03-18-2011 03:03 PM
Upgraded from EV8 to 9.01. EV 8 was in place and running using exchange 2003 mailbox archiving Migrated from exchange 2003 to 2010. EV 9.01 was managing mailbox archiving on 2003 and 2010. All was fine until we shut down the 2003 server. All mailbox permissions were lost including automatic. User could not access there own mailbox. Only explicit permissions survived. Disabled mailboxes at the time of the migration show their old permissions that were in place prior to the move. Did some reading the consultant did not set the registry value for doing the migration. Set that value and ran provisioning and mailbox sync tasks with no luck. New mailboxes are not getting and permissions applied either. Tried many different setting, to many to name. Any and all comments, thoughts are welcome
Solved! Go to Solution.
03-24-2011 01:38 PM
Thanks to all who offered some help it was greatly appreciated. I had to go into SQL and delete the ExchangeMailboxEntryId for all the mailboxes except journal boxes, reprovision and sync. The archive permissions were repopulated to the archives and life was good. I did the changes in SQL under the direction of a Symantec engineer. It was a very straight forward procedure in SQL, but my comfort level in SQL is very low.
03-18-2011 03:22 PM
03-18-2011 04:17 PM
Attached the file. I looked through and saw the sync errors for a missing security descriptor. Hope you now the fix. Those are the errors that stood out to me. I have checked every log I can find. There are no sync errors in the event log. There are no real errors to speak of.. Ran the deployment tool it was all green.
Thanks for the help. I am about to run from the room screeming never to be seen again.
03-20-2011 02:17 PM
Hi,
From the trace I can spot something to try. From the trace you appear to have Exchange System Administrator installed and the advanced policy set to synchronize Inherited rights turned on.
Please could you turn off the inherited permissions policy setting and try the synchronize again?
Regards
Karl
03-21-2011 07:10 AM
Tried it twice for good measure.
thanks
03-21-2011 07:39 AM
I will do a compare to see if any changes.
03-21-2011 07:41 AM
Might be worth restarting the Task Controller service - the policy should update on the fly but just in case it isn't it!
-Karl
03-21-2011 11:38 AM
Found this technote that suggests removing ESM completely
http://www.symantec.com/business/support/index?page=content&id=TECH153019&key=50996&actp=LIST
03-24-2011 01:38 PM
Thanks to all who offered some help it was greatly appreciated. I had to go into SQL and delete the ExchangeMailboxEntryId for all the mailboxes except journal boxes, reprovision and sync. The archive permissions were repopulated to the archives and life was good. I did the changes in SQL under the direction of a Symantec engineer. It was a very straight forward procedure in SQL, but my comfort level in SQL is very low.