Archive for June, 2010

Ahmed Ali Speaking at MS Technology week about Microsoft Business ready Security

June 30, 2010 Leave a comment

Categories: IT Events

Exchange 2010 Issue: you might not be able to remove arbitration mailboxes from Exchange 2010

June 30, 2010 Leave a comment

Consider the following scenario:

you try to remove the first Exchange server or remove arbitration mailboxes from a mailbox database, you might end up getting this error:
This error is not retriable. Additional information: Access is denied.
Active directory response: 00000005: SecErr: DSID-03151D12, problem 4003 (INSUF
At C:\Users\administrator\AppData\Local\Temp\tmp_84dd0a39-ae56-442c-9ddd-68
sm1:19026 char:25
+ $scriptCmd = { & <<<< $script:InvokeCommand `
+ CategoryInfo : NotSpecified: (0:Int32) [Remove-Mailbox], ADOper
+ FullyQualifiedErrorId : 974A3CFF,Microsoft.Exchange.Management.Recipient

This is a Known Issue, consider using LDP or ADSIEDIT to remove the mailbox, no workaround currently available

New-ManagementRoleAssignment gives access is denied

June 28, 2010 Leave a comment

if you run the above cmdlet you might get:

Active directory response: 00000005: SecErr: DSID-03151E04, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

+ CategoryInfo : NotSpecified: (0:Int32) [New-ManagementRoleAssignment], ADOperationException

+ FullyQualifiedErrorId : 41057C37,Microsoft.Exchange.Management.RbacTasks.NewManagementRoleAssignment
also some additional cmdlets might gives access is denied,

to solve this issue make sure that Exchange computer account is member of Exchange Trusted Subsystem and restart the Exchange server

Exchange 2010 SP1 new trick : hiding GAL from OWA

June 27, 2010 1 comment

Now in Exchange 2010 SP1 you can hide GAL from OWA Using



Set-OwaMailboxPolicy –GlobalAddressListEnabled

Exchange 2007 SP3 expired password reset tool

June 25, 2010 Leave a comment

we all suffered from that, users with expired password cannot login to OWA or change their passwords, this have neen changed in Exchange 2007 SP3, there is a new web module that enables users with expired password to change their passwords.

Now that this feature is disabled by default, to avail this Password Reset feature administrators need to enable this…..To enable the password reset feature
  1. Log on Client Access Server | Registry Editor
  2. Go to HLKM\SYSTEM\CurrentControlSet\Services\MSExchange OWA
  3. Create the following DWORD value if it does not already exist:
    Value name: 
    ChangeExpiredPasswordEnabledValue type: REG_DWORD
    Value data: 
Categories: Exchange and UC

how to set spell checking language for users in OWA

June 25, 2010 Leave a comment

here is a Nice Trick: to set the spell checking language for users you can use the following cmdlet:

Set-MailboxSpellingConfiguration with DictionaryLanguage
More information:
thanks to Frank Wang for the trick
Categories: Exchange 2010 AKA E14

how to prevent users from updating their info using RBAC and Exchange control panel

June 23, 2010 Leave a comment

here is a nice quick tip, if you want to quickly prevent users from updating their info using the ECP in Exchange 2010, then you use cmdlet:

set-ManagementRoleAssignment -Identity “MyContactInformation-Default Role Assignment Policy” -Enabled $false

this stop users immediately from updating the info in the ECP, if you want to allow some users to still do this you will have to edit the default policies to include a custom management role.

Categories: Exchange 2010 AKA E14