Microsoft Exchange Server 2010 Architecture

Management and Monitoring Exchange Server 2010 High-Level Architecture Internet

Edge Transport Server Role
Scope (Where) Defines the objects in Clients
Remote PowerShell Role Based Access AD that the Role can act on.
Client Access Server Array HTTP, POP3, IMAP4
The Edge Transport server role cannot coexist on the same computer with any other server role.
For example, the Boston Users OU Anti-spam and anti-virus filters Recommendation: Install the Edge Transport server role on a computer that is not part of a domain.
Remote PowerShell extends PowerShell Control (RBAC) (CAS Array) Clients • Connection Filter
from servers to client computers so Boston Serves as a single contact point PBX SMTP
Role Assignment – The link that Role Group (Who) A security • Sender Filtering Edge Transport
commands can be executed remotely. Set-AddressList Users Scope group that defines Who gets a for all client connections within Outlook • Recipient Filtering Hub Transport
holds together the Who, What, (Where) Server Edge Subscriptions

Priority
Exchange Server 2010 takes advantage and Where. specific scope applied to an Active Directory site. • Sender ID Filter Server
Set-AddressList them. For example, the Mobile Run once to establish and automatically configure
of new PowerShell v2.0 and Windows Can include one or many Client • Content Filter SMTP connectors to route email to and from the
Boston Exchange Admins Access servers. Device • Sender Reputation Deliver
Remote Management Role Exchange organization and the Internet.
All Exchange management tools are built on Remote PowerShell. Each Active Directory site can • Attachment Filter
Add/Del/Mod Assignment
Remote PowerShell enables administrators to run Exchange cmdlets on computers have a single Client Access • Virus Scanning
Users VoIP Hub Transport
without the need to install Exchange management tools. server array. • Outlook Junk E-mail Filter
Role (What) – Defines what can Gateway Server
Boston Exchange Does not provide load Edge
be done by a set of cmdlets and Admins balancing. A separate load Transport
parameters that can be run. Role Role Group Active Directory
Exchange Control Panel (What) (Who) balancing solution is still Server
Quarantine SMTP Send Domain Controller
Management Tools now include the Exchange Control Panel (ECP). A web-based needed. Client Connector
management console accessed from browsers that have no Exchange client-side software Role Based Access Control (RBAC) enables you to control, at both broad and precise levels, what administrators Recommendation: Create a Unified Access Edge Transport
and users can do. RBAC also enables you to more closely align roles you assign users and administrators with the Client Access server array even Messaging Server
installed. ECP gives users the power to manage distribution lists, track messages, and edit Server Incoming e-mail Server SMTP Receive
personal information. actual roles they hold within your organization. if you only have a single Client Hub
Transport Discard Connector
Access server.
Three ways of assigning permissions: Server Mailbox
Configuration done using Exchange Control Panel
Management Role Groups Server Non-delivery SMTP Send
Dozens of default roles pre-configured and easily customizable Microsoft Exchange EdgeSync service
Management Role Assignment Policies receipt Connector pushes information from Active
RBAC is built into all management tools
Direct User Role Assignment Directory to AD LDS instance on Edge
Administrators Specialty Users Users Client Transport server using secure LDAP.
DNS MX Active Directory
Recipient management Perform multi-mailbox View account information Monitoring Management Exchange Server 2010 Exchange
Access
Record SMTP Receive LDS Instance
Management Pack for Server Connector
searches and manage settings Monitoring Exchange components is important to understand the Server Server Mailbox
Operations Manager 2007 Hub
health state of servers and server roles. Server Transport
Manage role groups and Manage common Manage group ownership Out of the box synthetic transactions via Remote PowerShell (test-*) Active
Operations Manager Server
role assignment policies settings for other users and membership Complete management pack for System Center Domain
Agent Directory Site A Controller Domain
Operations Manager Controller
Active Directory
Site B Hub Transport Server Role
Exchange Server 2010 includes the following server roles:
Unified Messaging Server Role
Exchange Server 2010 Server Internet The Hub Transport Server role is responsible for all mail flow inside the organization. It is also where
Mailbox Server Back-end server that can host mailboxes and public folders.
Call Answering Rules Integrating Voice with Exchange System Requirements transport rules, journaling policies, and Information Rights Management policies are applied.

New in Exchange Server 2010 Unified Messaging (UM), users can configure how incoming There are two main types of integration between a PBX and Unified Messaging. Exchange Server 2010 requires a 64-bit server Edge Transport
Client Access Server Middle-tier server that supports all Messaging clients, operating system.
phone calls are handled with custom rules configured in the Exchange Control Panel. For IP enabled PBX, it may be possible for the PBX to communicate directly with the Unified Messaging server. Server
including Outlook, OWA and Exchange Web Services. When email is sent from
Each Call Answering Rule has two parts: For a legacy PBX, Unified Messaging requires a VoIP gateway to convert TDM-based voice traffic to VoIP. Exchange Server 2010 can be installed on Windows another Active Directory site to
Server 2008 SP2 or Windows Server 2008 R2 . Email from Email to the Internet, these emails are
Conditions - what criteria must be met before the rule will be applied to an inbound call. IP Unified Messaging Server Middle-tier server that connects a PBX system to Exchange and first relayed to the Active
PBX SIP/RTP combines voice messaging and email messaging into a single messaging infrastructure. Internet Internet
Directory site where Edge The Categorizer processes all email
If the caller is… Active Directory must be at Windows Server 2003 Transport servers are
Phone and determines what rules and
TDM forest functionality mode or higher. subscribed. policies need to be applied based on
If during this period… Hub Transport Server Email routing server that routes email within the Exchange organization.
Unified the final recipient of the message.
At least one writeable domain controller server and a
If my schedule shows that my status is… PSTN Messaging Email from Email to
Global Catalog Server (running Windows Server 2003
Server Edge Transport Server Email routing server that typically sits at the perimeter of the topology SP1 or later) in every Active Directory site that hosts other sites other sites
If automatic replies are turned on…
TDM and routes email in to and out of the Exchange organization. Exchange Server 2010. Hub Transport
TDM SIP/RTP Decryption agent
Actions - what actions will be presented to the caller when all the conditions are met. The Server Categorizer
PBX Decrypt AD RMS protected
caller will hear the options and select using the phone pad. messages from the Transport
Note: All Exchange server roles can be deployed on the same server except the Edge server role.
Find me VoIP Gateway Submission Categorizer Delivery pipeline.
Queue Queue Agent Processing Protects the organization against
Transfer the caller TDM = Time-Division Multiplexing (or Time Division Multiplexed), non-IP based (circuit switched) telephony Submitted messages viruses and unwanted content.
PBX = Private Branch Exchange or phone switch Generates a journal report when a
Leave a voicemail SIP/RTP = Session Initiation Protocol/Real-time Transport Protocol, are multimedia communications protocols message matches a journal rule.
Recipient Resolution
SIP Unified Messaging Hub
D Notify Server Server Call Answering Agents are registered in a
1 Routing
UM answers the call, plays a greeting, and then takes Store Driver configuration file and enabled using
PSTN 4 Email from Email to
a message. The message is delivered to the user‟s Exchange Management Shell script.
VoIP
3 Outbox Inbox
Gateway mailbox.
Caller Content Conversion
PBX Outlook Voice Access
2 A This enables a user, from any phone, to retrieve
Shadow Transport Rules agent
Voicemail Preview Message Waiting Indicator Queue Applies rules to messages, based
C messages (voice or email), access their calendar, or Agent Processing on specified conditions.
Unified Messaging uses automatic speech With MWI, Exchange Server notifies users call Active Directory users or contacts. Shadow Redundancy resubmits a Routed messages Decrypt Journal Reports that
recognition to create text from the voice of the presence and number of new or message, if the next hop should fail contains RMS messages.
UM Auto Attendant AD RMS Encryption agent
recording, and inserts it in the voice message. unread voicemail messages on their Fax to acknowledge successful delivery.
B Answer calls, play prompts to callers, present menus Mailbox Message Packaging AD RMS PreLicense agent
The process is as follows: supported desk phones. Server Requests a AD RMS Usage
and allow callers to contact users by speaking or
1. Unanswered call is forwarded to the UM server. A. Voicemail message is delivered to user‟s mailbox. Mailbox Server entering their names or extension numbers. Client Access Server Role License on behalf of the recipient.
2. UM server plays user‟s greeting (stored in their mailbox). B. UM Mailbox Assistant receives a notification message.
3. UM server records caller, creates preview text, inserts C. UM Mailbox Assistant choses a UM server and proxies the request to the UM Play on Phone
with audio into message. server. Allows users with Outlook 2007 or 2010, or Outlook
4. UM server sends message to user‟s mailbox via Hub D. UM server chooses a VoIP gateway and sends a SIP NOTIFY through the Web App, to play back voice messages under RPC Client Access Service Exchange ActiveSync Outlook Web App
Transport Server. gateway to the user‟s phone. Outlook/OWA control on any phone. Exchange Server 2010 moves most client processing to the Outlook Web App redesigned
Allow/Block/Quarantine list SMS Sync
Client Access Server to provide all data access through a Approved device list Outbound for Exchange Server 2010
single, common path. This change improves consistency for By device type 1. User composes SMS message Supports all major browsers.
applying business logic to clients, and provides a better client By user in Outlook or OWA Conversation view lets users see all High Availability
Mailbox Server Role experience when failover occurs. Block an unsupported 2. Exchange ActiveSync connection
transfers message to user‟s phone messages in a thread, including
Provides a single point of data access using a common path device
3. User‟s phone sends SMS to messages not in the current folder.
for client connectivity including Web, MAPI, POP/IMAP, Quarantine Microsoft Exchange Server 2010 integrates high availability and disaster recovery deep in its architecture, making it less costly and easier to
intended recipient OWA can be configured to work with
Personal Archive and Retention Policies Mailbox Moves Address Book, Autodiscover, and ActiveSync. Email sent Office Communications/Lync Server deploy and maintain than ever before. Exchange Server 2010 offers a unified solution for high availability, disaster recovery, and backup.
STATUS=QUEUED Admin approved
Personal Archive Retention Policies and Tags Mailbox moves are asynchronous and done by the Exchange Clients connect directly to the CAS Server. Inbound
STATUS=IN PROGRESS without using Office Communicator.
Provides users with an alternate storage location A Retention Policy is a group of retention policy Mailbox Replication Service (MRS) on CAS server roles. Uses the same Business logic Database Availability Group Location A All client Location B
STATUS=COMPLETION IN PROGRESS Outlook All SMS messages to phone are Users can share their calendars Easy to extend
to store historical messaging data. tags that can be applied to a mailbox. Exchange Server 2010 and Exchange 2007 SP2 mailboxes for Outlook and other CAS clients: computers connect
Messages can be moved to the personal archive are kept online during the move process.
STATUS=COMPLETED synchronized to Exchange, using with people outside your Features: across sites
A mailbox can have at most one retention policy. Data validation, especially Calendar logging Windows Mobile 6.1/6.5 Exchange ActiveSync, for access via CAS
manually or automatically using retention policies. Recoverable Items folder items are moved with the organization.. Database-level failover managed within Load Balancer
Retention Tag actions can include Move to Active Directory Archive mailbox infrastructure Outlook Mobile Clients can Alternate Witness
mailbox (Exchange Server 2010 only).
through any mail client Exchange.
Appears alongside the user's primary mailbox in Archive, Delete and Allow Recovery, and Content/body conversion be updated over the air. CAS Server
Mailbox servers which are members of a Witness Server
Outlook or Outlook Web App. Permanently Delete. Mailbox moves can be local or cross-forest (remote). MRS Mobile
Archive Quota can be set separately from primary mailbox On move completion, the mailbox on the CAS Device Database Availability Group can host
Default Policy Tag - A default policy tag CAS Server
(DPT) applies to items that do not have a original database is soft deleted. Server Exchange Web Services (EWS) OWA other Exchange server roles.
Array
Message retention tag applied. Primary and personal archive mailboxes 2 High availability can be added without
1 EWS provides the functionality to implement client RPC Data HTTP Data Flow
Delivered Retention Policy Tags - Retention can be moved separately or at the same time. reinstalling servers.
Mailbox 4 applications that access and manage Exchange store items. Flow
CAS Array
policy tags (RPTs) are created for default 1. Admin creates move request in EMC 3 Maximum of 16 servers in a Database
EWS provides programmatic access to the data stored Database-level
Inbox
folders such as Inbox, Deleted Items,
etc. or EMS. The command updates AD and
within Exchange. Outlook Anywhere Availability Group.
switchover and
then places a special message in the Client Access Server Up to 16 copies of each database.
Message Personal Tags - Personal tags are EWS clients can integrate Exchange information Clients can connect to their failover Mailbox Mailbox Mailbox Mailbox
system mailbox. Up to 100 databases per server (active Database
moved to Sent Items used by Outlook 2010 and Outlook into line-of-business (LOB) applications. MAPI RPC HTTP Exchange servers over the Server Server Server Server
Deleted Items Web App users to apply retention 2. All instances of MRS periodically check or passive). Availability
DB01 DB02 SOAP provides the messaging framework for messages Internet using RPC over HTTP.
settings to custom folders and the system mailboxes. Common Data Databases are global and not server Group
Deleted Items sent between the client application and Exchange Server.
individual items 3. MRS moves data from DB01 to DB02 Flow Outlook Configure using the Enable specific.
Message Recoverable Message and switches status to In Progress.
Mailbox Server Mailbox Server The Managed API provides an easy way to use the Exchange Core Business Logic Anywhere Outlook Anywhere Wizard in the Only mailbox databases are replicated.
deleted Items Folders Edited 4. When the move is almost finished, the Microsoft.NET interface with EWS.
5 Mailbox Server Exchange Management Console. Active Copy Passive Copy Passive Copy Passive Copy
Deletions mailbox is locked for a short time.
Message Legal Hold Policy: Preserves edits to or deletions of 5. When the move is complete, the moved mailbox on DB02 is Client Computer DB1 Logs DB1 Logs DB1 Logs DB1 Logs
Versions
email made by the user placed on hold, whether in activated. Active Manager
„purged‟
by user Purges their primary mailbox or personal archive. MailTips How MailTips work: A process that runs on every
MailTips are informative messages displayed to users while they are composing a message. Microsoft server in the Database Availability Group.
Multi-mailbox Search and How It Works Exchange Server 2010 analyzes the message, including the list of recipients to which it is addressed,
1. The mail client queries the Web service on the Client Access Server for
Provides definitive information on where a
DB2 Logs DB2 Logs DB2 Logs DB2 Logs
Message moved from MailTips that apply to the recipients in the message. If the client is using OWA, Continuous Replication
Create a discovery search using the Exchange Control Panel or Exchange Management Shell. and it notifies the user with MailTips prior to sending the message to prevent accidental delivery or database is active and mounted.
mailbox to personal archive CAS does the request on behalf of the user. TCP Based
Archive Uses the content indexes created by Exchange Search. Selects the “best” copy to activate when the
by policy or by user. policy violations. 2. The Client Access Server queries its cache of Group Metrics data. (Group DB3 Logs DB3 Logs DB3 Logs DB3 Logs
Results are stored in a special mailbox type known as a "discovery mailbox." active mailbox database fails.
Encrypted (Optional)
Inbox Members of the Discovery Management role group can perform discovery searches. Outlook 2010/OWA metrics are created overnight and distributed to CAS Servers.) Compressed (Optional)
Mailbox
Recoverable Items Folder Allows search of messages stored in mailboxes across one or more Exchange Server 2010 servers. Server
3. If the recipient is a mailbox that is located on a Mailbox server in the local site,
Sent Items These folders are not visible to the user. Primary and Archive mailboxes can be searched including items in the recoverable items folder. 1 the Client Access Server queries the Mailbox server to gather the Automatic Continuous Replication Block Mode High Availability for Other Server Roles
Deletions - Items soft-deleted from Deleted Items 4 Replies and Mailbox Full MailTips. As updates are written to the active database copy's active log
Client Access Server HA - Deploy Unified Messaging Server -
A personal Deleted Items folder. Accessed through Outlook “Recover Types of Databases 5 4. If the recipient's mailbox is in another site, the Client Access Server requests Exchange Search and buffer, they are also shipped to a log buffer on each of the passive Deploy multiple Unified Messaging
archive is an 4 MailTips information from the Client Access Server in the remote site, which a CAS Array and use a hardware or
Deleted Items.” Database Availability Groups mailbox copies.
software load balancer to provide servers and configure two or more
additional mailbox Recoverable Versions - Original and modified copies of items 2 then queries the local Mailbox server for MailTip data. When the log buffer is full, each database copy builds, inspects,
that is enabled for Items Folders After initial seeding, the server with the high availability. per dial plan.
when either Legal Hold or Single Item Recovery CAS CAS 5. The Client Access Server returns MailTip data back to the client (Outlook 2010 passive database copy fetches message and creates the next log file.
a mailbox user Deletions
are enabled. Mailbox databases Public folder Recovery database (RDB) and OWA). data from the server with the active Is only active when continuous replication is up to date in file Edge Transport - Deploy multiple
Holds data that is private to an databases Special kind of mailbox database that 3 Remote Site Hub Transport - Deploy multiple
Versions Purges – Hard-deleted items when either Legal Local Site Automatic replies Mailbox full Restricted recipient database and performs content indexing mode. Hub Transport servers in each Edge Transport servers subscribed
Hold or Single Item Recovery are enabled. individual user and contains mailbox Holds public folder allows you to mount a restored mailbox Active
Purges and archive folders that are generated information. Only one database and extract data as part of a Large audiences Oversized message Invalid recipient locally. Transition into and out of block mode is performed automatically. Active Directory site; resiliency is to the same Active Directory site;
Directory Mailbox Reply-all on BCC Moderated group Custom MailTips
when a new mailbox or personal public folder database recovery operation. Only one RDB can be When a failure occurs, the system uses whatever partial log built in for intra-org traffic. use multiple MX records or other
archive is created for that user. per server. mounted at any time on a Mailbox server. Server
External recipients content is available during the activation process. forms of load balancing.

© 2010 Microsoft Corporation. Active Directory, ActiveSync, Internet Explorer, Microsoft, Outlook, Office Communicator, Windows, Windows Mobile, Windows PowerShell, and Windows Server are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. All rights reserved. Other trademarks or trade names mentioned herein are the property of their respective owners.