Friday, October 24, 2008

How to use Resources & Equipment with Exchange 2007 in SBS 2008

Posted on 10/24/2008 04:47:00 PM by with 2 comments

In most offices, there are shared resources, this might be a room, a digital camera or a car.  These resources can typically only be used or be in one place at a time, and it’s a hassle to schedule it. 

With Exchange 2007, you can configure rooms or resources to be scheduled by the employees of the business.  It’s super easy:

  1. On the server, click Start, and then point to All Programs, Microsoft Exchange Server 2007, and click on Exchange Management Console.
  2. Expand Recipient Configuration, and select Mailbox.
  3. On the right-hand side click on New Mailbox ...
  4. Choose a Room Mailbox if you are configuring a meeting room, or an Equipment Mailbox if you are configuring a piece of equipment like a car or a camera, and then click Next.image
  5. On the User Type screen, choose New User and click Next.
  6. On the User Information page, enter the name of the conference room, I chose “Conference Room 1” with a username of Conf1, and give it a strong password you’ll remember, click Next.
  7. Verify the alias is Conf1 on the next page, and browse to a mail database (there is only one on SBS) and click Next and New on the next page.

At this point, your meeting rooms will tentatively accept all of the meetings and you can see where they are booked and not booked:

image

If you want the meeting request to auto-accept/auto-decline based on availability, you need to crack out the good ol’ powershell:

  1. Click Start, All Programs, Microsoft Exchange Server 2007, and launch Exchange Management Shell.
  2. Type in Set-MailboxCalendarSetting conf1 –AutomateProcessing:Autoaccept (where conf1 is the alias you defined above)

Now the Conference room will automatically accept anything that doesn’t conflict, and automatically decline anything that does conflict. 

image

If you want to learn more about what you can do with Resources and Equipment, there is an outstanding blog post at You Had Me At EHLO: Resource Scheduling in Exchange Server 2007.

Thursday, October 23, 2008

How Folder Redirection is different in SBS 2008

Posted on 10/23/2008 03:22:00 PM by with 7 comments

SBS 2008 treats folder redirection on a per user basis, instead of a per network basis like 2003 did.  What this means is that out of the box, the folder redirection policy applies to an empty security group (Windows SBS Folder Redirection Accounts).  This means that any user added to this group will get their folders redirected to the server for data protection purposes.

You can either add users directly to the security group, or use the handy UI on the Users’ Tab called Redirect folders for user accounts to the server.

image

By simply clicking on the User Accounts folder, you can choose which users have their folders redirected.  Additionally, as you can see above, you can choose what you want redirected.  We do not redirect the Start Menu by default, because if a client moves to a new PC, and that new PC doesn’t have the applications installed, the start menu is full of unknown icons.  Ugly!

Wednesday, October 22, 2008

Do I absolutely have to run DHCP on SBS 2008?

Posted on 10/22/2008 08:46:00 AM by with 44 comments

When running the Configure E-Mail and Internet Connection wizard in SBS 2003, you had the option to run DHCP services on the SBS server, or leave it on the router within the network.  There was no guidance one way or another, it was a choice you had to make to complete the wizard.

With SBS 2008, we provide guidance.

The guidance is that you should run DHCP on the server.  Why?

  1. Microsoft builds, and has been building a really high quality DHCP server built into Windows Server since Windows NT 4.  Why not get one of the highest quality DHCP servers on the market for your network?
  2. The SBS team can ensure your DHCP server is set up correctly on SBS, making sure there are no duplicate IP addresses, and that the exclusion range is set up correctly for the server’s IP address
  3. If you feel comfortable in the DHCP management UI, you can set up reservations to make sure the same clients get the same IP address.  This is handy for printers, or other things on your network that may act like servers, but you don’t want to manage the static IP address
  4. If you’re logging in remotely, you can see which clients are online by which ones have IP addresses in the DHCP management console.  You can also see the clients IP address right in the console, so it makes it easy to find clients on the network, especially if you are remote.
  5. DHCP uses limited resources and has essentially no impact on the server’s performance

If the above 5 reasons aren’t good enough for you, and you absolutely must run the DHCP service on the router, here is how you do it.

  1. Close the Windows SBS Console, and cancel the Connect to the Internet Wizard if it’s running
  2. Click Start and go to All Programs and expand Windows Small Business Server
  3. Click on Windows SBS Console (Advanced Mode)
  4. On the Network tab, select the Connectivity sub-tab
  5. Click on Start DHCP (image).
    1. At this point, the DHCP services will be forced to start.  Since you have another DHCP server running on the network, the DHCP service will stop itself, and log an event in the Event Log about how it can’t start because there is another non-authorized DHCP server on the network.  This is ok.
  6. Immediately click the same button, this time called Disable DHCP (image ).

Now the networking components of the server will ignore the fact that the DHCP service is not running, keep it disabled, and let you proceed with the Connect to the Internet Wizard without having to disable the DHCP services.

IMPORTANT: Please do not call Microsoft support with an incorrectly configured LAN DNS.  Make sure you make the SBS’s Internal IP address the primary DNS in your 3rd party DHCP server configuration.

Finally, the server is still going to alert you that DHCP services aren’t running, so to fix this:

  1. Flip on over to the Computers sub-tab on the Network tab.
  2. On the right, click on View Notification Settings.
  3. Uncheck the DHCP Server notification, and click OK.

image 

Now DHCP services is no longer running on the server, and SBS will be fine with that.  As a final note, please only do this if you have no other way around it, and if you’re familiar with your router UI to set it up correctly.  If not, just disable DHCP on your router, and we’ll take care of the rest!

Tuesday, October 21, 2008

“Fix My Network” Wizard in SBS 2008

Posted on 10/21/2008 02:09:00 PM by with 17 comments

In the previous version of SBS, the Configure E-Mail and Internet Connection Wizard (CEICW) could be run again and again and again ... and again.  If you had an issue with networking, you’d run the wizard as many times as you wanted to reset to the known SBS defaults.  With 2008, we provided a wizard for exactly this case, called “Fix My Network” wizard.

image

The wizard is designed to detect known problems on your network, and then give you the option to fix them or not.  There are roughly 70-80 different checks and fixes that it does.  Some important things to note:

  1. The fixes may have dependencies.  For example, if the wizard detects that the DHCP services are stopped, it will report that, but won’t be able to check the configuration inside the DHCP service, because it’s stopped.  So, it’s important to run this wizard a few times, until you’re happy with the issues it’s finding/not finding.
  2. If you replace your router on your network, or change your router IP address, you should consider running the Connect to the Internet Wizard first.
  3. The wizard is designed to bring the network back to a “known good” working state.  So any custom configuration will be un-done.

Now that you know how to use the wizard, what exactly are the things we keep an eye on?  Well, to know exactly, you will have had to work on the wizard, but here is the high level.

  1. Network Cards
    1. Disabled Network Cards
    2. Additional Network Cards
    3. Duplicate IP, Missing IP, Extra IP addresses
    4. Incorrect DNS, Gateway and subnet settings
    5. NIC unplugged from the network
  2. DHCP Configuration
    1. DHCP Enabled and running
    2. DHCP scope settings
    3. DHCP IPv4 and IPv6 settings
  3. Local DNS Configuration
    1. Missing Zones
    2. Invalid Names and domains
    3. Missing records
    4. Reverse Zones invalid or missing
  4. Internet DNS (if with a domain name partner)
    1. Missing Records
    2. Missing or incorrect credentials
    3. Domain configured and in good standing with provider
    4. Dynamic DNS client is configured correctly (if running)
  5. SSL Certificate Configuration
    1. Invalid Root and Leaf Certificates
    2. Invalid Certificate installation package
    3. Certificate installed on IIS
    4. Self-Issued certificates expiring or invalid
    5. Certificate authority is installed and running
    6. Trusted Certificate installed and valid
  6. Router Configuration
    1. Gateway can be reached
    2. Internet can be reached
    3. UPnP (if available) port mappings
  7. VPN (if enabled)
    1. Firewall configuration
    2. RRAS service enabled and running
    3. VPN default Policy is in place
  8. E-Mail Configuration
    1. SMTP connectors configured correctly
  9. IIS Configuration
    1. IIS is enabled and running
    2. Host headers are configured correctly

A Common Question

Question: Does SBS support NIC Teaming?

Answer: The core OS supports it, but not the SBS wizards, it’s recommended you configure your network with a single network card, and then set up the team afterwards.  Microsoft Support mentions they may ask you to disable the team for any troubleshooting.

Monday, October 20, 2008

Windows SBS 2008 Spanish, Dutch, French, Polish RTM

Posted on 10/20/2008 11:27:00 AM by with No comments

Hola! Hello! Bonjour! Witajcie!

Today marks the day when SBS 2008 starts shipping localized versions. SBS plans to release in 18 different languages, the second 4 countries that will be available are: Spanish, Dutch, French, and Polish.  They have released today and will be available as soon as possible.  I’d suspect anywhere from 1-5 months after the English version is available.  We can’t control the fill of the channels.

Don’t forget the Product Launch on November 12th, for details, visit the Dream Server Launch Site!

Friday, October 17, 2008

Windows SBS 2008 Advanced Console

Posted on 10/17/2008 09:14:00 AM by with 2 comments

By default, when the console opens when you log in, the Console is in normal mode, not advanced mode.  But there are extra buttons and gadgets in the advanced console for you to play with. Simply close the console, and open the Advanced console:

image

I bet your wondering what the differences are.  Well, they are very subtle:

Users & Computers Tab

  • Users Sub-tab: Link to open Active Directory Users and Computers snap-in.

Network Tab

  • Devices Sub-tab: Re-install the Fax service
  • Connectivity Sub-tab: Start/Stop DHCP services (use this if you absolutely must use DHCP on the router)
  • Connectivity Sub-tab: Manage DNS Snap-in
  • Connectivity Sub-tab: Manage DHCP Snap-in
  • Connectivity Sub-tab: Manage Certificates Snap-in

That’s it.  Some added links for you to make management simpler.

Also, for your convenience, there is a “Native Tools Management”, which includes many of the native tools you might need to troubleshoot, or make any custom settings.

Thursday, October 16, 2008

Windows SBS 2008 Best Practice Analyzer

Posted on 10/16/2008 02:24:00 PM by with 2 comments

`

Due to the overwhelming number of downloads for the SBS 2003 Best Practice Analyzer, the product team, and support team has worked extra hard to get the 2008 Best Practice Analyzer out before the general availability of the product on November 12th.

So, if you’ve already got your SBS 2008 server(s) up and running, you can start immediately with the Windows Small Business Server 2008 Best Practice Analyzer.

To download, click here.

Officially announced on the Official SBS blog.

Understanding Windows SBS 2008 Anti-Spam/Virus updates

Posted on 10/16/2008 10:40:00 AM by with 1 comment

[This post co-authored with Steven Goddard]

Exchange Server 2007, bundled with Forefront Security for Exchange that both come with SBS 2008, you get a lot of protection on your e-mail.  But how does it actually work? Let’s break it down.

With Exchange 2007 only

If you only have Exchange 2007, without Forefront Security for Exchange (FSE), then with SBS 2008, you get the Exchange Standard CAL.  This CAL entitles you to content filter updates that are published every two weeks via Microsoft Update.  You can reference this TechNet article for more information on this.

With Exchange 2007 and Forefront Security for Exchange

If you chose to install Forefront Security for Exchange during SBS setup, you are entitled to more regular updates (You can also do this with an Exchange Enterprise CAL, this is not included with SBS).

When checking multiple times a day, you get the IP Repudiation Service Data (an IP Block list that is offered exclusively to Exchange 2007 customers), spam signature data, as well as the content filter updates.

Make sense? If not here is some extra reading on TechNet.

Note on un-installing: If you choose to un-install FSE after the trial, you are no longer entitled to updates more than every two weeks.  You will have to do this manually.

SBS Specific Information

If you install FSE during SBS setup, then you get the anti-spam updates multiple times a day.  However, FSE asks Microsoft Update, which on your machine is WSUS (if you left it installed).  WSUS only asks the actual Microsoft Update, once/day.  So you are still ahead of the two week standard server, but you aren’t at your multiple-times-per-day, so you may want to consider changing your schedule, if this is important to you.

Data Usage Note: If you pay for bandwidth, it’s important to not that each signature download is roughly 6MB, and with this happening multiple times a day, you could be using more data than your used to.  On the second paragraph of this TechNet article, it talks about how it checks for signatures multiple times per hour.  Make sure to adjust the schedule to meet your needs (and in some places, budget):

image

Thanks to Philip for pointing out the confusion between Exchange 2007 and Exchange 2007+FSE, and to Wayne for pointing out the download size.

Wednesday, October 15, 2008

60 days not enough time to evaluate SBS 2008?

Posted on 10/15/2008 07:17:00 PM by with No comments

It’s true, you get 60 days to trial SBS.  All of SBS, that’s a lot of things to test out in 60 days.  Well, you are in luck!  With a simple command line you can extend the 60 day trial, another 180 days for a total of 240 days.  It’s super easy.

First you need an elevated command prompt.  Once you have one of those open, simply run the command line slmgr.vbs –dli.  This command takes a few minutes to run, and pop’s up a screen to tell you how long you have left in your evaluation period. 

To extend the evaluation period, you can add the extra 180 days from the same elevated command prompt type in the command slmgr.vbs –rearm.

But I must warn you, once you get past day 80, studies have shown that SBS is so addictive, that it will most likely be a major part of your network, and you’ll be committed.  So choose wisely if you plan to extend the evaluation period, you could end up buying it!

More details in KB 948472.

Tuesday, October 14, 2008

Windows SBS 2008 Brazil, German, Italian and Turkish languages RTM

Posted on 10/14/2008 12:40:00 PM by with No comments

Olá! Hallo! Ciao! Selam!

Today marks the day when SBS 2008 starts shipping localized versions. SBS plans to release in 18 different languages, the first 4 countries that will be available are: Brazil, German, Italy, and Turkey.  They have released today and will be available as soon as possible.  I’d suspect anywhere from 1-5 months after the English version is available.  We can’t control the fill of the channels.

Don’t forget the Product Launch on November 12th, for details, visit the Dream Server Launch Site!

Windows Essential Solutions Launch is Right around the Corner!

Posted on 10/14/2008 11:43:00 AM by with No comments

November 12th is creeping up faster than you are probably thinking about it.  The Launch will be a virtual launch, hosted at The Dream Server Launch website.  I will be participating in the launch event, along with a few of my SBS and EBS buddies.  Be there or Be Square!

Also, secure your position as trusted advisor by implementing Windows Essential Server Solutions to help your customers reduce costs and increase productivity by streamlining their IT infrastructure. Generate leads by inviting your customers and prospects to the Windows Essential Server Solutions special launch webcast using guidance and an invitation email template.

 

 

Monday, October 13, 2008

Hosting Multiple Domains on SBS 2008/Exchange 2007

Posted on 10/13/2008 01:31:00 PM by with 24 comments

[This post comes courtesy of Adam DePue]

A long time ago, in a version far far away, I blogged how to have Exchange 2003, on SBS 2003 answer for multiple domain names in this blog post (along with 3 other parts for across SBS 2003). For all 4 of blog posts, the idea is still the same, except the steps and UI may have changed.  Since I’ve already we’ve already seen people asking how to have Exchange host multiple domains with SBS 2008, I thought I’d blog it.  Adam beat me to building and testing the steps, so this post comes from him!

So, to set up your primary domain name, please do run the Internet Address Management Wizard.

To set up your secondary (and more) domain, follow these steps:

  1. Click Start and point to All Programs and click on Microsoft Exchange Server 2007 and then launch the Exchange Management Console.
  2. Expand Organization Configuration and select Hub Transport.
  3. On the right, under Actions, click on New Accepted Domain …, and wait for the wizard to pop-up
    1. In the Name field, enter a friendly name, like Contoso Email
    2. Accepted Domain field, enter the domain name you’d want to appear after the “@” in the email, e.g.. contoso.com
    3. Finally, leave setting set to Authoritative Domain.
    4. Click New to create the new domain name, and then Finish once it’s done processing.
  4. On the right, under Actions, now click on New E-Mail Address Policy …, and wait for the wizard to pop-up
    1. Enter a friendly name, like Contoso Email Policy, leave the default as All recipient types, and click Next.
    2. Ensure no extra conditions are applied and click Next.
    3. Click Add… to add a new E-mail address format
      1. Ensure E-mail address local part is checked, and use alias is selected.
      2. Specify a custom fully qualified domain name (FQDN) for e-mail address should read the same as the domain name you’re adding from above.  Here is a screenshot: image
      3. Note: double check the use alias, as it could change by specifying a FQDN, then click OK.
    4. On the Schedule page, ensure Immediately is selected and click Next.
    5. Click New to execute the policy, and then Finish once it’s applied.

Important: Any new domain you set up becomes primary (what users send-as), so you’ll have to use the steps below to update which one should be primary.

At this point, provided your Internet DNS MX addresses for both domain names are pointed to the WAN IP of the SBS network (typically the WAN IP of the router, or ISA firewall), you will now receive email for both domain names.  By default, the new domain you added will be the primary domain name, and the domain everyone sends as.

One important thing to note is that the SBS console will only show the primary domain name in the console.  If you want to switch which domain is primary, you can do that too:

  1. Open up the Exchange Management Console again and expand Organization Configuration, and select Hub Transport.
  2. Right-click on the policy for the address you want to be primary, and click on Change Priority, and change it to “1” (without the quotes), and click OK.  Exchange will adjust the priorities on the other policies automatically.

One final thing to note, is that if you’re primary domain name is automatically managed by a domain name provider, we will only keep the primary domain IP address up to date with the domain name provider.  So if you are on a Dynamic IP, and rely on the Dynamic DNS client included with SBS 2008, you may want to consider some DNS configuration that keys off the “A Record” of the primary domain name, as that’s the only one we adjust.

Thursday, October 09, 2008

Changing the Scroll Wheel speed on the Samsung Jack (BlackJack II)

Posted on 10/09/2008 09:54:00 PM by with 5 comments

Just picked me up a Samsung Jack, I love it.  It’s responsive, it’s got the full tactile keyboard (touch screen wasn’t doing it for me), and it’s been flashed to Windows Mobile 6.1 from the Samsung Support Website (Simply search for “Windows Mobile 6.1” and you should find it).

The only drawback of the phone was how slow the “wheel” scrolls.  This is configurable in the Registry.  Simply browse to HKLM / Software / Samsung / KeyRun.  Push the Values button, and look for WheelSpeed.  Change the value to 0, and close the registry editor, no reboot required.

[Information Provided by MobileJaw.com]

Subscribe to: Posts (Atom)