Exchange 2016 Collection Task fails with insufficient permissions
Article ID: 100034254
Updated On:
Description
Error Message
<< Job Status >>
07/07/2017 15:16:27 Started collecting mailbox=9b486a1ed6fe4ed18fc0125dd1c063d3-Test User
07/07/2017 15:16:28 Exception while collecting mailbox 9b486a1ed6fe4ed18fc0125dd1c063d3-Test User. Error code: 15003, Error Message: OpenMsgStore failed.. Make sure that the source account has full access permission on 9b486a1ed6fe4ed18fc0125dd1c063d3-Test User.
07/07/2017 15:16:28 Ended collecting mailbox=9b486a1ed6fe4ed18fc0125dd1c063d3-Test User, Status=Failure<< icp-remoteicpjob >>
DEBUG [icp.collection.CollectionJob] (RPC-thread-1 - eDP-App1.eDP.lab:2595:4091104437181267468:) Collection job info: TaskRunID: 0.34.6.461 Task ID: 0.27.6.461 Message: Failed: [#422325] Exchange collection task failed; The source account did not have sufficient permissions on one or more mailboxes. Please check the job log for more information. Data might have been collected at: \\Preservation Server\0.27.6.461-20170707-151612-365 Type: FAIL User: 0.14.3.1:0.14.6.1 Date: Fri Jul 07 15:20:32 EDT 2017
2017-07-07 15:20:32,505 INFO [jobmanager.remote.lifecycle] (RPC-thread-1 - eDP-App1.eDP.lab:2595:4091104437181267468:) Remote Processing ended with error for job id 1.5.6.1551943147729191474
com.teneo.esa.icp.collection.EsiCollectionException: [#422325] Exchange collection task failed; The source account did not have sufficient permissions on one or more mailboxes. Please check the job log for more information. Data might have been collected at: \\Preservation Server\0.27.6.461-20170707-151612-365Cause
Current versions of eDiscovery Platform communicates with the Exchange environment using RPC/HTTP.
By default Exchange 2016 blocks RPC/HTTP and uses MAPI/HTTP.
By default Exchange 2016 blocks RPC/HTTP and uses MAPI/HTTP.
Resolution
1. Verify that RPC/HTTP is being blocked
Note: Commands to be executed are run from the Exchange PowerShell
Note: Commands to be executed are run from the Exchange PowerShell
Get-CASMailbox | FL MAPIBlockOutlookRpcHTTP
Results will be True or False. If 'True', RPC/HTTP is blocked and eDP will not be able to collect from the Exchange server in its current setting.
Example: MAPIBlockOutlookRpcHttp : True
Example: MAPIBlockOutlookRpcHttp : True
2. Enable RPC/HTTP transport protocol
To unblock RPC/HTTP for an individual mailbox:
Set-CASMailbox -MAPIBlockOutlookRpcHTTP:$False
Set-CASMailbox
To unblock RPC/HTTP for an entire mailbox store:
Get-CASMailbox | Set-CASMailbox -MAPIBlockOutlookRpcHTTP:$False
Get-CASMailbox | Set-CASMailbox -MAPIBlockOutlookRpcHTTP:$False
Issue/Introduction
On-premise Exchange 2016 collection fails with insufficient permissions, yet the source account has Full Access rights to the mailbox being collected while the Source Account can collect from it's own mailbox.
Was this article helpful?
Yes
No
Powered by
