Tips and Tricks:
Tip: In Exchange Server 2016 the architecture was simplified when compared with previous versions, and nowadays we have only two roles: Mailbox and Edge. Where the Mailbox is the role that is located in the internal network with access to the Active Directory.
Tip Exchange 2013 sp1: the Edge role reappears
Tip: ReFS not supported as File System
Tip: No storage on SMB is supported
Tip: OWA support the certificates and ADFS (strong authent scenario)
Tip: dedicate CAS servers behind hw load balancer – with public URL. the Certificate is managed by internal PKI.
Tip: prefer using Win2012 R2 and Exchange 2013 SP1 (better together!)
Tip: prefer using the command lines to install exchange 2013 role
Tip: when using cmdlets: always for details do | fl prop1,*prop2  or  | ft -autosize

Topology best practice (after SP1 of Exch 2013):

internet —–  FW —– edge server (dmz / in a wkg) —– FW —– hwlb – CAS servers —– MBX servers — FW — AD / PKI servers


Exchange installation prerequisites:

For Exchange 2016:

For Exchange 2013:

Exchange 2016 step by steps:

Cumulative updates:


Exchange and certificates:

public or internal PKI server certificates only on CAS servers, follow the recommendations here:

also the client computers are joined to the AD domain and have also a computer certificate.


Exchange and Firewalls:


Deployment assistant for Exchange: 


Exchange sizing:

HP sizer for Exchange 2013:


How to dedicate DC to Exchange? and It is recommended to exclude the DC PDC server.

How to separate roles for AD admins and roles for Exchange admins? ==> RBAC split permissions and AD split permissions

Test connectivity:

ExLogAnalyzer to the rescue:

Database maintenance:

With Outlook 2013 installed; CTRL+ right-click Outlook icon on the taskbar; then Check Outlook Connectivity and Test Messaging configuration

Validation and monitoring of storage:

When implementing a storage solution for Exchange, an easily overlooked step is the evaluation of storage after it has been put in place to determine a baseline for that storage. Microsoft makes tools to enable this testing. Jetstress and LoadGen available for Exchange 2010/2013 can be used to test storage or Exchange overall and establish a baseline for future comparison.

Jetstress 2013:

LoadGen 2013:

 How to install the Exchange management tools and PowerShell cmdlets:For Exchange 2013/2016:

in short: Setup.exe /Role:ManagementTools /IAcceptExchangeServerLicenseTerms

Best practices:

Connecting to Exchange on-premises using PowerShell remoting is a simple task, and means that you do not need to go the trouble of installing the Exchange management tools on your computer just to perform day to day administrative tasks.

There are three steps to establishing a remote PowerShell session to your Exchange server:

  • Capture admin credentials
  • Create a new PSSession
  • Import the PSSession

Usage: Connect-Exchange -URL exchange2.mydomain.local

Scripts repository for Exchange: