of it.

Today's example of that is Opendns.com.  I'm a fan.  Used it since it first came out.  Didn't just use the free service but as they inched the product up from the free service to a paid service went along for the ride.  It's only fair as I like to pay for things that give me value.  So when the ability to filter and block specific urls went out of the free product, into the deluxe and I had to pay $5 a year per user, I was cool with that.  So I get the notice that they are closing down the Deluxe plan and only offering Enterprise, I was cool with that.  Okay the price will go up a bit.  As long as it's reasonable price, I have no problem with it.

Until I heard how MUCH it was going up. 

Assuming I had 50 users in the office (which I don't, we're smaller than that) the pricing went from $5 a year to $30 a year for 50 people.  Their lowest OpenDNS enterprise plan is 1-50 users for $1,500.  Yes you read that right, $1,500 for their lowest sized plan.

Oh but Susan, you are now on the Enterprise plan which is so much more!  Dude, it's DNS forwarding with a extra web filtering.  A solid firewall can do the same in the web filtering department. 

But Susan it's phishing and botnet protection.  Dude, Exchange defender and a Calyptix box are of better value. 

But Susan we can offer you 500 domain black list.  Dude, block craigs list, ebay and facebook and that covers a lot right there.  I don't NEED 500 domain black lists.  I'm not sure I even KNOW 500 domains.

This where all of these subscription models hit the fan.  Everyone wants me on a monthly cash flow plan.  We're in a economy where you need to give value for me to pay you every month, month after month.  And if you increase your fees by THIS much? Dude, you'd better be increase the value to me by that much as well otherwise I'm going to look elsewhere.

It was nice using you, OpenDNS but what you just did in your pricing?  Wow.  This is not small business pricing for sure.  I can't put that much value to what you are bringing me.

It was nice knowing you, thanks for the ride, but I'm getting off now, thanks.

P.S.  Looks like you are removing filtering for free accounts as well as of 3/15  http://twitter.com/#!/mindflux/status/162326061152092160

Hi Susan,

Thanks for the time today and being a valued customer.  Per our discussion, the standard pricing for 1-50 employees is $1500/yr including support.  We can offer an upgrade discount of 30% and get the pricing down to $1000/yr ($83/month) including support.  You will not see an industry increase of more than 5-10% in the following years.  This discount will expire on 2/29/12.  Let me know if you can take advantage before then as your Deluxe will expire in April.  Let me know if you have any questions or concerns.

I've included 2 video links, feature set, and data sheet for your review.

Enterprise Package
http://www.opendns.com/support/videos/enterprise

Bypass Blocked Pages Video
https://opendns.pbworks.com/w/page/27167062/Bypass-Blocked-Pages

Our Special Enterprise package will give you all the added features such as:

* Premium Content Filtering/Anti-Phishing Protection
* Malware Site Protection
* No More Ads!
* Enhanced Block Page Options (you can even host your own!)
* 500 Domain Black List/White List (or white list only!)
* Enhanced Stats&  Reporting
* Delegated Admin with Audit Log
* BLOCK PAGE BYPASS
* Enterprise SLA Support
* *** compliant! (schools)

Let me know if you would like to get set up, we can have you up and running same day.

Yesterday's letter:

Susan,

You should have received an email yesterday from our CEO, David Ulevitch, about upcoming changes to your OpenDNS account. I’m writing today to follow up on that email and let you know I am here to answer any questions you may have.

If you choose not to migrate to OpenDNS Enterprise when your current Deluxe subscription ends, you will continue to receive the same, best-in-class recursive DNS services for free without any usage limits, however filtering functionality will no longer be available.

If you would like to retain content filtering, you may upgrade to OpenDNS Enterprise. OpenDNS Enterprise includes everything that your Deluxe subscription has, as well as many more features, including:

• Enhanced Botnet, Malware and Phishing protection
• Unlimited number of networks
• Unlimited access to stats and logs
• Best in class customer support
  

For more information about OpenDNS Enterprise you can view our Datasheet here.

To make sure every Deluxe user who wants to take advantage of these additional features can do so, we are running a promotion for Deluxe users who elect to upgrade to OpenDNS Enterprise. This promotion is a limited time offer and will only be available to you until February 29, 2012.

If you are interested in receiving more information on upgrading to OpenDNS Enterprise, feel free to respond to this email directly

=======

So far the only Exchange 2010 sp2 official post known issue I've seen is this:

Event ID 4999 is logged on an Exchange Server 2010 Client Access server (CAS):
http://support.microsoft.com/kb/2665115/en-us?sd=rss&spid=13965

I've seen a few folks report a bit of bumpiness getting it installed on SBS 2011 but I've not see any abilty to repro this issue.  Like anything, have a backup before you plan to roll it out.

Join us for a SMBTN Fresno meeting about WordPress and the latest news in Windows Storage Server 2008 R2 Essentials

When: Wednesday, Jan 25, 2012 6:30 PM (PST)
Scheduled to Occur: Once
Duration: 2:00

Susan Bradley has invited you to attend an online meeting using
Microsoft Office Live Meeting.

https://www.livemeeting.com/cc/winserver_usergroup/join?id=8ZQTN8&role=attend&pw=8%5E-%5CzqX

Meeting time: Jan 25, 2012 6:30 PM (PST) 

Add to my Outlook Calendar:
https://www.livemeeting.com/cc/winserver_usergroup/meetingICS?id=8ZQTN8&role=attend&pw=8%5E-%5CzqX&i=i.ics

AUDIO INFORMATION
-Computer Audio(Recommended)
To use computer audio, you need speakers and microphone, or a
headset.

FIRST-TIME USERS
To save time before the meeting, check your system to make sure it is
ready to use Microsoft Office Live Meeting.
http://go.microsoft.com/fwlink/?LinkId=90703

TROUBLESHOOTING
Unable to join the meeting? Follow these steps:
  1. Copy this address and paste it into your web browser:
     https://www.livemeeting.com/cc/winserver_usergroup/join
  2. Copy and paste the required information:
        Meeting ID: 8ZQTN8
        Entry Code: 8^-\zqX
        Location: https://www.livemeeting.com/cc/winserver_usergroup
If you still cannot enter the meeting, contact support:
http://r.office.microsoft.com/r/rlidLiveMeeting?p1=12&p2=en_US&p3=LMInfo&p4=support

NOTICE
Microsoft Office Live Meeting can be used to record meetings.
By participating in this meeting, you agree that your communications
may be monitored or recorded at any time during the meeting.

So you migrated from SBS 2003 to SBS 2011 and one of the steps in the migration is to remove any unnecessary security groups... but which ones?

First compare the default security groups as laid down by a default clean install of SBS 2011:

Now compare them to the security groups you get on a migrated server

Mind you I added a few extra for older applications that needed some special registry edits.

Notice how all the new groups now have "Windows SBS" in front?

Can you get rid of all of those legacy groups?  Well, did you make any special group policies with them?  Take a backup of the server first and then start pruning down to just those security groups you need....which is probably all of the new ones, and then any security group you specifically added.

Join us at https://www.facebook.com/BackupEssential and http://www.twitter.com/backupessential to keep track of those vendors that are building solutions around Windows Storage Server 2008 R2 Essentials vendors. Each week we'll be focusing on a vendor that is building solutions that you can use to backup workstations.

Windows Storage Server 2008 R2 Essentials is the client backup of Home Server 2011 with data dedup that is allowed to join a domain!

Like/friend/follow the facebook and twitter accounts to find out all the vendors that are building solutions around Windows Storage Server 2008 R2 Essentials

Essentials KB
An error occurs when you try to set up Microsoft Office 365 Integration on Windows SBS 2011 Essentials:
http://support.microsoft.com/kb/2666023/en-us?sd=rss&spid=1167

SBS Standard KBs

Unable to run the migration preparation tool on SBS server:
http://support.microsoft.com/kb/2652240/en-us?sd=rss&spid=1167

Windows Server Backup May fail the Exchange Consistency Check:
http://support.microsoft.com/kb/2616952/en-us?sd=rss&spid=1167

Saw this comment on the blog

http://blogs.technet.com/b/sbs/archive/2012/01/16/managing-event-alerts-in-your-reports-an-sbs-monitoring-feature-enhancement.aspx

"OK, now the 64k question.... WHICH alerts are you actually EXCLUDING and WHY?"

And I was thinkin' that this person may not be running SBS 2011 currently to know why these alerts are annoying.

As was posted in the comments on the blog, all of these alerts are referred to in KB2483007:

Windows SBS 2011 Standard Known Post Installation Event Log Errors and Warnings:
http://support.microsoft.com/kb/2483007/en-us?sd=rss&spid=1167

This lists all the stuff that you are supposed to ignore, but can't because they end up in your error reports and daily emails and look pretty nasty to show to clients.

If you have a SBS 2011 -- are there other alerts you've seen that are not flagged by that default set?  What are they?  Post 'em up!

So here you are on the SBS diva blog thinking I know everything there is about SBS from standard to premium to essentials.  And I'm here to tell you I don't.  Especially not about essentials.  There's another blog that you should add to your rss reader if you are starting to poke around SBS Essentials

http://titlerequired.com/2012/01/16/introducing-the-microsoft-sbs-2011-essentials-answer-file-tool/  And in fact it starts off with a gui way to edit the config file you need to join Essentials to an existing domain for migration purposes.

Bottom line, I run SBS with Exchange and Windows Storage Server 2008 R2 Essentials.  For the REAL SBS Essentials guru, check out Robert's blog.

>>>Sharing---Where stores the wireless connections credentials <<<:
http://social.microsoft.com/Forums/en-US/partnerwinclientxp/thread/8dbd8154-c262-48f7-9c72-e7c55f9498ac

Question: Where does a computer store the wireless connections credentials

Answer: Every time you input credentials during wireless connection, it is stored in service memory. For every subsequent re-authentication, these credentials are accessed directly from memory. If the customer chose to cache the credentials, then they are stored under HKCU and protected by the DPAPI key of the user.

To remove your cached user credentials that are used for PEAP authentication, delete the following registry subkeys, as appropriate:

• Wireless (802.11) connectors:
  HKEY_CURRENT_USER\Software\Microsoft\EAPOL\UserEapInfo
• Wired connectors:
  HKEY_CURRENT_USER\Software\Microsoft\dot3svc\Interfaces\{InterfaceGUID}\UserData\Profiles\

To do this, follow these steps.

For wireless (802.11) connectors

1. Click Start, and then click Run.
2. In the Open box, type regedit, and then click OK.
3. Locate and then click the following registry key:
   HKEY_CURRENT_USER\Software\Microsoft\EAPOL\UserEapInfo
4. On the Edit menu, click Delete.
5. Click Yes when you are prompted to confirm the deletion.
6. Exit Registry Editor.

For wired connectors

1. Click Start, and then click Run.
2. In the Open box, type regedit, and then click OK.
3. Locate and then click the following registry key:
   HKEY_CURRENT_USER\Software\Microsoft\dot3svc\Interfaces\{InterfaceGUID}\UserData\Profiles\
4. On the Edit menu, click Delete.
5. Click Yes when you are prompted to confirm the deletion.
6. Exit Registry Editor.

Best regards,

Eric Guo
Partner Online Technical Community
-----------------------------------------------------------------------------------------
We hope you get value from our new forums platform! Tell us what you think:
http://social.microsoft.com/Forums/en-US/partnerfdbk/threads
------------------------------------------------------------------------------------------
This posting is provided "AS IS" with no warranties, and confers no rights.

Managing Event Alerts in Your Reports - An SBS Monitoring Feature Enhancement - The Official SBS Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/sbs/archive/2012/01/16/managing-event-alerts-in-your-reports-an-sbs-monitoring-feature-enhancement.aspx

Installation and Usage

Download and extract the SBSAlertsCleanup package which is hosted on the SBS Support Team’s SkyDrive.

Open the location of the extracted files and then the properties of SBSAlertsCleanup.ps1 file.
I downloaded the file to c:\scripts

Unblock the file if the option is shown. Note: you do not need to do this to the .sql files.
I right mouse clicked on the zip file and clicked on unblock

Launch an elevated PowerShell prompt.
I used the PowerShell command, not the PowerShell(x86)

From PowerShell, browse to the folder where you extracted the files.
I went to c:\scripts

From PowerShell, run:
.\SBSAlertsCleanup.ps1 –Action install [enter]

You will see “Changed database context to ‘SBSMonitoring’

Managing Event Alerts in Your Reports - An SBS Monitoring Feature Enhancement - The Official SBS Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/sbs/archive/2012/01/16/managing-event-alerts-in-your-reports-an-sbs-monitoring-feature-enhancement.aspx

Background:  http://support.microsoft.com/kb/2483007/en-us?sd=rss&spid=1167

As Ken put it on the sbsk2 list the other day  .... "you can safely ignore this error is DEAD WRONG"....  You can't.  You now have to keep track of those errors to ignore so as to be aware of new ones you need to be aware of.  Next it makes you look bad to your clients.  They think you are not competent because you can't get rid of the errors.  And as he so elegantly points out... it encourages a poorer approach and attitude towards server health and monitoring.

Up on the SBS blog is a PowerShell script that allows you to tailor the events to be reported.  No longer do you have to put up with the "ignore these", you can now remove these.

If this helps you to tailor your reporting, please post in the comments that it helped you.  Show to the SBS team that this has been a silent pain point for too long.

So one of the things that if you actually USE Excel that you miss in the new 2010 menu system is the print preview, print layout view and print title settings.  Oh, they are still there, but moved all over the place.  So here's a way to get them back.  Put them in a shortcut menu at the top of your Excel workbook.

Sometimes it's the little tweaks that make migrating to a new version so much more palatable for end users.

So I've been watching some potential issues with Exchange 2010 sp2 and per my read ...we are not going to hit this in SBS 2011

http://social.technet.microsoft.com/Forums/en/exchange2010/thread/88ddaf28-de7a-4048-af27-4972b11a212a?prof=required

I sent MS PSS engineer an e-mail about the issue informing him of this fix and he came back with that just this morining that in fact MS have confirmed the issue has to do with special characters being in the database name below

And according to the latest update I received today, this issue does have much to do with the database name. Characters like ),”, ‘:’, ‘(‘ are key delimiters to the budget resource string parsing logic in Exchange 2010

He will be trying to get the prerelease hotfix soon but i am not waiting around for this and going through and changing my 60+ databases names tonight to fix issue now

Also mentioned that public will get this fix in mid Feb with Rollup 1

Very frustrating for such a small issue but oh well thankful at least the cause seems to have been identified anf there some fix in site now

==========

Hi,

we had the same problems:

- OOF not working from Outlook (only in OWA)
- Lync comm with Exchange not working properly (Comm errors and conv history not being written to Mailbox)
- Mac users having problems with Emails being sent in Outlook 2011 several times because they got stucked in the outbox, problems with delayed syncing, etc.

We got it resolved now thanks to adenhaan's Post.

We were using '(' and ')' in our database names - which turned out to be a problem only after this SP2 upgrade. Renaming the DBs by deleting these characters - can be done just online in DB's properties - and restarting the "MSExchangeServiecsAppPool" made everything work again.

No idea who had the really bad idea to use these characters in the DB's name - ups, it was me...

Thanks for the support!!!

>>>Internet Explorer Automatic Updates - Coming in January<<<:
http://social.microsoft.com/Forums/en-US/partnerinternetie/thread/28271f74-3176-4454-880f-1c9b9918cafd