In-Depth

New Mail Carrier

Exchange Server 2003 is out, with improvements in mobile access and content delivery, and enhanced Outlook Web Access functionality among other upgrades. Here are the top 13 new features you need to know about.

• By Bill Wade and Ed Brovick
• 11/01/2003

OK, so Exchange Server 2003 is out. Your boss has read about it on a news Web site and wants to know, by Thursday’s meeting, whether or not the company needs to consider upgrading or migrating to it. He wants specifics on the design, implementation and management costs of moving to Exchange 2003 vs. the costs of staying on Exchange 5.5. And don’t forget the concrete ROI figures. Of course, you have to fit this into your normal harried schedule, because you’re not getting any of your other work offloaded to make room for this little task.

Here’s a starting point for your journey. We take a look at the 13 most important improvements in Micro-soft’s newest messaging platform, to help you determine the potential for improving your e-mail service. Hurry up! Thursday will be here before you know it.

1. Shutting the Spam Spigot
Exchange 2003 now supports Real-time Safe and Block Lists, also known as RBL. With RBL, organizations can subscribe to a service that keeps lists of IP addresses that allow spam and/or SMTP relaying. Exchange 2003 can be configured to check the IP address of every incoming SMTP connection with the RBL provider. When a sending SMTP server connects to the Exchange 2003 SMTP virtual server, a simple DNS-style query is done to the RBL service provider. Depending on the response code returned by the RBL service provider, the SMTP connection is either allowed to continue or is terminated.

This approach to spam adds very little overhead to the messaging system. Messages aren’t scanned for keywords or bounced around from server to server, and the message is never allowed to enter the messaging system. The drawback is that your protection is only as good as the lists maintained by the service provider.

RBL configuration provides for a wide variety of RBL provider scenarios and configuration options. In the simplest case, an administrator configures an RBL provider that returns a single code for all dangerous addresses. In a more complex configuration, multiple Block List Services can be configured, each providing a specific block list area of expertise. One Block List Service, for instance, might focus on open relays and another might focus on known spammers. Each of these services might have a unique response coding scheme.

2. Anti-spam Integration with Outlook 2003 and
Outlook Web Access
Outlook 2003 users can establish their own safe and block lists. Block lists are lists of users or domains that Outlook will identify as Junk Mail. Safe lists contain users and domains from which the client allows messages. These lists of users and domains are stored in the mailbox on the server. Storing the lists on the server makes them available to the Outlook Web Access (OWA) client. This way, lists built when using the Outlook 2003 client can also be used by OWA.

3. Improved Virus- Scanning API
A new version of the Virus Scanning API, 2.0, was delivered with Exchange 2000 SP1. This version of VSAPI improved e-mail scanning and reporting on the sender and recipient of the virus. Exchange 2003 has yet another version, 2.5, that allows antivirus products to run more easily on front-end Exchange servers, delete infected messages and send notifications to the sender of the infected message.

4. Air Mail
Outlook Mobile Access (OMA) gives mobile users a new way to access Exchange 2003 mail. Users can access e-mail, contacts, calendar and tasks with mobile devices such as cell phones and PDAs that support HTMP, xHTML or cHTML. The interface takes a little time to get used to because of the text-based menu interface on a small device, but all the information from your mailbox or address book is there. The default URL for access is http:///oma, where you get prompted for a logon. This can be cumbersome in the age of complex passwords. Once logged in, you can read, reply to and forward messages, as well as look up address book information, change your password and perform other common messaging tasks. It’s also useful for dial-up connections. Just open your mailbox using your PC’s browser and get a text-based interface, which is much quicker than the Outlook GUI over slow connections.

OMA is installed by default with Exchange 2003. OMA can be configured at the user level and at the enterprise level. By default, users are enabled for OMA, but as you can see in Figure 1, the enterprise isn’t. Also notice that there’s a grayed-out option to enable unsupported devices. Activating support for unsupported devices may have some unexpected results, but in our tests, we were able to use OMA and unsupported devices to access Exchange information.

Figure 1. Although Outlook Mobile Access is installed by default, it’s not enabled by default. Do that here. (Click image to view larger version.)

5. Message Recovery Made Easy
IT mail administrators flinch when their cell phones ring and the IT director’s on the other end asking if a message can be recovered. And things were only made worse with the move from Exchange 5.5 to Exchange 2000 with Active Directory integration complicating things. Fortunately, Exchange 2003 greatly simplifies the process with the Recovery Storage Group.

The Recovery Storage Group allows recovery of information stores on a live production server with active users. Once a Recovery Storage Group is created on a production server, information stores can be restored and messages moved to one or more mailboxes.

A companion to the Recovery Storage Group is a new version of the Exchange Migration Wizard, or Exmerge. When recovering messages, ExMerge moves messages from the recovered information store to the production information store, allowing for more disaster recovery scenarios. One example is when a user mistakenly deletes a message. The recovered information store and ExMerge are used to move messages within a certain date range back into the mailbox. This is a much-needed improvement to the disaster recovery options of previous version’s Exchange server. Another example is the recovery of a single mailbox. When a store becomes corrupt, it’s now possible to get the users up and running as soon as possible using a new store. The Recovery Storage Group can then be used to backfill recovered messages from the recovered store into the new production information store.

6. Mailbox Recovery Center
The Mailbox Recovery Center (MRC) is a new feature that assists in the recovery of mailboxes deleted from the directory (along with the AD user). MRC allows administrators to accomplish a variety of useful tasks during a recovery. In organizations with several Exchange servers and several information stores, when an AD user and mailbox is deleted from the directory (but the mailbox is retained under the mailbox retention policy), it’s common for the user to be recreated and re-associated with the mailbox. However, in large organizations, there’s no easy way to locate the mailbox. The MRC allows you to gather all deleted mailboxes and re-associate them with an AD user.

7. Better, More Accurate Backups
Exchange 2003 takes advantage of Windows Server 2003’s (if you’re running 2003) new shadow copy capability. The Exchange 2003 volume shadow copy feature is better than traditional backup methods because it takes a snapshot of the disk at the start of the backup. Once the snapshot is taken, the backup is made of the snapshot. This ensures that the backup is of a single point in time. Pre-Exchange 2003, backup of an information store started as the information store was changing.

One caveat: Shadow Copy backup is really only practical with full backups. Those familiar with Exchange backup schemes know that you can perform a full backup and then follow it up with differential or incremental backups. These are then restored on top of the full backup to create a complete restore, minimizing backup time. Since the differential and incremental backups only back up the transaction logs, a volume shadow copy would defeat the point of backing up only the transaction logs.

8. More Efficient Distribution Groups
A common Exchange feature used by organizations is distribution groups. While convenient for users, administering distribution groups can be time consuming, as individuals are added to and deleted from distribution groups as they change roles and enter or leave an organization. To simplify managing these lists, Exchange 2003 has query-based distribution groups. Distribution group membership is dynamic, based on an AD query at the time a message is sent. Users who meet the criteria of the LDAP query will be sent the message.

Query-based distribution groups are a great way to create distribution groups for individuals based on location or role. Rather than having to keep up a list of all the individuals in a particular building or office location, a mail administrator can create a query-based distribution group based on the Office field of the AD user account.

Another feature mail administrators struggle with is the All Employees or All Managers distribution group. These types of distribution groups are used for internal administrative purposes and not intended for use by regular users. We’ve all seen the e-mail from the novice user to the All Employees distribution group about selling his used lawnmower, which resulted in six replies to the All Employees distribution group. Exchange 2003 has distribution group restrictions that allow administrators to determine who can send messages to a distribution list, allowing only select users to send messages to these groups. Exchange 2003 can also be configured to only accept messages from authenticated users, keeping e-mail from outside the organization from being delivered to members of the distribution group.

9. Beefed-Up Deployment Tools
Deploying Exchange is now easier with help from the Exchange Server Deployment tool, a set of tools with a wizard-type user interface that walks you through the migration process. There are two starting points for moving to Exchange 2003—from Exchange 5.5 and Exchange 2000.

If you use Exchange 2000, the migration is simplified by the fact that both use AD. Exchange 2000 servers can either be upgraded in place, or new Exchange 2003 servers can be added to the existing organization and mailboxes can be moved between the two.

Since in-place upgrading isn’t an option from Exchange 5.5, the Exchange Deployment Tool guides you step-by-step through the migration process. The deployment tool takes you through the planning steps, uses tools to validate configuration of underlying services like global catalogs and the schema, and provides a trail of logs to troubleshoot inconsistencies that may occur during the process.

After guiding you through the planning, the deployment tool then steps you through preparing AD for Exchange 2003 with ForestPrep and DomainPrep. Once AD is prepared, the tool guides you through the once-complicated procedure of setting up the AD Connector. The new AD Connector tool helps identify resource mailboxes in Exchange 5.5 and configures the necessary connection agreements to effectively coexist between Exchange 5.5 and AD.

Another tool that greatly helps simplify a migration from Exchange 5.5 is PFMigrate. This helps to easily configure an Exchange 2003 server to have all Public Folder instances of an identified Exchange 5.5. After the public folder contents have replicated to the Exchange 2003 server, the tool removes the public folder instances from Exchange5.5. Another improvement in the Exchange 2003 public folder architecture allows any public folder to act as a primary replica, so any public folder can be removed from the replica list.

10. Outlook Via the Internet
Outlook 2003 can now access Exchange 2003 from the Internet over HTTP. This isn’t as much a function of Exchange 2003 as it is a feature of Windows 2003. Windows 2003 has an RPC over HTTP service that takes RPCs from within HTTP and passes them along to their destination, in this case, an Exchange 2003 server. Outlook 2003, when configured to use RPC over HTTP, encapsulates RPC into HTTP and connects to a URL configured in the Outlook profile.

This is exciting for mobile users that don’t need Virtual Private Network (VPN) connections, but still have to get their e-mail and work offline. It’s ideal for, say, a salesperson who travels and needs to work with e-mail offline using the Outlook 2003 local mailbox copy but doesn’t need access to other internal corporate resources when out of the office. Users can connect from any Internet connection to their Exchange server and work online, upload or download messages, and take those messages with them.

11. Outlook Web Access (OWA)
This Exchange feature continues to improve. The most obvious change is the user interface: OWA now looks very similar to Outlook 2003 (see Figure 2). With both clients up, it’s difficult to tell the difference between the two without looking closely. Beyond the new look and feel, OWA has several added features. Some of the best ones are listed in Table 1.

Figure 2. Using Outlook Web Access in Exchange 2003 isn’t much different than using Outlook. (Click image to view larger version.)

12. Exchange ActiveSync
With Pocket PC 2002 device support, and the Exchange ActiveSync feature available with Exchange 2003, users are able to synchronize their Exchange information to their mobile devices over a network connection. And wireless devices with a secure connection are able to synchronize with Exchange 2003 information. No longer do you have to dock your mobile device with your PC; now you can do it across a wireless network. Coupled with a VPN connection from your Pocket PC device, you can even synchronize over the Internet.

13. Always-Up-To-Date
The combination of wireless support for ActiveSync in Windows Mobile 2003 (PocketPC 2003) and a VPN supports an always-up-to-date feature of Exchange as well. With always-up-to-date, Windows Mobile 2003 devices can periodically synchronize with the Exchange 2003. This service requires a third-party tool to be configured on your Exchange 2003 server. With the always-up-to-date feature enabled, the Exchange server sends a message to the mobile device when a new message arrives. If the mobile device is on and it receives the message, the mobile device then synchronizes using ActiveSync to synchronize with Exchange.

Table 1. New OWA features

Feature Description Spelling checker Messages are checked against a server-based dictionary. You can choose different language dictionaries. The subject line isn’t checked for spelling errors. Forms-based authentication Adds a logon page to OWA for choosing Premium or Basic functionality, depending on connection speed. You can also choose a Public or Private computer. Right-click recipients Right-click a recipient’s name and have it added to your contacts. Web Beacon blocking Web Beacons are used by spammers to determine who’s successfully received a message. You’re given the option of downloading the blocked content if you choose. Increased security OWA supports S/MIME, allowing digital signing and encrypting of messages. Adding Senders or Recipients to Contacts Easily add users in the message to Contacts list with a couple of clicks. Inbox rules Modify server-side Inbox rules. Attachment blocking Can be configured so that all attachments or certain attachments are blocked when using OWA. Signatures Automatically add signatures to outgoing messages. Improved performance Streamlining the logon process, compressions and moving some of the processing to the local computer has increased performance. Task lists A task can have a due date, start date, status, priority, percent complete and reminder. Task requests are not supported.

Decision Time
The question all those who currently have Exchange must ask is, “Do these improvements in the product merit an upgrade from our current version?” We believe the answer to this question lies in what version of Exchange you’re using today, or if you require the new services provided by Exchange Server 2003.

If your organization is using Exchange 5.5, and the future of your messaging system is either Exchange 2003 or the next version, the choice is clear—upgrade to Exchange 2003. We’re not saying you should upgrade today, or even this year, but when you’re ready—when your Active Directory is in place, preferably on Windows 2003. The process of migrating from Exchange 5.5 to Exchange 2003 has been refined, simplified and been in use since the release of Exchange 2000.

The upgrade path to the next version of Exchange is unclear. At this moment, the next full version of Exchange will be built using the Unified Storage Architecture. This architecture is dependent on several other systems outside the control of Exchange. The availability of these systems and what they will look like when released is too far out in the future to depend on.

If your organization is using Exchange 2000, the decision comes down to the improvements and enhancements to Exchange 2003, and the cost vs. benefit of the upgrade. If mobile messaging and Office 2003 isn’t a direction you’re heading, and if other systems provide adequate security and spam control, the benefit may not exceed the cost. However, if the features and improvements in this article provide a compelling case to upgrade, the process of upgrading from Exchange 2000 to Exchange 2003 is a fairly simple one and should be strongly considered.