Pro Exchange 2013 SP1 PowerShell Administration: For Exchange On-Premises and Office 365 9781430268475, 1430268476

Table of contents :
Contents at a Glance......Page 3
Contents......Page 614
About the Authors......Page 626
About the Technical Reviewers......Page 627
Acknowledgments......Page 628
Introduction......Page 4
Chapter 1: Introduction to Exchange 2013 SP1......Page 6
The Editions......Page 7
What’s New in Exchange 2013 SP1?......Page 8
What Has Been Removed from Exchange Server......Page 13
Integration with Active Directory......Page 14
Active Directory Partitions......Page 15
Active Directory Permissions......Page 17
Active Directory Sites......Page 18
Exchange 2013 Architecture......Page 19
The Client Access Server......Page 20
The Mailbox Server......Page 21
Exchange Admin Center......Page 22
Object Model......Page 26
Objects and Members......Page 27
Formatting......Page 28
Conversion......Page 29
Variables......Page 30
Additional Modules......Page 32
Remote PowerShell......Page 33
PowerShell ISE......Page 36
Virtualization......Page 37
Virtualization Host Storage......Page 38
Fixed Size......Page 39
Differencing Disk......Page 40
Snapshots......Page 41
Memory Requirements for Virtual Machines......Page 42
High-Availability Solutions......Page 45
Summary......Page 46
Designing Exchange Server 2013......Page 47
Exchange 2013 Server Role Requirements Calculator......Page 48
Hardware Requirements......Page 52
Software Requirements......Page 53
Preparing Windows Server......Page 55
Setup Switches......Page 58
Prepare the Active Directory Schema Partition......Page 60
Prepare Active Directory Configuration Partition......Page 61
Install Exchange 2013......Page 65
Scripted Installation......Page 66
Email Address Policies......Page 67
SSL Certificates......Page 69
Importing an Existing SSL Certificate......Page 70
Receive Connectors......Page 71
Virtual Directories......Page 72
Install Exchange 2013......Page 75
Email Address Policies......Page 80
SSL Certificates......Page 81
Importing an Existing SSL Certificate......Page 84
Send Connector......Page 85
External URLs......Page 87
Coexistence with Previous Versions of Exchange Server......Page 90
Transition to Exchange Server 2013......Page 91
Configuring the Namespaces and Coexistence......Page 92
Namespaces with Exchange Server 2007......Page 93
Coexistence with Exchange Server 2007 and SSL Certificates......Page 95
Exchange Server 2007 and Virtual Directories......Page 96
Making the Change for Clients......Page 99
Namespaces and Coexistence with Exchange Server 2010......Page 101
Namespaces with Exchange Server 2010......Page 102
Coexistence with Exchange Server 2010 and SSL Certificates......Page 103
Exchange Server 2010 and Virtual Directories......Page 104
Making the Change for Clients......Page 105
SMTP Mail in a Coexistence Scenario......Page 106
Continuing with the Previous Edge Transport Server......Page 107
Introducing a new Exchange 2013 Edge Transport Server......Page 109
Moving Mailboxes to Exchange 2013......Page 110
Moving the Offline Address Book to Exchange 2013......Page 113
Decommissioning the Previous Exchange Server......Page 114
Patch Management......Page 115
Installing a Cumulative Update......Page 116
Summary......Page 118
Overview of Client Access Technologies......Page 120
Introducing the Client Access Front End Service......Page 121
The Death of RPC/TCP......Page 123
Introducing MapiHttp......Page 125
Outlook Clients......Page 127
Outlook Web App......Page 128
Outlook Apps......Page 129
Exchange Admin Center......Page 131
Office Web Apps......Page 132
Mobile Clients......Page 133
Namespaces......Page 134
Split- DNS......Page 135
Virtual Directories......Page 136
SSL Certificates......Page 138
Export an SSL Certificate......Page 141
Import an SSL Certificate......Page 142
Load Balancing......Page 143
SSL Offloading......Page 144
SMTP Transport......Page 146
The Receive Connectors......Page 147
Publishing Exchange......Page 148
TMG 2010......Page 149
IIS/ARR......Page 150
Windows 2012 R2 Web Application Proxy......Page 151
Summary......Page 152
The Mailbox Server Role......Page 154
The Mailbox Database......Page 156
Database Pages......Page 158
Transaction Log File s......Page 159
Checkpoint File......Page 161
How This All Fits Together......Page 162
Header Information......Page 163
Single-Instance Storage......Page 167
Microsoft Exchange Information Store......Page 168
Managing the Mailbox Databases......Page 169
To Enable Circular Logging......Page 170
To Change Quota Settings......Page 171
To Create a New Mailbox Database......Page 172
Deleted Items Retention Settings......Page 173
Online Mailbox Maintenance......Page 175
New Mailbox/New User Account......Page 176
Mailbox-Enabling an Existing User......Page 177
Bulk Managing the User Accounts......Page 178
Setting Quotas......Page 179
Adding Email Addresses......Page 180
Using Cmdlet Extension Agents......Page 181
To Use Mailbox Delegation......Page 182
To Create a Shared Mailbox......Page 184
To Create a Linked Mailbox......Page 185
To Remove a Mailbox......Page 186
Modern Public Folders......Page 187
Some Background on Public Folders......Page 188
To Create Public Folders......Page 189
To Create a New Distribution Group......Page 190
To Manage Distribution Group Membership......Page 191
To Set Membership Approval......Page 192
Dynamic Distribution Groups......Page 194
Moderated Distribution Groups......Page 196
The Expansion Server......Page 197
Contacts......Page 198
Address Lists......Page 199
Custom Address Lists......Page 200
Address Book Policies......Page 203
The Transport Service......Page 205
The Transport Pipeline......Page 206
Delivery Groups......Page 208
Queues......Page 209
Shadow Redundancy......Page 210
Managing Queues......Page 211
Safety Net......Page 213
Autodiscover......Page 214
Domain-Joined Clients......Page 215
Non-Domain-Joined Clients......Page 219
Autodiscover Redirect......Page 222
Autodiscover SRV Records......Page 227
Summary......Page 230
Mailbox Server High Availability......Page 232
Cluster Nodes and the File Share Witness......Page 233
Cluster Administrative Access Point......Page 234
Replication......Page 235
Seeding......Page 236
AutoReseed......Page 237
Lagged Copies......Page 238
DAG Across (Active Directory) Sites......Page 239
DAG Networks......Page 241
Creating the DAG......Page 242
Adding the Mailbox Servers......Page 243
Configuring the DAG Networks......Page 244
Installing and Configuring the Database Disks......Page 246
Creating the Mailbox Databases......Page 250
The AutoReseed Process......Page 251
Mailbox Database Replication......Page 255
Health Check Commands......Page 256
Managed Availability......Page 258
Recovery Oriented......Page 259
The Architecture of Managed Availability......Page 261
Exchange 2013 CAS and Managed Availability......Page 264
Front End Transport Server High Availability......Page 269
Edge Transport High Availability......Page 270
Summary......Page 272
The Exchange 2013 Edge Transport Server......Page 273
Installation of an Exchange 2013 Edge Transport Server......Page 274
Preparing the Server......Page 275
Installing the Server......Page 276
Creating an Edge Subscription......Page 277
Beginning the Edge Synchronization......Page 278
Anti-Spam Settings......Page 280
Reverse DNS......Page 282
Connection Filtering Agents......Page 283
IP Allow List......Page 284
IP Block List......Page 285
IP Block List Providers......Page 286
Sender Filtering......Page 287
Recipient Filtering......Page 288
Sender ID Filtering......Page 289
Content Filtering......Page 293
Sender Reputation......Page 295
SSL Certificates......Page 296
Test of the Edge Transport Server......Page 297
Export and Import Edge Configuration......Page 299
Exchange 2013 Anti-Malware......Page 301
Summary......Page 305
Chapter 7: Backup, Restore, and Disaster Recovery in Exchange Server 2013......Page 306
A Refresher on Mailbox Database Technologies......Page 307
VSS Backup......Page 308
Using WSB in PowerShell......Page 311
Using the Windows Server Backup GUI......Page 315
Using DiskShadow to Create Backups......Page 316
Restoring Exchange Server 2013......Page 320
Restoring a Mailbox Database to Its Original Location......Page 321
The Restore Process......Page 325
Recovery Database......Page 328
Dial-tone Recovery......Page 329
Rebuilding the Exchange Server......Page 330
ESEUTIL and Corrupted Databases......Page 334
File Recovery Tools......Page 337
Exchange Native Data Protection......Page 338
Deleted Items Retention......Page 339
In-Place Hold......Page 340
Single Item Recovery......Page 341
Archive Mailboxes......Page 345
Retention Policies......Page 346
Database Availability Groups......Page 349
Lagged Copies......Page 352
Circular Logging......Page 353
Point-in-Time Recovery......Page 354
Summary......Page 355
Chapter 8: Unified Messaging......Page 356
Features of Unified Messaging......Page 357
The Role of Unified Messaging......Page 358
Objects of Unified Messaging......Page 359
UM Dial Plans......Page 360
UM IP Gateway......Page 365
UM Mailbox Policies......Page 367
UM Auto Attendant......Page 370
Configuring UM Auto Attendent with Exchange Admin Center......Page 371
Creating a UM Auto Attendant with Exchange Management Shell......Page 373
Additional Configurations......Page 375
Creating a Custom Navigation Menu......Page 376
UM Language Packs......Page 378
Certificates......Page 379
UM Mailbox Management......Page 381
Lync Server Configuration......Page 383
Configuring Exchange Server......Page 384
Unified Contact Store......Page 386
Exchange Archiving......Page 387
Call Answering Rules......Page 388
Voice-Mail Preview......Page 391
Outlook Voice Access......Page 392
Summary......Page 393
In-Place Archiving......Page 394
Enabling In-Place Archives......Page 396
Reconnecting In-Place Archives......Page 399
Relocating the in-Place Archives......Page 400
Management of I n-Place eDiscovery......Page 401
Searching Mailboxes......Page 403
In-Place Hold......Page 408
Enabling in-Place Hold......Page 411
Disabling in-Place Hold......Page 413
Retention Policy Tags......Page 414
Assigning Personal Tags......Page 418
Understanding System Tags......Page 419
Retention Policies......Page 420
Assigning a Retention Policy......Page 421
Managed Folder Assistant......Page 422
Transport Rules......Page 423
Creating a Transport Rule......Page 424
Priority Rankings for Transport Rules......Page 428
Journaling......Page 429
Options for Journaling Rules......Page 431
Creating a Standard Journal Rule......Page 432
Creating a Premium Journal Rule......Page 434
Configuring an Alternative Journal Recipient......Page 435
Creating the DLP Policies......Page 436
Importing and Exporting DLP Policies and Templates......Page 445
Customizing Your DLP Policy......Page 447
DLP Document Fingerprinting......Page 449
Administrator Audit Logging......Page 455
Administrator Audit Logging Options......Page 457
Auditing Log Searches......Page 458
Mailbox Audit Logging......Page 463
Mailbox Audit Logging Options......Page 464
Searches of the Mailbox Audit Logging......Page 466
Bypass of Mailbox Audit Logging......Page 472
Message Classification......Page 473
Outlook and Classifications......Page 475
Classifications and Transport Rules......Page 476
Information Rights Management......Page 477
Configuring the Active Directory Rights Management Services......Page 478
Choosing AD RMS Templates......Page 481
Protecting Messages Using IRM......Page 482
Outlook Protection Rules......Page 485
Transport Protection Rules......Page 486
Summary......Page 489
Chapter 10: Security......Page 490
Role-Based Access Control......Page 491
The Basic RBAC Components......Page 493
Creating Custom Management Roles......Page 495
Adding or Removing Parameters......Page 496
Unscoped Top-Level Management Roles......Page 497
The Where Component......Page 500
Regular Scopes......Page 501
Exclusive Scopes......Page 504
The Who Component......Page 505
Create a Role Group......Page 506
Linked Role Groups......Page 507
Putting it All Together: Management Role Assignments......Page 508
Policies for Role Assignments......Page 510
Monitoring and Reports......Page 513
Split Permissions......Page 514
RBAC Split Permissions......Page 516
Active Directory Split Permissions......Page 517
S/ MIME......Page 518
Configuring S/MIME in Exchange 2013 SP1......Page 520
Outlook Web Access and S/ MIME......Page 522
Outlook and S/MIME......Page 523
Windows Phone 8.1 and S/ MIME......Page 525
Summary......Page 526
Chapter 11: Office 365 and Exchange Online......Page 527
Deployment Options......Page 528
Connecting to Office 365......Page 531
Exchange Online......Page 532
Windows Azure Active Directory......Page 533
Autodiscover......Page 534
Federation......Page 535
Sharing of Information......Page 539
Organizational Relationships......Page 540
Custom Organizational Relationships......Page 542
Sharing Policies......Page 547
Internet Calendar Publishing......Page 551
OAuth Authentication......Page 553
Windows Azure Active Directory Synchronization Tool......Page 555
Filtering WAADsync......Page 558
Single Sign-On......Page 560
ADFS Primary Server......Page 563
ADFS Service Monitoring......Page 565
ADFS Client Access Policy Builder......Page 566
Multi-Factor Authentication......Page 567
Configuring MFA using the WAAD Module......Page 570
Onboarding and Offboarding Mailboxes......Page 572
Onboarding Mailboxes Using EAC......Page 574
Onboarding Mailboxes Using EMS......Page 578
Onboarding Multiple Mailboxes......Page 582
Offboarding Mailboxes......Page 584
Exchange Online Archiving......Page 585
Mail Flow......Page 587
Service Health......Page 593
Tenant Reports......Page 594
Message Tracking......Page 597
Summary......Page 599
Index......Page 0