Troubleshoot Exchange FIPFS update failure issues

We all know that there is an anti-spam and anti-Malware protection feature available in the Exchange 2013 server.

1. Anti-spam features need to be opened manually on mailbox server using script Install-antispamagents.ps1.

2. Anti-Malware protection you can choose whether to enable it when you install it (you can use DISABLE-ANTIMALWARESCANNING.PS1 to disable the feature). This feature is primarily used to block malicious software and malicious programs in messages.

You can set anti-malware protection policies in the ECP. (interested can refer to: https://technet.microsoft.com/zh-cn/library/jj150576 (v=exchg.150). aspx. ）

This article mainly describes if you manually go to update the Antimalware filter engine files, because in most cases the Exchange Mailbox server is unable to automatically download the malware filtering engine, at this point we need to manually download the file and then copy to the corresponding directory. The Microsoft website describes the use of Microsoft-provided scripts to download (https://technet.microsoft.com/zh-cn/library/jj657471 (v=exchg.150). aspx. can refer to:, but according to my own Test experience before Exchange CU6, it seems to be successful, after CU7, the chances of using a script to complete the update are greater. and CU11 after Exchange 2013 has not get-engineupdateinformation this command, only through the log to see if the engine was successfully updated.

Here's how to update the engine, I'm using the manual download engine file and then manually replace the associated file method:

1, problem phenomenon

In the application log of the Exchange mailbox server, there is a large number of Fipfs EventID 6032, 6027 logs, and the log that was successfully updated should be event ID 6033.

2. Manual Download Engine method

First access address: Http://forefrontdl.microsoft.com/server/scanengineupdate/x86/Microsoft/Package/manifest.cab. Download a Manifest.cab file to extract the Manifest.xml, which records the current version of the engine that needs to be downloaded, the size.

Then visit address: Http://forefrontdl.microsoft.com/server/scanengineupdate/x86/Microsoft/Package/1408070001/Microsoft_fullpkg.cab. Download the specific engine data package.

Note that the address needs to be http://forefrontdl.microsoft.com/server/scanengineupdate/x86/Microsoft/Package/1408070001/Microsoft _fullpkg.cab won the yellow part of the replacement to the latest version and then download, otherwise cannot download. Example: Http://forefrontdl.microsoft.com/server/scanengineupdate/x86/Microsoft/Package/1604290004/Microsoft_ Fullpkg.cab.

3. After the engine file is finished, unzip. Copy all extracted files to the directory of Exchange 2013 C:\Program Files\Microsoft\Exchange server\v15\fip-fs\data\engines\amd64\microsoft\ Bin, note that if a file exists under the file, copy the file to a different directory to prevent data loss.

Copy the extracted files to the directory C:\Program Files\Microsoft\Exchange server\v15\fip-fs\data\engines\amd64\microsoft\ Bin (The Exchange installation directory is not the same as determined by the actual situation).

Restart the Microsoft Filtering Management Service After the file copy is complete. (Restarting this server will restart the transport service on mailbox)

4. Check that the log engine is updated successfully.

Troubleshoot Exchange FIPFS update failure issues