book

Microsoft® Exchange Server 2007 Administrator's Companion

by Walter Glenn, Scott Lowe, Joshua Maher

June 2007

Intermediate to advanced

720 pages

20h 39m

English

Microsoft Press

Read now

Unlock full access

What’s in This BookPart I: IntroductionPart II: Planning Your DeploymentPart III: Installation and DeploymentPart IV: ManagementPart V: MaintenancePart VI: SecurityPart VII: Clients
System RequirementsAbout the Companion CDSupport
What Is Exchange Server?
Exchange Server 2007 Standard EditionExchange Server 2007 Enterprise Edition
Messaging SystemsShared-File SystemsClient/Server SystemsThe Organization of an Exchange EnvironmentServersServer RolesRecipientsMailboxesDistribution GroupsMail ContactsAddress ListsConnectorsExchange Server StorageMailbox DatabasePublic Folder Database
Active Directory Site RoutingSplit Permissions ModelExchange Server 2007 Setup WizardExchange ManagementExchange Server RolesUnified MessagingMessaging Policy and ComplianceAnti-Spam and Antivirus64-Bit ArchitectureOutlook Web Access

Brief Overview of Active DirectoryDirectory Structure in Active DirectoryLogical Structure of Active DirectoryDomainsSchema MasterDomain Naming MasterRelative Identifier MasterPDC EmulatorInfrastructure MasterOrganizational UnitsTrees and ForestsGroupsGlobal GroupsDomain Local GroupsUniversal Groups
Naming PartitionsSitesLocation Service ProvidersGlobal Catalog ServersClient AuthenticationActive Directory NamesDistinguished NameRelative Distinguished NameUser Principal NameGlobally Unique Identifier
Exchange Server 2007 and Active Directory Site TopologyStoring Exchange Server 2007 Data in Active DirectoryDomain Naming PartitionDesigning a Group Implementation StrategyConfiguration Naming PartitionSchema Naming PartitionExchange Server 2007 and Forest BoundariesConfiguration Partition and Directory Data
The Role of Exchange Server 2007 RolesMailbox Server RoleClient Access Server RoleHub Transport Server RoleUnified Messaging Server RoleEdge Transport Server Role
Increased User SupportIndividual Backup and Restore
On-Demand Content ConversionSingle-Instance Message Store
The Extensible Storage EngineHow Data Is StoredDatabase FilesESE and Memory ManagementTransaction Log FilesHow Log Files Are Replayed during RecoveryCheckpoint FileHow Log Entries Are Written to the Database
Multiple Public Folder Trees
Index CatalogsIndex Size
Supported Storage TechnologiesChoosing a RAID LevelPlanning for Disk SpaceCalculating Required Mailbox Disk SpaceLogical Unit Number (LUN) LayoutOther Storage NotesTesting Your Storage Architecture
SMTP ConnectorsCreating SMTP ConnectorsMessage RoutingMessage Transport ScenariosSending Mail between Users on the Same ServerSending Mail between Users in the Same SiteSending Mail between Users in Different SitesSending Mail to the InternetTransport Protocols
Defining User NeedsMessagingPublic FoldersConnections to Other SystemsRemote AccessCustom ApplicationsTraining and Support Services
Defining Your Geographic ProfileDefining Your Software EnvironmentDefining Your Network TopologyDefining Your Active Directory Model
Planning the OrganizationEstablishing a Naming ConventionOrganization NamesServer NamesRecipient NamesPlanning Public FoldersPlanning Gateways
Disk ConsiderationsProcessor ConsiderationsMemory ConsiderationsNetwork ConsiderationsWays to Add Fault Tolerance
Preparing for the InstallationGathering InformationVerifying Hardware RequirementsGetting Service PacksDefining the Role of Your ServerOptimizing Hardware through ConfigurationVerifying System RequirementsWindows Server 2003Active Directory Domains and ForestsTCP/IPClusteringInternet Information ServicesCreating the Exchange Administrator’s AccountPlaying It Safe
Preparing the Active Directory EnvironmentInstalling Exchange Server 2007 in a New OrganizationThe Role of RolesCreating an OrganizationClient Settings OptionReadiness CheckInstallationInstalling in an Existing Organization
Chapter Background
Exchange Server 2003 Native ModeAutomatic Coexistence TasksGlobal Settings
Creating Additional Routing Group ConnectorsCoexistence Issue: Version-Specific Administration
Adding an SMTP Connector to Your Legacy Exchange OrganizationGeneral TabAddress Space TabAdvanced Tab
Public Folder ReplicationHandling Public Folder ReferralsAdministering Public Folders
The Example Scenario
Allow Mail to Flow to the InternetAllow Incoming Mail from the Internet
Re-Home Client ServicesRemove SMTP Connectors from Your Legacy Exchange OrganizationRe-Home Public FoldersMove the Offline Address Book to Exchange Server 2007Move the Recipient Update Service to Exchange Server 2007Remove Legacy ConnectorsUninstall Exchange from Legacy Exchange ServersRemove Legacy Exchange Routing Groups
Continuous Replication and Transaction Logs
Preparing for LCREnabling Local Continuous ReplicationEnabling LCR for an Existing Storage GroupEnabling LCR for a New Storage Group and Mailbox DatabaseVerifying that the LCR Is FunctionalUsing Performance Monitor to View Replication ActivityRecovery from Your Active Copy Failure
CCR TerminologyThe Transport DumpsterPreparing for CCREnabling Continuous Cluster ReplicationConfigure Your File Share WitnessConfigure Your Network AdaptersEstablishing the ClusterConfigure the MNS Quorum to Use the File Share WitnessInstalling Exchange Server 2007 on Your ClusterInstalling Exchange Server 2007 on Your Active NodeInstalling Exchange Server 2007 on the Passive NodeVerifying the Status of Your CCRVerifying That a Server Can Handle a FailoverConfiguring the Transport DumpsterClosing Thoughts on CCR
Microsoft Management ConsoleThe MMC User InterfaceMMC ToolbarScope PaneDetails PaneSnap-in Root ContainerContainers and ObjectsHow MMC WorksSnap-insPackagesCustom ToolsCustom Consoles
Major Areas of the Exchange Management ConsoleExamining the Exchange HierarchyOrganization ConfigurationServer ConfigurationRecipient ConfigurationToolbox
Understanding CmdletsGetting HelpHelp CmdletsTab Completion
Understanding Recipient Types
Mailbox UsersCreating a New Mailbox for a New UserCreating a New Mailbox for an Existing UserConfiguring Mailbox PropertiesGeneral TabUser Information TabAddress and Phone TabOrganization TabAccount TabMember Of TabE-Mail Addresses TabMailbox Settings TabMail Flow Settings TabMailbox Features TabMail-Enabled Users
Creating a Mail ContactConfiguring a Mail Contact
Creating a Distribution GroupConfiguring a GroupGroup Information TabMembers TabAdvanced TabCreating Dynamic Distribution Groups
Understanding Public Folder Storage
Creating a Public Folder in OutlookManaging Public Folders in OutlookAdministration TabForms TabPermissions Tab
Creating a New Public Folder DatabaseRemoving a Public Folder Database
Creating a Public FolderRemoving a Public FolderGetting Information about a Public FolderManaging Settings for a Public Folder
Review of Exchange Server 2007 Storage Architecture
Increased User SupportIndividual Backup and RestoreHosting of Multiple BusinessesSupport for Special Mailboxes
Planning for Disk SpaceCalculating Required Mailbox Disk SpacePlanning for Multiple Storage GroupsPlanning for Backup and Restore Throughput
Creating Storage GroupsModifying Storage Group ConfigurationRemoving Storage Groups
Creating a Mailbox StoreModifying Mailbox Database ConfigurationChanging Mailbox Database General OptionsSettings Limits on Mailbox DatabasesDefining Mailbox Database Client SettingsMounting and Dismounting a Mailbox DatabaseMoving a Mailbox DatabaseRemoving a Mailbox Database
Unified Messaging OverviewUnified Messaging FeaturesExchange Server 2007 Unified Messaging ObjectsDial PlansIP GatewaysHunt GroupsMailbox PoliciesAutomated Attendants
Unified Messaging Dial PlansCreating a New Dial PlanManaging Dial PlansUnified Messaging Mailbox PolicyCreating Mailbox PoliciesManaging Mailbox PoliciesUnified Messaging IP GatewaysCreating IP GatewaysManaging IP Gateways
Using Troubleshooting ToolsUsing Event ViewerUsing Diagnostics LoggingModifying the Logging Level for a ProcessLogging LevelsInbox Repair ToolRPing UtilityRPing ServerRPing ClientEseutil.exe Offline ToolBest Practices AnalyzerMail Flow TroubleshooterPerformance Troubleshooter
Product DocumentationMicrosoft TechNetInternet Newsgroups
Backup and Restore TechnologiesThe Exchange DatabaseBasic ArchitectureTransactionsLoggingCircular LoggingChecksumVolume Shadow Copy ServiceTypes of VSS Backups SupportedFull BackupIncremental BackupDifferential BackupCopy BackupExchange Streaming Backup APITypes of Streaming Backups SupportedFull BackupsIncrementalDifferentialCopyRestore ProcessOther Exchange Server Components
Recovering an Exchange Mailbox ServerFull Server RestoresExchange Application RebuildsDial-Tone ServersRecovering an Exchange Mailbox DatabaseRecovering a Single Exchange MailboxBacking up an Exchange Mailbox ServerBacking up an Exchange Mailbox DatabaseUsing a Combination of Weekly and Daily Backup MethodsUsing a Daily Full Backup MethodBacking up a Single Exchange MailboxPlanning for CorruptionImplementing Backup StrategiesClustered Continuous Replication with VSSSingle Copy Clustering with Streaming BackupsSingle Multi-Role Mailbox Server with VSSReview of Sample Scenarios
Understanding How the Performance Snap-in WorksPerformance Monitoring ConceptsThroughputQueueResponse TimeBottleneckCollecting Data with the Performance Snap-InViewing Collected Data
Evaluating Memory UsageEvaluating Processor UsageEvaluating Disk UsageEvaluating Network Usage
SMTP System Monitor CountersOutlook Web AccessUnified Messaging Counters
Microsoft Exchange Server Jetstress ToolExchange Load Generator
Why Are Information Security Policies Important?
Password PoliciesLogon PoliciesAcceptable Use PoliciesComputer Viruses, Trojans, and WormsSchema Extensions by Exchange Server 2007Data SecurityLegal Exposure to Unwanted E-Mail ContentBacking Up and Archiving Exchange DatabasesE-Mail IntegrityMiscellaneous Elements to Consider
The Scope of Security
The Built-in Exchange Administrative GroupsThe Add Exchange Administrator Wizard
What Is a Virus?TrojansWorms
The Edge Transport Server at a Glance
Verify the Edge Transport Server’s DNS SuffixConfigure Firewalls to Pass Edge TrafficInstall Active Directory Application ModeInstall the Exchange Server 2007 Edge Transport Server RoleSubscribe the Edge Transport Server to the Exchange Server 2007 OrganizationExport an Edge Subscription File on the Edge Transport ServerCopy the Edge Subscription File to a Hub Transport ServerImport the Edge Subscription File on a Hub Transport ServerVerify Synchronization SuccessForce Synchronization
Content FilteringConnection Filtering: IP Allow ListConnection Filtering: IP Allow List ProvidersConnection Filtering: IP Block ListConnection Filtering: IP Block List ProvidersRecipient FilteringSender FilteringSender IDAttachment Filtering
About Microsoft Forefront Security for Exchange ServerInstalling Microsoft Forefront Security for Exchange ServerManaging Microsoft Forefront Security for Exchange ServerOther Microsoft Forefront Security for Exchange Server Benefits
Windows Server 2003 Security Protocols
Encryption and KeysEncryption SchemesCertificate Services in Windows Server 2003Digital Certificates and the X.509 StandardCertificate AuthorityCertificate Services Architecture in Windows Server 2003Entry ModulePolicy ModuleCertificate TemplatesCertificate DatabaseExit Modules
Installing and Configuring Certificate ServicesInstalling Web Enrollment SupportUsing the Web Enrollment PagesMaking an Advanced RequestViewing Information About Certificates
Initially Trusting a CertificateEncryption and Outlook 2007Digital Signatures and Outlook 2007S/MIME and Outlook 2007Configuring Outlook 2007 for Secure Messaging
Active DirectoryKerberos AuthenticationAccess Control ModelIP Security
Microsoft Office Outlook 2007
UNIX ClientsMacintosh Clients
Installing Outlook 2007Standard Outlook InstallationInstalling Outlook 2007 by Using the Office Customization Tool
Using Cached Exchange ModeConfiguring Cached Exchange ModeChanging Cached Exchange Mode Connection SettingsDisabling Cached Exchange ModeSynchronizing a MailboxSynchronizing Public FoldersShaping SynchronizationDeciding Whether to Copy or Synchronize Public FoldersEnabling Multiple Users in Outlook 2007Understanding Outlook Profiles, Exchange Mailboxes, and User AccountsCreating Multiple Profiles with Outlook 2007Accessing the Exchange ServerUsing Outlook to Delegate Mailbox AccessSetting Up Roaming UsersOutlook AnywhereBenefits of Outlook AnywhereOutlook Anywhere RequirementsInstalling the RPC over HTTP Windows Proxy ComponentHow to Enable Outlook Anywhere
Features of OWA
Single-Server ScenarioMultiserver ScenarioMultiple-Server Scenario: Firewalls and Client Access ServersPlacing a Client Access Server inside a Single FirewallPlacing the Client Server outside Your FirewallPlacing the Client Access Server between Two FirewallsISA Server 2006 and OWAAuthentication OptionsSecuring Default AuthenticationForms-based AuthenticationDisabling User Access to OWACreating Additional OWA Instances
Managing Access to UNC Shares and SharePoint Document RepositoriesThe GoodThe BadOWA Segmentation
Post Office Protocol Version 3Enabling POP3Administering POP3Limiting POP3 AccessOther POP3 Parameters
Enabling IMAP4Administering IMAP4Limiting IMAP4 Access

Content preview from Microsoft® Exchange Server 2007 Administrator's Companion

Motivations of a Criminal Hacker

Although a lot of literature has been written about the technical aspects of securing a network, not much is available about who your enemies are and what motivates them to attack. Before you can determine how to protect your organization, you must learn to think like a hacker, figure out where you’re vulnerable, and then develop a game plan to reduce your exposure. If you can understand who would want to do you harm and what can be gained from such harm, you can better protect your company and your information. Make the following assumptions: