1. Install a new member server and join it to the Windows Server 2016 Essentials server I assume you know how to do a vanilla install a Windows Server 2016 so this is not part of this tutorial. Make sure you have run Windows Update before you join the server to your network, set a static IP address and point to the Windows Server 2016 Essentials as your preferred DNS IP address. Open Internet Explorer and browse to http://ctrx-server/connect. If you get a warning that you should add the URL to the trusted sites please do that before running the Connector software. Click Run. Click Next Fill in the domain admin credentials and click Next. Click No. Click Restart Choose to setup the member server only for yourself. Give the member server a meaningful name. Click Finish Press Ctrl+Alt+Delete to sign in. Make sure you logon to the domain with your domain admin credentials. 2. Add the current domain admin to the enterprise and schema admins security group Installing any version of Exchange Server make changes the schema in Active Directory and therefor you must make sure that the user you are using to install Exchange Server is a member of the Schema Admins and Enterprise Admins security group. Failing to do this will make the installation fail. From Server Manager open Tools and then Active Directory Users and Computers. Right click the Domain Admin and choose Add to a group. Type Enterprise Admin; Schema Admins and click Check Names. Click OK When all is fine you will be prompted and click OK Check to see if the domain admin has been added to Enterprise Admins and Schema Admins. 3. Install dependencies for Exchange Server 2016 CU4 installation Easiest way to install dependencies is to use Powershell. In this tutorial we use Powershell ISE ( Introducing the Windows PowerShell ISE ) to run the InstallDependenciesExchangeServer2016.ps1 script I have prepared for this tutorial. You can download a copy of this script and use it for your own installation. Click the Start menu and choose Windows Powershell ISE, right click and choose to ‘Run as administrator’. Click Yes. I have copied the InstallDependenciesExchangeServer2016.ps1 file to the Documents folder, click Open Click Run Script. Green Start Button as on your old tape recorder if you are older then 25… This will take awhile and when it is done the script will restart (if needed) your server. In your case a restart was not needed. 4. Download and install Unified Communications Managed API 4.0 Runtime You will need to install Unified Communications Managed API 4.0 Runtime on the member server that will run Exchange Server 2016. Download Unified Communications Managed API 4.0 Runtime from Official Microsoft Download Center. Run the installer, click Next Click Install. Click Finish. Reboot the server and run Windows Update. Choose to install all important updates BEFORE you continue. 5. Install Exchange Server 2016 CU4 on the member server Make sure you download the latest version of Exchange Server 2016 here Updates for Exchange 2016 . Each CU is a full installation and includes all updates from the previous CU. Important to read is Exchange Server Supportability Matrix and make sure you have the correct .Net version installed on your server BEFORE you install Exchange Server Right-click the Start button and choose to run a Command Prompt as an Admin Click Yes Exchange Server 2016 CU4 is an ISO file that you should mount. Once mounted you need to check on which drive it is. In my case it is drive D: From the elevated command prompt type Setup.exe /mode:Install /r:MB /OrganizationName:'First Organization' /IAcceptExchangeServerLicenseTerms Exchange Server 2016 CU4 is now being installed and this will take awhile. Depending on your hardware this can take up to 2 hours! Get a coffee or two or maybe better to have lunch as I do. Reboot the server and login again with your domain admin credentials. Run Windows Update again and if gives an error reboot the server and try again. 6. Configure Exchange Server 2016 with Powershell You can configure Exchange Server from within the Exchange Administrative Center but this takes so much time compared to the method with Powershell that we choose the last. Please download the Powershell script ConfigureExchangeServer2016.ps1 and save it to the documents folder of the current logged in Domain Admin. In my case, this is ‘admin’. Create a folder named ‘certificates’ in the root of the system drive and copy the certificate there you will use for Exchange. This certificate must be for the domain ‘mail.yourdomain.com’. If you have something else for ‘mail’ you need to edit the Powershell script and make changes accordingly. From the Start Menu run Exchange Management Shell as Administrator. Click Yes. Type Set-ExecutionPolicy RemoteSigned and confirm with [A] Yes to All Change to the folder where you saved the ConfigureExchangeServer2016.ps1 and type .\ConfigureExchangeServer2016.ps1. This will start the configuration of the Exchange Server 2016. The yellow text is just informing us of the changes. Scroll down the rest of the results of the scripts and make sure there no errors. You cannot run it for a second time without seeing loads of errors because the script does not expect values already entered, it is not made for updating settings. From the Start Menu choose ‘Exchange Administrative Center’. Accept the warning and click continue Login with your Domain Admin credentials. If for some reason this does not work please make sure IE Enhanced Security Configuration in Server Manager has been turned off. Go to ‘Mail Flow’ and then Email Address Policies and make sure that you apply the Windows Server Essentials Email Address Policy. Click Yes. Click Close. 7. Integrate Exchange Server 2016 in the Windows Server Essentials Dashboard If you integrate your on-premise Exchange Server 2016 with the Essentials Dashboard mailboxes are automatically created on the Exchange Server as soon as you add a user to the Essentials Dashboard. Start the Essentials Dashboard, click Services and then Integrate your Exchange Server –> Set up Exchange Server Integration. Click Next Click Close Once the Essentials Dashboard has started you will see that Integration has been enabled. Each user has an email tab now. You may wonder what those HealthMailbox users are…that is for later. If you do not see the Email column right click and enable it. 8. Configure Split DNS for Exchange Server 2016 Split DNS means that the domain mail.server-essentials.net will resolve from within the concentrix.local network on my server to 192.168.150.6 but when a client is outside the Concentrix Lan it will resolve to the public IP address set in a DNS Host A record of your public DNS servers. From Tools in Server Manager choose DNS. Right-click the server and choose New Zone. Click Next Click Next Click Next Choose Forward lookup zone and click Next Type the zone name and click Next. Click Next Click Finish Right-click the zone you just made and choose New Host (A or AAA). Leave ‘name’ empty and type in IP Address the IP address of your Exchange Server on your Lan. Click Add Host. Click OK. Done 9. Install and configure Application Request Routing (ARRConfig) It is for many small businesses normal to have only one public IP address and most business use a simple router between the Lan and Wan that can only handle one public IP address at the time. If you have multiple Public IP Addresses you can skip the installation of Application Request Routing, instead, you will need to change DNS records for remote.yourdomain.com and mail.yourdomain.com so that they point to different IP addresses and you need to configure your router or Firewall accordingly. But as this tutorial is for the typical small business situation we will continue the installation and configuration of Application Request Routing. Open a browser and go to Application Request Routing : The Official Microsoft IIS Site . If you cannot click the ‘Install this extension’ button make sure that IE Enhanced Security has been turned off in Server Manager. Click Run. Click Yes. Click Install Click ‘I accept’. Click Finish Click Exit. Open an elevated Command Prompt. Click Yes. Now this is tricky. You must type the command as I did in the Windows below. I will not offer you anything you can copy and paste because it will fail. Make sure you have the correct certificate in the c:\certificates folder and that you know the password for the Private Key. If you encounter a 502 proxy error after configuring ARR use the following command: ARRConfig config -cert 'C:\certificates\multidomain.server-essentials.com.pfx' -hostnames 'mail.server-essentials.net' -targetserver exch2016.contoso.local In the above command we have added -targetserver exch2016.consoso.local and that solved 502 errors for us For the Techies, have a look in IIS Manager. You see that an Reverse Proxy site has been added. Now when a request from the Internet lands at the web server on the Windows Server Essentials ARR will kick in and route the request to your Exchange Server. 10. Test Exchange Connectivity Microsoft has a really nice site where you can test your new Exchange Server 2016. You can find it here Microsoft Remote Connectivity Analyzer . I would run some tests!