Microsoft Exchange 2010 Connector

Installation and Configuration

Copyright ©

Mindbreeze GmbH, A-4020 Linz, 2017.

All rights reserved. All hardware and software names used are registered trade names and/or registered trademarks of the respective manufacturers.

These documents are highly confidential. No rights to our software or our professional services, or results of our professional services, or other protected rights can be based on the handing over and presentation of these documents.

Distribution, publication or duplication is not permitted.

The term ‘user‘ is used in a gender-neutral sense throughout the document.

InstallationPermanent link for this heading

Before installing the Microsoft Exchange 2010 Connector ensure that the Mindbreeze Server is already installed and this connector is also included in the Mindbreeze license.

Extending Fabasoft Mindbreeze Enterprise for use with the Microsoft Exchange 2010 ConnectorPermanent link for this heading

The Microsoft Exchange 2010 Connector is available as a ZIP file. This file must be registered with the Fabasoft Mindbreeze Enterprise Server via mesextension.exe as follows:

mesextension --interface=plugin --type=archive --file=MicrosoftExchangeConnector<version>.zip install

PLEASE NOTE: The Connector can be updated by calling the same mesextention. Fabasoft Mindbreeze Enterprise will automatically carry out the required update.

Needed Rights for Crawling UserPermanent link for this heading

  • Mailbox permissions:
    • Access rights: FullAccess

Granting the needed rights for the Crawling UserPermanent link for this heading

Execute the following power shell commands on the Microsoft Exchange 2010 server:

Get-Mailbox | Add-MailboxPermission -user <domain>\<user>
-accessrights FullAccess

The crawling user can read the mailbox of other users but he cannot send emails on behalf of these users.

Overwriting default Throttling PoliciesPermanent link for this heading

For better crawling performance its recommended to overwrite the default Throttling Policies (EWSFindCountLimit = 1000 , EWSMaxConcurrency =10) according to current infrastructure. Therefor a new Throttling Policy should be defined for service user.

New-ThrottlingPolicy -Name serviceUserPolicy -EWSFindCountLimit 1000

-EWSMaxConcurrency 25

Set-Mailbox <domain>\<serviceuser> -ThrottlingPolicy serviceUserPolicy


Configuration of MindbreezePermanent link for this heading

Select the “Advanced” installation method:

Click on the “Indices” tab and then on the “Add new index” symbol to create a new index.

Enter the index path, e.g. “/data/indices/exchange/2. Change the Display Name of the Index Service and the related Filter Service if necessary.

Add a new data source with the symbol “Add new custom source” at the bottom right.

Configuration of Data SourcePermanent link for this heading

Microsoft Exchange Server ConnectionPermanent link for this heading

This information is important for the configuration of the connection with the Microsoft Exchange Server:

  • Microsoft Exchange Server: Fully qualified domain name of the Microsoft Exchange 2010 Server (e.g. exchange2010.mycompany.com).
  • Domain: Fully qualified domain name of user. (Optional)
  • Privileged Logon Account: User name of the privileged user. This is only needed when the user authentication fails. Detailed information on the Crawler’s integrated authentication is found under ‟2. CONFIGURING THE INTEGRATED AUTHENTICATION OF THE ”. (Opional)
  • Password: The password of the privileged user. (Only for BASIC authentication)

Context ActionsPermanent link for this heading

Hits of emails, attachments and calendars can be downloaded via the context menu.

To open a hit through Outlook Web Access, the “Outlook Web Access URL” must be configured and the option “Use Outlook Web Access” must be checked.  

If the “Use Outlook Web Access Open as Default Action” option is selected, this action will be performed as a standard context action for every search result, i.e. the link of the hit opens Outlook Web Access.

Source Scope Constraints (Advanced Options)Permanent link for this heading

  • Mailbox Selection Pattern”: It is possible to limit the data that should be crawled, for instance a particular mailbox. Therefore the name of the mailbox to be crawled must correspond to a regular expression which should be entered in this field.
  • Folder Items Traversal Method”:

All Folders Items”: All folders items are compared for changes with their corresponding item in index.

Changed Folders Items”: All items of only that folders which have at least one modified item are compared with their corresponding item in index.

All Folders Items On Startup Only”: “All Folders Items” method for the first crawling run and “Changed Folders Itemsfor the subsequent runs.

  • EWS Search Filter”: Finding items in exchange server can be restricted either with search filter or with query string. It is recommended to use “Search Filter” method unless you have to restrict crawler to crawl some certain items using AQS. If “Query String” method is selected the “Query String (AQS)” must be provided. Using “Query String” for public folders is not supported.

Time Scope ConstraintsPermanent link for this heading

In order to index items within specific time scope, the “Past Time Unit” and the “Number of Past Time Units” options must be defined. The time interval changes relative to last delta run so that old items are removed from index and new items are indexed.

Search SettingsPermanent link for this heading

To restrict all users’ searches to their primary-mailbox and public folders the “Restrict to Primary Mailbox and Public Folder” setting must be selected. If this feature is enabled users get no results from shared mailboxes or shared folders from other users’ mailboxes.

For Microsoft Exchange 2003 and 2007 it is necessary to fully re-crawl the Microsoft Exchange Server to use this option (if existing indices have been created with versions prior to 2016 Spring Release). A delta-crawling run is not sufficient.

Resource Parameters (Advanced View)Permanent link for this heading

In this area, you can define settings influencing the resource utilization on the Microsoft Exchange 2010 Server and the Mindbreeze Enterprise Search Server.  These parameters can be set:

  • Crawler Queue Size”: Maximal number of items queued by crawler.
  • EWS Dispatcher Thread Count”: Number of crawler threads establishing connections with the Microsoft Exchange 2010 Server concurrently.
  • Mindbreeze Dispatcher Thread Count”: Number of threads that send data to the index concurrently.

Dump Requests/Responses (Advanced View)Permanent link for this heading

The “Dump Requests/Responses” enables enhanced troubleshooting by logging requests and responses to the configured directory “Dump Directory”. Using the “On Error” option, a request or response dump will be saved only if an error occurs in the process. Using the “Always” option all requests and responses will be dumped and by using the “Never” option no Requests/Responses will be dumped.

Note: Please do not activate this option in production use.

Configuring the integrated authentication of the Microsoft Exchange 2010 CrawlerPermanent link for this heading

Windows:

If the installation is made on a Microsoft Windows Server, the Kerberos authentication of the current Mindbreeze Service user can also be used for the Microsoft Exchange 2010 Crawler. In this case the Service user must be authorized to access the Microsoft Exchange 2010 Web Services.

Linux:

For installations under Linux, the following steps must be taken:

  • Create a keytab for the privileged user with ktutil:
    • Start ktutil on the command line and carry out these commands in the ktutil shell:
      • addent -password -p <principal>@<REALM> -k 0 -e DES-CBC-MD5
      • (for example: addent -password -p crawler_user@MYDOMAIN.COM -k 0 -e DES-CBC-MD5)
      • Enter the user password.
      • wkt <keyab_path>
  • Upload the keytab:

  • Configure the keytab and the contained principal (in the authentication tab):

IMPORTANT: The keytab must contain the key of the abovementioned user. The keytab for the Client Service cannot be used here.

Uninstalling the Microsoft Exchange 2010 ConnectorPermanent link for this heading

To uninstall the Microsoft Exchange 2010 Connector, first delete all Microsoft Exchange 2010 Crawlers and then carry out the following command:

mesextension --interface=plugin --type=archive --file=MicrosoftExchangeConnector<version>.zip uninstall