To receive detailed information from the tracking log use Get-MessageTrackingLog
|
1 |
Get-MessageTrackingLog -recipients myname@company.org -sender name@othercompany.org -Start (get-date).AddDays(-2) |select * |Out-GridView |
Powershell command to display the users who uses Active-sync to connect with smartphones to the exchange server.
|
1 2 3 4 |
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://cas001/PowerShell/ -Authentication Kerberos Import-PSSession $Session Get-CASMailbox -Filter {hasactivesyncdevicepartnership -eq $true -and ActiveSyncEnabled -eq $true} |
to count the users, place the result in a variable an use count.
|
1 2 |
$users = Get-CASMailbox -Filter {hasactivesyncdevicepartnership -eq $true -and ActiveSyncEnabled -eq $true} $users.count |
When designing an Exchange 2013 environment I always recommend using an additional disk to store the Transport Database and accompanying transaction log files to a separate disk. When things with SMTP get out-of-control and the Queue database grows too much your boot- and system disk do not fill up.
The Exchange Transport Configuration is stored in a CONFIG file called EdgeTransport.exe.config which is stored in the C:\Program Files\Microsoft\Exchange Server\V15\Bin directory.
When you open this file with Notepad and scroll down you’ll find something like:
<add key=”QueueDatabasePath” value=”C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\Queue” />
<add key=”QueueDatabaseLoggingPath” value=”C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\Queue” />
<add key=”IPFilterDatabasePath” value=”C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\IpFilter” />
<add key=”IPFilterDatabaseLoggingPath” value=”C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\IpFilter” />
<add key=”TemporaryStoragePath” value=”C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\Temp” />
These are the location where you will find the Transport Queue database and the IpFilter database files and their corresponding transaction log files.
You can changes these directories to for example D:\TransportRoles\data\… and after you restart the Transport service the new location is used. The problem is that the ‘old’ Queue database is not moved. When the Transport service is restarted a new Queue database is created in the new location. If you have any (SMTP) mail in the old queue this gets lost.
Microsoft has created a scripts called Move-TransportDatabase.ps1 (located in the $ExScripts directory) which changes the location, moves the Queue Database and restarts the Transport service automatically. The Move-TransportDatabase.ps1 script takes the following parameters:
Resulting in a command like this:
|
1 2 3 4 5 |
.\Move-TransportDatabase.ps1 -queueDatabasePath 'Q:\TransportRoles\data\Queue' -queueDatabaseLoggingPath 'Q:\TransportRoles\data\Queue' -iPFilterDatabasePath 'Q:\TransportRoles\data\IpFilter' -iPFilterDatabaseLoggingPath 'Q:\TransportRoles\data\IpFilter' -temporaryStoragePath 'Q:\TransportRoles\data\Temp' |
Note: take care about the ‘ character in the different values!
When you run this command you’ll see some requirement information, creation of the new directories, moving the databases and restarting the Transport service
To grand access to a user mailbox use the you have to Add Mailbox permissions to the mailbox.
|
1 |
Add-MailboxPermission -Identity "johndoe" -User "avanboerum" -AccessRights FullAccess -InheritanceType All |
In this example the user avanboerum gets full access to the mailbox of johndoe.
You can use Powershell to remove old logfiles from exchange servers. Those logfiles are located on the Client Access Servers (CAS servers) in the inetpub folders.
To remove the files older then 60 days use this script.
Fill in your own CAS servers on the variable $servers line. You can use as many as you want to.
|
1 2 3 4 5 6 |
# delete old logfiles from Exchange CAS servers $servers = 'CASServer1','Casserver2' foreach ($server in $servers) { $FromPath = "\\$server\c$\inetpub\logs\LogFiles\W3SVC1" Get-ChildItem $FromPath -File| Where-Object { $_.lastwritetime -lt (get-date).Adddays(-60) } | Remove-Item -Force } |
If you need to remove specific email from one or all mailboxes on an exchange server you don’t need to attach all of those e-mail boxes in your Outlook. You can use powershell to search for those email, move them to an other mailbox (if you want) and delete the email from the mailboxes.
First, you need to create a powershell session to your exchange server in order to get access to the right commandlets.
|
1 2 |
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://CASserver/PowerShell/ -Authentication Kerberos Import-PSSession $Session |
Next, give your account the necessary permissions to access the Mailboxes on the exchange mailbox servers.
|
1 |
Get-Mailbox -ResultSize unlimited -Filter {(RecipientTypeDetails -eq 'UserMailbox') -and (Alias -ne 'Admin')} | Add-MailboxPermission -User <user, role group or security group> -AccessRights fullaccess -InheritanceType all |
(updated version as a function. Some error handling will follow later)
Powershell Function for cleaning up an AD user and exchange account. This can be used for example when a user leaves the company.
The information, files and mail from the user is placed in an archive folder on the network. After this has been done the user is cleaned from the network.
use as: .Archive-MWUser.ps1 -Mwusername avanboerum
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 |
function Archive-MWUser { <# .Synopsis Clean up an user from Active directory and Exchange .DESCRIPTION Script to process the users documents and email. Archives them to a location on the network and disables the users network account. .PARAMETER MWUsername Login name from the company user that will be archived. .EXAMPLE Archive-MWUser -MWUserName avanboerum #> [CmdletBinding()] Param( [Parameter( Mandatory=$True, ValueFromPipeline=$True, ValueFromPipelineByPropertyName=$True, HelpMessage='What username would you like to target?')] $MWUsername ) Begin { $archivefolder = "\\TARGETSERVER\Archief`$\$MWUsername" $sourcehomefolder = "\\SOURCESERVER\h`$\users\$MWUsername" $sourceprofilefolder = "\\SOURCESERVER\h`$\profiles\$MWUsername.v2" $DisabledOU = "OU=Disabled Users,OU=Company,DC=company,DC=NL" $ExchSession = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://CASSERVER/PowerShell/ -Authentication Kerberos Import-PSSession $ExchSession } Process { #Test if Users Archive folder already exists $folderexists = Test-Path $archivefolder if ($folderexists -eq $true) {Read-Host "Folder $folder is already present. Press any key to continue or ctrl-c to quit"} else {New-Item $archivefolder -ItemType directory} #Saves user information Get-ADUser $MWUsername -Properties memberof | Select-Object -ExpandProperty memberof | Out-File $archivefolder\memberships.txt Get-ADUser $MWUsername -Properties * | Out-File $archivefolder\UserFullInfo.txt #Archive users Exchange mailbox and archive New-MailboxExportRequest -Mailbox $MWUsername -FilePath "$archivefolder\$MWUsername.pst" ;while ((Get-MailboxExportRequest -mailbox $MWUsername | ? {$_.Status -eq “Queued” -or $_.Status -eq “InProgress”})) { sleep 15 } New-MailboxExportRequest -Mailbox $MWUsername -FilePath "$archivefolder\$MWUsername-archive.pst" -isarchive ;while ((Get-MailboxExportRequest -mailbox $MWUsername | ? {$_.Status -eq “Queued” -or $_.Status -eq “InProgress”})) { sleep 15 } Disable-Mailbox -Identity $MWUsername -Confirm #Move homefolder to archive location $folderexists = Test-Path $archivefolder\home if ($folderexists -eq $true) {Write-Host "Folder $archivefolder\home is present"} else {New-Item $archivefolder\home -ItemType directory} Move-Item $sourcehomefolder -Destination $archivefolder\home -Force #Move profilefolder to archive location $folderexists = Test-Path $archivefolder\profile if ($folderexists -eq $true) {Write-Host 'Folder $archivefolder\profile is present'} else {New-Item $archivefolder\profile -ItemType directory} Move-Item $sourceprofilefolder -Destination $archivefolder\profile -Force #Cleanup group membership. Disables the users account for logon. Disable-ADAccount -Identity $MWUsername -Confirm Get-ADUser $MWUsername | Move-ADObject -TargetPath $DisabledOU #tricky command, must test before use..... get-adgroup -Filter * | Remove-ADGroupMember -Members $mwusername } } |
When you use your providers SMTP server for routing your exchange e-mail you can run into problems if these servers are in error. You can send the e-mail directly to the recipients SMTP server instead of sending via the SMTP server of your provider.
The following scripts adjust these settings and restart the mail transport on my two mailbox servers.
|
1 2 3 |
Set-SendConnector * -DNSRoutingEnabled $false -SmartHosts "smtp.colt.net" Invoke-Command srbhwmbx001,srbhwmbx002 { get-service MSExchangeDelivery | Stop-Service} Invoke-Command srbhwmbx001,srbhwmbx002 { get-service MSExchangeDelivery | start-Service} |
|
1 2 3 |
Set-SendConnector * -DNSRoutingEnabled $true Invoke-Command srbhwmbx001,srbhwmbx002 { get-service MSExchangeDelivery | Stop-Service} Invoke-Command srbhwmbx001,srbhwmbx002 { get-service MSExchangeDelivery | start-Service} |
Use this script to export an users e-mail box from an exchange server to a .pst file withPowershell
|
1 2 3 4 |
$servername = Read-Host "Servername for storing archive" $archivepath = "archive$" $username = read-host "Username for mailbox export" New-MailboxExportRequest -Mailbox $username -FilePath "\$servername\$Archivepath\$username\$Username.pst" |
Find status on the running mailbox request
|
1 |
Get-MailboxExportRequest |
Or
|
1 |
Get-MailboxExportRequest -Name MailboxExport | fl |
Or
|
1 |
Get-MailboxExportRequest | Get-MailboxExportRequestStatistics |
Use this script to display the size of users mailboxes on a exchange server and exports this information to a CSV file.
|
1 2 3 4 5 6 7 8 9 10 11 |
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://CASserver/PowerShell/ -Authentication Kerberos Import-PSSession $Session Get-Mailbox -ResultSize Unlimited | Get-MailboxStatistics | Select DisplayName,StorageLimitStatus, ` @{name="TotalItemSize (MB)"; expression={[math]::Round( ` ($_.TotalItemSize.ToString().Split("(")[1].Split(" ")[0].Replace(",","")/1MB),2)}}, ` ItemCount | Sort "TotalItemSize (MB)" -Descending # Export-CSV "C:\scriptsAll Mailboxes.csv" -NoTypeInformation |
View the contents of exchange e-mail queue.
|
1 2 3 4 5 6 7 8 |
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://Casserver/PowerShell/ -Authentication Kerberos Import-PSSession $Session $mailservers = "MBX001", "MBX002" foreach ($mailserver in $mailservers) { Get-Queue -Server $mailserver| format-table } |
To start a new connection to an Exchange server and use its commandlets.
|
1 2 |
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri http://CASserver/PowerShell/ -Authentication Kerberos Import-PSSession $Session |