Hi everybody,
I still have some troubles with the exchange sync.
The first problem is that I get this error message in the NSTraceLog
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute2.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute10.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute3.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute11.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~RetentionHoldEnabled.
2013-08-26 17:15:05 +02:00 - Serious - Error executing PowerShell script:
2013-08-26 17:15:05 +02:00 - Serious - Error executing script
Get-MailBox -Identity "XXX"
script returned:
The operation couldn't be performed because object XXX' couldn't be found on '<DCWrongDomain>.<ChildDomain2>.<ParentDomain>.com'
2013-08-26 17:15:05 +02:00 - Info - Get property mDBUseDefaults.
2013-08-26 17:15:05 +02:00 - Info - Get property msExchAssistantName.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute4.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute12.
2013-08-26 17:15:05 +02:00 - Info - Get property mAPIRecipient.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~EndDateForRetentionHold.
2013-08-26 17:15:05 +02:00 - Info - Get property mDBOverHardQuotaLimit.
2013-08-26 17:15:05 +02:00 - Info - Get property securityProtocol.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~EnforceSchedulingHorizon.
2013-08-26 17:15:05 +02:00 - Serious - Error executing PowerShell script:
2013-08-26 17:15:05 +02:00 - Serious - Error executing script
Get-Calendarprocessing -Identity "XXX"
script returned:
The operation couldn't be performed because object XXX couldn't be found on '<DCWrongDomain>.<ChildDomain2>.<RootDomain>.com'
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute5.
2013-08-26 17:15:05 +02:00 - Info - Get property ExtensionAttribute13.
2013-08-26 17:15:05 +02:00 - Info - Get property OtherMailbox.
2013-08-26 17:15:05 +02:00 - Info - Get property msExchOmaAdminWirelessEnable.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~TentativePendingApproval.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~AllowRecurringMeetings.
2013-08-26 17:15:05 +02:00 - Info - Get property CMDLET~StartDateForRetentionHold.
2013-08-26 17:15:05 +02:00 - Info - Get property mDBOverQuotaLimit.
The problem is, that the sync is searching in the wrong DC. It is looking in the DC of the other domain although the account is obviously from a different domain than the DC. And it isn't always the same DC he is looking for. It seems the DC is choosen dynamically by the powershell. Nevertheless the exchange sync works fine for mailboxes of the accounts and groups, so the basics are working.
The second issue I have is that I have a parent domain for which I configured a Exchange FullSync for the Exchange structure including Adresslists. This sync works fine. When I turn on the sync config
ADSACCOUNTSHOWINADDRESSBOOK for the childrendomain he isn't able to sync this, although the adresslists are aviable in the parentdomain. One entry in the SQL log is shown in the attachment.
The reason that he cannot connect the AD Account to the adresslist, is this line
select top 1 UID_Ex2KGlobalAddresslist from Ex2KGlobalAddressList where (isnull(Distinguishedname, N'') in (N'CN=XXX,CN=All Address Lists,CN=Address Lists Container,CN=<RootDomain>,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=<RootDomain>,DC=com')) and (UID_Ex2KOrganization in (select UID_Ex2KOrganization from Ex2KOrganization where Ident_Domain in (<ChildDomain1>, <ChildDOmain1>, <ChildDomain2>)))#########
I tested it in the SQL Management Studio and it would work, if in the end the root domain would be part of the Where clause, where the adresslist is saved for.
For the information: The have no Accounts or Groups. But the configuration container is in the root domain. The accounts and groups are in the domains Childomains 1 and 2. (One Forest) I use for everything just one service account which is saved in the Childdomain1 . But for the exchange sync in the Rootdomain I needed to remove the domainname in the Service Account Logins.
One addition: The powershell and the sync server are correct configured. I tested it like the documentation for Q1IM 6.1.1 at page 385 described.
Second: The synchronisation of the Exchange structure shows the same error:
2013-08-27 07:01:50 +02:00 - Info - Clearing object specific caches
2013-08-27 07:01:50 +02:00 - Info - Get property CMDLET~serverRole.
2013-08-27 07:01:50 +02:00 - Serious - Error executing PowerShell script:
2013-08-27 07:01:50 +02:00 - Serious - Error executing script
Get-MailboxServer -Identity "CN=XXX,CN=Servers,CN=Exchange Administrative Group (XXX),CN=Administrative Groups,CN=RootDomain,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=RootDomain,DC=com"
script returned:
The operation couldn't be performed because object XXX couldn't be found on <DC of a not knowing Domain.Rootdomain.com'.
The term 'Get-CLientAccessServer' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
2013-08-27 07:01:50 +02:00 - Info - Get property CMDLET~MESSAGETRACKINGLOGSUBJECTLOGGINGENABLED.
2013-08-27 07:01:50 +02:00 - Serious - Error executing PowerShell script:
2013-08-27 07:01:50 +02:00 - Serious - Error executing script
Get-MailboxServer -Identity "CN=XXX,CN=Servers,CN=Exchange Administrative Group (XXX),CN=Administrative Groups,CN=Rootdomain,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=RootDomain,DC=com"
script returned:
The operation couldn't be performed because object 'XXX' couldn't be found on <DC of a not knowing Domain.Rootdomain.com'..
2013-08-27 07:01:50 +02:00 - Info - Get property serialNumber.
2013-08-27 07:01:50 +02:00 - Info - Get property msExchTrkLogCleaningInterval.
2013-08-27 07:01:50 +02:00 - Info - Get property CMDLET~MESSAGETRACKINGLOGENABLED.
2013-08-27 07:01:50 +02:00 - Info - Get property legacyExchangeDN.
This DC is not published in the Q1IM and I have no clue why he tries to look for it.
Thanks a lot.
Georg