Skype for Business Certificate Expiration Issue - The Skype for Business Server Front-End service terminated with the following service-specific error:

 

Unable to start “Skype for Business Server Front-End service”

Event viewer:

The Skype for Business Server Front-End service terminated with the following service-specific error:
A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Note: Before requesting a new certificate, we need to make sure that the Root CA certificate is installed in the Trusted Root Certification Authorities under the Local Computer Certificate Store:

Also please review the expired cert before starting the wizard so that you have necessary information request in the wizards, Example shows the SANs used my cert.

Step 1 – Login to SFB Server which the cert is expired.

Open Skype for Business 2015 – Deployment Wizard and click on Install or Update SFBS Systems

Click on Request, Install or Assign Certificates >> Run

you will see exclamation marks as shown below if the cert is not valid (in our case expired)

Click on Request button, it will bring  Certificate Request window, You’ll need to fill the form. It is very important to select ALL or domain for subject alternative names (My case I use my domain) Click for advance if you need to do some custom settings like ;

Create an Offline Request, Specify another CA, Specify different CA credentials, Use a different Certificate Template, Change key bit length and/or Mark the certificate private key as exportable and Add additional SAN names. After that, we will return to the initial Certificate Request screen

Review the summery if all good click on Next.

If the certificate request is successful, we get Task status: Completed:, for more information you can view the view log.

This will open the Certificate Assign wizard click on Finish

Before assignment check and validate the cert by View Certificate Details

Click on Next

If the certificate assignment successful you see tick marks as below.

Congratulation ! now you have reconfigured the cert successfully, recommend a server restart but not mandatory now you can start services manually

@roshan-

Outlook Calander Free/Busy not updating for few Users (all users sharing the same setup Exchange setup)

 

Problem Statement: – Scheduling a meeting request using Scheduling Assistant, few users Free/Busy information were not updated. All other users Free/Busy information was updated.

All users are in O365 and sharing the same Outlook version (Microsoft Office 365 ProPlus) with Windows 10.  Tested with some other user account all Free/Busy works fine. No major issues found only meeting organizer had the issue.

Solution:- Empty Auto-Complete List
Few ways of deleting this cache, U can remove all cache entries by using below method OR,

OR you can delete One by One using this method.

Thanks
@Roshan

Remote Connection - Tools

Technorati Tags: Remote Administration

Ammyy Admin - Is a multi-task solution used as remote access software for remote server administration, distant assistance, education and much more.http://www.ammyy.com/en/s_home.html. Ammyy Admin is free of charge for non-commercial use. This supports only for Microsoft Operating Systems. They also have few more paid products such as Skype recorder and Router software.

TightVNC - Is a free open source remote control software package.

Free for both personal and commercial usage, with full source code available,
Useful in administration, tech support, education, and for many other purposes,
Cross-platform, available for Windows and Unix, with Java client included,
Compatible with standard VNC software, conforming to RFB protocol specifications.

http://www.tightvnc.com/

UltraVNC - Is a VNC application that is tailored towards Windows PCs, with several features not found
in other VNC products.

http://www.uvnc.com/products/uvnc-server.html

PCHelpWare - Is customizable: you can create your own server package with your logo and -company- name
The individual you want to remotely assist only has to download and execute your customized package.

-Security: Build-in communication encryption (TWF 256) and DH key exchange (using a 512 prime)
-File transfer (using clipboard style Copy/Paste : ctr-alt-c, ctrl-alt-v)
-Text Chat
-Clipboard transfer (Text, RTF, HTML, pictures)
-Scalable and easy to use Viewer. Various color modes to fit bandwidth at best
-International keyboard support
-Additional password if wanted

http://www.uvnc.com/products/pchelpware.html 

TeamViewer - Is free of charge for non-commercial use. Cutting-edge remote support and online collaboration. Team Viewer is a highly secure remote maintenance solution. Your connections are established via fully encrypted data channels using 2048-bit RSA key exchange and 256-bit AES session encryption.

https://www.teamviewer.com/ 

Thanks
@Roshan

Failed to disable the mailbox 2c6758c5-8013-4b9a-b4b3-400901e3124b due to a conflict in directory settings.

 

Scenario

Unable to remove cloud user mailbox which is synced from on premise server,

Error on the Admin Portal when select the user: Exchange: Failed to disable the mailbox 2c6758c5-8013-4b9a-b4b3-400901e3124b due to a conflict in directory settings. To disable this mailbox, first run Enable-RemoteMailbox on-premises. After the next Dirsync sync cycle, run Disable-RemoteMailbox on-premises to disable this mailbox in the datacenter.

The Fix
Example: I am using “Karif Geneva” as my problematic user.
You can check the Routing E-mail Address using the EMC for another user and make sure it's domain is correct. Check below,

Enable Remote user Mailbox
Enable-RemoteMailbox karifg@yourdomain.com -PrimarySmtpAddress karifg@yourdomain.com –RemoteRoutingAddress karifg@tenant.onmicrosoft.com

Add additional email alias to users
Set-RemoteMailbox -Identity karifg@yourdomain.com -EmailAddresses @{add='karifg@service.yourdomain.com'}

Disable user mailbox now
Disable-RemoteMailbox karifg@yourdomain.com

Logon to EMC or Online portal and check whether the user mailbox is removed.

Thanks
@Roshan

Message Tracking in Microsoft Exchange 2010

 

In Microsoft Exchange Server 2010, the message tracking log is a detailed record of all message activity as messages are transferred to and from the Transport service on Mailbox servers, mailboxes on Mailbox servers, and Edge Transport servers.

Supported parameters

Get-MessageTrackingLog [-ServerServer:Identity.] [-ResultSize:Integer | Unlimited] [-Start:DateTime] [-End:DateTime] [-EventId EventId] [-InternalMessageId:InternalMessageId] [-MessageId MessageId] [-MessageSubject: Subject] [-Recipients RecipientAddress1,RecipientAddress2.] [-Reference: Reference] [-Sender: SenderAddress]

Some Optional Parameters

EventId – Filters the message tracking log entries by the value of the EventId field
Server – Specifies the Exchange server on which you want to run this command. (Name,FQDN,Distinguished name,Exchange Legacy DN)
ResultSize -  Specifies the maximum number of results to return (The default value is 1000)
MessageSubject - Filters the message tracking log entries by the value of the message subject.

To view the 1000 most recent message tracking log entries on the server, run the following command:

Get-MessageTrackingLog

This example searches the message tracking logs on the local server for all entries from 3/28/2013 8:00 AM to 3/28/2013 5:00 PM for all FAIL events where the message sender was tester@maildomain.com.

Get-MessageTrackingLog -ResultSize Unlimited -Start "mm/dd/yy 8:00AM" -End "mm/dd/yy 5:00PM" -EventId "send" -Sender "tester@maildomain.com"

Searches the message tracking logs for all send messages and writing them to a output to a txt file:

Get-MessageTrackingLog -EventId Send | Format-List Send*,Recipient* "D:\Send Search.txt"

To search all message tracking log entries for a specific message across all Mailbox servers, use the following syntax:

Get-ExchangeServer | where {$_.isHubTransportServer -eq $true -or $_.isMailboxServer -eq $true} | Get-MessageTrackingLog -MessageId ba18339e-8151-4ff3-aeea-87ccf5fc9796@mailbox01.contoso.com | Select-Object Timestamp,ServerHostname,ClientHostname,Source,EventId,Recipients | Sort-Object -Property Timestamp

Searches the message tracking logs for date range and sender namexxxxxxx@domain.com getting the Output to .csv file or you can save it to html as well by using convertto-html:

Get-MessageTrackingLog -ResultSize Unlimited -Start "mm/dd/yy 00:00AM" -End "mm/dd/yy 21:00PM" -Sender " xxxxxxx@domain.com " | convertto-Csv "c:\messtrack.csv"

Get a grid view of Message tracking with optional Commands (Select-Object, Out-Gridview)

Get-MessageTrackingLog -ResultSize Unlimited -Start "mm/dd/yy 00:01AM" -End "mm/dd/yy 23:59PM" | Select-Object TimeStamp, ServerHostname,ClientHostname,MessageSubject,Source,Sender,Recipients | Out-Gridview

@Roshan