Troubleshooting Edge Subscription not working

  • Article

This topic provides guidance for diagnosing and resolving issues you may encounter when there is not email for a specific user.

Flowchart for Edge Subscription not working

This flowchart guides you through the steps that are required for troubleshooting when Edge Subscription is not working.

Edge Subscription not working troubleshooting flow

Procedures for Edge Subscription not working

For more information, see Subscribing the Edge Transport Server to the Exchange Organization and Using Mail Protection with Exchange EdgeSync on Forefront TMG. The following procedures describe the steps you might need to take when Edge Subscription is not working:

  • How to check if Edge Subscription is configured

  • How to enable connectivity for EdgeSync traffic

  • How to check system policy rules

  • How to create and import an Edge Subscription file

  • How to verify that all Forefront TMG Managed Control Service services are running

How to check if Edge Subscription is configured

Check if Edge Subscription is configured on each array member.

To check if Edge Subscription is configured:

  • For each array member, use one of the following methods to check if Edge Subscription is configured:

    • In the Exchange Management Console (EMC), expand the Organization Configuration node, select Hub Transport and then click the Edge Subscriptions tab.

    • Run the Get-EdgeSubscription cmdlet on each array member.

    • In the Forefront TMG Management console, in the tree, click E-Mail Policy, and in the E-Mail Policy Settings area check the Edge Subscription Connectivity status.

How to enable connectivity for EdgeSync traffic

Enable connectivity for Edgesynch traffic.

To enable connectivity for EdgeSync traffic:

  1. In the Forefront TMG Management console, in the tree, click Logs & Reports.

  2. In the details pane, click the E-Mail Policy tab.

  3. In the Tasks tab, click Enable Connectivity for EdgeSync Traffic.

  4. If this is the first time you are enabling connectivity for EdgeSync traffic, a dialog box opens asking if you want to enable system policy rules. Click Yes.

How to check system policy rules

Check whether the SMTP and EdgeSynch system policy rules are enabled.

To check system policy rules:

  1. In the Forefront TMG Management console, in the tree, click Firewall Policy.

  2. In the Tasks pane, click Show System Policy Rules.

  3. Double-click on the following rules and check if the following rules are enabled:

    • Allow SMTP traffic to the local host for mail protection and filtering

    • Allow SMTP traffic to the Internet for mail protection and filtering

    • For Edge Subscription: Allow LDAP\LDAPS traffic to the local host for the Exchange Server EdgeSync synchronization process

  4. If the rules are not enabled, in the Tasks tab, click Edit System Policy.

  5. Select Various > E-Mail Policy and select Enable this configuration group.

  6. Click OK.

  7. Click Apply.

  8. Enter a change description and then click Apply.

  9. For Edge Subscription:

    1. In the Forefront TMG Management console, in the tree, click E-Mail Policy.

    2. In the Tasks tab, click Enable Connectivity for EdgeSync Traffic.

    3. Click OK.

    4. Click Apply.

    5. Enter a change description and then click Apply.

How to create and import an Edge Subscription file

To create and import an Edge Subscription file:

  1. Log on using an account that is a member of the local Administrators group.

  2. In the Forefront TMG Management console, in the tree, click E-Mail Policy.

  3. In the details pane, click the E-Mail Policy tab.

  4. In the Tasks tab, click Generate Edge Subscription Files.

  5. In the Browse for Folder window, browse to the location where you want to store the Edge Subscription files, and click OK.

    Important

    Import the Edge Subscription file to the computer that has the Hub Transport server role installed within 24 hours.

  6. Copy the file to the Exchange Hub server.

  7. On the Exchange Server, open the Exchange Management Console and expand the Organization Configuration node in the left pane of the console. Click on the Hub Transport node.

  8. In the Actions pane, click New Edge Subscription.

  9. In the New Edge Subscription page, click Browse in the Active Directory site area.

  10. In the Select Active Directory Site dialog box, select Default-Site-Site-Name and click OK.

  11. Click Browse in the Subscription file area.

  12. Locate the file Edge Subscription and click OK.

  13. Select Automatically create a Send connector for this Edge Subscription and click New.

  14. Click Finish.

  15. Delete the Edge Subscription files from the Forefront TMG server, the Hub Transport server, and any removable media.

How to verify that all Forefront TMG Managed Control Service services are running

For more information, see Services.

To verify that all Forefront TMG Managed Control Service services are running:

  1. In the Forefront TMG Management console, in the tree, click Monitoring, and then click the Services tab.

  2. To update the services view, on the Tasks tab, click Refresh Now.

  3. To restart a specific service, select the service in the details pane, and then click Start Selected Service on the Tasks tab.

    Tip

    Not all Forefront TMG services are shown on the Services tab. The others can be viewed and managed from Windows Computer Management.