skip to Main Content

Prepare Active Directory and domains for Exchange Server

You want to prepare the Active Directory (AD) schema and domains for Exchange Server 2016. Before you prepare the Active Directory and domains for Exchange, install Exchange Server 2016 prerequisites. After that, you will install Exchange Server 2016 step by step in the organization.

Information

Before we start, install the latest Windows Updates on your Server. Restart after installing Windows Updates. I assume that you have already joined the Server to the domain. If not, do that before proceeding. Log in as a domain administrator on the Server that you are going to install Exchange on it.

Download Exchange Server

Before we can prepare AD for Exchange 2016, we need to download the Exchange 2016 ISO. Go to the following page to get a list of the latest Exchange Server CU. The page will show you the Exchange Server build numbers and release dates. Scroll down for Exchange Server 2016. At the moment of writing, the latest version for Exchange Server 2016 is Exchange Server 2016 CU16. The release date is March 17, 2020. The build number is 15.1.1979.3. Download and save the ISO image.

Which Exchange Server 2016 CU should you install?
The recommended way is to download and install the latest version of Exchange Server. Each CU is a full installation of Exchange that includes updates and changes from all previous CU’s. You don’t need to install any previous CU’s or Exchange 2016 RTM first.

Prerequisites extending the Active Directory

Before extending the Active Directory schema, the following needs to be installed on the Exchange Server:

  • .NET Framework must be installed
  • The RSAT-ADDS feature must be installed
  • Account needs to be added to the Schema Admins and Enterprise Admins security groups

Install .NET Framework

.NET Framework is already installed if you have followed Install Exchange Server 2016 prerequisites. If you didn’t, find the right .NET Framework version on the Exchange Server supportability matrix. Go to the download page of .NET Framework and download the appropriate version. In this case, it will be .NET Framework 4.8. If the download is finished, right-click the file and choose run as administrator. Install the .NET Framework on the Exchange Server. Restart when the installation is completed.

Prepare Active Directory and domains for Exchange Server .Net Framework version

You can extend the Active Directory Schema from the domain controller or any other server in the organization. The feature RSAT-ADDS is already installed on the domain controller. If you want to prepare the schema on the Domain Controller, you only need to install the .NET Framework. Some organizations have different teams because of different administrative responsibilities in the environment.

Install RSAT-ADDS feature

RSAT-ADDS feature is already installed if you have followed Install Exchange Server 2016 prerequisites. Suppose you didn’t install the RSAT-ADDS feature. Run PowerShell as administrator. Run the Install-WindowsFeature cmdlet, including the RSAT-ADDS feature.

Schema Admins and Enterprise Admins security groups

Before you can extend the schema, your account needs to be a member of the Schema Admins and Enterprise Admins security groups. Open Active Directory and add both groups to your account if it’s not set already. These are high privilege groups. I recommend you to remove your account from the groups when you’re done with this task. Note, if you’ve just added yourself to these groups, you’ll need to log out and back into the Server for the new group membership to take effect.

Prepare Active Directory and domains for Exchange Server add members

Prepare Active Directory Schema

The first step in getting your organization ready for Exchange 2016 is to extend the Active Directory schema. Exchange stores a lot of information in Active Directory, but before it can do that, it needs to add/update classes and attributes.

In File Explorer, right-click on the Exchange Server 2016 CU16 ISO image file and select Mount. It will mount the ISO image to a drive. For example, the E:\ drive. The E:\ drive contains the Exchange installation files. Make sure to mount the Exchange ISO image before proceeding to the next step.

Mount Exchange Server ISO

Run Command Prompt as administrator. Run the following command to extend/prepare the schema for Exchange 2016.

You will see the COMPLETED messages in the output. The extend/prepare schema for Exchange 2016 went successfully.

Prepare Active Directory

After the Active Directory schema has been extended, you can prepare other parts of Active Directory for Exchange 2016. During this step, Exchange will create containers, objects, and other items in Active Directory to store information. The collection of the Exchange containers, objects, attributes, and so on, is called the Exchange organization.

If you followed the article, you are already a member of the Schema Admins and Enterprise Admins security groups. Open Active Directory and add both groups to your account if it’s not set already. These are high privilege groups. I recommend you to remove your account from the groups when you’re done with this task. Note, if you’ve just added yourself to these groups, you’ll need to log out and back into the Server for the new group membership to take effect.

If you do not already have an Exchange organization, you’ll need to provide a name for the organization.

You need to select a name for the Exchange organization. The organization name is used internally by Exchange. It isn’t typically seen by users and doesn’t affect the functionality of Exchange. Also, it doesn’t determine what you can use for email addresses. The organization name can’t contain more than 64 characters, and can’t be blank. Valid characters are A to Z, a to z, 0 to 9, hyphen or dash (-), and space, but leading or trailing spaces aren’t allowed. You can’t change the organization name after it’s set.

Run Command Prompt as administrator. Run the following command to prepare Active Directory for Exchange 2016.

If you’re installing Exchange Server 2016 into an existing Exchange organization, you do not need to specify the organization name.

Run Command Prompt as administrator. Run the following command to prepare Active Directory for Exchange 2016.

Prepare Active Directory domains

The final step to get Active Directory ready for Exchange is to prepare each of the Active Directory domains where Exchange will be installed. This step creates additional containers, security groups and sets permissions so that Exchange can access them.

If you have more than one domain, you can run the following command to prepare all the domains for Exchange 2016.

If you have only one domain, you can skip this step because the /PrepareAD command in the previous step has already prepared the domain for you.

Check Exchange Active Directory versions

After you prepare AD for Exchange 2016, you like to check if the Active Directory is updated. Run PowerShell as administrator. Make sure that you set the Execution Policy to Unrestricted. Press Y and Enter. If you don’t, the script will not run.

Download the script Get-ADversions.ps1 and run it. For more information, read the article check Exchange Schema version with PowerShell. You can also run the following commands one by one.

How to confirm the Exchange Active Directory versions? Visit the Microsoft Docs page and scroll to the bottom of the page to find the Active Directory versions. The list is being kept up to date by Microsoft.

Conclusion

To sum it up, you learned how to prepare Active Directory (AD) and domains for Exchange Server 2016. The next step is to install Exchange Server 2016 step by step in the organization.

Did you enjoy this article? If so, you may like Disable Windows Firewall with PowerShell. Don’t forget to follow us and share this article.

ALI TAJRAN

ALI TAJRAN

ALI TAJRAN is a passionate IT Architect, IT Consultant, and Microsoft Certified Trainer. He started Information Technology at a very young age, and his goal is to teach and inspire others. Read more »

This Post Has One Comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Back To Top