From open source groupware solution Zarafa to Exchange: Part 2, Active Directory

See also Part 1: A New Beginning When using Zarafa there are several possible directory services you can use for authentication. I will restrict this post to situations relevant to Active Directory (AD) integration. Even if you did not use Active Directory (or Zarafa for that matter) previously, I believe this post still contains valuable … Continue reading "From open source groupware solution Zarafa to Exchange: Part 2, Active Directory"

From open source groupware solution Zarafa to Exchange: Part 1, A New Beginning

This blog series will describe my experiences and lessons learned from migrating the Zarafa Groupware solution to Microsoft Exchange, specifically Exchange Server 2013. I've done this twice now and although some things are quite obvious, there are some gotchas and it might be a daunting endeavor. A normal transition from Exchange to Exchange already requires … Continue reading "From open source groupware solution Zarafa to Exchange: Part 1, A New Beginning"

Inconsistent Membership of a Security Group

I ran across an issue the other day that had me scratching my head and calling PSS to try and track down the problem. For some reason we had members of a security group that were inconsistently being denied access to RDP to our SQL servers.  There is a special group the SQL DB's belonged … Continue reading "Inconsistent Membership of a Security Group"

How to Build an AD Replication Delay (Lag) Site

To prevent having to restore objects from Active Directory due to accidentally deleting an object, you can have a remote DC which only sends/receives replication on a limited basis. You also want to prevent users from authenticating against, as well as services being used by other machines, since the metadata on this DC is aging … Continue reading "How to Build an AD Replication Delay (Lag) Site"

Upgrading AD from 2003 to 2008

— (Note: This is a copy from another site and at this time my snapshots are missing)— Microsoft’s Preupgrade check list Before upgrading AD verify all current applications are compatible Verify you are on the correct version for 2008 For example, does your SAN at its current release support 2008 Does the version of Exchange you … Continue reading "Upgrading AD from 2003 to 2008"

Preventing Spoke DC’s from Advertising in the Hub Site for Authentication Availability

If you have a hub and spoke site topology, it may not be a good idea for certain (Or all) spoke dc’s to be advertising, via dns services, the ability to provide authentications services. If you have a remote site with a dc that fails it is usually best that the spoke send its users … Continue reading "Preventing Spoke DC’s from Advertising in the Hub Site for Authentication Availability"