Latest revision as of 20:13, 27 July 2015

[edit] Microsoft Exchange 2013

Once you have installed Windows 2012R2

Microsoft Exchange is an email server. It is one of the email systems that Retain can connect to. It is helpful to have an Exchange server handy for testing. Microsoft is pushing people toward Office 365 but it is safe to say people will continue to use Exchange for 5-20 years. For the lab environment we are not going to give Exchange quite as many resources as it might want. 8GB of RAM and 2 cores would be good enough. Giving it less than that and it really starts to drag.

Give it two drives: OS and Data.

• OS: 60-80GB
• Data: 60GB

The OS drive needs a lot of room mainly for logs. Exchange keeps lots of logs now, but doesn't give you much in the way of tools for managing them. [1] The best you can do is provide plenty of room to store them.

You'll need to follow these directions to move the Exchange database if you didn't set it up correctly the first time. [2]

[edit] Installing Microsoft Exchange 2013

You need to install Exchange 2013 on a Microsoft Windows Server 2012 R2 system.

Make sure your server has the name that you want, Exchange does not like having it changed once it is set up.

The most important tool to have handy is the Exchange Server Deployment Assistant. This provides a great checklist of things you must do to successfully deploy an Exchange server.

We will want an On-premise, new install, with both Mailbox and CAS roles on board. We will NOT be using disjoint namespaces. We will NOT be using Unified Messaging (but it will install it anyway). We will NOT be using an Edge server.

Save that checklist.

Make sure to do the prerequisites!

[edit] Prerequisite installs

If you are using Windows Server 2012 prior to R2 you will need to install these feature.

• Install the features: .NET Framework 4.5 and Windows Management Framework 3.0 in Server Manager.

Note: .NET Framework 4.5 and Windows Management Framework 3.0 are included with Windows Server 2012 R2 and don't need to be downloaded separately. SP1 is before CU6.

Open PowerShell and execute the commands

Install-WindowsFeature RSAT-ADDS

and

Install-WindowsFeature AS-HTTP-Activation, Desktop-Experience, NET-Framework-45-Features, 
RPC-over-HTTP-proxy, RSAT-Clustering, RSAT-Clustering-CmdInterface, RSAT-Clustering-Mgmt, 
RSAT-Clustering-PowerShell, Web-Mgmt-Console, WAS-Process-Model, Web-Asp-Net45, Web-Basic-Auth, 
Web-Client-Auth, Web-Digest-Auth, Web-Dir-Browsing, Web-Dyn-Compression, Web-Http-Errors, 
Web-Http-Logging, Web-Http-Redirect, Web-Http-Tracing, Web-ISAPI-Ext, Web-ISAPI-Filter, 
Web-Lgcy-Mgmt-Console, Web-Metabase, Web-Mgmt-Console, Web-Mgmt-Service, Web-Net-Ext45, 
Web-Request-Monitor, Web-Server, Web-Stat-Compression, Web-Static-Content, Web-Windows-Auth, 
Web-WMI, Windows-Identity-Foundation

You'll need to restart here.

Downloads:

• The Unified Communications Managed API 4.9 Runtime [3]

• The Microsoft Office 2010 Filter Packs [4]

• Filter Packs SP1 [5]

• Filter Packs SP2 [6]

Run Windows update and restart.

Snapshot here.

[edit] Preparing AD

First you need to extend the schema. Open a command prompt in administrator mode, go to the disk or directory you downloaded exchange into and run

Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms

Now you have to prepare Active Directory, this can be done right after the previous command.

Setup.exe /PrepareAD /OrganizationName:"<organization name>" /IAcceptExchangeServerLicenseTerms

<organization name> is something like gwavasupport, gwava, microsoft, or novell without .com or anything like that.

Now you have to prepare your AD domains and in the case of a lab you want to do all of them.

Setup.exe /PrepareAllDomains /IAcceptExchangeServerLicenseTerms

[edit] Install Exchange

Now we can start installing Exchange:

• From File Explorer you can run Setup.exe as administrator (right-click and choose Run as administrator)

• It will ask you about downloading updates which is a good idea.

• There will be more screens but defaults will be sufficient.

• When it comes to Server Role Selection you want to choose Mailbox role and Client Access role (Client Access will appear to be greyed out but you can select it.)

• Take the default location or if you have two disks set it for the Data disk (recommended).

• Turn off Malware detection.

• Then it will check for the prerequisites. Warnings are okay, because this will be the first exchange server and as long as there are no errors you are good to go.

• Then it will take about an hour to install and prepare all the software.

• Finally, you will have to reboot.

[edit] Post-install steps

There are a number of post-install tasks that need to be completed before your Exchange Server is fully functional. These will be done from the Exchange Admin Center (EAC).

You can log into the Exchange Admin Center (EAC) by browsing to https://[serverName|IP address]/ecp Remember to log in with your AD forest domain name\user name

You can use the Outlook Web App(OWA) to send and receive mail https://[serverName|IP address]/owa Remember to log in with your AD forest domain name\user name

You will also want to create a workstation and give it Outlook.

[edit] Send Connector

You will need to create a Send Connector so the mail can flow.

First you need to create a send connector.

• Go to EAC/Mail Flow/Send Connector.

• Click the plus sign to create a new connector, a dialog box will appear, for the lab an internal connector will be enough. Route it through a smart host
• I name mine intranetMailSendConnector, not terribly original but it is straightforward
• Route mail through smart hosts. Add the host, which is the Active Directory domain you created before e.g. ad.gwavasupport.net
• No need for authentication, at this time
• Address space: Press + and set Type = SMTP, FQDN = your domain, Cost = 1
• Source server: Press + and add your domain server as a transport server
• Click finish

[edit] Add Users

An email system isn't much good without users. You can create users in the EAC but that puts all of them in the Users container in AD. You will want to make some Organizational Units to mimic a real system.

Exchange monitors itself and the most visible way it does that is to send itself mail. In Retain you will see at least two mailboxes that begin with the name HealthMailboxNNNN. These will generate about a thousand messages a day. These will also end up in the Administrator mailbox. You'll have to create a mailbox rule that will move them to the trash so they don't fill up the Administrator's inbox.

Now you can install and connect Retain

[edit] Other things

[edit] Accepted Domain

The Deployment assistant talks about creating a new one but since Exchange already has the current domain, you can skip this step in the assistant. However, many organizations have multiple domains. One place to add them is Active Directory Domains and Trusts[7], and this is another place. Next configure an accepted domain.

• In the EAC goto Mail flow/Accepted domains.
• Click the Plus sign.
• Give it a name.
• Give it a domain
• Choose the checkbox that makes the most sense, usually Internal relay domain. The first domain would be the Authoritative domain.

[edit] Change password policy

“On my server, these settings are disabled under the Local Security Policy (WS2012 Essentials.) However, they can be changed under the Group Policies. From the charms, search Apps for “gpmc.msc” and start it. Group Policy Management -> Forest: YourServerName.local -> Domains -> YourServerName.local Select “Default Domain Policy” then right-click and select “Edit…” to open the Group Policy Management Editor. Group Policy Management Editor Computer Configuration / policies -> Windows Settings -> Security Settings -> Account Policies -> Password Policy ”[8]

[edit] Mailbox Limits

Mailboxes have certain limitations that you need to be aware of. [9]

There are also some important practical limits that show up. These were discussed in a Microsoft blog: "I usually recommend no more than about 2500 - 5000 messages in any of the critical path folders. The critical path folders are the Calendar, Contacts, Inbox, and Sent Item folder. Ideally, keep the Inbox, Contacts and Calendar to 1000 or less. Other folders, particularly custom folders created by the user, can handle having larger numbers of items without having a broad impact on the user experience (20,000 items in my "Cookie Recipes" folder? No problem - except when I need to find that recipe from last Christmas!)." [10]

GWAVA has learned by experience that large (100GB+) mailboxes are unable to be served by Exchange.

[edit] HealthMailBox users

Each database will also have at least a couple of HealthMailbox users that will show up in Retain, in production they can be excluded as all they are doing are sending "Can you still hear me?" messages.

[edit] Next Steps

Installing Windows Server 2012 R2

Creating CAS

Retain Exchange Install