Scribd
Upload
172 views26 pages

Exchange Server 2019 Hybrid Setup 1

Uploaded by

diegodtl81
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
172 views26 pages

Exchange Server 2019 Hybrid Setup 1

Uploaded by

diegodtl81
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 26

Exchange Server 2019 Hybrid Setup

In this post, I will show you the steps to migrate Exchange Server 2019 to Exchange Online and Office
365. Within home lab, I am running Exchange Server 2019 CU6. Mail flow is working fine and Exchange
Server 2019 is up to date with all patches. You can also follow this link from Microsoft -
https://docs.microsoft.com/en-us/exchange/exchange-hybrid

Below is Exchange Lab Setup diagram

On the local DNS, I have these entries for Exchange Server 2019

On GoDaddy Public DNS, I have these entries for mail flow


On Office 365 Admin Center, I have added the Domain only. All users are synced. I did not create
additional DNS entry at GoDaddy – reason, I am still in the process of migrating user to O365. Once the
migration is complete – we can decommission Exchange 2019 On Premise and update all DNS Entry.

These are additional DNS entry that, I have to add at GoDaddy later.
On Microsoft Azure I have completed AD Sync, User and Device Sync and no error with AD Sync
On AzureADConnect, I did the following (Hybrid & Device Options)
https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-managed-
domains
I have to get Office 365 license for testing and, I am going with this that has one month trial FREE.

https://www.microsoft.com/en-ca/microsoft-365/business/compare-all-microsoft-365-business-
products-b

Mailbox Replication Proxy Service – Enable before hybrid configuration + make sure service is running
Now we have all the pre req taken care – we are ready for hybrid configuration. To be on the safe side, I
did restart exchange server.

After download – run this application

I was getting below error. The fix – run through I E – not Chrome or Edge or Firefox
Faced above error. I looked at the hybrid logs – here is the issue
Through Google – I reached this site who had similar issue with solution.

https://blog.misjageuskens.nl/2020/01/30/o365-hybrid-wizard-hybrid-agent-fails-to-
validate/#comment-3332

Ran these commands in EMS

Get-ClientAccessServer | Add-AdPermission -AccessRights ExtendedRight -ExtendedRights "ms-exch-epi-


token-serialization" -User "ramlan\Exchange Servers"

Get-ClientAccessServer | Add-ADPermission -AccessRights ExtendedRight -ExtendedRights "ms-Exch-EPI-


Impersonation" -User "ramlan\Exchange Servers"

Get-MailboxServer | Add-AdPermission -AccessRights ExtendedRight -ExtendedRights "ms-exch-epi-


token-serialization" -User "ramlan\Exchange Servers"

Get-MailboxServer | Add-AdPermission -AccessRights ExtendedRight -ExtendedRights "ms-Exch-EPI-


Impersonation" -User "ramlan\Exchange Servers"

By the way after running above commands the permission are FALSE FALSE (Deny / Inherited) Here is
screen shot (For User Administrator and same for Exchange Servers)
Now, I get a different error – 504 Gateway timeouts

Tried HCW again and this time it was successful.


https://docs.microsoft.com/en-ca/exchange/troubleshoot/administration/hybrid-configuration-wizard-
errors-organization-configuration-transfer

The only error reported in the log pertain to the following. I guess HCW8110 can be ignored.

I forgot to enable Federation Trust. Just Enabled from Organization ECP


To confirm the Hybrid Configuration is complete – we can test the following

EMS command – Get-HybridConfiguration

Get-EmailAddressPolicy | FL Name,EnabledEmailAddressTemplates

Get-AcceptedDomain
Get-OrganizationalRelationship | Fl

Send Connectors

Receive Connectors – Default


Get-RemoteDomain

You can use the Exchange Management Shell on an Exchange Server to check for users with the Email
Address Policy disabled using the following cmdlet:

Get-Mailbox -ResultSize Unlimited | Where {$_.EmailAddressPolicyEnabled -eq $False}

For me in the lab, I had one user that did not have the correct smtp address

This is what you should see for all users (example Administrator) - See what we have for user Ram Lan

I added another smtp with the following [email protected]


I also logged into Office365 Exchange Admin Center. Here it is

As you see the mailbox is EMPTY. We have not migrated any mailbox from on premise.

When you are ready to start mailbox migration – You will see this menu

Based on all the above, it looks like our Hybrid migration to Exchange Online Office 365 is complete. I
will start mailbox migration during the weekend after purchasing one or two O365 license.
Login to ECP on your Exchange 2019 Server and select Office 365 – the link might take you to Office 365
pricing page and not Office 365 Admin Center. The solution is simple

Click – Hybrid – Modify – Sign in Office 365 and you will see both Exchange Admin Center and Office 365
Admin Center on the same page like this.. I wish the theme was DARK and not WHITE.

I am able to login to Office 365 as regular user and AD password works - https://portal.office.com/

Thanks

Ram Lan
30th July 2020

You might also like