Exchange and Outlook UPDATE, Exchange Edition—brought to you by Exchange & Outlook Administrator, a print newsletter from Windows & .NET Magazine that contains practical advice, how-to articles, tips, and techniques to help you do your job today.
THIS ISSUE SPONSORED BY
Need to secure and manage Exchange?
24 x 7 AVAILABILITY WEB SEMINAR
SPONSOR: NEED TO SECURE AND MANAGE EXCHANGE?
View four new product demos from BindView and see for yourself how BindView's bv-Control for Microsoft Exchange application can help provide the secure administration you need for your Exchange environment. Four areas are demonstrated - policy management and enforcement, content scanning, secure day-to-day administration, and server monitoring - that affect today's Exchange administrator. Take a moment to view these demos and you'll see clearly how our product can help provide the capabilities you need to secure and manage Exchange in your environment, and why bv-Control won Best of Show in the Exchange server category at Tech Ed 2002. Visit
May 3, 2002—In this issue:
- Using a Recovery Server in an Exchange 2000 Environment
- Win a Personal Cinema Card at the Connected Home Virtual Tour
- Mobile and Wireless Solutions—An Online Resource for a New Era
- Exchange HOWTO: Turning on SSL for Exchange 2000 Server Outlook Web Access
- Featured Thread: Mailbox Size Limits—A Poll
- Results of Previous Instant Poll: Which of the following best describes your professional role?
- New Instant Poll: Do you use Exchange recovery servers?
4. NEW AND IMPROVED
- Advantage International Announces CalendWare
5. CONTACT US
- See this section for a list of ways to contact us.
(contributed by Jerry Cochran, News Editor, [email protected])
Last week, I opened up the concept of using a recovery server—a vital tool for all Exchange Server administrators—and discussed deployment of Exchange Server 5.5 recovery servers. (You can access last week's commentary, "Using a Recovery Server in an Exchange 5.5 Environment," at http://www.exchangeadmin.com , InstantDoc ID 24995.) This week, I focus on Exchange 2000 recovery servers.
Deploying an Exchange 2000 recovery server is more complex than deploying an Exchange 5.5 recovery server. The first difference involves Exchange 2000's dependency on Active Directory (AD), which affects your ability to deploy recovery servers. Because you currently can have only one Exchange organization per AD forest (I hope this limitation changes someday), you must deploy a separate AD forest for your Exchange recovery server or servers. Otherwise, you'll be forced to join the recovery server or servers to your production Exchange organization. Although this requirement shouldn't be that big of a deal—the recovery forest can exist alongside your production forest and can provide a test environment—you need to determine the administrative impact that this new forest will have on your organization. The other key differences involve the change from sites (in Exchange 5.5 and earlier) to administrative groups (in Exchange 2000) and Exchange 2000's ability to have more than one Information Store (IS) per server. These differences add steps to the configuration of an Exchange 2000 recovery server.
The first step is to deploy your recovery forest. You can use any naming convention, but I recommend that you use the same conventions (i.e., organization naming convention and administrative-group hierarchy) you use for your production forest. The recovery forest can even exist on the same network as the production forest. After you deploy your Exchange 2000 recovery forest, install your Exchange 2000 recovery server into the forest. Use the same Exchange organization name (not AD organization name) for the recovery server as you use for the production server. The server name also can be the same as the production server name; because the servers are in different forests, no conflicts will exist (other than potential DNS conflicts if you place both forests on the same network). If you're going to run the recovery forest permanently, I recommend that you install a permanent recovery server that maintains a permanent name and is the first server in the Exchange recovery organization. When you've installed a permanent server in this manner, you can then install a second recovery server each time you want to perform a recovery; simply name that second server to match the server you're recovering. Or you can install a recovery forest and server each time you want to perform a recovery and modify the necessary values according to the recovery requirements.
After you configure the recovery forest and recovery server or servers, you can restore the IS database into a recovery administrative group with the same name as the administrative group from which you took the original database. From a database and AD point of view, the LegacyExchangeDN values for the recovery administrative group and the recovered database must match. In addition, the recovery storage group (SG) and recovered database names must also match those on the original server. If you've configured a permanent recovery server and installed a second recovery server to the same administrative group, SG, and database as the production server, these values will match. If you don't want to maintain a permanent recovery configuration, you can use a Lightweight Directory Access Protocol (LDAP) editing utility (e.g., Ldp, ADSI Edit—from the Windows 2000 Support Tools, or Ldifde—which Win2K installs by default) to view and manually update the LegacyExchangeDN values for the database and administrative group. Regardless of which tool you choose, the Exchange 2000 organization name, administrative group name, SG name, database name, and LegacyExchangeDN values for the production environment and the recovery server must all match. (For more information about the procedure to modify LegacyExchangeDN values, see "Exchange 2000 Server Database Recovery—Appendix A: Changing legacyExchangeDN Attribute Values" at
After you've restored the IS database to the recovery server, you can proceed to link mailbox objects to mailboxes. In Exchange 2000, you must explicitly connect a mailbox in the database to a directory object. If you're recovering only a few mailboxes, you can perform this step manually by using the Microsoft Management Console (MMC) Active Directory Users and Computers snap-in to create user objects that aren't mailbox-enabled. Then, run the Exchange System Manager's (ESM's) Mailbox Cleanup Agent. Afterward, you should see mailboxes with a red X (which indicates that the mailboxes are orphaned—i.e., not connected to any user object) in the restored database. Right-click a mailbox object, choose Reconnect from the context menu, then select the user object that you want to connect to the mailbox. If you're recovering many mailboxes, you might want to use something such as the Mailbox Reconnect tool (MBConn), which is available on the Exchange 2000 CD-ROM, to save some keystrokes and mouse clicks. After the mailboxes are connected to user objects, you can use Outlook or Exmerge to extract data from them in the same manner that I discussed last week.
Every Exchange administrator should take the recovery-server concept to heart. I suggest that you implement Exchange recovery servers in your environment regardless of which Exchange version you have. Be aware that Microsoft does require you to purchase an additional Exchange license for each Exchange recovery server you install in your environment. Still, in addition to providing important Exchange recovery facilities, recovery servers provide a great nonproduction testbed. If you aren’t already using Exchange recovery servers, consider the benefits this practice can bring to you and your users.
SPONSOR: 24 x 7 AVAILABILITY WEB SEMINAR
Need 24 x 7 Availability?
High-availability networks, systems, and applications are critical to every business. Sign up for our (free!) Webinar taking place on May 14 (sponsored by MKS), and find out how to achieve 24 x 7 availability on Windows 2000. Windows & .NET Magazine author, Tim Huckaby, shares his expertise on load balancing, monitoring, and more. Register today!
If you think you've already seen the Connected Home Virtual Tour, think again. Browse through the latest home entertainment, home networking, and home automation options and check out our special feature on wiring your home. Sign up for prize drawings, too, and you might win a free personal cinema card, courtesy of VisionTek and nVIDIA. Take the tour today!
Our mobile and wireless computing site has it all—articles, product reviews, and other resources to help you support a wireless network and mobile users. Check it out today!
Each week, Microsoft posts several Exchange Server how-to articles to its Knowledge Base. This week, learn how to use Secure Sockets Layer (SSL) to secure communications between clients and Outlook Web Access (OWA).
Craig wants his company to implement mailbox size limits. He's trying to get an idea of what limits other companies use. To join the discussion, go to the following URL:
The voting has closed in Windows & .NET Magazine's Exchange & Outlook Administrator Channel nonscientific Instant Poll for the question "Which of the following best describes your professional role?" Here are the results (+/-2 percent) from the 1090 votes:
- 76% Administrator/systems manager
- 15% Consultant
- 4% Developer
- 5% Corporate management
The next Instant Poll question is "Do you use Exchange recovery servers?" Go to the Exchange & Outlook Administrator Channel home page and submit your vote for a) Yes, for Exchange 5.5, b) Yes, for Exchange 2000, c) Not yet, but we plan to do so within the next 12 months, or d) No, and we have no plans to do so.
4. NEW AND IMPROVED
(contributed by Bob Kretschman, [email protected])
Advantage International's OpenDoor Software announced the release of CalendWare, a calendar synchronizer for users of Exchange 2000 Server and Outlook 2000. CalendWare is an Exchange add-in that you load on workstations. The product copies personal calendar items to a public calendar, then replicates changes made to the items on either calendar. Licenses permit an unlimited number of users per Exchange server. CalendWare costs $500 per domain (pricing differs for application service providers—ASPs). For more information, contact Advantage International at 813-977-5739.
5. CONTACT USHere's how to reach us with your comments and questions:
(please mention the newsletter name in the subject line)
- TECHNICAL QUESTIONS — http://www.winnetmag.net/forums
- PRODUCT NEWS — [email protected]
- QUESTIONS ABOUT YOUR Exchange & Outlook UPDATE SUBSCRIPTION?
Customer Support — [email protected]
- WANT TO SPONSOR Exchange & Outlook UPDATE?
This email newsletter is brought to you by Exchange & Outlook Administrator, the print newsletter with practical advice, tips, and techniques covering migration, backup and restoration, security, and much more. Subscribe today!
Receive the latest information about the Windows and .NET topics of your choice. Subscribe to our other FREE email newsletters.