archives technorata gallery music

Install and Configure Exchange Server 2003

July 10th, 2008
winserv2003web1.png

This is the down and dirty for installing Exchange Server 2003 Standard Edition.

Windows Exchange Server 2003 Requirements

Content to follow….be patient.

Pre-Installation steps

There are a number of preparatory steps to carry out before installing Exchange server. These steps deal mostly with installing and configuring Windows Components required by Exchange server.

  1. From the Start menu, locate then click Control Panel. Next, click Add or Remove Programs.
  2. Click Add or Remove Windows Components to start the Windows Components Wizard.
  3. Click the Application Server component, and then click Details.
  4. Select the check box for ASP.NET, and then click OK.
  5. Scroll down to Internet Information Services (IIS) and click Details.
  6. Select the check boxes to select the following components:
    1. NNTP service
    2. SMTP service
    3. World Wide Web service
  7. Click OK to return to the Application Server components, and then click OK again to return to the main Windows Components Wizard page.
  8. Complete the wizard to install the components

ASP is a component of IIS, and is installed by default when you install the WWW service. However, you must enable ASP in the IIS services console though it is already installed. To do this, perform the following steps:

  1. Locate and click Administrative Tools and start the IIS Manager console.
  2. Expand the local computer, and then select Web Service Extensions.
  3. Select Active Server Pages, and then click Allow.

Domain and Network Diagnostics

Run dcdiag and netdiag after install Windows Supports Tools. These are command line tools

That is the last preparatory step, now we’ll go on to the actual Exchange installation.

Installing Exchange Server 2003

Forest Prep

The first step in installing Exchange Server involves updating the schema and configuration partitions in Active Directory by using Forest Prep. In simpler terms, Forest prep adds Exchange attributes to the Active Directory schema. Prior to running Forest prep, you will not find Exchange related tabs on AD user objects. After Forest prep, a user object will have the added Exchange related tabs;

  1. Email Address.
  2. Exchange Features.
  3. Exchange Advanced.
  4. Exchange General.
    5.

Forest prep needs to be run only once and in the root of the forest. It should be noted that Forest prep can take considerable time to execute, depending on the size of the organization. In a VM domain of 2 users, Forest prep took in excess of 10 minutes to complete. Your mileage may vary.

Insert the Exchange Server 2003 install CD and from the Run command type;

d:\setup\i386\setup.exe /forestprep

At this point the wizard will open the component selection portion of Setup. The sections should already be filled in. Click Next and you will be prompted for the Exchange Install Account…this account will be granted the Exchange Full Administrator role and will be given the authority to delegate other Exchange administrator roles. Click Next. Forest prep will now begin.

Domain Prep

The process for running domain prep is the same as for forest prep. At the Run command type:

d:\setup\i386\setup.exe /domainprep

The wizard will open the component selection portion of Setup. There is no need to change any value, Domain prep should be the listed option. Simply click Next.

Posted in Exchange Server, Microsoft | No Comments »

Ubuntu Kernel update borks VMware

June 26th, 2008

One of my favorite pieces of software is VMWare. I hate clutter, and VMWare allows me to run 2 (and more) OS’s on one system. At work, my host system runs Dapper Drake 6.06 LTS with Windows XP SP2 in a VM for Outlook and a few other Windows only programs. At home, my host system is Feisty 7.04 with a test domain complete with a Domain Controller, Exchange Server and an XP SP2 client to practice for MSCE’s in VMWare. I’ve just recently added a MOSS server to test prior to implementing at work. I interact with VMWare daily. It is the one piece of software that I would truly be lost w/out. In a word - indispensable.

That being said, every so often an Ubuntu update will render VMWare unusable. The update in question is a kernel update. After applying the update, and trying to open VMWare, nothing happens. No error, no fireworks - just blank.

To fix this, open a terminal and type:

sudo vmware-config.pl
VMware will begin the reconfiguration process that looks much the same as the initial install script. However, it will hang at the following line:
What is the location of the directory of C header files that match your running kernel? [/usr/src/linux/include]
If you hit enter, the following error line will be returned:
The path "/usr/src/linux/include" is not an existing directory.

Solution

Unfortunately, the kernel update won’t update the header files. Checking the path, /usr/src/linux/include/ will reveal your previous header files but the most recent is not present. A little tip: to check what kernel you are running simple type uname -r in a terminal. Anyway, a manual update is necessary to download the most up-to-date header files. So in a terminal, type:

sudo apt-get install build-essential linux-headers-`uname -r`
Now simply go back to the vmware configure script, vmware-config.pl and complete the header reconfiguration. This time around, VMWare automatically locates the C header files as seen in the highlighted text below:
What is the location of the directory of C header files that match your running kernel? [/lib/modules/2.6.15-52-386/build/include]
Just click the Enter key to continue the update.

Note: Remember, to click Enter or type yes when coming to this line:

Would you like to skip networking setup and keep your old settings as they are? (yes/no) [yes]
to keep the old network settings. Otherwise, you’ll have to re-network everything!

So, after a kernel update, this 5 minute fix will have VMWare running good as new.

Posted in VMWare, Ubuntu | Comments Off

Install and Configure Windows Server Update Services 3.0 - Part 2

February 19th, 2008
microsoft.gif

This is the second part of a two-part article on Installing and Configuring WSUS 3.0. The first part can be found here

Configuring WSUS 3.0

The WSUS 3.0 configuration wizard will be run immediately after installation or at a later time. If you want to change the configuration later, you run WSUS Server Configuration Wizard from the Options page of the WSUS 3.0 Admin console.

Choose the upstream server

  1. Click Next in the Before you begin section. We don’t have to worry about this since we have no proxy server or corporate firewalls to configure.
  2. In the next screen I opted out of the Microsoft Improvement Program.
  3. On the Choose Upstream Server page, select the source from which this server will get its updates (Microsoft Updates or another WSUS server). I chose Synchronize from Microsoft Updates.
  4. This installation assumes no proxy server configuration and a single upstream server so you are finished with this step, just click Next

Connect to the upstream server

  1. Click the Start Connecting button, which will save and upload your settings and then download information about available updates, products and classifications.
  2. If there are problems with the connection, use the Stop Connecting button.
  3. After a successful connection, click Next then go on to the Choose Languages page and click Next.
  4. In the Choose Products and Chose Classifications sections I chose items most pertinent to my clients environments
  5. In the Configure Sync Schedule page I chose to synchronize on a schedule - around 2am for my WSUS server. Click Next and you’ll see that although you’ve scheduled a scan later, the server will do an immediate initial synchronization with the Microsoft Update site. Remember, the initial sync operation will take some time. Click Next and then Finish.

Creating Computer Groups

While your WSUS server is synchronizing, you can go ahead and plan out what computer groups you’d like to set up in the WSUS Admin console. This will depend on your environment. Maybe you’d like to group your update clients in a manner similar to your AD OU’s or maybe by floors or physical locations? It might also be a good idea to have a test group to vet out any new updates. If the test group okay’s the updates, they are clear to push to the remainder of your organization.

Creating groups is very easy. Open the WSUS Admin console, locate the Computers node, right-click and select Add Computer Group. Name your Computer group and click OK.

Configure Client Updates

There are two methods of ensuring Automatic Update clients are receiving updates from your WSUS server. The first is by using Group Policy and the second is by configuring client registry’s or Local Group Policy Object. Since I’m using AD, I will use the former Group Policy method.

First of all, you must upgrade all XP clients to SP2 if not already done so as SP has the latest compatible version of Automatic Updates that syncs with WSUS. Vista clients require no upgrade. As for Windows 2000 or 98, you’re on your own.

After ensuring all clients are either Vista or XP SP2, I’m going to create a GPO to configure client updating

Microsoft recommends that you not use the Default Domain Policy to configure client updates so I went ahead and created a new one (WSUS Domain Policy) and added it to my Admin MMC console. I’m controlling my WSUS Policy from my DC but you can use any system you want really. However, you need to ensure that the WSUS Administrative Template is loaded. To do that simply click the Administrative node, either one will do, then from the main menu select Action, click Add/Remove Templates, click Add, and select wuau.adm. In the Add/Remove Templates dialog box, click Close. You might already have the Administrative template, if so, that’s one less step for you.

To configure Automatic client updates we’ll need to edit the WSUS Domain Policy I created earlier. Simply follow these steps:

Configure Automatic Updates

  1. In the Group Policy Object Editor, expand Computer Configuration, expand Administrative Templates, expand Windows Components and then click Windows Update.
  2. In the details pane, click Configure Automatic Updates
  3. Click Enabled. You will also see several Update options. I won’t go into the details of each one. They are self-explanatory. I chose to Auto download and schedule the install so as to keep things as automated as possible.

Next, we’ll need to specify the location where the clients attempt to download updates, specifically our WSUS 3.0 server.

Specify intranet Microsoft Update service location

  1. In the Group Policy Object Editor, expand Computer Configuration, expand Administrative Templates, expand Windows Components and then click Windows Update.
  2. In the details pane, click Specify Intranet Microsoft update service location
  3. Click Enabled and type the HTTP(S) URL of the same WSUS server in the Set the intranet update service for detecting updates box and in the Set the intranet statistics server box. For example, type http(s)://servername in both boxes where servername is the name of the server. If the port is not 80 for HTTP or 443 for HTTPS, you should add the port number: https://servername:portnumber

Automatic Update detection frequency

The specifics of this policy deal with how often clients check for new updates. It’s in the same node as the two above examples. I’ve set mine to check every 12 hours.

Command-line Options

Usage of the command line can come in handy sometimes. To immediately enforce any Group Policy updates, simply type:

gpupdate /force.

To force a client to detect its’ assigned WSUS Intranet server, type:

wuauclt.exe /detectnow.

In addition, if you are using client-side targeting to assign group computer membership type the following to initiate detection and update group membership:

wuauclt.exe /resetauthorization /detectnow

Conclusion

I’ve touched upon one simple implementation of WSUS 3.0 - there are many other, more complex scenarios however. This is definitely a product that Windows IT Administrators can put to good use, with minimal effort.

Posted in Microsoft | Comments Off

Install and Configure Windows Server Update Services 3.0 - Part 1

February 18th, 2008
microsoft.gif

Microsoft receives quite a bit of flak for their monopolistic tendencies and uninspiring software but to their credit, from time to time they release some useful products. One piece of software that is quite useful is Windows Server Updates Services or WSUS. In this article I’ll cover some requirements and go through an install using VMware Server Console.

This is part one of a two part article.


WSUS 3.0 SP1 Requirements on Windows Server 2003 SP1

  1. Microsoft Internet Information Services (IIS) 6.0.
  2. Update for Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1 Windows Server 2003.
  3. Microsoft .NET Framework Version 2.0 Redistributable Package (x86).
  4. Microsoft Report Viewer Redistributable 2005.
  5. Microsoft Management Console 3.0 for Windows Server 2003.
  6. System and WSUS install partition must be NTFS.
  7. Minimum 1GB of free space on the system partition.
  8. Minimum 20GB of free space in recommended for the volume where WSUS stores updates - 30GB is recommended. For purposes of demonstration, I will use 8GB.
  9. A minimum of 2GB of free space where WSUS setup installs Windows Internal Database.

Please check the WSUS 3.0 SP1 page for Windows Server 2008 requirements, there are some differences. I would also suggest browsing through Deploying Microsoft Windows Server Update Services and Step-by-Step Guide to Getting Started with Microsoft Windows Server Update Services 3.0 for in depth information regarding the following installation.

A few other points to note, you cannot upgrade from WSUS 2.0 to WSUS 3.0. You must uninstall the previous version before installing WSUS 3.0.

Prepatory steps to installation

Before commencing with installation, two elements in your network need to be considered, if you have them. The first is your Proxy Server, the second is your firewall.

Proxy Server considerations

  1. What protocols are supported by your proxy server? WSUS uses HTTP and SSL so your proxy server will need to support both.
  2. The authentication method used by the proxy server (basic vs Windows authentication).

Firewall considerations

  1. Your firewall must allow traffic thru port 80 (HTTP) and 443 (SSL) - this is not configurable.
  2. If those ports are opened but restricted to certain sites, please see Deploying Microsoft Windows Server Update Services for an exhaustive list of required domains.
  3. Corporate firewall configuration is separate from Windows firewall on the WSUS server.
  4. Any downstream servers can be configured to use ports other than 80 and 443, however this does not apply to the upstream server communicating directly with the Microsoft Update site.

Required Software

So, first I’m going to install and configure IIS 6.0

  1. Click Start, select Control Panel and then click Add or Remove Programs.
  2. Click Add/Remove Windows Components
  3. In the Components list select Application Server. Click Details and make sure that ASP.NET is selected
  4. Click OK , click Next, and then follow the instructions on the screen.

After IIS is installed, download and install the following:

  1. Note: If the server you are installing WSUS 3.0 on hasn’t been updated you may need to download and install Windows Installer 3.0 Redistributable first. Also, I went ahead and installed Server 2003 SP2 because MMC 3.0 wouldn’t install without SP1 or higher.
  2. Microsoft .NET Framework Version 2.0 Redistributable Package (x86).
  3. Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1 Windows Server 2003.
  4. Microsoft Report Viewer Redistributable 2005.
  5. Microsoft Management Console 3.0 for Windows Server 2003.

Installing WSUS 3.0

Now that all the prerequisites are out of the way we can go ahead and install WSUS 3.0.

  1. Double click the installer file.
  2. On the Welcome page, click Next.
  3. On the Installation Mode Selection page, select the Full Server installation including Administration Console check box, and then click Next.
  4. Accept the license agreement and then click Next
  5. On the Select Update Source page, you can specify where the updates will be stored. I added an additional virtual 8Gb hard drive to store updates so that the location read: E:\WSUS\. Make sure that the check box Store updates locally is checked otherwise clients will update directly from the Microsoft Update site.
  6. Click Next
  7. On the Database Options page, select the software used to manage the WSUS database. I chose the default Microsoft SQL Server 2005 Embedded Edition and then clicked Next. The location should be the same as the step above E:\WSUS\
  8. On the Web Site Selection page, you specify the Web site that WSUS will use to point client computers to WSUS. Unless you already have a website using port 80 on the server you are installing WSUS on, go with the recommended selection. Choose the second option to install WSUS using the alternate port 8530. Click Next
  9. On the Ready to Install Windows Server Update Services page, review your choices and then click Next
  10. The final page of the install wizard will tell you whether or not WSUS 3.0 was completed successfully. After you click Finish the configuration wizard will be launched

Now that we’re finished with the installation, we can take a break and come back later or go on to the next step, Configuring WSUS 3.0

Posted in Microsoft | Comments Off

« Previous Entries