On several occasions, I’ve been asked to provide a report of mailbox sizes and number of items in a mailbox to a few of my customers who are running either Exchange Server 2007 or 2010. Like most of my blogs, this blog is as much documentation for myself as anything else. That way when I need to provide another one of these reports again in a few months, I’m not trying to figure out how I previously accomplished the task.
Exchange Server 2007
Recently while transitioning one of my customers from Exchange 2007 to Exchange 2010, I experienced issues trying to replicate public folders between the servers. This was due to a larger mail flow communications problem between the two servers where mail between them was queuing up and never being delivered. To determine if you are experiencing this particular issue or not, use the Queue Viewer which is located in the toolbox section of the “Exchange Management Console”.
To change the logon screen of your OWA website to ask for the user principal name (UPN) or email address instead of “Domainuser name”, change the following to “User principal name (UPN)”. To access this screen, from within Exchange Management Console, go to “Server Configuration>Client Access”, right click the OWA website listed under the “Outlook Web App” tab, select properties, and click the “Authentication” tab: Before: After: µ
Open Exchange Management Shell and execute the New-Mailbox cmdlet using the following example as a template: New-Mailbox -Alias MySharedMailbox -Name 'My Shared Mailbox' -Database 'MAIL1\First Storage Group\Mailbox Database' -OrganizationalUnit 'mikefrobbins.demo/My OU/Users/Mailbox' -Shared -UserPrincipalName email@example.com The following cmdlet assigns full access for the mailbox to a group in Active Directory named “My Shared Mailbox Admins” which needs to exist in AD prior to executing this command: Get-Mailbox -Identity 'My Shared Mailbox' | Add-MailboxPermission -User 'My Shared Mailbox Admins' -AccessRights FullAccess This cmdlet allows members of the “My Shared Mailbox Admins” group in Active Directory to be able to send email from the “mysharedmailbox@mikefrobbins.
Problem: When opening Microsoft Outlook you receive a Security Alert “Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the site’s security certificate.” Solution: The self-signed certificate that was created during the Exchange 2007 installation expires after one year. Use Exchange Management Shell to validate this is the problem you’re experiencing by running the following cmdlet. Get-ExchangeCertificate | Format-List NotAfter shows the certificate expiration date, Services shows the mail services that are being used by a particular certificate, and Thumbprint will be used to resolve this problem if your certificate is indeed expired.