Exchange 2007
PSTN 1 Mailbox Server Exchange Search Mailbox Server Role Delegate Important Information Based on policy settings: Accept, Decline, or Forward request to Delegate Room Mailbox Outlook Internet Find room or equipment Equipment Mailbox Mailbox Server 1 Outlook OWA · · · · · 1 Select a managed default folder or create a managed custom folder. Delete after 2 Apply managed content 180 days Inbox settings to folders. Journal for safekeeping R&D Calendar Concierge is a suite of new calendar improvements that includes: · Scheduling Assistant (Outlook 2007 and OWA 2007) · Calendar Attendant · Resource Booking Attendant 3 Create a managed folder mailbox policy. Add “180 day Inbox” Add “R&D” folder Calendar Attendant Configure resources to auto-accept and set booking policies using OWA or Exchange Management Shell. Offline Address Book Messaging records management makes it easier to keep messages that are needed to comply with company policy, government regulations, or legal needs, and to remove content that has no legal or business value. Limits who can book resources Enforces maximum meeting duration Schedules meetings only during working hours Forwards out-of-policy requests to delegates for approval Provides conflict information for declined meetings Without any client interaction, automatically: · puts new meetings on the calendar as tentative appointments · updates existing meetings with new information · deletes out-of-date meeting requests · Messages in managed folders are periodically processed by Exchange according to the mailbox policies. · When a message reaches a retention limit, it is deleted, flagged for user attention, or the event is simply logged. · Journaling of messages occurs the next time the managed folder assistant runs after the message is put in the folder. Public folder Exchange administrators can configure the method by which the address books are distributed. · Outlook clients inside your firewall can access a Mailbox server directly to send and retrieve messages. · Outlook Anywhere enables Outlook 2007 and Outlook 2003 clients to connect to Exchange servers over the Internet by using RPC over HTTP. This feature requires a least one Client Access server. To send free/busy information and client profile settings between an Outlook client and a Mailbox server, you must have the Client Access server role installed. nt lie n C ok ctio tlo ne u O on C Sto ra Exchange Administration Administrator-only computer retrieves: · Active Directory topology information from the Microsoft Exchange Active Directory Topology service · e-mail address policy information · address list information ge · · · · Generates full text index Indexes new messages as they arrive Indexes attachments Configured automatically External Clients · Outlook Anywhere · Outlook Web Access · Exchange ActiveSync · POP3 and IMAP4 clients E-mail FROM Internet MAPI RPC Coexistence with Exchange 2000 and Exchange 2003 · Exchange Server 2007 routing group (DWBGZMFD01QNBJR) is created only for coexisting with earlier versions of Exchange. Exchange Server Installation Exchange Server 2007 available in two platform versions: · 64-bit version for live production environments. · 32-bit version only for non-production environments (such as labs, training, demo, and evaluation environments). · Routing Group Connector is required between Exchange Server 2003 and Exchange Server 2007 (created during setup). Exchange Server 2007 can be installed on Windows Server 2003 SP2, Windows Server 2003 R2 SP2 or Windows Server 2008. · No in-place upgrade on existing Exchange server. Install new Exchange Server 2007 server into existing organization, and move data to new server. · Exchange Server 2003 computers cannot interoperate with the Unified Messaging server role. Exchange 2003 mailboxes cannot be Unified Messaging–enabled. · Exchange 2003 Front-ends cannot talk to Exchange Server 2007 Mailbox Server Roles. Public folder databases: Holds public folder information. Only one public folder database per server. If all of your client computers are running Office Outlook 2007, public folders are optional in Exchange Server 2007. E-mail messages from OUTBOX Submission Queue E-mail messages to INBOX Categorizer Agent Processing Forefront Security for Exchange Server antivirus agent (Optional) Submitted messages Recipient Resolution (Subscribed to Hub Transport Server) Hub Transport Routing (Different AD Site) Content Conversion Journaling agent · When a message matches a journal rule a journal report is generated (with the original message as an attachment) and is submitted to the journal SMTP address. Agent Processing Exchange E-mail TO other AD sites E-mail TO Internet Routed messages Transport Rules agent · Prevent inappropriate content from entering or leaving the organization. Message Packaging · Message Classification (e.g. Filter confidential information). Delivery Queues Remote Delivery – Same Exchange Organization (Different AD site) · Track or archive messages that are sent to or received from specific individuals. Local Delivery (Same AD site) · Redirect inbound and outbound messages for inspection before delivery. Remote Delivery – Internet E-mail If e-mail is sent from another Active Directory site to the Internet, these emails are first relayed to the Active Directory site where Edge Transport servers are subscribed. AP MAPI RPC The Client Access server role supports the Microsoft Outlook Web Access, Microsoft Exchange ActiveSync client applications, and the POP3 and IMAP4 protocols. The Client Access server role also supports services, such as the Autodiscover service and other Exchange Web Services. You must deploy a Client Access server role in Intranet each Active Directory site that contains the Exchange Web Services (EWS) SharePoint and File Share Mailbox Server Access WebReady Document Mailbox server role. Integration · Access Offline Address Book AD Domain Controller Mailbox Server HTTPS SOAP Viewing converts Office and PDF file attachments to HTML for OWA clients. OWA users can have readonly access to documents on WSS document libraries or Windows file shares. Client Access server Autodiscover Service · Access messages, free/busy data, client profile settings AD Site - US Availability Service Notification Service File Shares Managed Folder Service Autodiscover Service · Allows clients to locate the server via AD or DNS · Used by Outlook 2007 to retrieve profile information Windows SharePoint Services Exchange Data Service · Provides read/write access to mailbox and public folder mail, contacts, tasks, and calendar data · Encapsulates calendaring and messaging business logic Synchronization and Notification Services · Alerts on changes in mailbox folders and public folder data · Provides mailbox and public folder synchronization services Proxy TP HT Most OWA configuration settings are stored in Active Directory. Exchange Web Services Outlook Web Access SSL IMAP4 & POP3 Set ActiveSync mailbox policies for user groups – password settings, etc. If no policy assigned, default settings apply. Exchange ActiveSync Exchange ActiveSync lets you synchronize data between your mobile device and Exchange Server 2007. Many smartphones are supported including all Windows Mobile devices. Australian User OWA Authentication Options · Standard (Basic, Digest, Windows Integrated) · Forms-based · ISA Server forms-based · Smart card and certificate · RSA SecurID Download Offline Address Book using BITS No VPN required! Outlook Anywhere Microsoft Office Outlook 2007/2003 clients connect to Exchange servers over the Internet by using RPC over HTTP. Public Folder access available within OWA Queues of “item change events” held on CAS Outlook Web Access Outlook Web Access lets you access your Exchange 2007 mailbox from all major Web browsers. OWA Premium Client · Full OWA functionality · Designed for IE6 and IE7 Logs DB Enable LCR (database copied) High Availability for Mailbox Servers Standby Continuous Replication Replication to a standby server Mailbox Server Site B (Passive) Mailbox Server Site A (Active) Hub Transport Server Witness File Share Copy, verify and replay logs Public Network Mailbox Server Passive Node Private Network Logs Local Continuous Replication (LCR) Replication to a local disk set Cluster Continuous Replication (CCR) Replication within a cluster Mailbox Server Active Node Storage Controller Passive Logs DB Quorum Only the Mailbox server role can be installed in a failover cluster Failover cluster built using Microsoft Windows Cluster service, using a Majority Node Set (MNS) quorum with file share witness (KB 921181). Copy, verify and replay logs Active Single Copy Cluster (SCC) Shared storage cluster (no replication) Active DB Logs Built-in delay for log replay activity Passive Logs DB Copy, verify and replay logs OWA Notifications · New e-mail and calendar items · Unread counts in folder list · Future calendar reminders OWA Light Client · Faster for slow connections · Works with non-IE browsers · Good for blind and low-vision users Mailbox Server Passive Node Shared Storage Array DB Poll CAS change queue every 2 minutes (Every 6 minutes after inactivity) OWA Private Network Storage Controller Failover cluster built using Microsoft Windows Cluster service and shared storage. · Provides data redundancy without service redundancy · Partition data for performance and recovery · Ensure sufficient disk space, CPU and memory resources Mailbox Server Public Network Mailbox Server Active Node Notification Subscription Wireless LAN Remote Device Wipe can be initiated by administrator or user through OWA, if device lost or stolen. Local Device Wipe can be initiated through policy if maximum number of password attempts exceeded. · Provides service redundancy without data redundancy · Only active/passive configuration supported Redirection CAS in user’s mailbox AD site available on the Internet, but user accesses different OWA URL. OWA shows page telling user the correct OWA URL for their home site. 1 Can use same URL and SSL server certificate for Outlook Anywhere, Outlook Web Access, and Exchange ActiveSync Synchronize e-mail, contacts, calendar, tasks Cellular Network Microsoft Exchange Server 2007 includes built-in features that can provide quick recovery, high availability, and site resiliency for Exchange Server 2007 Mailbox servers. Proxy CAS in user’s mailbox AD site not available on Internet. OWA will proxy user requests to the CAS in the mailbox AD Site. OWA Single Sign-On for internal clients using Windows integrated authentication IMAP4 and POP3 services installed but disabled by default Availability Service · Retrieves live Free/Busy information for Exchange Server 2007 mailboxes · Retrieves published Free/Busy from Public Folders (for legacy mailboxes or legacy Outlook clients) · Retrieves meeting time suggestions Direct Push technology provides immediate message delivery to mobile devices (no reliance on SMS for notification). AD Site - Australia 2 SMB Synchronization Service Journaling agent · Journaling agent applied again so changes that are made by the Transport Rules agent do not bypass the Journaling agent. High Availability CAS Proxy and Redirection Exchange Data Service Exchange storage group: Logical container for Exchange databases and associated system and transaction log files. Mailbox databases: Holds data that is private to an individual user and contains mailbox folders that are generated when a new mailbox is created for that user. Stored as an Exchange database (.edb) file. Store Driver Edge Transport Client Access Server Role Mailbox and Public Folder Databases Recovery storage group (RSG): Special administrative storage group that allows recovery of data from a backup or copy of a database without disturbing user access to current data. Microsoft Exchange Active Directory Topology service · Transport Rules · Exchange Configuration · Active Directory Site Topology Pickup Directory Replay Directory · Exchange Organization in Exchange Native Mode x64 · Exchange Server 2007 topology relies on the Active Directory site topology for internal routing and does not have its own configuration. · Messages are sent directly from the source server to the target server, reducing the number of hops a message takes during delivery. · If network problems or firewalls prevent a message from being sent directly to the target server, the message is delivered to a Hub Transport server as close as possible to the destination, following a least-cost route calculated using the site link costs. Hub Transport Server Exchange E-mail FROM other AD sites 1. Client Access server role 2. Hub Transport server role 3. Mailbox server role 4. Unified Messaging server role Run once to establish connection and automatically configure SMTP connectors to route e-mail to and from the Exchange Organization and the Internet. Categorizer: Component of the Microsoft Exchange Transport service that processes all incoming messages and determines what to do with the messages based on information about the intended recipients. To use anti-spam features on the Hub Transport server, register the agents in a configuration file and enable features by running Exchange Management Shell script. ISA Server 2006 and Exchange Server 2007 were developed to coexist and provide an increased level of security for your messaging environment. Installing Exchange Server Roles If server roles are not installed on a single computer, install the Exchange Server 2007 server roles on separate computers in the following order: Exchange Search Search Offline Address Book Outlook Client Connection Windows SharePoint Services Edge Transport Server RPC over HTTPS Voice Mail Web-based Client Access server replicates files from the Mailbox server Exchange Mailbox Assistants Administration Unified Messaging Server Telephone Microsoft Exchange generates the new OAB files, compresses the files, and then places the files on a local share. OAB Distribution Smartphone Public Folder Add “180 day Inbox” Add “R&D” folder Schedule managed folder assistant. The managed folder assistant creates managed folders and enforces content settings. 5 Generate Offline Address Book Outlook Web Access 4 Apply managed folder mailbox policy to user’s mailboxes. Import Export · Apply disclaimers to messages. IIS For non-clustered Mailbox servers, the Mailbox server role can be deployed with any combination of the Client Access, Hub Transport, and Unified Messaging server roles installed. Resource Booking Attendant 12 All Exchange server roles can be deployed on the same server except the Edge server role. Autodiscover service query The Mailbox server role hosts mailbox and public folder databases. It also provides advanced scheduling services for Microsoft Office Outlook users, generates the offline address book, provides services that calculate e-mail address policies and address lists for recipients, and enforces managed folders. Messaging Records Management Resource Booking Attendant Edge Transport Server E-mail routing server that typically sits at the perimeter of the topology and routes e-mail in to and out of the Exchange organization. Exchange Web Services For incoming fax messages the same process is used; however, T.38 is used instead of RTP for communication. 2 Hub Transport Server E-mail routing server that routes e-mail within the Exchange organization. Clients using EWS 5. Completed voice mail message sent to Hub Transport server for delivery. AD Domain Controller Hub Transport Server SMTP Receive Connector Hub Transport server The Hub Transport server role must be deployed in every Active Directory site that contains other Exchange Server 2007 server roles. Series of voice prompts or .wav files that callers hear, instead of a human operator, when they call an organization. · Provides corporate or informational greetings · Provides custom corporate menus (can have multiple levels) · Provides directory search function that enables a caller to search the organization's directory for a name · Enables a caller to connect to the telephone of, or leave a message for, users SMTP Receive Connector Discard UM Auto Attendant 4. UM server contacts the user’s mailbox to play the individual’s greeting and captures voice mail message. Disabled User Account Unified Messaging Server Middle-tier server that combines voice messaging, fax, and e-mail messaging into a single messaging infrastructure. 3. UM server fetches the appropriate message from the mailbox server role. 4. UM server puts the phone number the user entered through the UM outbound dialing rules and sends the call. The endpoint phone (internal or external) will then ring and play the voice message when the user picks up the phone. TCP Port 50636 SMTP Send Connector Quarantine External Firewall Perimeter Network Client Access Server Middle-tier server that supports the Microsoft Outlook Web Access (OWA), Microsoft Exchange ActiveSync and Outlook Anywhere client applications and the POP3 and IMAP4 protocols. The Client Access server also hosts Exchange Web Services. 2. Outlook uses https to communicate with the UM Web Services located on the Client Access server. The Client Access server talks via SIP to the UM server. External Phones SMTP Send Connector The Hub Transport server role handles all e-mail flow inside the organization, applies transport rules, applies journaling policies, and delivers messages to a recipient's mailbox. RPC over HTTP (Outlook Anywhere), HTTPS Exchange Server 2007 includes the following server roles: 1. User receives a voice mail message and selects the Play on Phone option in Outlook 2007 or Outlook Web Access. They can either use the number already configured or enter a new number. 1. Call initiated and call recipient does not answer. Hub Transport Server Internal Firewall Internal Clients · Outlook Web Access · Exchange ActiveSync · POP3 and IMAP4 clients Play on Phone Call Answering File Shares Internal Firewall Internal Outlook Client 1 1 listen to their voice mail messages play e-mail messages access their calendar take action on meeting requests get contact information locate and call a user in the directory Active Directory Site ADAM Instance Hub Transport Server Role External E-mail Mailbox Server Back-end server that can host mailboxes and public folders. Client Access Server Deliver Non-delivery receipt DWBGZMFD01QNBJR (Caesar cipher) 4. Interaction with the user’s mailbox can occur using the voice user interface or the touch tone interface. The mailbox owner can: Incoming E-mail SMTP RECEIVE Connectors 3. User logs on to mailbox. · Recommendation: Install Edge Transport server role on a computer that is not part of a domain. DNS MX Record Internet 2 6. Voice mail message delivered to user’s mailbox. Firewall 36) 1. UM-enabled user dials the subscriber access number configured on a dial plan. One Inbox Unified messaging puts all a UM-enabled user’s e-mail, voice, and fax messages into their Exchange 2007 mailbox that can be accessed from a variety of devices. · The Edge Transport server role cannot coexist on the same computer with any other server role. Edge Transport Server Quarantine Suspected Spam & Content 506 UM Web Services 3. UM server contacts Active Directory (using dial plan + extension number) to get e-mail address information. Fax P (TC IP PBX 2. Call redirected to UM server. Edge Transport Server 6 2 Outlook Voice Access Domain Controller TLS 3 PBX Client Access Server Mailbox Server Mailbox Server RPC over HTTP PBX · · · · · · c Syn UM IP Gateway Hosted Continuity Client Access Server IP Gateway Fax Disabled User Account Hub Transport Server 5 Client Access Server 4 Auto Attendant Business Application Business Applications 4 Unified Messaging Servers ge Ed Anti-spam 3 Microsoft Exchange EdgeSync service pushes information from Active Directory to ADAM instance on Edge Transport server using secure LDAP: Synchronize recipient information (every 4 hours) Synchronize configuration information (every 1 hour) Internet MAPI RPC (and TCP/IP NetBIOS file sharing) HTTPS UM Mailbox Policy 1 UM Mailbox Policy 2 UM Hunt Group HTTPS 3 Hosted Filtering or TP SM 4 Only requires one MX record (resolves to the Exchange Hosted Services network). Allows IP address of corporate e-mail server to remain hidden. Hosted Archive Exchange Web Services Consolidation: Place all Unified Messaging servers in a central location, and then deploy IP gateways in each of your branch offices. 2 Connection Filter Address Rewriting Agent Edge Rule Agent Sender ID Agent Recipient/Sender Filter Content Filter Attachment Filter Virus Scanning Global Datacenter Network MA PI RP C Active Directory Domain Controller Auto Attendant 1 Auto Attendant 2 SMTP TLS VoIP Users · · · · · · · · Edge Subscription The Unified Messaging server role enables Unified Messaging for an Exchange Server 2007 organization. Unified Messaging combines voice messaging, fax, and e-mail messaging into a single messaging infrastructure. Unified Messaging Server Anti-spam and antivirus filters Microsoft Exchange Hosted Services VoIP Unified Messaging Server Role Dial Plan AD Domain Controller SMTP PBX Supports incoming fax services. A fax message is sent to the user's mailbox as an e-mail message with a .tif image file attached. AP Hub Transport Server Hosted Encryption · All administrative actions are scriptable in Exchange Server 2007 using Windows PowerShell. Hub Transport Server Edge Blocking Services · Exchange Management Console uses the same Windows PowerShell cmdlets as those available via the Exchange Management Shell. 2. A UM server associated with the dial plan checks Active Directory for address and access information. Legend IP gateway The Exchange Server 2007 Management Pack for System Center Operations Manager 2007 contains rules to monitor a comprehensive array of server health indicators and create alerts when problems are detected, or when reasonable thresholds are exceeded. · Exchange Management Shell built on Microsoft Windows PowerShell technology. LD Unified Messaging Server LDAP Cmdlet Active Directory UM Objects Active Directory Site Key Monitoring Scenarios · Are all Exchange services running? · Are all databases mounted and do disks have enough free space? · Can Microsoft Office Outlook 2007 clients connect and is performance good? · Is e-mail flowing between servers? · Is Exchange performing efficiently and reliably? · Is Exchange configured correctly and is it secure? AP Command-line interface Piping of data between commands Structured data support Extensive support for scripting Safe scripting Access to cmd.exe commands Trusted scripts Profile customization Extensible shell support Active Directory Site Active Directory Domain Controller Monitor all Exchange Server Roles LD · · · · · · · · · Active Directory Forest LD Key features of the Exchange Management Shell: Active Directory Requirements · Domain functional level at Windows 2000 native or higher. · Schema master must run Windows Server 2003 SP1 or later. · At least one domain controller, in each domain, running Windows Server 2003 SP1 or later. · At least one global catalog server (running Windows Server 2003 SP1 or later) in every Active Directory site which hosts Exchange Server 2007. · Recommendation: 4:1 ratio of Exchange processors to global catalog server processors priority Exchange Management Shell The Edge Transport server runs in the perimeter network and provides message hygiene and security over untrusted networks. Operations Manager Server Exchange management tools include: · Exchange Management Shell · Exchange Management Console · Exchange Help file · Exchange Best Practices Analyzer tool · Exchange Troubleshooting Assistant tool Internal Phones AD Active Directory ADAM Active Directory Application Mode BITS Background Intelligent Transfer Service CAS Client Access Server DNS Domain Name Service EWS Exchange Web Services IIS Internet Information Services IMAP4 Internet Message Access Protocol 4 OAB Offline Address Book OWA Outlook Web Access PBX Private Branch Exchange POP3 Post Office Protocol 3 PSTN Public Switched Telephone Network RPC Remote Procedure Call SIP Session Initiation Protocol SMB Server Message Block SMS Short Message Service SMTP Simple Mail Transfer Protocol SOAP Simple Object Access Protocol TLS Transport Layer Security UM Unified Messaging VoIP Voice over IP WSS Windows SharePoint Services With the Exchange Management Shell, administrators can manage every aspect of Microsoft Exchange Server 2007. They can enable new e-mail accounts and configure SMTP connectors, store database properties, transport agents, and more. Edge Transport Server Role Exchange Server 2007 High-Level Architecture Exchange Server 2007 Management Pack for System Center Operations Manager 2007 SMTP SEND Connectors Management and Monitoring Acronyms DB · Provides full redundancy of data and services · No single point of failure · · Enable SCR Passive Active Logs Logs (database copied) Primary Datacenter (Source) DB · Source server can be stand-alone, LCR, CCR, or SCC. · Target must be standalone or passive. Enable CCR (database copied) · · · · · Standby Datacenter (Target) Designed for site resilience Keep a third copy of data at a remote location Single subnet not required Can span multiple Active Directory sites Supports 1:many and many:1 replication High Availability for Other Exchange Server Roles Client Access server - Deploy multiple identically configured servers; use network load balancing (hardware or software) to distribute client connections. Hub Transport server - Deploy multiple Hub Transport servers in each Active Directory site; resiliency is built-in. · · Unified Messaging server - Deploy multiple Unified Messaging servers and configure two or more per dial plan. Edge Transport server - Multiple Edge Transport servers can be subscribed to the same Active Directory site. Microsoft Exchange Server 2007 Component Architecture microsoft.com/exchange © 2007 Microsoft Corporation. Active Directory, ActiveSync, Forefront, Internet Explorer, Microsoft, Outlook, SharePoint, Windows, Windows Mobile, Windows PowerShell, and Windows Server are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. All rights reserved. Other trademarks or trade names mentioned herein are the property of their respective owners. Authors: Martin McClean & Astrid McClean (Microsoft Australia)
* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project
Related manuals
Download PDF
advertisement