How to Disable SSL 2.0 and SSL 3.0 on Exchange 2013 running on a Windows 2012

How to Disable SSL 2.0 and SSL 3.0 on Exchange 2013 running on a Windows 2012

Resolution:

Open the registry and edit the values. If you don’t find the entries create the entries.

 

To disable SSL 2.0

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Client]
"DisabledByDefault"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server]
"Enabled"=dword:00000000

To disable SSL 3.0

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client]
"DisabledByDefault"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server]
"Enabled"=dword:00000000

 

To disable Ciphers:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 128/128]
"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 40/128]
"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 56/128]
"Enabled"=dword:00000000

Alternate way to do this save above registry information keys as .reg files then execute on the system.

You can also download from here.

Before executing take the complete registry backup.  You need to restart the server.

Using the http://ssllabs.com/ web site to perform a test against you site. You should see overall Rating A.

 

Could not Complete the Operation when forwarding email

Could not complete the operation. One or more parameter values are not valid.

InvalidParameter

Error resolution for the above problem.

1. When forwarding the message in To, Cc or Bcc address list automatically appears when you type the single letter, simply hover the mouse over it and press DEL key. This will remove it from the cache.

2. To clear out all of your cache in a single shot.

Open Outlook 2010, select the Options from File menu then click on Mail and scroll to search for Empty Auto-Complete List  button and click.

Invalid para

Exchange Server 2013 Architecture Poster PDF Download

Exchange Server 2013 Architecture Poster PDF Download

6518.ExchangePoster_Final

Downloadable PDF version of the Exchange Server 2013 Architecture Poster.

This poster highlights the significantly updated and modernized architecture in Exchange 2013, and highlights the new technologies in Exchange 2013, such as Managed Availability, the new storage and high availability features, and integration with SharePoint and Lync.  In addition, it illustrates the new transport architecture in Exchange 2013.

We welcome your feedback on the poster.  If you have any, please feel free to send it to eapf@microsoft.com.

Scott Schnoll

All other Microsoft Posters you can download here.

Service ‘MSExchange Transport’ failed to reach status ‘Running’

Service ‘MSExchange Transport’ failed to reach status ‘Running’ on this server.

While installing Exchange Server 2010 SP2 on Windows 2008 R2  in a LAB environment got the error during installing the HUB Transport role.

Ex2010 sp2 error

Resolution:

  1. Open ADUC (Active Directory Users and Computers)
  2. Navigate to the Built-in Container, select the Administrators group, goto the properties
  3. Click members tab to check  “Exchange Trusted Subsystem” is added, if not, add it.
  4. Check whether IPv6 is ennable in NIC properties, also disable IPv6 through registry editor.
  5. Open the registry editor using regedit.exe
  6. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters
  7. In the details pane, click New, and then click DWORD (32-bit) Value.
  8. Type DisabledComponents, and then press ENTER.
  9. Double-click DisabledComponents, and then type ffffffff in Hexadecimal or 4294967295 in Decimal.
  10. Reboot the server, rerun the Exchange setup.

A New Exchange Has Arrived

ImageImage

Resources for IT Pros

Exchange Server 2013 for IT Pros  
Exchange 2013 System Requirements  
Exchange Server 2013 Documentation  
Licensing change FAQ  

Administration

Exchange Administration Center  

 

Install / Configuration

Installing Exchange 2013 Preview  

 

Resources for Developers

Exchange 2013 – Resources for Developers

 

Technet Forums

Exchange Server 2013 Preview