Below is my ever growing list of customizations and tweaks for installing SBS 2011.
Before you can run PowerShell scripts, you will need to set the execution policy with the following command:
Set-ExecutionPolicy Unrestricted
[blue]
Enable AntiSPAM Filters[/blue]
Open Exchange Management Shell.
Change directories to the Exchange Scripts folder.
Execute the following:
.\install-AntispamAgents.ps1
[blue]
Set max message size[/blue]
Set-TransportConfig -MaxRecipientEnvelopeLimit 75MB -MaxReceiveSize 75MB -MaxSendSize 75MB
[blue]
Allow 2003 Outlook clients[/blue]
Set-RpcClientAccess -Server servername -EncryptionRequired $false
[blue]
Configuring Autodiscover[/blue]
In public DNS create an A record called
autodiscover and point it to the public IP of the SBS server.
In internal DNS, create a SRV record. Name it
_autodiscover, set the protocol to
_tcp with the port number of
443 and set the host name to be the address you used for your public certificate, by default this will be
remote.yourdomainname.com
Then you must run the following commands on the Exchange 2010/SBS Server, be sure to launch PowerShell in Administrator mode:
Set-ClientAccessServer -Identity [red]CLIENTSERVER[/red] -AutoDiscoverServiceInternalUri https://remote.[red]clientdomain[/red].com/Autodiscover/Autodiscover.xml
Set-WebServicesVirtualDirectory -Identity "[red]CLIENTSERVER[/red]\EWS (Default Web Site)" -InternalURL https://remote.[red]clientdomain[/red].com/EWS/Exchange.asmx -BasicAuthentication:$true
Set-OABVirtualDirectory -Identity "[red]CLIENTSERVER[/red]\OAB (Default Web Site)" -InternalURL https://remote.[red]clientdomain[/red].com/OAB
Enable-OutlookAnywhere -Server [red]CLIENTSERVER[/red] -ExternalHostname "remote.[red]clientdomain[/red].com" -ClientAuthenticationMethod "Basic"-SSLOffloading:$False
Set-ActiveSyncVirtualDirectory -Identity "[red]CLIENTSERVER[/red]\Microsoft-Server-ActiveSync (Default Web Site)" -ExternalURL https://remote.[red]clientdomain[/red].com/Microsoft-Server-Activesync
[blue]
Enable the AD Recycle Bin[/blue]
This step can only be done if there are no domain controllers less than 2008R2.
Launch Powershell with AD Modules from Adminstrtive Tools.
Execute the following 2 commands.
Set-ADForestMode ûIdentity [red]company.com[/red] -ForestMode Windows2008R2Forest
Enable-ADOptionalFeature ûIdentity 'CN=Recycle Bin Feature,CN=Optional Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,DC=[red]company[/red],DC=[red]com[/red]' ûScope ForestOrConfigurationSet ûTarget '[red]company.com[/red]'
To restore an object refer to the following link.
http://technet.microsoft.com/en-us/library/dd379509(WS.10).aspx
[blue]
Potential Issues After Installing SharePoint Foundation 2010 Security Update[/blue]
Supporting documentation is here: http://blogs.technet.com/b/sbs/archive/2011/09/16/potential-issues-after-installing-sharepoint-foundation-2010-security-update.aspx
All you need to do is run these commands in an elevated command prompt:
Code:
CD "C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN"
PSConfig.exe -cmd upgrade -inplace b2b -force -cmd applicationcontent -install -cmd installfeatures
