Hi all,
So, quickly, my setup - I've a co-existance setup, on prem 2007 environment, and a hybrid server with the CAS, HT and MBX roles installed. ADFS, and DirSync. Everything comes through the hybrid, no MX record change. All my hybrid server data comes through a 2010 TMG configured with rules for RPC, AutoDis, EWS, OWA, ECP and all the rest. I've got all the usual setup flood mitigation for the Microsoft servers for my region, etc.
Ok, so, my problem is with mailbox moves from my Exchange environment to the cloud, it is infuriating and typically Microsoft to give an absolutely useless error message.
I've been moving mailboxes from my on-prem environment for a few weeks now, in batches as we test the procedure and environment. All 'was' well. I'm now at the stage where I'm ramping up my moves (nothing major, only about 20 mailboxes).
I've moved up about 50 so far, with some annoying issues, but recently, none, all was fine.
I moved a batch this week, all but one moved, it had corrupt items - I set the command (as I've done for this type of error before) [Set-MoveRequest -Identity "<smtp address of mover>" -BadItemLimit 100] - and expected all to be well. Now, I get the below error when moving this account, and it's not just this person, it's ALL moves now.
- http://community.office365.com/en-us/forums/162/p/8382/42131.aspx?PageIndex=3
- http://help.outlook.com/en-us/140/dd904453.aspx
- http://community.office365.com/thread/130392.aspx
- http://community.office365.com/en-us/forums/162/p/47104/163358.aspx
...let me be clear, I've read these ^ and I wouldn't be posting in here if I hadn't have read everything I could find on Google.
I ran the RemoteConnectivityAnalyzer and - no issues found in AutoDisc.
I checked the TMG config, no changes, and the test for the rule completes.
I have a concern that this problem suddenly appeared when all was well two days ago. I'm willing to accept that it could be that my TMG is blocking this all of a sudden or equally that our external firewall company has blocked something between my hybrid server and the internet due to traffic spikes. Infact I'm willing to listen to anything as a reason, but what I need is way to definitively prove the issue.
If there was a way to do a two-way test using the same procedure the move request is using with a way to show the failure that would help hugely.
I've tried the test that some have mentioned [Test-MigrationServerAvailability -Exchange -ExchangeServer <exchange server FQDN> -Credentials $PSCredentials -RPCProxyServer <hybrid server FQDN> -Authentication NTLM, Basic -Verbose] and the hybrid server PS (on which I have installed all the additions that the O365 deployment guide directs) tells me:
As you probably can tell, this is frustrating me hugely. Especially as one second I'm moving mailboxes fine, and now suddenly everything has stopped. Event Viewer tells me nothing, I don't understand how m$ can expect IT professionals to work when we can't even find out what the problem IS much less find support to fix it.
If anyone out there can enlighten me here, I'd appreciate any and all help.
Thanks in advance
So, quickly, my setup - I've a co-existance setup, on prem 2007 environment, and a hybrid server with the CAS, HT and MBX roles installed. ADFS, and DirSync. Everything comes through the hybrid, no MX record change. All my hybrid server data comes through a 2010 TMG configured with rules for RPC, AutoDis, EWS, OWA, ECP and all the rest. I've got all the usual setup flood mitigation for the Microsoft servers for my region, etc.
Ok, so, my problem is with mailbox moves from my Exchange environment to the cloud, it is infuriating and typically Microsoft to give an absolutely useless error message.
I've been moving mailboxes from my on-prem environment for a few weeks now, in batches as we test the procedure and environment. All 'was' well. I'm now at the stage where I'm ramping up my moves (nothing major, only about 20 mailboxes).
I've moved up about 50 so far, with some annoying issues, but recently, none, all was fine.
I moved a batch this week, all but one moved, it had corrupt items - I set the command (as I've done for this type of error before) [Set-MoveRequest -Identity "<smtp address of mover>" -BadItemLimit 100] - and expected all to be well. Now, I get the below error when moving this account, and it's not just this person, it's ALL moves now.
The call to 'https://<hybrid server FQDN>/EWS/mrsproxy.svc' failed. Error details: The HTTP request is unauthorized with client authentication scheme 'Negotiate'. The authentication header received from the server was 'Negotiate,NTLM,Basic realm="<hybrid server FQDN>"'. --> The remote server returned an error: (401) Unauthorized..Before some tech comes on and points out all the usual posts:
+ CategoryInfo : NotSpecified: (0:Int32) [New-MoveRequest], Remot
eTransientException
+ FullyQualifiedErrorId : 90190C7A,Microsoft.Exchange.Management.Recipient
Tasks.NewMoveRequest
- http://community.office365.com/en-us/forums/162/p/8382/42131.aspx?PageIndex=3
- http://help.outlook.com/en-us/140/dd904453.aspx
- http://community.office365.com/thread/130392.aspx
- http://community.office365.com/en-us/forums/162/p/47104/163358.aspx
...let me be clear, I've read these ^ and I wouldn't be posting in here if I hadn't have read everything I could find on Google.
I ran the RemoteConnectivityAnalyzer and - no issues found in AutoDisc.
I checked the TMG config, no changes, and the test for the rule completes.
I have a concern that this problem suddenly appeared when all was well two days ago. I'm willing to accept that it could be that my TMG is blocking this all of a sudden or equally that our external firewall company has blocked something between my hybrid server and the internet due to traffic spikes. Infact I'm willing to listen to anything as a reason, but what I need is way to definitively prove the issue.
If there was a way to do a two-way test using the same procedure the move request is using with a way to show the failure that would help hugely.
I've tried the test that some have mentioned [Test-MigrationServerAvailability -Exchange -ExchangeServer <exchange server FQDN> -Credentials $PSCredentials -RPCProxyServer <hybrid server FQDN> -Authentication NTLM, Basic -Verbose] and the hybrid server PS (on which I have installed all the additions that the O365 deployment guide directs) tells me:
The "Verbose" parameter can't be used on the "Test-MigrationServerAvailability"I'm using the default admin details that are created in the O365 tenant and I'm a Exchage Administrator of my environment, logged on with that account. So the paramete -verbose I need to use isn't used with this command. How useful is this command then?!
cmdlet because it isn't present in the role definition for the current user. Check the management roles assigned to you, and try again.
+ CategoryInfo : PermissionDenied: (:) [Test-MigrationServerAvail
ability], CmdletAccessDeniedException
+ FullyQualifiedErrorId : E97AEE76,Microsoft.Exchange.Management.Migration
.TestMigrationServerAvailability
As you probably can tell, this is frustrating me hugely. Especially as one second I'm moving mailboxes fine, and now suddenly everything has stopped. Event Viewer tells me nothing, I don't understand how m$ can expect IT professionals to work when we can't even find out what the problem IS much less find support to fix it.
If anyone out there can enlighten me here, I'd appreciate any and all help.
Thanks in advance
