Tag Archive : server

Home / server

Exchange

[Solved] Microsoft.Exchange.Data. Directory.ADOperationException: | Cumulative Update Error Exchange Server

By Kannan March 7, 2021

One of my clients wants to upgrade Exchange Server 2013 CU8 to Cu23. When preparing the server for upgrade and started upgrade and at the first step of the upgradation process the upgradation errors out with the following error and needed to exit from it. Error: ” was run: “Microsoft.Exchange.Data. Directory.ADOperationException:

Error:

The following error was generated when "$error.Clear(); 
	initialize-ExchangeConfigurationPermissions -DomainController $RoleDomainController

" was run: "Microsoft.Exchange.Data.Directory.ADOperationException: Active Directory operation failed on OrgDC.domain.com. This error is not retriable. Additional information: Access is denied.
Active directory response: 00000005: SecErr: DSID-03152612, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
 ---> System.DirectoryServices.Protocols.DirectoryOperationException: The user has insufficient access rights.
   at System.DirectoryServices.Protocols.LdapConnection.ConstructResponse(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut, Boolean exceptionOnTimeOut)
   at System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout)
   at Microsoft.Exchange.Data.Directory.PooledLdapConnection.SendRequest(DirectoryRequest request, LdapOperation ldapOperation, Nullable`1 clientSideSearchTimeout, IActivityScope activityScope, String callerInfo)
   at Microsoft.Exchange.Data.Directory.ADDataSession.ExecuteModificationRequest(ADObject entry, DirectoryRequest request, ADObjectId originalId, Boolean emptyObjectSessionOnException, Boolean isSync)
   --- End of inner exception stack trace ---
   at Microsoft.Exchange.Data.Directory.ADDataSession.AnalyzeDirectoryError(PooledLdapConnection connection, DirectoryRequest request, DirectoryException de, Int32 totalRetries, Int32 retriesOnServer)
   at Microsoft.Exchange.Data.Directory.ADDataSession.ExecuteModificationRequest(ADObject entry, DirectoryRequest request, ADObjectId originalId, Boolean emptyObjectSessionOnException, Boolean isSync)
   at Microsoft.Exchange.Data.Directory.ADDataSession.SaveSecurityDescriptor(ADObject obj, RawSecurityDescriptor sd, Boolean modifyOwner)
   at Microsoft.Exchange.Management.Tasks.InitializeConfigPermissions.InternalProcessRecord()
   at Microsoft.Exchange.Configuration.Tasks.Task.<ProcessRecord>b__b()
   at Microsoft.Exchange.Configuration.Tasks.Task.InvokeRetryableFunc(String funcName, Action func, Boolean terminatePipelineIfFailed)"

Solution 1:

There are two ways to work around on this issue. You use the first work around when you don’t have the built-in administrator account access.

You need to launch Active Directory Users and Computers and, on the view menu, make your advanced features on the view menu is ticked.

" was run: "Microsoft.Exchange.Data. Directory.ADOperationException:

Next, find the user that you are trying to install the exchange server with and open the properties and advanced settings on the security tab enable inheritance and click apply.

" was run: "Microsoft.Exchange.Data. Directory.ADOperationException:

Also make sure the account you are tying to install CU is member following groups.

Enterprise Administrators

Schema Admins

Domain Admins

Organizational Management

Relaunch the CU upgrade setup and the error won’t be there in this time.

Solution 2:

Or if you have administrators account password with you, just login with administrator account and launch the CU installation setup.

Hope this would help someone.

Windows Server 2022

How to promote Windows Server 2022 as Domain Controller

By Kannan January 9, 2020

In this article, we are going to take a look at Domain controller installation and configuration of Active Directory domain services Role on Windows Server 2022 and promote Windows Server 2022 as Domain Controller.

The first step will be to install the ADDS binaries and then promote Windows Server 2022 to a Domain Controller.

In the first place install the Active Directory Domain Services role to the Windows server 2022.Log on to the server as Local Administrator and launch server manager and in the top menu select Add Roles and Features.

This will start the Add Roles and Features wizard and it will show the before you begin the instructions window. You can select Next and go to the next prompt.

Click Next

In the Select Installation Type, select Role-based feature-based installation

Click Next

Continue with the default selection on Select Destination Server as we are going to install it on the local server.

Click Next

On the Server Roles list click Active Directory Domain Services role.

When you select Active Directory Domain Services Role it will prompt for required Features to add and click Add Features.

As the Active Directory Domain Services and DNS Server roles are selected in the Add roles wizard.

Click Next

On the Features selection leave the default, click Next.

The next screen will outline the things to note about Active Directory Domain Services, you may go through this for your understanding.

Click Next.

The installation of Active Directory Domain Services and DNS role will be installed and you can view the installation progress.

A screenshot of a cell phone Description automatically generated

The Active Directory Domain Services and Domain Services and DNS Server Roles are Installed, now you can close the AD Roles and Features Wizard this will return back to Server Manager

On the Server Manager select the notification icon and continue with post-installation configuration which is promoting the server as Domain Controller.

Select Notifications and click “Promote This server to a Domain Controller”

promote Windows Server 2022

This will start “Active Directory Domain Services Configuration Wizard”

Select Add a New Forest in the Select Deployment Operation options.

Type the domain name as you want.

Click Next.

promote Windows Server 2022

In the next screen leave the settings default and type password for “Directory Services Restore Mode”. This password is different from the Administrator login password. So you can type the password and keep it somewhere in the secured place.

promote Windows Server 2022

In the DNS options leave the default

Click Next

promote Windows Server 2022

By default, the NetBios name will be shown prefix of the Domain name and leave the default.

Click Next

promote Windows Server 2022

You may change the path of the Database, log and Sysvol folder, but you can leave it to default and Continue

Click Next.

promote Windows Server 2022

Go through the review Options

Click Next.

promote Windows Server 2022

The prerequisite check will verify the Domain Controller Operation, once completed you would get an All Prerequisite check passed green tick.

Click Next.

promote Windows Server 2022

The installation will complete the configuration and restart the server automatically.

promote Windows Server 2022

Once the server restarted, on the login screen type the administrator password which was used before and log in.

promote Windows Server 2022

Launch Server Manager and select Tools –> Active Directory users and computers, which will open Active Directory Users and Computers management console.

promote Windows Server 2022

You can add users, groups and other objects and start to using Active Directory Domain Services.

promote Windows Server 2022

The Windows Server 2022 Domain Controller Installation Completed Successfully.