Hello,
a customer's Exchange 2016 Server (installed on Windows Server 2016) was previously running Sophos Endpoint Protection Standard.
Having set the Antivirus exclusions according to the list published by Microsoft, it was running fine.
After upgrading to Intercept X for Server, which automatically uninstalled the old product and added the necessary exclusions, a lot of Exchange Services fail to start after reboot.
I figured out the services cannot communicate with the locally installed Active Directory server (I know this is not best practice). The event viewer shows a lot of events like this:
Process w3wp.exe (FE_Eas) (PID=5520). WCF request (Get Servers for xxx.local) to the Microsoft Exchange Active Directory Topology service on server (TopologyClientTcpEndpoint (localhost)) failed. Make sure that the service is running. In addition, make sure that the network ports that are used by Microsoft Exchange Active Directory Topology service are not blocked by a firewall. The WCF call was retried 3 time(s). Error Details System.ServiceModel.EndpointNotFoundException ...
Anyway, the MSExchangeADTopology and NTDS services are running. It also seems like all the firewall exceptions for Exchange Server do still exist.
After disabling Windows Firewall, I am able to start the services and after that I can re-enable the firewall again.
To me, it looks like the Setup changed something in the Firewall configuration. More precise, I saw deletions and additions of firewall rules in the logs after executing the setup.
It would be really great to find a solution for this, as the server cannot just be restarted with having to fix this issue every time.
Best regards,
Jelko
This thread was automatically locked due to age.