[分享]Exchange 2003 迁移 Exchange 2010 问题 [复制链接]

环境：Windows Server 2003 Standard 32bit ENG (含 Active Directory）+ Exchange Server 2003 SP2

目标：迁移至新建 Windows Server 2008 R2 Standard 64bit ENG （迁移Active Directory） + Exchange Server 2010

进程：已经成功迁移 Active Directory，并且旧 Server 2003 已经成为成员机！过程中有少少意外，安装 Exchange 2010 时候，要求我设置 Exchange 2003 为 Native Mode，另外要求我删除 Exchange 2003 上的 Active Directory Connector。我按所说已经做了，并且成功在 Windows 2008 上安装了 Exchange 2010.

问题：在完成安装之后，重新启动服务器。证书什么的，全部已经做了，SSL那些设置都已经设置了！在IE访问的时候（举例 http://192.168.1.11/owa），看到的页面没有图片，就是没有了 Exchange 2010，但还是可以选择什么方式登录，以及填写用户名字和密码。我按着填管理员的用户名和密码，但是 Enter 之后，就出现“Your request couldn't be completed because no server with the correct security settings was found to handle the request. If the problem continues, contact your helpdesk.”

补充：目前我还没做邮箱迁移，只是关联了 Exchange 2003而已。

求助：为什么我平时建一个 Exchange 2010 的时候就不会出现这种情况，现在反而出现了？该怎么解决？

图片:111.jpg

图片:222.jpg

你的问题将会在24小时内得到Exchange专业技术人员的解答！

过去了不知道多少个24小时了！

您好，请问Admin账户有没有启用邮箱？在本机上访问OWA站点可以通过吗？另外客户端使用MAPI连接的话会不会有问题。

现在但从报错信息上看是DC的验证有问题，请运行DCDIAG /V检查之，如果仅是OWA受影响，可以将虚拟目录重新建立下。

Reset Virtual Directory In Exchange 2010 SP1 Beta
http://www.howexchangeworks.com/2010/06/reset-virtual-directory-in-exchange.html

flowerwaiter:您好，请问Admin账户有没有启用邮箱？在本机上访问OWA站点可以通过吗？另外客户端使用MAPI连接的话会不会有问题。
现在但从报错信息上看是DC的验证有问题，请运行DCDIAG /V检查之，如果仅是OWA受影响，可以将虚拟目录重新建立下。
Reset Virtual Directory In Exchange 2010 SP1 .. (2012-08-13 11:17) 

哪里知道 Admin 账户有没有启用邮箱，我是从 2003 把AD迁移过来，之后什么都没做过。访问OWA，能看到界面，不过没有背景的图片！能够输入帐号密码，但之后就如图片所示！未尝试用客户端，我在想如果webmail都不能正常运作，估计客户端都不能正常吧！

flowerwaiter:您好，请问Admin账户有没有启用邮箱？在本机上访问OWA站点可以通过吗？另外客户端使用MAPI连接的话会不会有问题。
现在但从报错信息上看是DC的验证有问题，请运行DCDIAG /V检查之，如果仅是OWA受影响，可以将虚拟目录重新建立下。
Reset Virtual Directory In Exchange 2010 SP1 .. (2012-08-13 11:17) 

DCDIAG /V  的检查结果！

Performing initial setup:
   Trying to find home server...
   * Verifying that the local machine WIN-SBPUODKCSDS, is a Directory Server.
   Home Server = WIN-SBPUODKCSDS
   * Connecting to directory service on server WIN-SBPUODKCSDS.
   * Identified AD Forest.
   Collecting AD specific global data
   * Collecting site info.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=urbis,DC=local,LDAP_SCOPE_SUBTREE,(objectCategory=ntDS
SiteSettings),.......
   The previous call succeeded
   Iterating through the sites
   Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=urbis,DC=l
ocal
   Getting ISTG and options for the site
   * Identifying all servers.
   Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=urbis,DC=local,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa
),.......
   The previous call succeeded....
   The previous call succeeded
   Iterating through the list of servers
   Getting information for the server CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites
,CN=Configuration,DC=urbis,DC=local
   objectGuid obtained
   InvocationID obtained
   dnsHostname obtained
   site info obtained
   All the info for the server collected
   * Identifying all NC cross-refs.
   * Found 1 DC(s). Testing 1 of them.
   Done gathering initial info.

Doing initial required tests

   Testing server: Default-First-Site-Name\WIN-SBPUODKCSDS
      Starting test: Connectivity
         * Active Directory LDAP Services Check
         Determining IP4 connectivity
         * Active Directory RPC Services Check
         ......................... WIN-SBPUODKCSDS passed test Connectivity

Doing primary tests

   Testing server: Default-First-Site-Name\WIN-SBPUODKCSDS
      Starting test: Advertising
         The DC WIN-SBPUODKCSDS is advertising itself as a DC and having a DS.
         The DC WIN-SBPUODKCSDS is advertising as an LDAP server
         The DC WIN-SBPUODKCSDS is advertising as having a writeable directory
         The DC WIN-SBPUODKCSDS is advertising as a Key Distribution Center
         The DC WIN-SBPUODKCSDS is advertising as a time server
         The DS WIN-SBPUODKCSDS is advertising as a GC.
         ......................... WIN-SBPUODKCSDS passed test Advertising
      Test omitted by user request: CheckSecurityError
      Test omitted by user request: CutoffServers
      Starting test: FrsEvent
         * The File Replication Service Event log test
         ......................... WIN-SBPUODKCSDS passed test FrsEvent
      Starting test: DFSREvent
         The DFS Replication Event Log.
         Skip the test because the server is running FRS.
         ......................... WIN-SBPUODKCSDS passed test DFSREvent
      Starting test: SysVolCheck
         * The File Replication Service SYSVOL ready test
         File Replication Service's SYSVOL is ready
         ......................... WIN-SBPUODKCSDS passed test SysVolCheck
      Starting test: KccEvent
         * The KCC Event log test
         Found no KCC errors in "Directory Service" Event log in the last 15 minutes.
         ......................... WIN-SBPUODKCSDS passed test KccEvent
      Starting test: KnowsOfRoleHolders
         Role Schema Owner = CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Confi
guration,DC=urbis,DC=local
         Role Domain Owner = CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Confi
guration,DC=urbis,DC=local
         Role PDC Owner = CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configur
ation,DC=urbis,DC=local
         Role Rid Owner = CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configur
ation,DC=urbis,DC=local
         Role Infrastructure Update Owner = CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN
=Sites,CN=Configuration,DC=urbis,DC=local
         ......................... WIN-SBPUODKCSDS passed test KnowsOfRoleHolders
      Starting test: MachineAccount
         Checking machine account for DC WIN-SBPUODKCSDS on DC WIN-SBPUODKCSDS.
         * SPN found :LDAP/WIN-SBPUODKCSDS.urbis.local/urbis.local
         * SPN found :LDAP/WIN-SBPUODKCSDS.urbis.local
         * SPN found :LDAP/WIN-SBPUODKCSDS
         * SPN found :LDAP/WIN-SBPUODKCSDS.urbis.local/URBIS
         * SPN found :LDAP/7a8c571b-8ffc-4193-a1ab-4cb2eb87e8cc._msdcs.urbis.local
         * SPN found :E3514235-4B06-11D1-AB04-00C04FC2DCD2/7a8c571b-8ffc-4193-a1ab-4cb2eb87e8cc/urbis.local
         * SPN found :HOST/WIN-SBPUODKCSDS.urbis.local/urbis.local
         * SPN found :HOST/WIN-SBPUODKCSDS.urbis.local
         * SPN found :HOST/WIN-SBPUODKCSDS
         * SPN found :HOST/WIN-SBPUODKCSDS.urbis.local/URBIS
         * SPN found :GC/WIN-SBPUODKCSDS.urbis.local/urbis.local
         ......................... WIN-SBPUODKCSDS passed test MachineAccount
      Starting test: NCSecDesc
         * Security Permissions check for all NC's on DC WIN-SBPUODKCSDS.
         * Security Permissions Check for
           DC=ForestDnsZones,DC=urbis,DC=local
            (NDNC,Version 3)
         * Security Permissions Check for
           DC=DomainDnsZones,DC=urbis,DC=local
            (NDNC,Version 3)
         * Security Permissions Check for
           CN=Schema,CN=Configuration,DC=urbis,DC=local
            (Schema,Version 3)
         * Security Permissions Check for
           CN=Configuration,DC=urbis,DC=local
            (Configuration,Version 3)
         * Security Permissions Check for
           DC=urbis,DC=local
            (Domain,Version 3)
         ......................... WIN-SBPUODKCSDS passed test NCSecDesc
      Starting test: NetLogons
         * Network Logons Privileges Check
         Verified share \\WIN-SBPUODKCSDS\netlogon
         Verified share \\WIN-SBPUODKCSDS\sysvol
         ......................... WIN-SBPUODKCSDS passed test NetLogons
      Starting test: ObjectsReplicated
         WIN-SBPUODKCSDS is in domain DC=urbis,DC=local
         Checking for CN=WIN-SBPUODKCSDS,OU=Domain Controllers,DC=urbis,DC=local in domain DC=urbis,DC=local on 1 server
s
            Object is up-to-date on all servers.
         Checking for CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuratio
n,DC=urbis,DC=local in domain CN=Configuration,DC=urbis,DC=local on 1 servers
            Object is up-to-date on all servers.
         ......................... WIN-SBPUODKCSDS passed test ObjectsReplicated
      Test omitted by user request: OutboundSecureChannels
      Starting test: Replications
         * Replications Check
         * Replication Latency Check
            DC=ForestDnsZones,DC=urbis,DC=local
               Latency information for 3 entries in the vector were ignored.
                  3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's
no longer replicating this nc.  0 had no latency information (Win2K DC).
            DC=DomainDnsZones,DC=urbis,DC=local
               Latency information for 3 entries in the vector were ignored.
                  3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's
no longer replicating this nc.  0 had no latency information (Win2K DC).
            CN=Schema,CN=Configuration,DC=urbis,DC=local
               Latency information for 3 entries in the vector were ignored.
                  3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's
no longer replicating this nc.  0 had no latency information (Win2K DC).
            CN=Configuration,DC=urbis,DC=local
               Latency information for 3 entries in the vector were ignored.
                  3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's
no longer replicating this nc.  0 had no latency information (Win2K DC).
            DC=urbis,DC=local
               Latency information for 3 entries in the vector were ignored.
                  3 were retired Invocations.  0 were either: read-only replicas and are not verifiably latent, or dc's
no longer replicating this nc.  0 had no latency information (Win2K DC).
         ......................... WIN-SBPUODKCSDS passed test Replications
      Starting test: RidManager
         * Available RID Pool for the Domain is 3603 to 1073741823
         * WIN-SBPUODKCSDS.urbis.local is the RID Master
         * DsBind with RID Master was successful
         * rIDAllocationPool is 3103 to 3602
         * rIDPreviousAllocationPool is 3103 to 3602
         * rIDNextRID: 3124
         ......................... WIN-SBPUODKCSDS passed test RidManager
      Starting test: Services
         * Checking Service: EventSystem
         * Checking Service: RpcSs
         * Checking Service: NTDS
         * Checking Service: DnsCache
         * Checking Service: DFSR
         * Checking Service: IsmServ
         * Checking Service: kdc
         * Checking Service: SamSs
         * Checking Service: LanmanServer
         * Checking Service: LanmanWorkstation
         * Checking Service: w32time
         * Checking Service: NETLOGON
         ......................... WIN-SBPUODKCSDS passed test Services
      Starting test: SystemLog
         * The System Event log test
         A warning event occurred.  EventID: 0x00000024
            Time Generated: 08/12/2012   20:10:08
            Event String:
            The time service has not synchronized the system time for 86400 seconds because none of the time service pro
viders provided a usable time stamp. The time service will not update the local system time until it is able to synchron
ize with a time source. If the local system is configured to act as a time server for clients, it will stop advertising
as a time source to clients. The time service will continue to retry and sync time with its time sources. Check system e
vent log for other W32time events for more details. Run 'w32tm /resync' to force an instant time synchronization.
         Found no errors in "System" Event log in the last 60 minutes.
         ......................... WIN-SBPUODKCSDS passed test SystemLog
      Test omitted by user request: Topology
      Test omitted by user request: VerifyEnterpriseReferences
      Starting test: VerifyReferences
         The system object reference (serverReference) CN=WIN-SBPUODKCSDS,OU=Domain Controllers,DC=urbis,DC=local and
         backlink on
         CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=urbis,DC=local are
         correct.
         The system object reference (serverReferenceBL)
         CN=WIN-SBPUODKCSDS,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=urbis,DC=loc
al
         and backlink on
         CN=NTDS Settings,CN=WIN-SBPUODKCSDS,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=urbis,DC
=local
         are correct.
         The system object reference (frsComputerReferenceBL)
         CN=WIN-SBPUODKCSDS,CN=Domain System Volume (SYSVOL share),CN=File Replication Service,CN=System,DC=urbis,DC=loc
al
         and backlink on CN=WIN-SBPUODKCSDS,OU=Domain Controllers,DC=urbis,DC=local are correct.
         ......................... WIN-SBPUODKCSDS passed test VerifyReferences
      Test omitted by user request: VerifyReplicas

      Test omitted by user request: DNS
      Test omitted by user request: DNS

   Running partition tests on : ForestDnsZones
      Starting test: CheckSDRefDom
         ......................... ForestDnsZones passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... ForestDnsZones passed test CrossRefValidation

   Running partition tests on : DomainDnsZones
      Starting test: CheckSDRefDom
         ......................... DomainDnsZones passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... DomainDnsZones passed test CrossRefValidation

   Running partition tests on : Schema
      Starting test: CheckSDRefDom
         ......................... Schema passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Schema passed test CrossRefValidation

   Running partition tests on : Configuration
      Starting test: CheckSDRefDom
         ......................... Configuration passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... Configuration passed test CrossRefValidation

   Running partition tests on : urbis
      Starting test: CheckSDRefDom
         ......................... urbis passed test CheckSDRefDom
      Starting test: CrossRefValidation
         ......................... urbis passed test CrossRefValidation

   Running enterprise tests on : urbis.local
      Test omitted by user request: DNS
      Test omitted by user request: DNS
      Starting test: LocatorCheck
         GC Name: \\WIN-SBPUODKCSDS.urbis.local
         Locator Flags: 0xe00033fd
         PDC Name: \\WIN-SBPUODKCSDS.urbis.local
         Locator Flags: 0xe00033fd
         Time Server Name: \\WIN-SBPUODKCSDS.urbis.local
         Locator Flags: 0xe00033fd
         Preferred Time Server Name: \\WIN-SBPUODKCSDS.urbis.local
         Locator Flags: 0xe00033fd
         KDC Name: \\WIN-SBPUODKCSDS.urbis.local
         Locator Flags: 0xe00033fd
         ......................... urbis.local passed test LocatorCheck
      Starting test: Intersite
         Skipping site Default-First-Site-Name, this site is outside the scope provided by the command line arguments
         provided.
         ......................... urbis.local passed test Intersite

magelos:哪里知道 Admin 账户有没有启用邮箱，我是从 2003 把AD迁移过来，之后什么都没做过。访问OWA，能看到界面，不过没有背景的图片！能够输入帐号密码，但之后就如图片所示！未尝试用客户端，我在想如果webmail都不能正常运作，估计客户端都不能正常吧！ (2012-08-13 11:20) 

找个之前03的邮箱用户测试一下，webmail不能工作有可能是CAS服务器上IIS的问题，不代表邮件传输出问题，而况owa提供的界面都不完整（都没有登陆进邮箱，即还没有到验证邮件传输的阶段），IIS的问题可能性很大。另外，图片看不到。

flowerwaiter:找个之前03的邮箱用户测试一下，webmail不能工作有可能是CAS服务器上IIS的问题，不代表邮件传输出问题，而况owa提供的界面都不完整（都没有登陆进邮箱，即还没有到验证邮件传输的阶段），IIS的问题可能性很大。另外，图片看不到。 (2012-08-13 11:26) 

图片已在一楼补充了！我现在正在测试一个旧用户的邮箱！~~另外，如果真的是IIS问题，我真的不会！能教一下吗？

从图片看Exchange2010的OWA好像指到Exchange2003上去了

你用这个命令检查下OWA目录的配置
Get-OWAVirtualDirectory |FL >d:\owa.txt
将文件内容贴出来让我看看。

相关资料：
查看或配置 Outlook Web 应用程序虚拟目录
http://technet.microsoft.com/zh-cn/library/dd298140.aspx

flowerwaiter:从图片看Exchange2010的OWA好像指到Exchange2003上去了
你用这个命令检查下OWA目录的配置
Get-OWAVirtualDirectory |FL >d:\owa.txt
将文件内容贴出来让我看看。
....... (2012-08-13 11:43) 

首先非常感谢支持！我之前打不开邮件的问题已经解决了！原来问题是迁移后的管理员没有设置新的邮箱，并且不能转移旧的邮箱！但是用户迁移用户邮箱后，Webmail能够正常使用！

另外，在我转移全部的邮箱数据之后，在Exchange 2003 上执行删除 Active Directory Connector 和删除 Exchange 2003 ，Exchange 2010 就会完全独立了吧！不需要重定向什么的吧？

还有还有，我是不是应该在 Exchange 2010 上重新设置一个 Send Connector ?? 如果内部域名是 ABC.LOCAL，但是外部域名是 ABC.COM，那是不是还要在 Accepted Domain 那里设置和 DNS 加指向呢？

回答您的问题
1. 不需要重定向。
2. 不需要send connector，内部域名只是你DNS的域名，关于邮件地址，你可以为某一个或者全局用户添加多个SMTP的后缀，比如ABC.LOCAL是域名，SMTP的后缀可以加ABC.COM, ABC.CN, ABC,NET等等，而外网的MX记录只用有这几个记录，就可以把外部发过来的邮件收进来。

更多详细步骤可参看：
http://technet.microsoft.com/en-us/library/aa998604(EXCHG.140).aspx