Skip to main content

Mind the Overlap –2006 Commonwealth Games timezone patch for Daylight Saving and how it affects Exchange and Outlook

This is one for the Aussie’s and anyone who is managing a server on the East coast of Australia. Because of the Commonwealth games next year the date daylight saving starts on is being brought forward 1 week. If anyone remembers back a similar thing was done for the Olympics in 2000. First thing first is what is the overlap period? this is the period between when the new daylight saving starts and the period where it usually starts. This is between the dates 26/03/2006 and 2/04/2006. The long and short of it is that if your users currently have appointments created within this period including recurring appointments (no patches applied) these appointments are going to be out by 1 hour during this overlap period. Microsoft has released a patch that adds a new timezone to the registry but this patch doesn’t retrospectively fix appointments that already exist only those created after the patch has been applied. Because Timezone information isn’t year specific you now run into the problem if your users create appointment in the overlap period in 2007 with the patch applied.

The current KB and Advice from Microsoft can be found at

http://www.microsoft.com/australia/timezone/2005.aspx
http://support.microsoft.com/kb/907494/
http://support.microsoft.com/kb/909915

Here’s my take on this which is absolutely unofficial based on my testing and knowledge, I strongly encourage you to do your own testing to test for yourself the affects of these patches and setting, Also any of the scripts mentioned in this post have had very little real testing. Because I’m a Sydney sider this affects me directly I’ll try to keep this page up to date with any corrections as I learn more.
Depending on your environment you have four areas you may need to worry about with this patch. Desktop, OWA, locally on Exchange Server and Handhelds. Additionally if your using WebDAV or CDOEX to do any appointment creation/modifications you need to apply a hotfix and check your code especially if you’re using hard coded CDO timezone enums.

Desktops- Getting all the desktops your users may be using to access Outlook and OWA updated with this patch (and then removing) it after provides the greatest logistical challenge. The desktop patch affects both Outlook and OWA.
How does the Desktop Patch effect OWA – This is an interesting one because you would think that OWA would only really be affected by the patches on the server well no. When a user tries to create an appointment in Exchange via OWA the browser uses a client side control that pulls information from the time zone on the local machine and the date and the time that is posted to the server is actually the UTC time for the appointment based on the time zone offset from the client. So this means although you may have everything in your company patched if a user walked up to a kiosk machine that isn’t patched and creates an appointment via OWA during the overlap period this appointment would be created 1 hour out no matter what the time zone settings where in OWA. The server-side patch’s for OWA is still equally important however because OWA still does a lot of server side actions that are going to require the right Timezone data. These include free-busy time calculation and also expansion of reoccurring appointments. One example of this is if you have patched your desktops and patched your servers and even applied the hot fix for CDO and OWA if you haven’t updated the timezone for the user in OWA options when OWA goes to expand a reoccurring appointment that has an occurrence in the overlap period it will expand 1 hour out. So to get OWA working properly in the Overlap period with Exchange 2003

1. Update any Desktops that are going to be used to connect to Outlook or OWA
2 Update the Server with the new timezone and enable
3. Apply the hotfix from http://support.microsoft.com/default.aspx?scid=kb;en-us;909933&sd=rss&spid=1773 . Note if you don’t apply the hotfix and try changing the Timezone in OWA my experience was that OWA would no longer create appointments at all so this hotfix is import.
4. Adjust the timezone in OWA – Options

Doing a Bulk Update of OWA Timezone Options
Once you have updated the timezone on the server and applied the hotfix another task that must be done is to update the user’s OWA options. The first time a user connect to OWA its sets the http://schemas.microsoft.com/exchange/timezone property. This is the timezone you see if you go into options in OWA. If you don’t want to rely on your users going in and manually changing this setting you might want to look at a script to do a bulk update of this property. The timezone property itself lives on the root mailbox folder I’ve come up with a ADSI / WebDAV script that will connect to every mailbox on a server and update the timezone setting if it is currently set to one of the 3 affected timezones. This script is written for 2003 so I’ve used the email address in the WebDAV connection string which I find the most reliable way for 2003. If you want to run the script on 2000 you could try using the mailnickname instead. This script takes the name of the server you want to run it against as a commandline parameter and then does a ADSI query to find all the users on that server (not hidden from the addresslist) and then constructs a URL to connect to each user's mailbox and does a propfind on the http://schemas.microsoft.com/exchange/timezone property to determine what the current timezone is and then does a proppatch with the new value if needed. The script needs to be run with a user that has full rights to all mailboxes on a server see http://support.microsoft.com/default.aspx?scid=kb;en-us;262054 for more details. I’ve included the script in the download for this post here

CDOEX /Exoledb and WebDAV

Because CDO maintains an internal table to track time zone information you need a hotfix (for 2003 see) to make sure that any of your CDOEX applications will handle date and times correctly during the overlap period. The CdoTimeZoneId Enum id is stored with any appointments created via OWA and CDO and used by CDO to render the time correctly. What that hotfix does is creates some new CdoTimeZoneId Enum values (and supporting code) to cater for the overlap period. For example the CdoTimeZoneId Enum for Sydney normally is 57 the CdoTimeZoneId Enum the hotfix introduces for Sydney during this period is 78. Again having the correct CdoTimeZoneid Enum set is going to be important if you do an expansion query on a reoccurring appointment with Exoledb or when you go to display an appointment use CDOEX during the overlap period.

Auditing currently affected Appointments

What about appointments that have already been created without that patch being applied in the overlap period. Currently Microsoft recommends that you do an export and import for any affected appointments. Before you do this you might want to identify which users are affected eg those that have appointments created in the Overlap period. For this some Exoldb or WebDAV code can come in handy. I’ve wrote a script that takes the servername or the server you want to analyze as a command-line parameter then uses Exoledb to query that server for any appointments in the overlap period. Because this script uses Exoledb it must be run locally on a Exchange server and must be run with an account that has rights to the users calendar see kb . This script produces a CSV file that lists all the users that have appointments in the overlap period and the details of those appointments. To use the script there is one change you must make before using it which is you must add your primary SMTP domain name in the domainname variable in the script this is used for the Exoledb Connection string. I’ve included a copy of the script in the download for this post here.

Can you identify if an appointment has been created with the patch? Yes and no if the appointment is created with Outlook you can check the following Mapi property http://schemas.microsoft.com/mapi/id/{00062002-0000-0000-C000-000000000046}/0x8234 to see what timezone the appointment was created with. If the appointment was created with OWA then it’s a little more difficult. If the timezone patch and hotfix has been applied to the server and the OWA timezone is set then you can use the urn:schemas:calendar:timezoneid property. For example if your using the new Sydney 2006 timezone when the patch is applied the timezoneid property should be set to 78. The problem is if you have the desktop patch applied but the server unpatched an appointment may be created okay in the overlap period but the CdoTimeZoneId will still be set to 57. Also expanded reoccurring appointments may show nothing depending on the method that has been use to expand them.

Can you update the appointment in the overlap period programmatically? I haven’t quite got to that yet as I’m still in the detection and update period. But in theory it should be possible you’d want to make sure that you where only going to affect appointments created in the overlap period. For example if you wanted to adjust reoccurring appointments that may have been expanded wrong in the overlap period you would need to update the timezone information and them make a change that would cause the appointment to be re-expanded.

Popular posts from this blog

The MailboxConcurrency limit and using Batching in the Microsoft Graph API

If your getting an error such as Application is over its MailboxConcurrency limit while using the Microsoft Graph API this post may help you understand why. Background   The Mailbox  concurrency limit when your using the Graph API is 4 as per https://docs.microsoft.com/en-us/graph/throttling#outlook-service-limits . This is evaluated for each app ID and mailbox combination so this means you can have different apps running under the same credentials and the poor behavior of one won't cause the other to be throttled. If you compared that to EWS you could have up to 27 concurrent connections but they are shared across all apps on a first come first served basis. Batching Batching in the Graph API is a way of combining multiple requests into a single HTTP request. Batching in the Exchange Mail API's EWS and MAPI has been around for a long time and its common, for email Apps to process large numbers of smaller items for a variety of reasons.  Batching in the Gr...

Sending a Message in Exchange Online via REST from an Arduino MKR1000

This is part 2 of my MKR1000 article, in this previous post  I looked at sending a Message via EWS using Basic Authentication.  In this Post I'll look at using the new Outlook REST API  which requires using OAuth authentication to get an Access Token. The prerequisites for this sketch are the same as in the other post with the addition of the ArduinoJson library  https://github.com/bblanchon/ArduinoJson  which is used to parse the Authentication Results to extract the Access Token. Also the SSL certificates for the login.windows.net  and outlook.office365.com need to be uploaded to the devices using the wifi101 Firmware updater. To use Token Authentication you need to register an Application in Azure https://msdn.microsoft.com/en-us/office/office365/howto/add-common-consent-manually  with the Mail.Send permission. The application should be a Native Client app that use the Out of Band Callback urn:ietf:wg:oauth:2.0:oob. You ...

How to test SMTP using Opportunistic TLS with Powershell and grab the public certificate a SMTP server is using

Most email services these day employ Opportunistic TLS when trying to send Messages which means that wherever possible the Messages will be encrypted rather then the plain text legacy of SMTP.  This method was defined in RFC 3207 "SMTP Service Extension for Secure SMTP over Transport Layer Security" and  there's a quite a good explanation of Opportunistic TLS on Wikipedia  https://en.wikipedia.org/wiki/Opportunistic_TLS .  This is used for both Server to Server (eg MTA to MTA) and Client to server (Eg a Message client like Outlook which acts as a MSA) the later being generally Authenticated. Basically it allows you to have a normal plain text SMTP conversation that is then upgraded to TLS using the STARTTLS verb. Not all servers will support this verb so if its not supported then a message is just sent as Plain text. TLS relies on PKI certificates and the administrative issue s that come around certificate management like expired certificates which is why ...
All sample scripts and source code is provided by for illustrative purposes only. All examples are untested in different environments and therefore, I cannot guarantee or imply reliability, serviceability, or function of these programs.

All code contained herein is provided to you "AS IS" without any warranties of any kind. The implied warranties of non-infringement, merchantability and fitness for a particular purpose are expressly disclaimed.