DepAssistExch2010_17

7/28/2019 DepAssistExch2010_17

1/25


2/25


3/25

3

Navigate your checklistNow that weve asked you a few questions about your environment, its time to review how to useyour Exchange 2010 Deployment Checklist.

How can I see my answers to the environmentquestions?That's easy. There are two ways: Click the left arrow at the bottom of this page or, click Reviewyour answers at the top of the left pane. Then you can see a summary of how you answered thequestions.

How can I change my answers?Go to the Review your answers page. Right after the summary of your responses, you'll seewhere you can click to make changes. You can also click Start Over at the top of any page.When you change your answers, you'll get a whole new checklist that's tailored to those ans wers.

How can I move through the checklist?You can browse the checklist by clicking a step in the left pane or by using the right and left arrowbuttons. While you can browse in any order you want, you do need to complete the steps in theorder shown. If you try to jump ahead and complete a step, you'll find that you won't be able to

mark the step as complete. That's because the previous steps were skipped.

What do I do when I finish a step?Pat yourself on the back! Then, you can either click the check box to the left of the step or thecheck box icon at the bottom of the screen. Then, you can move on to the next step. Theprogress bar will change as you mark steps complete so you can easily track your progress.

What if I get interrupted?You can exit the Exchange Deployment Assistant at any t ime and return to the same computer

later to continue. Please be aware that if you access the Deployment Assistant from a differentcomputer, progress from your session on the original computer is not available.

Can I print this stuff?Yes! See the Print | Send | Download Checklist icons at the top of this page? They're on everypage of the checklist. You can print the step you're working on, and you can even download the


4/25

4

entire checklist. Also, if you'd like to send mail to someone about a step, click Send . A link to thestep is automatically included in the mail.

Confirm prerequisites are met for new installof Exchange 2010Before you go any further with the Exchange Deployment Assistant, make sure that your organization's operating system, hardware, software, clients, and other elements meet therequirements for Exchange 2010. If they don't, you won't be able to complete the steps in theDeployment Assistant and you won't be able to deploy Exchange 2010.

Learn more at: Understanding Exchange 2010 Install Prerequisites

To successfully install Exchange 2010, the following components are required.

Directory ServersSchema master The 32-bit or 64-bit edition of the Windows Server 2003 SP1 Standard or Enterprise operating system or later, or the 32-bit or 64-bit edition of theWindows Server 2008 Standard or Enterprise operating system or later, or theWindows Se rver 2008 R2 Standard or Enterprise operating system.

Global catalog server In every Active Directory site where you plan to installExchange 2010, you must have at least one global catalog server that is either the 32-bit o r 64-bit edition of Windows Server 2003 SP1 Standard or Enterprise or later, or the 32-bit or 64-bit edition of Windows Server 2008 Standard or Enterprise, or the Windows Server 2008

R2 Standard or Enterprise.

Active Directory Forest The Active Directory forest must be Windows Server 2003 forestfunctional mode.

Domain Controller You must have the 32-bit or 64-bit Windows Server 2003 StandardEdition or Enterprise Edition SP1 operating system, or the 32-bit or 64-bit edition of theWindows Server 2008 Standard or Enterprise operating system or theWindows Se rver 2008 R2 Standard or Enterprise operating system.

Operating Systems64-bit edition of Windows Server 2008 Standard Service Pack 264-bit edition of Windows Server 2008 Enterprise Service Pack 2

64-bit edition of Windows Server 2008 Standard R2

64-bit edition of Windows Server 2008 Enterprise R2

Operating System Components.NET Framework 3.5 SP1


5/25


6/25

6

downloaded language bundle on a local drive or network share. Internet connecti vity isrequired for Exchange Setup to download the language pack bundle.

b. Install only la nguages from the DVD This option installs only the languages included

with the Setup DVD. The installation of additional languages support requires installingthe languages from the language bundle.

4. After Step 3 is complete, click Step 4: Install Microsoft Exchange .

5. On the Introduction page, click Next .

6. On the License Agreement page, review the software license terms. If you agree to theterms, select I accept the terms in the license a greement , and click Next .

7. On the Error Reporting page, select Yes or No to enable the Exchange Error Reportingfeature, and click Next .

8. On the Installa tion Type page, select Custom Exchange Server Installation . To optionallychange the installation path for Exchange 2010, c lick Browse , locate the appropriate folder in

the folder tree, a nd then click OK. Click Next .9. On the Server Role Selection page, select the Client Access Role , and click Next . The

Management Tools option, which installs the Exchange Management Console and theExchange Management Shell, will also be selected and installed.


7/25

7

10. Use the Configure Client Access Serverexternal domain page to configure an externalfully-qualified domain name (FQDN). This is the FQDN that you give to Microsoft OfficeOutlook Web App, Outlook Anywhere, and Exchange Act iveSync users to connect toExchange 2010. Select the check box, enter your FQDN, and then click Next .

11. On the Customer Experience Improvement Program page, optionally join in the ExchangeCustomer Experience Improvement Program (CEIP). The CEIP collects anonymousinformation about how you use Exchange 2010 and any problems that you encounter. To jointhe CEIP, select Join the Customer Experience Improvement Program , choose the

industry that best represents your organization, and then click Next .12. On the Readiness Checks page, review the Summary to determine if the system and server

are ready for the Client Access role to be installed. If all prerequisite checks completedsuccessfully, click Install . If any of the prerequisite checks failed, you must resolve thedisplayed error before you can proceed with installing the Client Access role. In many cases,you don't need to exit Setup while you're fixing issues. After you resolve an error, click Retry to run the prerequisite check again. Also, be sure to review any warnings that are reported.


8/25

8

13. The Progress page displays the progress and elapsed time for each phase of theinstallation. As each phase ends, it's marked completed and the next phase proceeds. If anyerrors are encountered, the phase will end as incomplete and unsuccessful. If that happens,you must exit Setup, resolve any errors, and then restart Setup.

14. When all phases have finished, the Completion page displays. Review the results, and verifythat each phase completed successfully. Clear the check box for Finalize this installationusing the Exchange Manageme nt Console , and then click Finish to exit Setup.

15. When you're returned to the Setup welcome screen, click Close . On the Confirm Exit prompt,click Yes .

16. Restart the computer to complete the installation of the Client Access role.

Create a Client Access Server Array

If you're installing multiple Client Access servers in one Active Directory site, you can create aClient Access server array. This is a load-balanced group of Client Access server computers thatcan be accessed through a single URL. Creating a Client Access array reduces the number of fully qualified domain names (FQDN) you need to have on your certificate, and it allows all usersin one Active Directory site to access Exchange 2010 through a single URL.

After you've completed the installation of your fi rst Client Access server computer, you can startbuilding your Client Access server array.

To create a new Client Access server a rray, run the following command using the ExchangeManagement Shell.

New-ClientAccessArray -FQDN ClientArray.contoso.com -Site "YourSite" -

Name "clientarray.contoso.com"There can only be one Client Access array per Active Directory site. After you've created thearray, you can manage which Client Access server computers are part of the array through your load balancer configuration.

If you're unfamiliar with the Shell, learn more at: Overview of Exchange Management Shell

How do I know this worked?

The successful completion of the Exchange Setup wizard will be your first indication that the

installation process worked as expected. To further verify that the Client Access server role installed successfully, you can run Get-ExchangeServer in theExchange Management Shell, which can be launched from the Exchange Server 2010 programgroup on the Windows Start menu. This cmdlet outputs a list of the Exchange 2010 server rolesthat are installed on the specified server.

You can also check the Exchange setup log (ExchangeSet up.log), located in \ExchangeSetupLogs to verify that the Client Access role was installed asexpected.


9/25

9

Learn more at: Verifying an Exchange 2010 Installation

Add digital certificates on the Client Accessserver For secure external access to Exchange, you'll need a digital certificate. This certificate willinclude an exportable private key in X.509 format (DER encoded binary or Base -64 encoded). Werecommend you procure, import, and enable a Subject Alternative Name (SAN) certificate thatcontains the names for the current namespace, a legacy namespace, and the Autodiscover namespace.

The names you need to include in your Exchange certificate are the fully qualified domain names(FQDNs) used by client applications to connect to Exchange. For ex ample, a company named

Contoso that uses contoso.com can use just three hostnames for all client connectivity within an Act ive Directory site:

mail.contoso.com This name can cover nearly all client connections to Exchange,including Outlook, Outlook Anywhere, offline address book (OAB) downloads (by Outlook),Exchange Web Services (for Outlook 2007 and later, and Entourage 2008), POP3, IMAP4,SMTP (both client and other SMTP server connections), Outlook Web App, the ExchangeCont rol Panel, Exchange A ctiveSync, and Unified Messa ging.

autodiscover.contoso.com This name is used for Autodiscover, which is used by Outlook2007 and later, O utlook Anywhere, Exchange ActiveSync, Exchange Web Services clients,and Windows Mobile 6.1 and later.

legacy.contoso.com This name is used to maintain Internet access to an older version of Exchange while you transition to Exchange 2010. This is necessary during transition becausesome Exchange services (for example, Outlook Web App, Exchange ActiveSync, andservices that send configuration information through Autodiscover) tell clients to connectdirectly with the old Exchange servers if they see requests to access a mailbox on an older version of Exchange.

In addition to these three names, your root domain (for example, contoso.com) will also be addedas a name.

There are three steps to adding certificates to your Client Access server(s):

1. If you don't already have a digital certificate, you can use the Certi ficate Request Wizard inExchange 2010 to generate a certificate request file, which yo u can then submit to your

selected Certification Authority.

2. After you have the digital certificat e from your Certification Authority, you then complete thecertificate request process by importing the certificate into your Client Access server.

3. After the certificate has been imported, you assign one or more client access services to it.

Before proceeding with these steps, we recommend that you review this t opic: UnderstandingDigital Certificates and SSL


10/25

10

In addition, the configuration settings used in the Exchange Deployment Assistant assume thatyou are using split DNS for client access.

To learn more, see: Understanding DNS Requirements

How do I create a certificate request file for a newcertificate?

You can use the New Exchange Certificat e wizard to create your certificate request.

1. In the Console tree, click Server Configuration .

2. From the Actions pane, click New Exchange Certificate to open the New ExchangeCertificate wizard.

3. On the Introduction page, enter a friendly name for the certificate (for example,

Contoso.com Exchange certificate ) and then click Next .4. On the Domain Scope page, if you plan on using a wildcard certificate, check the box for

Enable w ildcard certificate , enter the root portion of your domain (for example contoso.com or *.contoso.com ), and then click Next . If you're not using a wildcard certificate, just clickNext .

Note:

It's a best practice to not use wildcard certificates because they represent a potentialsecurity risk. Like a SAN certificate, a wildcard certificate (for example,*.contoso.com) can support multiple names. There are security implications toconsider because the certificate can be used for any sub-domain, including those

outside the control of the actual domain owner. A more secure alte rnati ve is to listeach of the required domains as Subject Alternative Names in the certificate. Bydefault, this approach is used when certificate requests are generated by Exchange.

5. On the Exchange Configuration page, expand and configure each area as follows:

a. Federated Sharing Federated Sharing allows you to enable users to share informationwith recipients in external federated organizations by creating organization relationshipsbetween two Exchange 2010 organizations, or using a sharing policy to allow users tocreate sharing relationships on an individual basis. If you plan on using this feature,expand Federated Sharing and select the Public certificate check box.

b. Client Access ser ver (Outlook Web App) Expand this option and select the check

box(es) that are appropriate for your Outlook Web App usage (Intranet and/or Internet). If you're using Outlook Web App internally, then in the Domain name you use to accessOutlook Web App internally field, remove the existing server names and enter the FQDNyou configured for external access to the Client Access server during Setup of the Client

Access server (for example, mail.contoso.com). This is the same FQDN that is l isted inthe domain name field for Outlook Web App on the Internet.


11/25


12/25

12

9. On the Completion page, review the output of the wizard. Click Finish to close the wizard.

10. Transmit the certificate request file to your selected Certification Authority, who will thengenerate the certificate and transmit it to you. After you have the certificate file, you can use

the Complete Pending Request wizard to import the certificate file into Exchange 2010.11. In the Console tree, click Server Configuration .

12. In the Work pane, right-click the certificate request you created and click Complete PendingRequest .

13. On the Introduction page, click Browse to select the certificate file provided to you by your selected Certification Authority. Enter the private key password for the certificate, and thenclick Complete .

14. On the Completion page, verify that the request completed successfully. Click Finish toclose the Complete Pending Request wizard.

How do I assign services to the certificate?

You can use the Assign Services to Certificate wizard to assign the appropriate services to theimported certificate.

1. After the certificate has been successfully import ed, you can assign services to it. Select thecertificate in the Work pane, and then from the Actions pane, click Assign Services toCertificate to open the Assign Services to Certificate wizard.

2. On the Select Servers page, the Exchange server into which you imported the certificate isshown. Click Next .

3. On the Select Services page, select the check box for each service you want assigned tothe selected certificate and then click Next . For example, select the check box for InternetInformation Services (IIS) to assign services for Outlook Web App, Exchange ActiveSync,and other Exchange services that are integrated with IIS.

4. On the Assign Services page, review the configuration summary. If any changes need to bemade, click Back . If the configuration summary is correct, c lick Assign to assign thespecified services to the selected certificate.

5. On the Completion page, verify that each step completed successfully. Click Finish to closethe wizard.

How do I know this worked?The successful completion of the New Exchange Certificate, Complete Pending Request, and

Assign Services to Certificate wizards will be your first indication that the certificate request,import, and assignment worked as expected. To further verify that your certificate was importedand assigned correctly, you can perform the following steps from the Exchange 2010 Client

Access server computer.


13/25

13

1. In the Console tree, click Server Configuration .

2. In the Result pane, select the server that contains the certi ficate, and then in the Work pane,select the certificate you want to view.

3. From the Actions pane, click Open . You can view information about the certificate on theGeneral , Details , and Certification Path pages of the Exchange Certificate dialog box.

Enable Exchange 2010 Outlook AnywhereOutlook Anywhere eliminates the need for users in remote offices or mobile users to have to usea VPN to connect to their Exchange servers. Although Outlook Anywhere is an optionalcomponent o f Exchange 2010, we recommend it s use if you have external clients t hat willconnect to Exchange 2010. Outlook Anywhere provides access to a user's mailbox via RPC over HTTPS.

As with any external client access method, there are security implications to consid er whendeploying Outlook Anywhere. Before making the decision to deploy Outlook Anywhere, youshould read: Understanding Security for Outlook Anywhere

Learn more at: Understanding Outlook Anywhere

How do I do this?The Enable Outlook Anywhere wizard helps you with this task.

1. In the console tree, navigate to Server Configuration > Client Acce ss .

2. In the action pane, click Enable Outlook Anywhere .

3. Enable Outlook Anywhere page:

Type the external host name or URL for your organization in External host name . Theexternal host name should be the FQDN you entered when installing the Client Accessserver role, which is the existing host name. For example, mail.contoso.com.

Select either Basic a uthentication or NTLM authentication .

If you're using an SSL accelerator and you want to use SSL offloading, select Allowsecure channel (SSL) offloading .

Important:

Don't use this option unless you're sure that you have an SSL accelerator that

can handle SSL offloading. If you don't have an SSL accelerator that can handleSSL offloading, and you select this option, Outlook Anywhere won't functioncorrectly.

4. Click Enable to apply these settings and enable Outlook Anywhere.



14/25

14

Outlook Anywhere will be enabled on your Client Access server after a configuration period of approximately 15 minutes. To verify that Outlook Anywhere has been enabled, check theapplication event log on the Client Access server. The following events will be logged in the eventlog.

EventID 3007 MSExchange RPC over HTTP Autoconfig




Configure OAB and Web Services virtualdirectoriesTo enable Outlook Anywhere clients to discover and automatically connect to Exchange 2010,you must configure the offline address book (OAB) and Exchange Web Services virtualdirectories. This step is only necessary if you'll be using Exchange Web Services, Outlook

Anywhere, o r the offline address book. If you haven't enabled Outlook Anywhere, and you don'tplan on using Exchange Web Services for programmatic access to Exchange mailboxinformation, you can skip this s tep.

Learn more at: Understanding Offline Address Books and Configure External Client AccessNamespaces

How do I do this?You must use the Exchange Management Shell to configure OAB and Exchange Web Servicesvirtual directory settings.

If you're unfamiliar with the Shell, learn more at: Overview of Exchange Management Shell

1. Configure the external URL for the of fline address book using the following syntax.

Set-OABVirtualDirectory -Identity "CAS01\OAB (Default Web Site)" -

ExternalUrl https://mail.contoso.com/OAB -RequireSSL:$true

2. Configure the external URL for Exchange Web Ser vices using the following syntax.

Set-WebServicesVirtualDirectory -Identity "CAS01\EWS (Default Web

Site)" -ExternalUrl https://mail.contoso.com/EWS/Exchange.asmx -

BasicAuthentication:$True


To verify that these steps were completed successfully, run the following commands to verify theExternalURL property is set correctly on both virtual directories.


15/25

15

Get-OABVirtualDirectory -Identity "CAS01\OAB (Default Web Site)" -

ExternalURL

Get-WebServicesVirtualDirectory -Identity "CAS01\EWS (Default Web

Site)" -ExternalURL

Configure settings on virtual directoriesDuring the installation of the Client Access server role, virtual directories are created for the

Autodiscover service, Exchange ActiveSync, Outlook Web App, the Exchange Control Panel,PowerShell, Exchange Web Services, and public folders. Legacy virtual directories are alsocreated for coexistence. You can configure a variety of settings on those virtual directories,including authentication and SSL.

Learn more at: Understanding Virtual Directories

How do I do this?Perform the following steps from the computer that has the Exchange 2010 Client Access server role installed.

1. In the Console tree, navigate to Server Configuration > Client Acce ss .

2. In the Result pane, select the Client Access server you want to configure.

3. In the Work pane, click the tab that corresponds to the virtual directory whose settings youwant to configure (Outlook Web App, Exchange Control Panel, Exchange Acti veSync), andthen click the virtual directory.

4. In the Actions pane, under the virtual directory name, click Properties .

5. Edit any of the settings on the tabs. (If you need more informat ion about the settings, click F1while you're on a tab.) Common settings to be configured are:

a. External URL This is the URL used to access the Web site from the Internet. The valuefor this URL should have been set during installation of the Client Access server role.

b. Authentication You can specify a variety of authentication options, as well as specifythe sign-in format and sign-in domain.

c. Direct File Access For Outlook Web App, you can configure direct file access settingsfor public and private computers.

d. Exchange2003URL This parameter is only necessary when you have users withmailboxes on Exchange 2003 at the same time as users with mailboxes on Exchange2010. In that case, set this parameter to the legacy DNS endpoint, for example,http://legacy.contoso.com.

6. Click OK to confirm your changes.


16/25

16


How you confirm whether your settings were applied varies by the setting.

To verify that the external URL has been configured correctly for Exchange ActiveSync or Outlook Web App, you can use the Exchange Remote Connectivity Analyzer (ExRCA), a freeWeb-based tool provided by Microsoft.

You can find ExRCA at https://www.testexchangeconnectivity.com

To verify that authentication has been configured correctly for Exchange Acti veSync or Outlook Web App, you can also use ExRCA.

To verify that direct file access has been configured correctly for Outlook W eb App, log on asa user to Outlook Web App using the public computer option and then try to access and savea file attached to an e-mail message.

Install the Hub Transport server roleThe Hub Transport server role is responsible for internal mail flow for the Exchange organization.It handles all mail flow inside the organization, applies transport rules, applies journaling policies,and delivers messages to recipient mailboxes.

Learn more at: Overview of the Hub Transport Server Role

You can install the Hub Transport server role on dedicate d hardwa re, or you can install it on thesame server where you installed the Client Access server role.

We recommend installing the latest update rollup for Exchange 2010 on all your servers. Although you can install update rollups on a server after Exchange 2010 has been installed, it 'salso possible and less time-consuming to incorporate the update rollup into the install server installation process. To do this, copy the contents of the Exchange 2010 DVD to the file system,and then copy or move the downloaded update rollup file to the Updates folder in the installationtree. When you perform the procedure below, the update rollup will be installed as part of theinitial installation process.

To download the latest update rollup for Exchange 2010, visit: Microsoft Download Center

How do I install the Hub Transport server role on

dedicated hardware?The Exchange Server 2010 Setup wizard helps you install the Hub Transport role:

1. Insert the Exchange 2010 DVD into the DVD drive. When the AutoPlay dialog appears, clickRun Setup.exe under Install or run program . If the AutoPlay dialog doesn't appear,navigate to the root of the DVD and double-click Setup.exe. Alternatively, browse to thelocation of your Exchange 2010 installation files and double-click Setup.exe.
https://www.testexchangeconnectivity.com/https://www.testexchangeconnectivity.com/https://www.testexchangeconnectivity.com/http://go.microsoft.com/fwlink/?LinkId=63955http://go.microsoft.com/fwlink/?LinkId=63955http://go.microsoft.com/fwlink/?LinkId=63955http://go.microsoft.com/fwlink/?LinkId=63955https://www.testexchangeconnectivity.com/


17/25

17

2. TheExchange Ser ver 2010 Setup welcome screen appears. In the Install section, thesoftware listed for Steps 1 and 2 was installed with the Exchange 2010 prerequisites. If theseprerequisites are not already installed, click on the appropriate step to install them.

3. When Steps 1 and 2 are listed as Installe d, click Step 3 to expand the Exchange languageoptions, and then choose the appropriate option:

a. Install all languages from the language bundle This option installs all the Exchange2010 languages f rom an Exchange 2010 language bundle. You can connect to theInternet to download the latest applicable language bundle or to use a previouslydownloaded language bundle on a local drive or network share. Internet connectivity isrequired for Exchange Setup to download the language pack bundle.

b. Install only languages from the DVD This option installs only the languages includedwith the Setup DVD. The installation of additional languages support requires installingthe languages from the language bundle.

4. After Step 3 is complete, click Step 4: Install Microsoft Exchange .

5. On the Introduction page, click Next .


7. On the Error Reporting page, select Yes or No to enable the Exchange Error Reportingfeature, and click Next .

8. On the Installa tion Type page, select Custom Exchange Server Installa tion . To optionallychange the installation path for Exchange 2010, click Browse , locate the appropriate folder inthe folder tree, a nd then click OK. Click Next .

9. On the Server Role Selection page, select the Hub Transport Role , and click Next . The

Management Tools option, which installs the Exchange Management Console and theExchange Management Shell, will also be selected and installed.


18/25


19/25

19

You can also use the Exchange Server 2010 Setup wizard to add the Hub Transport role to your existing Client Access server.

1. Open the Windows Control Panel and launch the Programs and Features applet.

2. Select Microsoft Exchange Server 2010 from the list of installed programs, and then clickChange .

3. The Exchange Server 2010 Setup wizard will start in Exchange Maintenance Mode. ClickNext .

4. On the Server Role Selection page, select the check box for Hub Transport Role and thenclick Next .

5. On the Readiness Checks page, review the Summary to determine if the system and server are ready for the Hub Transport role to be installed. If all prerequisite checks completedsuccessfully, click Install . If any of the prerequisite checks failed, you must resolve thedisplayed error before you can proceed with installing the Hub Transport role. In many cases,

you don't need to exit Setup while you're fixing issues. After you resolve an error, click Retry to run the prerequisite check again. Also, be sure to review any warnings that are reported.

6. The Progress page will display the progress and elapsed time for each phase of theinstallation. As each phase ends, it will be marked completed and the next phase wil lproceed. If any errors are encountered, the phase will end as incomplete and unsuccessful.In this event, you must exit Setup, resolve any errors, and then restart Setup in MaintenanceMode.

7. When all phases have finished, the Completion page will be displayed. Review the resultsand verify that each phase completed successfully. Click Finish to exit Setup.

8. Restart the computer to complete the installation of the Hub Transport role.


The successful completion of the Exchange Setup wizard will be your first indication that theinstallation process worked as expected. To further verify that the Hub Transport server role installed successfully, you can run Get-ExchangeServer in theExchange Management Shell, which can be launched from the Exchange Server 2010 programgroup on the Windows Start Menu. This cmdlet outputs a list of the Exchange 2010 server rolesthat are installed on the specified server.

You can also review the contents of the Exchange setup log file (ExchangeSetup.log), located in

\ExchangeSetupLogs to verify that the Hub Transport role was installed asexpected.

Learn more at: Verifying an Exchange 2010 Installation


20/25


21/25

21


7. On the Error Reporting page, select Yes or No to enable the Exchange Error Reporting

feature, and click Next .8. On the Installa tion Type page, select Custom Exchange Server Installa tion . To optionally

change the installation path for Exchange 2010, click Browse , locate the appropriate folder inthe folder tree, a nd then click OK. Click Next .

9. On the Server Role Selection page, select the Mailbox Role , and click Next . TheManagement Tools option, which installs the Exchange Management Console and theExchange Management Shell, will also be selected and installed.

10. On the Client Settings page, select Yes if your organization has client computers runningeither Microsoft Outlook 2003 or Microsoft Entourage 2004 or earlier. Select No if you don't.

11. On the Readiness Checks page, review the Summary to determine if the system and server

are ready for the Mailbox role to be installed. If all prerequisite checks completedsuccessfully, click Install . If any of the prerequisite checks failed, you must resolve thedisplayed error before you can proceed with installing the Mailbox role. In many cases, youdon't need to exit Setup while you're fixing issues. After you resolve an error, click Retry torun the prerequisite check again. Also, be sure to review any warnings that are reported.

12. The Progress page displays the progress and elapsed time for each phase of theinstallation. As each phase ends, it's marked completed and the next phase proceeds. If any


22/25

22

errors are encountered, the phase will end as incomplete and unsuccessful. If that happens,you must exit Setup, resolve any errors, and then restart Setup.

13. When all phases have finished, the Completion page displays. Review the results, and verify

that each phase completed successfully. Clear the check box for Finalize this installationusing the Exchange Manageme nt Console , and then click Finish to exit Setup.

14. When you are returned to the Setup welcome screen, click Close . On the Confirm Exitprompt, click Yes .

15. Restart the computer to complete the installation of the Mailbox role.

How do I add the Mailbox server role to anexisting Exchange 2010 server?

You can also use the Exchange Server 2010 Setup wizard to add the Mailbox role to an existingExchange 2010 server.

1. Open the Windows Control Panel and launch the Programs and Features applet.

2. Select Microsoft Exchange Server 2010 from the list of installed programs, and then clickChange .

3. The Exchange Server 2010 Setup wizard will launch in Exchange Maintenance Mode. ClickNext .

4. On the Server Role Selection page, select the check box for Mailbox Role and then click Next .

5. On the Readiness Checks page, review the Summary to determine if the system and server

are ready for the Mailbox role to be installed. If all prerequisite checks completedsuccessfully, click Install . If any of the prerequisite checks failed, you must resolve thedisplayed error before you can proceed with installing the Mailbox role. In many cases, youdon't need to exit Setup while you're fixing issues. After you resolve an error, click Retry torun the prerequisite check again. Also, be sure to review any warnings that are reported.

6. The Progress page will display the progress and elapsed time for each phase of theinstallation. As each phase ends, it will be marked completed and the next phase willproceed. If any errors are encountered, the phase will end as incomplete and unsuccessful.In this event, you must exit Setup, resolve any errors, and then restart Setup in MaintenanceMode.

7. When all phases have finished, the Completion page will be displayed. Review the resultsand verify that each phase completed successfully. Click Finish to exit Setup.

8. Restart the computer to complete the installation of the Mailbox role.



23/25


24/25

24

Optional tasks to complete on the UnifiedMessaging server role

After deploying and verifying the installation o f your Unified Messaging (UM) server(s), you canoptionally integrate UM services with Office Communications Server (OCS) 2007 R2. E xchange2010 UM combines voice messaging, and e-m ail messaging into a single messaginginfrastructure. Enterprise Voice in OCS 2007 R2 leverages the UM infrastructure to provide callanswering, subscriber access, call notification, and auto attendant services. Implementing theseservices requires integrating Exchange UM and OCS in a shared Act ive Directory topology,careful planning, and a clear understanding of the technologies involved, the features you want toenable, and important configuration details that you must be aware of to successfully completeyour deployment. For more information about integrating UM with OCS, see Enterprise Voice andUnified Communications .

Permissions configurationFor the purposes of the Exchange Deployment Assistant, your administrator account was grantedpermissions that you might not need going forward. You should verify that this account doesn'thave more permissions than required to configure and manage your Exchange 2010environment.

Role Based Access Control (RBAC), the new permissions model in Exchange 2010, is extremelyflexible. The built -in role groups are probably sufficient to manage most of your Exchange 2010organization. You can simply add and remove members from the existing role groups to controlpermissions. The following topics will provide more information and help you configure theappropriate permissions for your Exchange 2010 tasks:

Understanding Permissions

Understanding Role Based Access Control

Understanding Management Role Groups

Understanding Management Scopes

Built-in Role Groups

Built-in Management Roles

Understanding Permissions Coexistence with Exchange 2003

Checklist completeCongratulations on successfully completing your checklist in the Exchange Deployment Assistant!
http://technet.microsoft.com/en-us/library/dd425236(office.13).aspxhttp://technet.microsoft.com/en-us/library/dd425236(office.13).aspxhttp://technet.microsoft.com/en-us/library/dd425236(office.13).aspxhttp://technet.microsoft.com/en-us/library/dd425236(office.13).aspxhttp://technet.microsoft.com/en-us/library/dd425236(office.13).aspxhttp://technet.microsoft.com/en-us/library/dd425236(office.13).aspx


25/25

Tools you can useTo determine the overall health of your Exchange servers and topology, you can use theMicrosoft Exchange Best Practices Analyzer (ExBPA). The tool scans Exchange servers and

identifies items that don't conform to Microsoft best practices. After the data is collected, ExBPAcompares what it finds on your system with Exchange best practice rules and then provides adetailed report. The report lists recommendations that you can consider to achieve greater performance, scalability, and uptime. You can find ExBPA in the Toolbox in the ExchangeManagement Console.

The Exchange Remote Connectivity Analyzer Tool is a Web-based tool that helps youtroubleshoot connectivity issues. The tool simulates several client logon and mail flow scenarios.When a test fails, many of the errors have troubleshooting tips to assist you in correcting theproblem.

Take a look at: Exchange Remote Connectivity Analyzer Tool

And, for more information about Exchange planning and deployment, you can always review therelated content in the Exchange TechCenter Library.

Find it all at: Planning and Deployment

Give us feedback pleaseWe would really appreciate your feedback about the Exchange Deployment Assistant. Whatworked for you? What could we have done better? What do you recommend we change for thenext version?

Tell us what you think at: EDA Exchange 2003 Feedback Topic
https://www.testexchangeconnectivity.com/https://www.testexchangeconnectivity.com/https://www.testexchangeconnectivity.com/https://www.testexchangeconnectivity.com/

Documents

DepAssistExch2010_17