none
Domain Users и подключение к E2K7 SP1 RRS feed

  • Вопрос

  •  

    домен мне достался по наследству, в нем были изменены настройки по умолчанию.

    сейчас пользоатели (Domain Users) по умолчанию не могут подключится к серверу Exchange , ни через OWA ни через MAPI (Outlook 2007)

    В OWA говорит

    Code Snippet

     

    Outlook Web Access could not find a mailbox for MyDomain\extest01. If the problem continues, contact technical support for your organization and tell them the following: The mailbox may be stored on a Microsoft Exchange 2000 or Microsoft Exchange 2003 server, or the Active Directory user account was created recently and has not yet replicated to the Active Directory site where this Client Access server is hosted.


    Копировать сведения об ошибке в буфер



    Request
    Url: https://caht01:443/owa/auth/error.aspx
    User host address: 10.x.x.98

     

     

    если дать пользователю extest01 права domain admins то он без проблем подключается.
     
    в MAPI (Outlook 2007) поиск по autodiscover не проходит Sad
    говорит введите логин и пароль (ввожу, о нне принимает) потому такое чувство что не пускает на сам сервер mailbox
     
    Подскажите какие права должны быть у Domain Users
    Спасибо.
     
    При проверке с тестовым доменом нашел одно отличие
    группа Domain Users не уходит в группу Users (в тестовом домене входит)
    • Перемещено Hengzhe Li 18 марта 2012 г. 6:25 forum merge (От:Exchange Server 2007)
    4 апреля 2008 г. 8:51

Все ответы

  • группа Domain Users должна быть членом группы Users.

    во всяком случае в 3 моих и чужих доменах так.

    4 апреля 2008 г. 10:01
  • сделал группу Domain Users членом группы Users.

    создал пользователя extest11 (Domain Users)

    Создал почтовый ящик для extest11

     


    Code Snippet
    Database                             : mailbox\SG03\Mailbox-sg03
    DeletedItemFlags                     : DatabaseDefault
    UseDatabaseRetentionDefaults         : True
    RetainDeletedItemsUntilBackup        : False
    DeliverToMailboxAndForward           : False
    RetentionHoldEnabled                 : False
    EndDateForRetentionHold              :
    StartDateForRetentionHold            :
    ManagedFolderMailboxPolicy           :
    ExchangeGuid                         : a2fd418f-848e-4638-b6d7-dbcb19f54c43
    ExchangeSecurityDescriptor           : System.Security.AccessControl.RawSecurit
                                           yDescriptor
    ExchangeUserAccountControl           : None
    ExternalOofOptions                   : External
    ForwardingAddress                    :
    RetainDeletedItemsFor                : 14.00:00:00
    IsMailboxEnabled                     : True
    Languages                            : {}
    OfflineAddressBook                   :
    ProhibitSendQuota                    : unlimited
    ProhibitSendReceiveQuota             : unlimited
    DowngradeHighPriorityMessagesEnabled : False
    ProtocolSettings                     : {}
    RecipientLimits                      : unlimited
    UserAccountControl                   : NormalAccount
    IsResource                           : False
    IsLinked                             : False
    IsShared                             : False
    LinkedMasterAccount                  :
    ResourceCapacity                     :
    ResourceCustom                       : {}
    ResourceType                         :
    SamAccountName                       : extest11
    SCLDeleteThreshold                   :
    SCLDeleteEnabled                     :
    SCLRejectThreshold                   :
    SCLRejectEnabled                     :
    SCLQuarantineThreshold               :
    SCLQuarantineEnabled                 :
    SCLJunkThreshold                     :
    SCLJunkEnabled                       :
    AntispamBypassEnabled                : False
    ServerLegacyDN                       : /o=First Organization/ou=Exchange Admini
                                           strative Group (FYDIBOHF23SPDLT)/cn=Conf
                                           iguration/cn=Servers/cn=mailbox
    ServerName                           : mailbox
    UseDatabaseQuotaDefaults             : True
    IssueWarningQuota                    : unlimited
    RulesQuota                           : 64KB
    Office                               :
    UserPrincipalName                    : extest11@mydomain.ru
    UMEnabled                           '>mailto:extest11@mydomain.ru">extest11@mydomain.ru
    UMEnabled                           ; : False
    MaxSafeSenders                       :
    MaxBlockedSenders                    :
    Extensions                           : {}
    AcceptMessagesOnlyFrom               : {}
    AcceptMessagesOnlyFromDLMembers      : {}
    AddressListMembership                : {Default Global Address List, All Users}
    Alias                                : extest11
    OrganizationalUnit                   : mydomain.ru/Тестовое
    CustomAttribute1                     :
    CustomAttribute10                    :
    CustomAttribute11                    :
    CustomAttribute12                    :
    CustomAttribute13                    :
    CustomAttribute14                    :
    CustomAttribute15                    :
    CustomAttribute2                     :
    CustomAttribute3                     :
    CustomAttribute4                     :
    CustomAttribute5                     :
    CustomAttribute6                     :
    CustomAttribute7                     :
    CustomAttribute8                     :
    CustomAttribute9                     :
    DisplayName                          : extest11
    EmailAddresses                       : {SMTP:extest11@mydomain.ru}
    GrantSendOnBehalfTo                  : {}
    HiddenFromAddressListsEnabled        : False
    LegacyExchangeDN                     : /o=First Organization/ou=Exchange Admini
                                           strative Group (FYDIBOHF23SPDLT)/cn=Reci
                                           pients/cn=extest11
    MaxSendSize                          : unlimited
    MaxReceiveSize                       : unlimited
    PoliciesIncluded                     : {{1EE29250-5E74-42F9-9069-273B5C1C66B6},
                                           {26491CFC-9E50-4857-861B-0CB8DF22B5D7}}
    PoliciesExcluded                     : {}
    EmailAddressPolicyEnabled            : True
    PrimarySmtpAddress                   : extest11@mydomain.ru
    RecipientType                       '>mailto:extest11@mydomain.ru">extest11@mydomain.ru
    RecipientType                       ; : UserMailbox
    RecipientTypeDetails                 : UserMailbox
    RejectMessagesFrom                   : {}
    RejectMessagesFromDLMembers          : {}
    RequireSenderAuthenticationEnabled   : False
    SimpleDisplayName                    :
    UMDtmfMap                            : {}
    WindowsEmailAddress                  : extest11@mydomain.ru
    IsValid                             '>mailto:extest11@mydomain.ru">extest11@mydomain.ru
    IsValid                             ; : True
    OriginatingServer                    : dc01.mydomain.ru
    ExchangeVersion                      : 0.1 (8.0.535.0)
    Name                                 : extest11
    DistinguishedName                    : CN=extest11,OU=Тестовое,DC=mydomain,DC=ru
    Identity                             : mydomain.ru/Тестовое/extest11
    Guid                                 : de13ce33-c713-4f54-ba47-22eb5b2e8f6c
    ObjectCategory                       : mydomain.ru/Configuration/Schema/Person
    ObjectClass                          : {top, person, organizationalPerson, user
                                           }
    WhenChanged                          : 4/4/2008 8:08:48 PM
    WhenCreated                          : 4/4/2008 8:04:34 PM

     

     

    когда пытаюсь подключится через Outlook 2007 выходит ошибка

     

    http://img-fotki.yandex.ru/get/24/kkv2kkv2.0/0_97ca_4ee78665_L

     

    через OWA пишет

     

    Code Snippet
    Outlook Web Access could not find a mailbox for MyDomain\extest11. If the problem continues, contact technical support for your organization and tell them the following: The mailbox may be stored on a Microsoft Exchange 2000 or Microsoft Exchange 2003 server, or the Active Directory user account was created recently and has not yet replicated to the Active Directory site where this Client Access server is hosted.

     

     

    ума не приложу что ему нада Sad

     

    в данный момент работает только один из тестовых ящиков

     

     

     

    Code Snippet

    Database                             : mailbox\SG03\Mailbox-sg03
    DeletedItemFlags                     : DatabaseDefault
    UseDatabaseRetentionDefaults         : True
    RetainDeletedItemsUntilBackup        : False
    DeliverToMailboxAndForward           : False
    RetentionHoldEnabled                 : False
    EndDateForRetentionHold              :
    StartDateForRetentionHold            :
    ManagedFolderMailboxPolicy           :
    ExchangeGuid                         : d0ace3ec-15e8-40ce-848a-893c846e41b5
    ExchangeSecurityDescriptor           : System.Security.AccessControl.RawSecurit
                                           yDescriptor
    ExchangeUserAccountControl           : None
    ExternalOofOptions                   : External
    ForwardingAddress                    :
    RetainDeletedItemsFor                : 14.00:00:00
    IsMailboxEnabled                     : True
    Languages                            : {ru-RU}
    OfflineAddressBook                   :
    ProhibitSendQuota                    : unlimited
    ProhibitSendReceiveQuota             : unlimited
    DowngradeHighPriorityMessagesEnabled : False
    ProtocolSettings                     : {HTTP§1§1§§§§§§, OWA§1}
    RecipientLimits                      : unlimited
    UserAccountControl                   : NormalAccount, DoNotExpirePassword
    IsResource                           : False
    IsLinked                             : False
    IsShared                             : False
    LinkedMasterAccount                  :
    ResourceCapacity                     :
    ResourceCustom                       : {}
    ResourceType                         :
    SamAccountName                       : kkv
    SCLDeleteThreshold                   :
    SCLDeleteEnabled                     :
    SCLRejectThreshold                   :
    SCLRejectEnabled                     :
    SCLQuarantineThreshold               :
    SCLQuarantineEnabled                 :
    SCLJunkThreshold                     :
    SCLJunkEnabled                       :
    AntispamBypassEnabled                : False
    ServerLegacyDN                       : /o=First Organization/ou=Exchange Admini
                                           strative Group (FYDIBOHF23SPDLT)/cn=Conf
                                           iguration/cn=Servers/cn=mailbox
    ServerName                           : mailbox
    UseDatabaseQuotaDefaults             : True
    IssueWarningQuota                    : unlimited
    RulesQuota                           : 64KB
    Office                               :
    UserPrincipalName                    : kkv@mydomain.ru
    UMEnabled                            : False
    MaxSafeSenders                       :
    MaxBlockedSenders                    :
    Extensions                           : {}
    AcceptMessagesOnlyFrom               : {}
    AcceptMessagesOnlyFromDLMembers      : {}
    AddressListMembership                : {Default Global Address List, All Users}
    Alias                                : kkv
    OrganizationalUnit                   : mydomain.ru/mydomain/Администраторы сети
    CustomAttribute1                     :
    CustomAttribute10                    :
    CustomAttribute11                    :
    CustomAttribute12                    :
    CustomAttribute13                    :
    CustomAttribute14                    :
    CustomAttribute15                    :
    CustomAttribute2                     :
    CustomAttribute3                     :
    CustomAttribute4                     :
    CustomAttribute5                     :
    CustomAttribute6                     :
    CustomAttribute7                     :
    CustomAttribute8                     :
    CustomAttribute9                     :
    DisplayName                          : KKV
    EmailAddresses                       : {SMTP:kkv@mydomain.ru}
    GrantSendOnBehalfTo                  : {}
    HiddenFromAddressListsEnabled        : False
    LegacyExchangeDN                     : /o=First Organization/ou=Exchange Admini
                                           strative Group (FYDIBOHF23SPDLT)/cn=Reci
                                           pients/cn=kkv
    MaxSendSize                          : unlimited
    MaxReceiveSize                       : unlimited
    PoliciesIncluded                     : {{1EE29250-5E74-42F9-9069-273B5C1C66B6},
                                           {26491CFC-9E50-4857-861B-0CB8DF22B5D7}}
    PoliciesExcluded                     : {}
    EmailAddressPolicyEnabled            : True
    PrimarySmtpAddress                   : kkv@mydomain.ru
    RecipientType                        : UserMailbox
    RecipientTypeDetails                 : UserMailbox
    RejectMessagesFrom                   : {}
    RejectMessagesFromDLMembers          : {}
    RequireSenderAuthenticationEnabled   : False
    SimpleDisplayName                    :
    UMDtmfMap                            : {}
    WindowsEmailAddress                  : kkv@mydomain.ru
    IsValid                              : True
    OriginatingServer                    : dc01.mydomain.ru
    ExchangeVersion                      : 0.1 (8.0.535.0)
    Name                                 : Кладов Константин Васильевич
    DistinguishedName                    : CN=KKV,OU=Админ
                                           истраторы сети,OU=mydomain,DC=mydomain,DC=
                                           ru
    Identity                             : mydomain.ru/mydomain/Администраторы сети/KKV
    Guid                                 : 30bf301f-2a73-45cd-8989-7eb771ec00ac
    ObjectCategory                       : mydomain.ru/Configuration/Schema/Person
    ObjectClass                          : {top, person, organizationalPerson, user
                                           }
    WhenChanged                          : 4/4/2008 6:50:10 PM
    WhenCreated                          : 2/9/2006 12:13:44 PM

     

     

     

    Ошибок в Эвантах нету Sad

     

    нашел только одну во время подключения

     

     

    Code Snippet
    Тип события: Предупреждение
    Источник события: MRxSmb
    Категория события: Отсутствует
    Код события: 3019
    Дата:  04.04.2008
    Время:  20:15:17
    Пользователь:  Н/Д
    Компьютер: V-XP-OFFICE2K7-
    Описание:
    Перенаправитель не смог определить тип подключения.
    Данные:
    0000: 00 00 00 00 04 00 4e 00   ......N.
    0008: 00 00 00 00 cb 0b 00 80   ....Ë..€
    0010: 00 00 00 00 84 01 00 c0   ....„..À
    0018: 00 00 00 00 00 00 00 00   ........
    0020: 00 00 00 00 00 00 00 00   ........

     

     

     

     

    4 апреля 2008 г. 14:41
  •  kkvkkv написано:

    домен мне достался по наследству, в нем были изменены настройки по умолчанию.

    А поподробнее?

    Сколько сайтов, сколько серверов Exchange, контроллеров домена? Нет ли проблем с репликацией, что говорят netdiag, dcdiag, exbpa ?

    5 апреля 2008 г. 10:17
  • Exchange серверов до моего прихода небыло и нету, но подозреваю что подготавливали домен для 2003 Exchange

    (нашел записи в реестре и в самом домене, + учетные записи "Exchange Domain Servers" и "Exchange Enterprise Servers") потому вопрос. Нужно ли удолить остатки 2003, например командой /removeorg

    или же подготовить /PrepareLegasyExchangePermissions ?

    Домен и поддомен есть.

    у Домен один сайт два контролера.. проблем с репликацией нету.

    есть поддомен, у него тоже один сайт и 2 контролера.. проблем там тоже нет (но там пока не планиурется разворачивать Exchange)

    На данный момент я полностью удалил из своей организации E2K7, хочу попробывать все с начала.

     

    что посоветуете?

     

     

    Кстати еще, когда пытался выяснить откуда лезут ошибки. наткнулся на вот аткое сообщение

    Code Snippet

    Summary: 2 item(s). 0 succeeded, 2 failed.
    Elapsed time: 00:00:00


    extest12
    Failed

    Error:
    Error was found for extest12 (extest12@mydomain.ru) because: Error occurred in the step: Opening source mailbox. Failed to open mailbox with error: The operation failed., error code: -1056749262

    Exchange Management Shell command attempted:
    'mydomain.ru/Тестовое/extest12' | move-mailbox -TargetDatabase 'mailbox\SG03\Mailbox-sg03'

    Elapsed Time: 00:00:00


    extest14
    Failed

    Error:
    Error was found for extest14 (extest14@mydomain.ru) because: Error occurred in the step: Opening source mailbox. Failed to open mailbox with error: The operation failed., error code: -1056749262

    Exchange Management Shell command attempted:
    'mydomain.ru/Тестовое/extest14' | move-mailbox -TargetDatabase 'mailbox\SG03\Mailbox-sg03'

    Elapsed Time: 00:00:00

     

     

    думал что у меня проблемы с Сервером mailbox создал второй mailboxtest и хотел туда переместить ящики.

    5 апреля 2008 г. 14:26
  •  kkvkkv написано:

    На данный момент я полностью удалил из своей организации E2K7, хочу попробывать все с начала.

     

    что посоветуете?

    Пройдите все шаги подготовки, включая /PrepareLegasyExchangePermissions. Убедитесь, что они завершились успешно. После этого устанавливайте сервер Exchange 2007

    5 апреля 2008 г. 15:33
  •  

    Установил заново все, ошибок небыло.

     

    Ошибки такиеже Sad Подскажите где смотреть настройки в AD пользователя? Чтобы сравнить на контролерах AD эти записи.

     

    Спасибо

     

    Нашел вот аткие ошибки при установке...

     

    это на сервере где установливался CA и HT

     

    Code Snippet

    06.04.2008 19:33:26] [2] Beginning processing.
    [06.04.2008 19:33:26] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 19:33:26] [2] Searching objects "CAHT01" of type "Server" under the root

    "$null".
    [06.04.2008 19:33:41] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] [ERROR] Unexpected Error
    [06.04.2008 19:33:41] [2] [ERROR] The operation could not be performed because object

    'CAHT01' could not be found on domain controller 'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] Ending processing.
    [06.04.2008 19:33:41] [1] Executing 'if ($server -eq $null) { new-exchangeserver

    -DomainController $RoleDomainController -Name $RoleNetBIOSName }', handleError = False
    [06.04.2008 19:33:41] [2] Launching sub-task '$error.Clear(); if ($server -eq $null) {

    new-exchangeserver -DomainController $RoleDomainController -Name $RoleNetBIOSName }'.
    [06.04.2008 19:33:41] [2] Beginning processing.
    [06.04.2008 19:33:41] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 19:33:41] [2] Processing object "CAHT01".
    [06.04.2008 19:33:41] [2] The properties changed are: "{

    AutoDatabaseMountDialType='Lossless', ElcAuditLogFileAgeLimit='00:00:00',

    EdgeSyncAdamSslPort='50636', SystemFlags='DeleteImmediately, Renamable',

    MaxConcurrentMailboxSubmissions='20', ExchangeLegacyDN='/o=First

    Organization/ou=Exchange Administrative Group

    (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=CAHT01', DataPath='C:\Program

    Files\Microsoft\Exchange Server\Mailbox', Heuristics='0', SerialNumber='Version 8.0

    (Build 30685.25)', ServerType='㉻䨃稳䨃稳䨃稳䨃稳䨃焸䄈㥰崔渧ୂ㉻嘟㝾匚是崔洤ᕜ╬ᕜ╬ᕜ╬ᕜ╬᝞',

    VersionNumber='1912636077', ExchangeLegacyServerRole='0', CurrentServerRole='None',

    DelayNotificationTimeout='04:00:00', MessageExpirationTimeout='2.00:00:00',

    QueueMaxIdleTime='00:03:00', MessageRetryInterval='00:01:00',

    TransientFailureRetryInterval='00:05:00', TransientFailureRetryCount='6',

    MaxConnectionRatePerMinute='1200', OutboundConnectionFailureRetryInterval='00:10:00',

    ReceiveProtocolLogMaxAge='30.00:00:00', SendProtocolLogMaxAge='30.00:00:00',

    MaxConcurrentMailboxDeliveries='7', PoisonThreshold='2',

    MessageTrackingLogMaxAge='30.00:00:00', ConnectivityLogMaxAge='30.00:00:00',

    PickupDirectoryMaxMessagesPerMinute='100', PickupDirectoryMaxHeaderSize='64KB',

    PickupDirectoryMaxRecipientsPerMessage='100', RoutingTableLogMaxAge='7.00:00:00',

    ExternalDsnMaxMessageAttachSize='10MB', InternalDsnMaxMessageAttachSize='10MB',

    ExternalDSNDefaultLanguageStr='ru-RU', InternalDSNDefaultLanguageStr='ru-RU',

    TransportServerFlags='17401', MinAdminVersion='-2147453113', Id='CAHT01',

    RawName='CAHT01' }".
    [06.04.2008 19:33:41] [2] Saving object "CAHT01" of type "Server" and state "New".
    [06.04.2008 19:33:41] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] Reading new object "CAHT01" of type "Server".
    [06.04.2008 19:33:41] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] Ending processing.
    [06.04.2008 19:33:41] [1] Executing 'if ($server -eq $null) { set-ExchangeServerRole

    -Identity $RoleNetBIOSName -IsProvisionedServer:$true -DomainController

    $RoleDomainController }', handleError = False
    [06.04.2008 19:33:41] [2] Launching sub-task '$error.Clear(); if ($server -eq $null) {

    set-ExchangeServerRole -Identity $RoleNetBIOSName -IsProvisionedServer:$true

    -DomainController $RoleDomainController }'.
    [06.04.2008 19:33:41] [2] Beginning processing.
    [06.04.2008 19:33:41] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 19:33:41] [2] Searching objects "CAHT01" of type "Server" under the root

    "$null".
    [06.04.2008 19:33:41] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] Processing object "CAHT01".
    [06.04.2008 19:33:41] [2] The properties changed are: "{

    CurrentServerRole='ProvisionedServer' }".
    [06.04.2008 19:33:41] [2] Saving object "CAHT01" of type "Server" and state "Changed".
    [06.04.2008 19:33:41] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 19:33:41] [2] Ending processing.

     

     

    а это где ставился Mailbox

     

    Code Snippet

    [06.04.2008 20:38:31] [2] Beginning processing.
    [06.04.2008 20:38:31] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 20:38:31] [2] Searching objects "MAILBOXTEST" of type "Server" under the

    root "$null".
    [06.04.2008 20:38:31] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 20:38:32] [2] [ERROR] Unexpected Error
    [06.04.2008 20:38:32] [2] [ERROR] The operation could not be performed because object

    'MAILBOXTEST' could not be found on domain controller 'dc02.mydomain.ru'.
    [06.04.2008 20:38:32] [2] Ending processing.
    [06.04.2008 20:38:32] [1] Executing 'if ($server -eq $null) { new-exchangeserver

    -DomainController $RoleDomainController -Name $RoleNetBIOSName }', handleError = False
    [06.04.2008 20:38:32] [2] Launching sub-task '$error.Clear(); if ($server -eq $null) {

    new-exchangeserver -DomainController $RoleDomainController -Name $RoleNetBIOSName }'.
    [06.04.2008 20:38:32] [2] Beginning processing.
    [06.04.2008 20:38:32] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 20:38:33] [2] Processing object "MAILBOXTEST".
    [06.04.2008 20:38:34] [2] The properties changed are: "{

    AutoDatabaseMountDialType='Lossless', ElcAuditLogFileAgeLimit='00:00:00',

    EdgeSyncAdamSslPort='50636', SystemFlags='DeleteImmediately, Renamable',

    MaxConcurrentMailboxSubmissions='20', ExchangeLegacyDN='/o=First

    Organization/ou=Exchange Administrative Group

    (FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=MAILBOXTEST', DataPath='C:\Program

    Files\Microsoft\Exchange Server\Mailbox', Heuristics='0', SerialNumber='Version 8.0

    (Build 30685.25)', ServerType='㉻䨃稳䨃稳䨃稳䨃稳䨃焸䄈㥰尕漦嘟㍺ɋ㭲ी㽶э㑽䰅簵䰅簵䰅簵䰅簵万', VersionNumber='1912636077',

    ExchangeLegacyServerRole='0', CurrentServerRole='None',

    DelayNotificationTimeout='04:00:00', MessageExpirationTimeout='2.00:00:00',

    QueueMaxIdleTime='00:03:00', MessageRetryInterval='00:01:00',

    TransientFailureRetryInterval='00:05:00', TransientFailureRetryCount='6',

    MaxConnectionRatePerMinute='1200', OutboundConnectionFailureRetryInterval='00:10:00',

    ReceiveProtocolLogMaxAge='30.00:00:00', SendProtocolLogMaxAge='30.00:00:00',

    MaxConcurrentMailboxDeliveries='7', PoisonThreshold='2',

    MessageTrackingLogMaxAge='30.00:00:00', ConnectivityLogMaxAge='30.00:00:00',

    PickupDirectoryMaxMessagesPerMinute='100', PickupDirectoryMaxHeaderSize='64KB',

    PickupDirectoryMaxRecipientsPerMessage='100', RoutingTableLogMaxAge='7.00:00:00',

    ExternalDsnMaxMessageAttachSize='10MB', InternalDsnMaxMessageAttachSize='10MB',

    ExternalDSNDefaultLanguageStr='ru-RU', InternalDSNDefaultLanguageStr='ru-RU',

    TransportServerFlags='17401', MinAdminVersion='-2147453113', Id='MAILBOXTEST',

    RawName='MAILBOXTEST' }".
    [06.04.2008 20:38:34] [2] Saving object "MAILBOXTEST" of type "Server" and state "New".
    [06.04.2008 20:38:34] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 20:38:34] [2] Reading new object "MAILBOXTEST" of type "Server".
    [06.04.2008 20:38:34] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 20:38:35] [2] Ending processing.
    [06.04.2008 20:38:35] [1] Executing 'if ($server -eq $null) { set-ExchangeServerRole

    -Identity $RoleNetBIOSName -IsProvisionedServer:$true -DomainController

    $RoleDomainController }', handleError = False
    [06.04.2008 20:38:35] [2] Launching sub-task '$error.Clear(); if ($server -eq $null) {

    set-ExchangeServerRole -Identity $RoleNetBIOSName -IsProvisionedServer:$true

    -DomainController $RoleDomainController }'.
    [06.04.2008 20:38:35] [2] Beginning processing.
    [06.04.2008 20:38:35] [2] Administrator Active Directory session settings are:  View

    Entire Forest: 'True', Configuration Domain Controller: 'dc02.mydomain.ru', Preferred

    Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc02.mydomain.ru

    }'
    [06.04.2008 20:38:35] [2] Searching objects "MAILBOXTEST" of type "Server" under the

    root "$null".
    [06.04.2008 20:38:35] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 20:38:35] [2] Processing object "MAILBOXTEST".
    [06.04.2008 20:38:35] [2] The properties changed are: "{

    CurrentServerRole='ProvisionedServer' }".
    [06.04.2008 20:38:35] [2] Saving object "MAILBOXTEST" of type "Server" and state

    "Changed".
    [06.04.2008 20:38:35] [2] Previous operation run on domain controller

    'dc02.mydomain.ru'.
    [06.04.2008 20:38:35] [2] Ending processing.

     

     


    7 апреля 2008 г. 4:34
  •  Pavel Dugaev написано:
     kkvkkv написано:

    домен мне достался по наследству, в нем были изменены настройки по умолчанию.

    А поподробнее?

    Сколько сайтов, сколько серверов Exchange, контроллеров домена? Нет ли проблем с репликацией, что говорят netdiag, dcdiag, exbpa ?

     

    Перегрузил контролер домена dc02 и dc01  поперли ошибки Sad

    c dc02


    Code Snippet


    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests
      
       Testing server: mydomain-prm\dc02
          Starting test: Connectivity
             ......................... dc02 passed test Connectivity

    Doing primary tests
      
       Testing server: mydomain-prm\dc02
          Starting test: Replications
             ......................... dc02 passed test Replications
          Starting test: NCSecDesc
             ......................... dc02 passed test NCSecDesc
          Starting test: NetLogons
             ......................... dc02 passed test NetLogons
          Starting test: Advertising
             ......................... dc02 passed test Advertising
          Starting test: KnowsOfRoleHolders
             ......................... dc02 passed test KnowsOfRoleHolders
          Starting test: RidManager
             ......................... dc02 passed test RidManager
          Starting test: MachineAccount
             * The current DC is not in the domain controller's OU
             ......................... dc02 failed test MachineAccount
          Starting test: Services
             ......................... dc02 passed test Services
          Starting test: ObjectsReplicated
             ......................... dc02 passed test ObjectsReplicated
          Starting test: frssysvol
             ......................... dc02 passed test frssysvol
          Starting test: frsevent
             ......................... dc02 passed test frsevent
          Starting test: kccevent
             ......................... dc02 passed test kccevent
          Starting test: systemlog
             An Error Event occured.  EventID: 0xC00010E1
                Time Generated: 04/07/2008   19:45:55
                (Event String could not be retrieved)
             ......................... dc02 failed test systemlog
          Starting test: VerifyReferences
             ......................... dc02 passed test VerifyReferences
      
       Running partition tests on : ForestDnsZones
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
      
       Running partition tests on : DomainDnsZones
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
      
       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
      
       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
      
       Running partition tests on : mydomain
          Starting test: CrossRefValidation
             ......................... mydomain passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... mydomain passed test CheckSDRefDom
      
       Running enterprise tests on : mydomain.ru
          Starting test: Intersite
             ......................... mydomain.ru passed test Intersite
          Starting test: FsmoCheck
             ......................... mydomain.ru passed test FsmoCheck


     

     

    Code Snippet

    ......................................

        Computer Name: dc02
        DNS Host Name: dc02.mydomain.ru
        System info : Windows 2000 Server (Build 3790)
        Processor : x86 Family 15 Model 43 Stepping 1, AuthenticAMD
        List of installed hotfixes :
            KB888111WXP
            KB921503
            KB924667-v2
            KB925398_WMP64
            KB925876
            KB925902
            KB926122
            KB927891
            KB929123
            KB930178
            KB931784
            KB931836
            KB932168
            KB933360
            KB933566
            KB933729
            KB933854
            KB935839
            KB935840
            KB935966
            KB936021
            KB936782
            KB937143
            KB938127
            KB939653
            KB941202
            KB941568
            KB941569
            KB941644
            KB941672
            KB942615
            KB942840
            KB943055
            KB943460
            KB943484
            KB943485
            KB944533
            KB944653
            KB946026
            KB948496
            Q147222


    Netcard queries test . . . . . . . : Passed
        [WARNING] The net card '1394 Net Adapter #2' may not be working because it has not received any packets.

     

    Per interface results:

        Adapter : Local Area Connection

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc02
            IP Address . . . . . . . . : 10.x.x.24
            Subnet Mask. . . . . . . . : 255.255.0.0
            Default Gateway. . . . . . : 10.0.0.1
            Dns Servers. . . . . . . . : 127.0.0.1
                                         10.x.x.9


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{E6D5A117-46DD-420E-9E74-9C6DE99534EC}
        1 NetBt transport currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Failed
           [FATAL] File \config\netlogon.dns contains invalid DNS entries.       [FATAL] File \config\netlogon.dns contains invalid DNS entries.    [FATAL] No DNS servers have the DNS records for this DC registered.


    Redir and Browser test . . . . . . : Passed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{E6D5A117-46DD-420E-9E74-9C6DE99534EC}
        The redir is bound to 1 NetBt transport.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{E6D5A117-46DD-420E-9E74-9C6DE99534EC}
        The browser is bound to 1 NetBt transport.


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Passed
        Secure channel for domain 'mydomain' is to '\\dc01.mydomain.ru'.


    Kerberos test. . . . . . . . . . . : Passed


    LDAP test. . . . . . . . . . . . . : Passed


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

     

     

     

    Code Snippet

    Windows IP Configuration

     

       Host Name . . . . . . . . . . . . : dc02

       Primary Dns Suffix  . . . . . . . : mydomain.ru

       Node Type . . . . . . . . . . . . : Hybrid

       IP Routing Enabled. . . . . . . . : No

       WINS Proxy Enabled. . . . . . . . : No

       DNS Suffix Search List. . . . . . : mydomain.ru

     

    Ethernet adapter Local Area Connection:

     

       Connection-specific DNS Suffix  . :

       Description . . . . . . . . . . . : NVIDIA nForce Networking Controller

       Physical Address. . . . . . . . . : 00-XX-XX-XX-DF-E8

       DHCP Enabled. . . . . . . . . . . : No

       IP Address. . . . . . . . . . . . : 10.x.x.24

       Subnet Mask . . . . . . . . . . . : 255.255.0.0

       Default Gateway . . . . . . . . . : 10.x.x.1

       DNS Servers . . . . . . . . . . . : 127.0.0.1

                                           10.x.x.9

     

     

     

    dc01


    Code Snippet

    Domain Controller Diagnosis

    Performing initial setup:
       Done gathering initial info.

    Doing initial required tests
      
       Testing server: mydomain-prm\dc01
          Starting test: Connectivity
             ......................... dc01 passed test Connectivity

    Doing primary tests
      
       Testing server: mydomain-prm\dc01
          Starting test: Replications
             ......................... dc01 passed test Replications
          Starting test: NCSecDesc
             ......................... dc01 passed test NCSecDesc
          Starting test: NetLogons
             ......................... dc01 passed test NetLogons
          Starting test: Advertising
             ......................... dc01 passed test Advertising
          Starting test: KnowsOfRoleHolders
             ......................... dc01 passed test KnowsOfRoleHolders
          Starting test: RidManager
             ......................... dc01 passed test RidManager
          Starting test: MachineAccount
             ......................... dc01 passed test MachineAccount
          Starting test: Services
             ......................... dc01 passed test Services
          Starting test: ObjectsReplicated
             ......................... dc01 passed test ObjectsReplicated
          Starting test: frssysvol
             ......................... dc01 passed test frssysvol
          Starting test: frsevent
             There are warning or error events within the last 24 hours after the

             SYSVOL has been shared.  Failing SYSVOL replication problems may cause

             Group Policy problems.
             ......................... dc01 failed test frsevent
          Starting test: kccevent
             ......................... dc01 passed test kccevent
          Starting test: systemlog
             An Error Event occured.  EventID: 0xC0001811
                Time Generated: 04/07/2008   19:09:11
                (Event String could not be retrieved)
             ......................... dc01 failed test systemlog
          Starting test: VerifyReferences
             ......................... dc01 passed test VerifyReferences
      
       Running partition tests on : ForestDnsZones
          Starting test: CrossRefValidation
             ......................... ForestDnsZones passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... ForestDnsZones passed test CheckSDRefDom
      
       Running partition tests on : DomainDnsZones
          Starting test: CrossRefValidation
             ......................... DomainDnsZones passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... DomainDnsZones passed test CheckSDRefDom
      
       Running partition tests on : Schema
          Starting test: CrossRefValidation
             ......................... Schema passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Schema passed test CheckSDRefDom
      
       Running partition tests on : Configuration
          Starting test: CrossRefValidation
             ......................... Configuration passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... Configuration passed test CheckSDRefDom
      
       Running partition tests on : mydomain
          Starting test: CrossRefValidation
             ......................... mydomain passed test CrossRefValidation
          Starting test: CheckSDRefDom
             ......................... mydomain passed test CheckSDRefDom
      
       Running enterprise tests on : mydomain.ru
          Starting test: Intersite
             ......................... mydomain.ru passed test Intersite
          Starting test: FsmoCheck
             ......................... mydomain.ru passed test FsmoCheck

     

     


    Code Snippet

    .....................................

        Computer Name: dc01
        DNS Host Name: dc01.mydomain.ru
        System info : Windows 2000 Server (Build 3790)
        Processor : x86 Family 15 Model 2 Stepping 7, GenuineIntel
        List of installed hotfixes :
            KB911564
            KB925398_WMP64
            Q147222


    Netcard queries test . . . . . . . : Passed

     

    Per interface results:

        Adapter : mydomain

            Netcard queries test . . . : Passed

            Host Name. . . . . . . . . : dc01
            IP Address . . . . . . . . : 10.x.x.9
            Subnet Mask. . . . . . . . : 255.255.0.0
            Default Gateway. . . . . . : 10.x.x.1
            Dns Servers. . . . . . . . : 10.x.x.9
                                         10.x.x.24


            AutoConfiguration results. . . . . . : Passed

            Default gateway test . . . : Passed

            NetBT name test. . . . . . : Passed
            [WARNING] At least one of the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names is missing.

            WINS service test. . . . . : Skipped
                There are no WINS servers configured for this interface.


    Global results:


    Domain membership test . . . . . . : Passed


    NetBT transports test. . . . . . . : Passed
        List of NetBt transports currently configured:
            NetBT_Tcpip_{50D73EBF-9C62-46A5-9FB8-87F3F357BFBD}
        1 NetBt transport currently configured.


    Autonet address test . . . . . . . : Passed


    IP loopback ping test. . . . . . . : Passed


    Default gateway test . . . . . . . : Passed


    NetBT name test. . . . . . . . . . : Passed
        [WARNING] You don't have a single interface with the <00> 'WorkStation Service', <03> 'Messenger Service', <20> 'WINS' names defined.


    Winsock test . . . . . . . . . . . : Passed


    DNS test . . . . . . . . . . . . . : Passed
        PASS - All the DNS entries for DC are registered on DNS server '10.x.x.9' and other DCs also have some of the names registered.
        PASS - All the DNS entries for DC are registered on DNS server '10.x.x.24' and other DCs also have some of the names registered.


    Redir and Browser test . . . . . . : Passed
        List of NetBt transports currently bound to the Redir
            NetBT_Tcpip_{50D73EBF-9C62-46A5-9FB8-87F3F357BFBD}
        The redir is bound to 1 NetBt transport.

        List of NetBt transports currently bound to the browser
            NetBT_Tcpip_{50D73EBF-9C62-46A5-9FB8-87F3F357BFBD}
        The browser is bound to 1 NetBt transport.


    DC discovery test. . . . . . . . . : Passed


    DC list test . . . . . . . . . . . : Passed


    Trust relationship test. . . . . . : Skipped


    Kerberos test. . . . . . . . . . . : Passed


    LDAP test. . . . . . . . . . . . . : Passed


    Bindings test. . . . . . . . . . . : Passed


    WAN configuration test . . . . . . : Skipped
        No active remote access connections.


    Modem diagnostics test . . . . . . : Passed

    IP Security test . . . . . . . . . : Skipped

        Note: run "netsh ipsec dynamic show /?" for more detailed information


    The command completed successfully

     

     

     

     

    Code Snippet

    Windows IP Configuration

     

       Host Name . . . . . . . . . . . . : dc01

       Primary Dns Suffix  . . . . . . . : mydomain.ru

       Node Type . . . . . . . . . . . . : Hybrid

       IP Routing Enabled. . . . . . . . : No

       WINS Proxy Enabled. . . . . . . . : No

       DNS Suffix Search List. . . . . . : mydomain.ru

     

    Ethernet adapter mydomain:

     

       Connection-specific DNS Suffix  . :

       Description . . . . . . . . . . . : Intel(R) PRO/100 S Network Connection

       Physical Address. . . . . . . . . : 00-XX-XX-XX-8E-A9

       DHCP Enabled. . . . . . . . . . . : No

       IP Address. . . . . . . . . . . . : 10.x.x.9

       Subnet Mask . . . . . . . . . . . : 255.255.0.0

       Default Gateway . . . . . . . . . : 10.x.x.1

       DNS Servers . . . . . . . . . . . : 10.x.x.9

                                           10.x.x.24

     

     

    может чего порекоментуете, пока ничего делать не стал

    7 апреля 2008 г. 14:16
  • У вас кроме Domain Users еще и Domain Controller'ы размещены не в дефолтном OU

     

    7 апреля 2008 г. 14:22
  •  Sergey Krylov написано:
    У вас кроме Domain Users еще и Domain Controller'ы размещены не в дефолтном OU

     

    Знаю, вот такой домен мне достался. Сейчас и выясняю что необходимо поправить чтобы Exch чувствовал себя хорошо.

    7 апреля 2008 г. 16:48
  •  

    Поборол ошибки... только одна осталась Sad  dcdiag и netdiag осталась одна failed test frsevent

    если кому интересно я открыл новое обсуждение http://forums.microsoft.com/TechNet-RU/ShowPost.aspx?PostID=3137878&SiteID=40&mode=1 

    8 апреля 2008 г. 13:24
  • Я уже не первый день борюсь с этой проблемой, но не смог найти ее причины. Есть только догадки что из-за репликации, но неясно. Вот что имею на данный

    момент.
    Домен mydomain.ru есть субдомен msk.mydomain.ru

    4 контролера домена

    Code Snippet

    dc01.mydomain.ru [Chema Master, Domain Noming Operations Master, Rid, PDC, Infrastructure Master]
    dc02.mydomain.ru [Global Catalog]

    dc03.msk.mydomain.ru []
    dc04.msk.mydomain.ru [Rid, PDC, Infrastructure Master, Global Catalog]

     

     

    репликация настроена между dc01<->dc02 , dc01<->dc03 , dc03<->dc04 .

    Устанавливаю Exchange в mydomain.

    setup.com /prepareLegacyExchangePermissions

    Далее все роли Exchange ставлю только на один комп CAHT02

    В логах установки нашел вот только эти ошибки(?)

    Code Snippet

    [08.04.2008 21:34:38] [2] Beginning processing.
    [08.04.2008 21:34:38] [2] Administrator Active Directory session settings are:  View Entire Forest: 'True', Configuration Domain Controller:

    'dc01.mydomain.ru', Preferred Global Catalog: 'dc02.mydomain.ru', Preferred Domain Controllers: '{ dc01.mydomain.ru }'
    [08.04.2008 21:34:38] [2] Searching objects "CAHT02" of type "Server" under the root "$null".
    [08.04.2008 21:34:38] [2] Previous operation run on domain controller 'dc01.mydomain.ru'.
    [08.04.2008 21:34:38] [2] [ERROR] Unexpected Error
    [08.04.2008 21:34:38] [2] [ERROR] The operation could not be performed because object 'CAHT02' could not be found on domain controller 'dc01.mydomain.ru'.
    [08.04.2008 21:34:38] [2] Ending processing.


     

     

    Code Snippet

    [08.04.2008 21:45:19] [2] Beginning processing.
    [08.04.2008 21:45:19] [2] Starting: unlodctr arguments: ESE
    [08.04.2008 21:45:19] [2] Process standard output: Counters for ESE have not been installed yet

    [08.04.2008 21:45:19] [2] Process standard error:
    [08.04.2008 21:45:19] [2] [ERROR] Unexpected Error
    [08.04.2008 21:45:19] [2] [ERROR] Process execution failed with exit code 1010.
    [08.04.2008 21:45:19] [2] Ending processing.

     

     

     

    Дак вот, после установки, на самом CAHT02 ошибок в эвантах нету.
    далее добавляю пользователей extest20, extest21, extest22 и т.д.


    Code Snippet
    Name                      Alias                ServerName       ProhibitSendQuo
                                                                    ta            
    ----                      -----                ----------       ---------------
    Administrator             Administrator        caht02           unlimited      ok , du+da
    extest02                  extest02             caht02           unlimited      ok , du+da
    extest12                  extest12             caht02           unlimited      fail,du
    extest20                  extest20             caht02           unlimited      ok , du+da
    extest21                  extest21             caht02           unlimited      fail,du
    extest27                  extest27             caht02           unlimited      ok , du+da
    kkv                       kkv                  caht02           unlimited      ok , du
    dvin                      dvin                 caht02           unlimited      fail2, du

     

     

     

    (Пометка, du -Domain Users, da - Domain Admins , ok - без проблем подключился к OWA и наверно через MAPI тоже, fail - ошибка)


    Дак вот, если простой смертный пользоатьель цепляется через OWA то ему выдается вот такая ошибка


    Code Snippet

    Outlook Web Access could not find a mailbox for PROGNOZ\extest21. If the problem continues, contact technical support for your organization and tell them the

    following: The mailbox may be stored on a Microsoft Exchange 2000 or Microsoft Exchange 2003 server, or the Active Directory user account was created

    recently and has not yet replicated to the Active Directory site where this Client Access server is hosted.

    Request
    Url: https://caht02:443/owa/auth/error.aspx
    User host address: 10.x.x.98

     

     


    дальше делаю так. Захожу через OWA под extest02 и отправляю письмо до extest21@mydomain.ru
    в очереди нахожу что письмо не может быть доставлено, вот по такой причине


    Code Snippet
    Identity: CAHT02\Unreachable\1
    Subject: test
    Internet Message ID: <BB068C5EFA29A74FB47259F106450A7B8A5221@CAHT02.mydomain.ru>
    From Address: extest02@mydomain.ru
    Status: Ready
    Size (KB): 3
    Message Source Name: FromLocal
    Source IP: 255.255.255.255
    SCL: -1
    Date Received: 09.04.2008 10:15:19
    Expiration Time: 11.04.2008 10:15:19
    Last Error: Получатель почтового ящика не имеет базы данных почтовых ящиков
    Queue ID: CAHT02\Unreachable
    Recipients:  extest21@mydomain.ru

     

     


    Но самое забавное что я под своей учеткой kkv (Domain Users) нормально могу заходить Sad а вот мой коллега dvin (тоже Domain Users не может) у него ошибка

    другая


    Code Snippet
    A problem occurred while trying to use your mailbox. Please contact technical support for your organization

     

     

    .


    Code Snippet

    equest
    Url: https://caht02:443/owa/lang.owa
    User host address: 10.x.x.98

    Exception
    Exception type: Microsoft.Exchange.Data.Storage.StoragePermanentException
    Exception message: There was a problem accessing Active Directory.

    Call stack

    Microsoft.Exchange.Data.Storage.ExchangePrincipal.Save()
    Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchLanguagePostLocally(OwaContext owaContext, OwaIdentity logonIdentity, CultureInfo culture,

    String timeZoneKeyName, Boolean isOptimized)
    Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchLanguagePostRequest(OwaContext owaContext)
    Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.PrepareRequestWithoutSession(OwaContext owaContext, UserContextCookie userContextCookie)
    Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.InternalDispatchRequest(OwaContext owaContext)
    Microsoft.Exchange.Clients.Owa.Core.RequestDispatcher.DispatchRequest(OwaContext owaContext)
    System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
    System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

    Inner Exception
    Exception type: Microsoft.Exchange.Data.Directory.ADOperationException
    Exception message: Active Directory operation failed on dc01.mydomain.ru. This error is not retriable. Additional information: Insufficient access rights to

    perform the operation. Active directory response: 00002098: SecErr: DSID-03150A45, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

    Call stack

    Microsoft.Exchange.Data.Directory.ADSession.AnalyzeDirectoryError(PooledLdapConnection connection, DirectoryRequest request, DirectoryException de, Int32&

    retries, Int32 maxRetries)
    Microsoft.Exchange.Data.Directory.ADSession.ExecuteModificationRequest(ADRawEntry entry, DirectoryRequest request, ADObjectId originalId)
    Microsoft.Exchange.Data.Directory.ADSession.Save(ADObject instanceToSave, IEnumerable`1 properties)
    Microsoft.Exchange.Data.Storage.ExchangePrincipal.Save()

    Inner Exception
    Exception type: System.DirectoryServices.Protocols.DirectoryOperationException
    Exception message: The user has insufficient access rights.

    Call stack

    System.DirectoryServices.Protocols.LdapConnection.ConstructResponse(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut,

    Boolean exceptionOnTimeOut)
    System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout)
    Microsoft.Exchange.Data.Directory.PooledLdapConnection.SendRequest(DirectoryRequest request, LdapOperation ldapOperation)
    Microsoft.Exchange.Data.Directory.ADSession.ExecuteModificationRequest(ADRawEntry entry, DirectoryRequest request, ADObjectId originalId)

     

     

    как понял из ошибки, то он что-то не смог найти на dc01

    Code Snippet

    Вот конфиг моего ящика kkv

    Database                           : CAHT02\First Storage Group\Mailbox Databas
                                         e
    DeletedItemFlags                   : DatabaseDefault
    UseDatabaseRetentionDefaults       : True
    RetainDeletedItemsUntilBackup      : False
    DeliverToMailboxAndForward         : False
    RetentionHoldEnabled               : False
    EndDateForRetentionHold            :
    StartDateForRetentionHold          :
    ManagedFolderMailboxPolicy         :
    ExchangeGuid                       : 94faf9d0-5ddd-47cb-b92c-41ca6eab88f0
    ExchangeSecurityDescriptor         : System.Security.AccessControl.RawSecurityD
                                         escriptor
    ExchangeUserAccountControl         : None
    ExternalOofOptions                 : External
    ForwardingAddress                  :
    RetainDeletedItemsFor              : 14.00:00:00
    IsMailboxEnabled                   : True
    Languages                          : {ru-RU}
    OfflineAddressBook                 :
    ProhibitSendQuota                  : unlimited
    ProhibitSendReceiveQuota           : unlimited
    ProtocolSettings                   : {}
    RecipientLimits                    : unlimited
    UserAccountControl                 : NormalAccount, DoNotExpirePassword
    IsResource                         : False
    IsLinked                           : False
    IsShared                           : False
    LinkedMasterAccount                :
    ResourceCapacity                   :
    ResourceCustom                     : {}
    ResourceType                       :
    SamAccountName                     : kkv
    SCLDeleteThreshold                 :
    SCLDeleteEnabled                   :
    SCLRejectThreshold                 :
    SCLRejectEnabled                   :
    SCLQuarantineThreshold             :
    SCLQuarantineEnabled               :
    SCLJunkThreshold                   :
    SCLJunkEnabled                     :
    AntispamBypassEnabled              : False
    ServerLegacyDN                     : /o=First Organization/ou=Exchange Administ
                                         rative Group (FYDIBOHF23SPDLT)/cn=Configur
                                         ation/cn=Servers/cn=CAHT02
    ServerName                         : caht02
    UseDatabaseQuotaDefaults           : True
    IssueWarningQuota                  : unlimited
    RulesQuota                         : 64KB
    Office                             :
    UserPrincipalName                  : kkv@mydomain.ru
    UMEnabled                          : False
    MaxSafeSenders                     :
    MaxBlockedSenders                  :
    Extensions                         : {}
    AcceptMessagesOnlyFrom             : {}
    AcceptMessagesOnlyFromDLMembers    : {}
    AddressListMembership              : {Default Global Address List, All Users}
    Alias                              : kkv
    OrganizationalUnit                 : mydomain.ru/mydomain/Users
    CustomAttribute1                   :
    CustomAttribute10                  :
    CustomAttribute11                  :
    CustomAttribute12                  :
    CustomAttribute13                  :
    CustomAttribute14                  :
    CustomAttribute15                  :
    CustomAttribute2                   :
    CustomAttribute3                   :
    CustomAttribute4                   :
    CustomAttribute5                   :
    CustomAttribute6                   :
    CustomAttribute7                   :
    CustomAttribute8                   :
    CustomAttribute9                   :
    DisplayName                        : kkv
    EmailAddresses                     : {SMTP:kkv@mydomain.ru}
    GrantSendOnBehalfTo                : {}
    HiddenFromAddressListsEnabled      : False
    LegacyExchangeDN                   : /o=First Organization/ou=Exchange Administ
                                         rative Group (FYDIBOHF23SPDLT)/cn=Recipien
                                         ts/cn=kkv
    MaxSendSize                        : unlimited
    MaxReceiveSize                     : unlimited
    PoliciesIncluded                   : {{23940F68-DBCD-4185-B471-62214BBBD1C3},{2
                                         6491CFC-9E50-4857-861B-0CB8DF22B5D7}}
    PoliciesExcluded                   : {}
    EmailAddressPolicyEnabled          : True
    PrimarySmtpAddress                 : kkv@mydomain.ru
    RecipientType                      : UserMailbox
    RecipientTypeDetails               : UserMailbox
    RejectMessagesFrom                 : {}
    RejectMessagesFromDLMembers        : {}
    RequireSenderAuthenticationEnabled : False
    SimpleDisplayName                  :
    UMDtmfMap                          : {}
    WindowsEmailAddress                : kkv@mydomain.ru
    IsValid                            : True
    OriginatingServer                  : dc02.mydomain.ru
    ExchangeVersion                    : 0.1 (8.0.535.0)
    Name                               : kkv
    DistinguishedName                  : CN=kkv,OU=Users,OU=mydomain,DC=mydomain,DC=ru
    Identity                           : mydomain.ru/mydomain/Users/kkv
    Guid                               : 3235bbae-a01e-4969-a70e-206bfe28c671
    ObjectCategory                     : mydomain.ru/Configuration/Schema/Person
    ObjectClass                        : {top, person, organizationalPerson, user}
    WhenChanged                        : 09.04.2008 9:50:14
    WhenCreated                        : 09.02.2006 12:06:57

     

     

    Могу сказать что готов к почти любым экспериментам.. т.к. Exchange в домене пока нету...
    единственое что пhиходит на ум это какой-тj глюк между dc01 и dc02 , но как его найти? подскажите.

    по поводу dcdiag и netdiag  на dc02 все без ошибок на dc01  только одна 

            

    Code Snippet

    There are warning or error events within the last 24 hours after the         SYSVOL has been shared.  Failing SYSVOL replication problems may cause 

           Group Policy problems.
             ......................... DC01 failed test frsevent

     

     

    ее пока не поборол Sad

    еще скажу что dc01 нахдится не в дефолтевой OU, а в "Mydomain\Domain Controllers\DC01OU\DC01". dc02 лежит где надо "Mydomain\Domain Controllers\DC02"


    Вот такой расклад.

    Есть идеи?

     

     


     

     

    9 апреля 2008 г. 11:36