Ultimate Exchange Server 2003 Heighten Security Consolidation and

Скачать презентацию Ultimate Exchange Server 2003 Heighten Security Consolidation and

7b0ca6043614317ce268dcaa9045f11d.ppt

Количество слайдов: 45

Ultimate Exchange Server 2003: Heighten Security, Consolidation, and Availability Section 5: Advanced Operations l Troubleshooting and Maintenance l Scripting for Exchange Server 2003 Administrators l Advanced Data Recovery l Archiving l Enhanced Mobility © 2005 Global Knowledge Network, Inc. All rights reserved.

Section Objectives 5 -2 After completing this section, you will be able to: n n n n n Troubleshoot Microsoft Exchange servers Troubleshoot Microsoft Exchange clients List Exchange Server 2003 tools for troubleshooting Run the Microsoft Best Practice Analyzer for Exchange Server 2003 Connect to Microsoft Outlook Mobile Access Define the requirements for Microsoft Active. Sync Describe the Exchange Management Pack for Microsoft Operations Monitor Explain Microsoft Windows Management Instrumentation and ADSI Use scripts to administer Exchange Server 2003 Name the components that can be customized for Microsoft Outlook Web Access Knowledge Guide © 2005 Global Knowledge Network, Inc. All rights reserved.

Troubleshooting and Maintenance 5 -3 l Troubleshooting and maintenance should be methodical processes. l Maintenance is the first step in troubleshooting. l Administrators’ value to organizations is often measured in their knowledge or expertise with solving problems. © 2005 Global Knowledge Network, Inc. All rights reserved.

Troubleshooting Method 1. 2. 3. 4. 5. Identify the problem. Perform a diagnosis. Develop and implement the solution. Verify that the solution worked. Document the solution. © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -4

Mail Flow Problems 5 -13 Information store (store. exe, exsmtp. dll) EXIPC (exipc. dll) Local queue Advanced queuing (aquue. dll) Router: Link state or DNS Routing/Queuing Destination queue Active Directory Catagorizor (cat. dll) SMTP (smtpsvc. dll) NTFS (ntfsdr. dll) IIS (inetinfo. exe) EXIFS (exifs. sys) © 2005 Global Knowledge Network, Inc. All rights reserved.

Message-Handling Components Component 5 -14 Description aquue. dll Advanced Queuing Engine manages the queues used by SMTP. cat. dll Message Categorizer expands distribution lists and address resolution for every recipient of a message. drviis. dll EXIPC Store driver. exipc. dll An instance of this dll exists in IIS and the Store processes. It is used to create a shared memory heap for circular queue communications between SMTPsvc. dll and the Exsmtp. dll (front-end/back-end). exsmtp. dll Protocol stub on the information store for SMTP. inetinfo. exe Parent process for all IIS services which includes SMTPSVC. ntfsdrv. dll NTFS Store driver. phatcat. dll Pre-categorizer and post categorizer. store. exe Parent process for the Exchange ESE. © 2005 Global Knowledge Network, Inc. All rights reserved.

Troubleshooting Queues l l l l Message pending submissions Messages awaiting directory lookup Messages waiting to be routed Local delivery Messages with an unreachable destination Messages queued for deferred delivery DSN messages pending submission Failed message retry © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -15

System Queue and Description System Queue 5 -16 Description DSN messages pending This is where NDRs wait to be submitted to SMTP. submission Failed message retry queue Messages in this queue failed to be submitted to their destination queue. Corrupted messages can also end up in this queue. Local delivery Messages in this queue are waiting to be submitted to the information store. A high number of messages in this queue could indicate storage subsystem problems. Check your disk storage for hardware-related problems. Messages pending submissions These are messages that have been accepted by SMTPSVC but have not been processed. If this queue fills up, make sure that the SMTPSVC is not competing for resources with another process, such as antivirus software or other high CPU processes. Messages awaiting directory lookup Imail. Msg items wait in this queue while the categorizer is running. If this is filling up, then it is likely that address resolution is failing. Make sure your Global Catalog servers are available and the DNS has the correct SRV records registered. Messages queued for deferred delivery Older versions of Outlook use this queue when a user marks a message for deferred delivery. It can also be used as a holding area for messages that are looping due to improper SMTP configurations. Messages waiting to be Messages wait in this queue while the router determines the best route for the message. If routed this backs up, the router may be too busy calculating delivery restrictions. Messages with an Messages in this queue are not able to be delivered to the destination. Either the route unreachable destination cannot be determined, or no connectors are currently available to route over. This could be a DNS or link state problem. © 2005 Global Knowledge Network, Inc. All rights reserved.

Mailboxes 5 -17 USER on DATE, TIME The message reached the recipient’s e-mail system, but delivery was refused. Attempt to resend the message. If it still fails, contact your system administrator. SERVER FQDN #5. 2. 1 © 2005 Global Knowledge Network, Inc. All rights reserved.

Outlook Express 5 -23 No connection could be made because the target machine actively refused it. The server could not be found. (Account: account name, POPserver: 'mail', Error Number: 0 x 800 ccc 0 d) Task 'server name - Sending and Receiving' reported error (0 x 800 ccc 0 f): 'The connection to the server was interrupted. If this problem continues, contact your server administrator or Internet service provider (ISP). The server responded: ? K' Your server has unexpectedly terminated the connection. Possible causes for this include server problems, network problems, or a long period of inactivity. Account. account name, Server: 'server name', Protocol: POP 3, Server Response: '+OK', Port: 110, Secure(SSL): N 0, Error Number: 0 x 800 ccc 0 f Task 'SMTP server name - Sending and Receiving' reported error (0 x 80042109): 'Outlook is unable to connect to your outgoing (SMTP) e-mail server. If you continue to receive this message, contact your server administrator or Internet service provider (ISP). ' The operation timed out waiting for a response from the receiving (POP) server 0 x 8004210 a A time-out occurred while communicating with the server 0 x 800 ccc 19 © 2005 Global Knowledge Network, Inc. All rights reserved.

Exchange Server 2003 Administrators’ Toolbox 5 -26 l Exchange Server 2003 Resource Kit (MSPress) l Slipstick Systems http: //slipstick. com l Exchange Server 2003 Downloads http: //microsoft. com/exchange/downloads l Microsoft Exchange Server Tech. Center http: //www. microsoft. com/technet/prodtechnol/exchange/default. mspx © 2005 Global Knowledge Network, Inc. All rights reserved.

Exchange Server 2003 Service Packs 1. Front-end servers Applying service packs for Exchange Server 2003 3. Management machines © 2005 Global Knowledge Network, Inc. All rights reserved. 2. Back-end servers 5 -29

Scripting for Exchange Server 2003 Administrators WMI scripts ADSI scripts Contact Printer Computer Group Policy User Server East System Management © 2005 Global Knowledge Network, Inc. All rights reserved. AD Object Administration 5 -30

WMI and Exchange Server 2003 l l l l Exchange. Cluster. Resource Exchange. Connector. State Exchange. Link Class Exchange. Queue Class Exchange. Server. State Class Exchange_DSAccess. DC Class Exchange_Message. Tracking. Entry Class Exchange_Server Class Exchange_Folder. Tree Class Exchange_Link Class Exchange_Mailbox Class Exchange_Public. Folder Class Exchange_Queue. Cache. Reload. Event Class © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -31 l Exchange_Queued. Message Class l Exchange_Queued. SMTPMessage Class l Exchange_Queued. X 400 Message Class l Exchange_Queue. SMTPVirtual. Server Class l Exchange_Queue. X 400 Virtual. Server Class l Exchange_Schedule. Interval Class l Exchange_Server Class l Exchange_SMTPLink Class l Exchange_SMTPQueue Class l Exchange_X 400 Link Class l Exchange_X 400 Queue Class

Advanced Data Recovery l Offline Data Recovery l Snapshots l Recovery Storage Groups l Recover Mailbox Data l Merge or Copy Data l Schedule Recovery Mailbox Data Task l Mailbox Data Recovery Task Summary © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -34

Snapshots 5 -37 Snapshot 5. E 00. log E 0000001. log Exchange Server 2003 (writer) 2. Volume Shadow Copy Service (VSS) 1. Backup software (VSS Requestor) © 2005 Global Knowledge Network, Inc. All rights reserved. E 0000002. log 3. 6. Lock SG/ read only Release SG 4. Hardware or software (provider)

Archiving Some of the main reasons for archiving include: n Server performance n Knowledge management n Elimination of storage limits n Regulatory compliance © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -45

New Data Retention Model l All mailbox data stored on the Exchange server DAS storage l Exchange server backups and restores take a long time Archiving system DAS NAS SAN l Limits are required l E-discovery is very difficult l X number of days e-mail resides on the Exchange server l > x mail is archived l Archive disk storage is less costly than Exchange server l No limits are required l The server performs better DAS © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -46 l E-discovery is possible and easy to do

Built-in Archiving l Create mailbox store l Index mailbox store l Create mailbox-enabled user l Enable archiving on applicable mailbox stores © 2005 Global Knowledge Network, Inc. All rights reserved. 5 -48

Regulatory Compliance 5 -50 l Sarbanes-Oxley Act of 2002 (SOX) l Health Insurance Portability and Accountability Act of 1996 (HIPAA) Archiving for Compliance: n Capture entire message, including the header, for all SMTP n n n n traffic. Categorize archived messages for ease of administration. Capture metadata associated with every item in the archive. Store data on fixed media. Index the archive database. Provide advanced search and forensic tools. Incorporate single-instance storage and other performance optimization features. Provide a secure means in which to control access to the archive. © 2005 Global Knowledge Network, Inc. All rights reserved.

Active. Sync Requirement l l 5 -53 Exchange Server requirements Active Directory requirements Wireless device requirements Internet connectivity and security requirements © 2005 Global Knowledge Network, Inc. All rights reserved.