Hi, I am working on a migration from my existing Exchange2003 to Exchange2010. My preexisting setup is two AD servers with one also being the Exchange2003 server (only 1 exchange server) I have installed two new Windows2008R2 servers to be the AD servers (as well as some other tasks) and another Windows2008R2 server to be the new Exchange2010 server. I am running the needed versions of exchange2003 and windows2003, I am in native mode, I have installed the prerequisites etc. I am now trying to run the command "setup /PrepareLegacyExchangePermissions". It copies the setup files and then goes to the Organization Checks which both complete ok Then it says "Updating legacy permissions" and Fails. It then says "Active Directory server XXX.YYY.com.au is not available. Error message: A local error occoured". If i run the command again it cycles through the 4 AD servers that i currently have. I have been googling and have not found this problem. Any thoughts? Thanks Ian

Hi there, Although these questions may seem pretty stupid, it might be necessary to check the following: - from what server are you trying to run the setup? - with what user are you logged in into that server? Grts, Michael

Hi, There are no stupid questions.. i feel stupid for not being able to work this out. Ok, I have these servers: Mail - Windows 2003, AD server, Exchange 2003 server (old server) Tardis - Windows 2003, AD server, File & print server (old server) MGMT - Windows 2008R2, AD server, other management stuff (new VM server) File - Windows2008R2, AD server, File server (new VM server) EX10 - Windows2008R2, intended exchange 2010 server (new VM server) I am logged into EX10 as the domain's admininistrator user. It is a member of every admin group there is. The new AD servers all seem to be working fine. they are all DNS and DHCP servers (different dhcp ranges). MGMT is the FSMO server. AD is in 2003 mode. Exchange 2003 is in native mode. The AD tools are installed on EX10 and i can make a change (from EX10) in ADUC which is reflected on the AD servers I'm not sure if this will help but i found the logs for the update process and i'll copy some parts below. This is from the ExchangeSetup.log [02/21/2011 22:29:57.0839] [0] [ERROR] Setup encountered a problem while validating the state of Active Directory: Active Directory error 0x8007203B occurred while searching for domain controllers in domain ampco.com.au: A local error has occurred. [02/21/2011 22:29:57.0854] [0] [ERROR] Active Directory error 0x8007203B occurred while searching for domain controllers in domain ampco.com.au: A local error has occurred. [02/21/2011 22:29:57.0854] [0] [ERROR] A local error has occurred. This is from the ExBPA.201102221412243585.log 14:12:35.125: Starting the Collecting Data phase. 14:12:35.594: Active Directory server tardis.ampco.com.au is not available. Error message: A local error occurred. 14:12:37.407: An error occurred (The ((&(objectClass=server)(|(cn=)(dNSHostName=)))) search filter is invalid.) while trying to search for the object LDAP://cn=Sites,CN=Configuration,DC=ampco,DC=com,DC=au-(&(objectClass=server)(|(cn=)(dNSHostName=)))-Subtree. Skipping object. 14:12:37.844: Completed Collecting Data phase. 14:12:37.969: Starting the Postprocessing Rules phase. 14:12:38.032: Completed Postprocessing Rules phase. I have started looking for AD error 0x8007203b but have not found a viable cause yet. Any points in the correct direction will be a great help. Thanks Ian

Hello Did you installed all the Pre-requites? Check whether you have installled RSAT tools if not try installing RSAT tools from command prompt ServerManagerCmd -i RSAT-ADDS Open the ADUC create some objects and check if you have firewall enable on both the servers try to disable it or stop any antivirus services running on it. Thanks Mhussain

Indeed, can you verify that you've met all prereq's? Can you confirm that the schema-preparation ran successfully? Greets, Michael

Hi, I checked my software versions where correct. I made sure my Ex2003 was in native mode. One article i have found mentioned "install the hotfix from Microsoft KB article 937031" which i haven't done. could that be it? My FSMO is a Win2008R2 so thats high enough. 3 of my DCs (my old mail server and my two new Win2008R2 DCs) are GC. Forest and Domain are at 2003 level. I am installing onto Win2008R2 so according to the guides i didn't have to install "Windows PowerShell 2.0, WinRM 2.0, and BITS 4.0". I copied the DVD to a hard drive. I then ran this command E:Cd Exchange2010DVD\scriptsServerManagerCmd –ip Exchange-Typical.xml –restart Which includes RSAT-ADDS in the xml. I didn't see any error messages so i assume it installed correctly.. how would i check? I then downloaded and installed the Filter Pack. I then ran this command sc config NetTcpPortSharing start= auto net start NetTcpPortSharing The next step in the guides that i am reading / following is setup.com /PrepareLegacyExchangePermissions (or /pl) And this is where i am getting stuck. Ian

Something similar happend to me a while ago, all i had to do was to open the CMD as administrator with the right click option, have you tried that?

Hi, Yes, i have tried running as admin and as non-admin when running the setup /pl I don't think i was in as admin when i did the servermanagercmd listed above. would that make a difference and can i run that command again without causing problems? Ian

Could be a permissions issue. I would run the ExBPA and see what it reports. Did you disable antivirus software as MMHussain suggested? I had similar trouble until I disabled McAfee for the duration of the install.

Hi, Something odd has happened. I applied some updates and re-started most of my servers over the weekend. Everything seems to be OK. all servers started as normal. file, print and exchange are all working correctly. But... Now, when i go to the future ex10 server and run the exchange Pre-Deployment Analyzer (which i have run about 4 time before without problems) gets an error. It checks for updates (finds none), then goes to the welcome screen, I select "new scan", it has the AD server (which is also my ex03 server), i select to "connect to the AD server", the progress works along to 100% and then a popup says "An operations error occoured". The logs (both the exchangeSetupLogs and the Event viewer logs) have no new content so i don't have an error code or anything. I have also tried specifing the account information for connecting to AX and EX help Ian

Hi Again. I think i have gotten back to where i was before. the AD BPA had an item about DES encryption which was ticked in the administrators account and was sugesting that i should change to an AES encryption. I had a look at my 2003 DC and couldn't see an option that matched the AES ones on the 2008 DC so i looked for fixes for alowing DES (atleast till i get rid of the 2003 DCs). One comment found mentioned resetting the password (to the same as it's current password) on the 2008 DC would regenerate the needed keys. I did that and restarted the machines and now the future exchange member server can once again get into the ADUC and run the exchange pre-deployment analyzer (with no problems listed). I am still getting an error when trying to run the exchange "setup /pl" command. Updating legacy permissions ......................... FAILED Active Directory server mail.ampco.com.au is not available. Error message: A local error occurred. Ian