Home > Articles > Microsoft

Ten Topics You Need To Know In Order To Pass The 70-663 Exam

With any Microsoft certification exam, there are certain topics that show up in multiple questions. There are also topics that are easy to overlook as you are studying for an exam because the topics might seem insignificant. In either case, it is difficult to pass a Microsoft certification exam without knowledge of such topics. In this article, Dave Leaver discusses ten areas that you need to study in order to pass the Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 exam.

In order to become a Microsoft certified Exchange Server specialist, you need to pass the Microsoft Exchange Server 2010 designing and deploying messaging solutions, otherwise known as the 70-663 exam. If you are using Exchange on a daily basis, but at a lower level, than the 70-662 Exchange 2010 exam will suffice; however, if you use Exchange to advanced levels, such as in designing and deploying Exchange 2010 solutions, then you need to ensure you have a design exam for Exchange under your belt. The 70-663 exam looks to build on the knowledge and skills you have learned in the 70 662 configuration exam; however, there is a lot more detail covered at this level, and for the exam you will be expected to know all of the features of Exchange Server 2010 and what they do. Although it is recommended that you cover all of the exam topics outlined by Microsoft's 70-663 syllabus, there are a number of areas you should concentrate on for this exam as they are guaranteed exam question areas.

1. Installation

As you'd expect to find at the beginning of an application exam, the first consideration is to cover the requirements needed for a successful installation. Whereas the 70-662 exam focused on a mainly single site Exchange 2010 setup with all of the Exchange Server roles consolidated to one or two servers in a single domain, the 70-663 exam requires a lot more detail.

First of all you need to decide whether or not the Exchange Server will be installed "on-premise" or "hosted" out in the cloud; this is an important new consideration in Exchange Server 2010. Hosted solutions especially will only continue to grow as Microsoft's interest in the Cloud increases, so make sure you are informed for the exam. You may be designing a hosted Exchange platform that will be used for multiple domains, and you will need to use separate global address lists and namespaces. There are a large number of considerations based around Active Directory and DNS setup prior to installation. The boundaries of an Exchange Server are based on the Active directory sites, so you should know where in an organization an Exchange Server needs to be based, what accompanying roles need to be present, and how the internal email will flow. This leads onto another new feature in Exchange 2010: federation trusts. Previously, Exchange communication between forests relied on active directory trusts to communicate; however, the Microsoft federation trust allows you to use Microsoft as a third party broker between two sites to establish the trusted relationship.

2. Coexisting

The success of Exchange Server 2003 has meant that many companies held fast on upgrading until Exchange 2010 came on the market, at a time when an upgrade was inevitable. Also, Exchange 2007 had mixed reviews, meaning that those who did subscribe were looking to transition to Exchange 2010 quickly for its new features. As a result, coexistence has become a big part of many Exchange environments, and in turn a large part of the 70-663 exam. The biggest challenges with coexistence is the intra-site message transport and ensuring Exchange 2010 is setup for the legacy features of the older Exchange versions. From a technical perspective then, checking routing group connectors are in place and working and making sure support for X500 and legacy Exchange DN's are in place are important. One thing to note is that upgrading from a legacy Exchange version to Exchange 2010 is called a transition, not a migration. The term migration is used for moving from another mail platform like Lotus notes, to Exchange 2010. It’s probably not worth correcting your colleagues in polite conversation about it, but it’s worth knowing for the exam. On the topic of migrations, you should be aware that you can coexist with other mail platforms; however, Microsoft isn't going to expect you to know that as well, just the bits that Exchange Server 2010 requires to support them.

3. Server role — ]Client Access Server

If you are familiar with the old Exchange 2003 infrastructure layout, then you can consider the Client Access Server (CAS) role as the front-end Exchange Server. Positioning your CAS in the right area is a vital part of getting the Exchange topology correct. There must be one at each site in order to service the client requests, whether it is through a straight MAPI connection, IMAP, POP3, or RPC over HTTP. For the 70-663 exam, you need to be able to plan the CAS deployment based on the devices accessing your network, the domains that are accepted for your company, and the storage required. And as planning is the name of the game for this exam, make sure you are fully aware of what is required to setup autodiscover, such as the correct namespaces, SRV records, SSL certificates and the authentication mechanisms used internally and externally.

4. Server roles — hub transport server

The hub transport server is responsible for the inter-site and intra-site transport of messages within Exchange Server 2010. The hub transport server is responsible the name spaces used in Exchange email address policies. When you are dealing with large scale Exchange Server deployments, make sure you have detailed knowledge of Exchange Server transport rules and how they can be used to affect mail flow within a company. The receive connectors within the hub transport roles are key for locking down external access to the Exchange Server, and like the send connector, allow granular settings in regard to message size limits, and allowed IP addresses and authentication. The edge transport server role is a standalone server, which as it implies, sits at the edge of the network. Make sure you understand why you would add an edge transport server role into an Exchange infrastructure in order to increase security of e-mail gateway and using server transport rules.

5. Server roles — Mailbox Server

One of the big considerations for the mailbox server role in Exchange 2010 is the required storage capacity, shortly followed by the performance of the storage capacity when it is under pressure. You will need to know the minimum hardware specifications for optimum mailbox server performance, as the demands are notoriously high. The next level of capacity planning is based on the mailbox databases, how many you are going to have, where they will be positioned, and how much space is allowed for them. As you may have guessed by now, the design exam is more interested in the positioning of the Exchange server roles rather than how it is configured. However, you still need to know how to deploy your design in a real-world scenario, and this includes all of the additional elements that you may change in the default configuration. For example, you need to consider address lists, public folders, public folder replication, and off-line address list information, and how this information is replicated amongst your Exchange environment.

6. Exchange security — Part 1

Security is a big part of any application exam, but where Microsoft Exchange Server 2010 is concerned, a particularly high risk of an attack is due to its processing of external information. From an external viewpoint, you need to make sure you design an Exchange environment that is secure from external attacks such as denial of service, virus-infected spam and mail relaying. In order to do this, you will use a number of the Exchange features related to security such as locking down an external server that is allowed to access Exchange, knowing how to use transport level security to encrypt messages, how to secure all routing between your Exchange organizations, and by ensuring that message hygiene is a strong as possible. You won't be expected to know the ins and outs of Microsoft Forefront for Exchange Server, but you should be aware of exam questions relating to Microsofts anti-spam product of choice. Many of the features Forefront uses are universally available in many anti-spam products, such as recipient filtering, content filtering, antivirus scanning, block lists, safer lists, and the use of spam confidence levels (where mail is rated on a 1 to 10 scale of severity, with 10 being the most severe).

7. Exchange Security — Part 2

From an internal perspective the security of your Exchange Server is based on many tried and tested methods used within all Microsoft servers, namely the use of multifactor authentication, access control lists, and security policies. these that can be applied from within the Exchange management console the Exchange Management shell. Make sure you know the options available to you in the client access server when it comes to locking down ActiveSync and Outlook Anywhere features, this includes mobile devices, which are ever-growing concern in real-world networks. Even Outlook Anywhere features a number of policies such as segmentation and attachment handling, which can increase the security of external users accessing the Exchange Server.

8. Archiving

As some companies enter into double figures in the number of years they have been using Exchange Server, it has raised the question of where to store old Exchange e-mails that are legally required to be kept for a set amount of time. Microsoft has now addressed the issue of archiving and has employed a new feature which can be used under the Microsoft Enterprise Premium Cal, which allows users to have a separate archive mailbox; this archives emails to the Exchange Server rather than their local PC. Microsoft also developed their message record management (MRM) feature, which allows for further control of how messages are handled by the Exchange Server, and subsequently by Outlook users. Retention policies prevent users from deleting important emails, which can be a legal nightmare for a company. All of these new features are guaranteed exam questions, so make sure you are aware what these features do and how to deploy them

9. Monitoring

Once you have designed your Exchange 2010 network, and it has been deployed with all of the features required, it is important to make sure you monitor the Exchange Server’s performance, and in turn report on your findings. In order to make sure you have no security holes, no messaging issues or configuration problems from the Exchange Server deployment, use the Exchange 2010 Toolbox to iron out any issues. Make sure you are familiar with the features included here, such as the mail flow troubleshooter, the best practice analyzer, and recovery tools.

10. High availability

As is the nature of any network these days, especially since the widespread acceptance of virtualization, there is a demand for 99.999% uptime and high availability of all Exchange services. In fact, if the options are available to you in your Exchange Server design, you will often choose to use high availability features on the mailbox server role and/or on the client access server role. Database availability groups were introduced in Exchange Server 2010 to replace Exchange 2007 Server’s Continuous Cluster Replication (CCR) feature. Database availability groups are a much more robust feature based on the original Exchange 2003 clustering. Therefore, they can only be applied to enterprise versions of the Microsoft operating systems). These employ the use of a separate witness server to monitor the active and passive copies of the Exchange databases so that they can be bought online as required. Make sure you know how to set up, configure, and deploy database availability groups; the best way to do this is by getting hands-on practice in a Microsoft lab. With regard to the client access server roles, Microsoft originally promoted the use of the built-in Network Load Balancing tool; however, due to its incompatibility with the Windows clustering service, it is no longer supported. When you are considering high availability for client access server roles, exam questions will often reference a third party hardware load balancer to carry out failover on the CAS array.

Overall, the level of detail you need to know for this exam is much greater with regards to planning the overall design of an Exchange deployment. You are focusing on the bigger picture. In-depth knowledge of the Exchange Management Console and the Exchange Management Shell are a given at this level of exam.

Pearson IT Certification Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from Pearson IT Certification and its family of brands. I can unsubscribe at any time.


Pearson Education, Inc., 221 River Street, Hoboken, New Jersey 07030, (Pearson) presents this site to provide information about Pearson IT Certification products and services that can be purchased through this site.

This privacy notice provides an overview of our commitment to privacy and describes how we collect, protect, use and share personal information collected through this site. Please note that other Pearson websites and online products and services have their own separate privacy policies.

Collection and Use of Information

To conduct business and deliver products and services, Pearson collects and uses personal information in several ways in connection with this site, including:

Questions and Inquiries

For inquiries and questions, we collect the inquiry or question, together with name, contact details (email address, phone number and mailing address) and any other additional information voluntarily submitted to us through a Contact Us form or an email. We use this information to address the inquiry and respond to the question.

Online Store

For orders and purchases placed through our online store on this site, we collect order details, name, institution name and address (if applicable), email address, phone number, shipping and billing addresses, credit/debit card information, shipping options and any instructions. We use this information to complete transactions, fulfill orders, communicate with individuals placing orders or visiting the online store, and for related purposes.


Pearson may offer opportunities to provide feedback or participate in surveys, including surveys evaluating Pearson products, services or sites. Participation is voluntary. Pearson collects information requested in the survey questions and uses the information to evaluate, support, maintain and improve products, services or sites; develop new products and services; conduct educational research; and for other purposes specified in the survey.

Contests and Drawings

Occasionally, we may sponsor a contest or drawing. Participation is optional. Pearson collects name, contact information and other information specified on the entry form for the contest or drawing to conduct the contest or drawing. Pearson may collect additional personal information from the winners of a contest or drawing in order to award the prize and for tax reporting purposes, as required by law.


If you have elected to receive email newsletters or promotional mailings and special offers but want to unsubscribe, simply email information@informit.com.

Service Announcements

On rare occasions it is necessary to send out a strictly service related announcement. For instance, if our service is temporarily suspended for maintenance we might send users an email. Generally, users may not opt-out of these communications, though they can deactivate their account information. However, these communications are not promotional in nature.

Customer Service

We communicate with users on a regular basis to provide requested services and in regard to issues relating to their account we reply via email or phone in accordance with the users' wishes when a user submits their information through our Contact Us form.

Other Collection and Use of Information

Application and System Logs

Pearson automatically collects log data to help ensure the delivery, availability and security of this site. Log data may include technical information about how a user or visitor connected to this site, such as browser type, type of computer/device, operating system, internet service provider and IP address. We use this information for support purposes and to monitor the health of the site, identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents and appropriately scale computing resources.

Web Analytics

Pearson may use third party web trend analytical services, including Google Analytics, to collect visitor information, such as IP addresses, browser types, referring pages, pages visited and time spent on a particular site. While these analytical services collect and report information on an anonymous basis, they may use cookies to gather web trend information. The information gathered may enable Pearson (but not the third party web trend services) to link information with application and system log data. Pearson uses this information for system administration and to identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents, appropriately scale computing resources and otherwise support and deliver this site and its services.

Cookies and Related Technologies

This site uses cookies and similar technologies to personalize content, measure traffic patterns, control security, track use and access of information on this site, and provide interest-based messages and advertising. Users can manage and block the use of cookies through their browser. Disabling or blocking certain cookies may limit the functionality of this site.

Do Not Track

This site currently does not respond to Do Not Track signals.


Pearson uses appropriate physical, administrative and technical security measures to protect personal information from unauthorized access, use and disclosure.


This site is not directed to children under the age of 13.


Pearson may send or direct marketing communications to users, provided that

  • Pearson will not use personal information collected or processed as a K-12 school service provider for the purpose of directed or targeted advertising.
  • Such marketing is consistent with applicable law and Pearson's legal obligations.
  • Pearson will not knowingly direct or send marketing communications to an individual who has expressed a preference not to receive marketing.
  • Where required by applicable law, express or implied consent to marketing exists and has not been withdrawn.

Pearson may provide personal information to a third party service provider on a restricted basis to provide marketing solely on behalf of Pearson or an affiliate or customer for whom Pearson is a service provider. Marketing preferences may be changed at any time.

Correcting/Updating Personal Information

If a user's personally identifiable information changes (such as your postal address or email address), we provide a way to correct or update that user's personal data provided to us. This can be done on the Account page. If a user no longer desires our service and desires to delete his or her account, please contact us at customer-service@informit.com and we will process the deletion of a user's account.


Users can always make an informed choice as to whether they should proceed with certain services offered by Adobe Press. If you choose to remove yourself from our mailing list(s) simply visit the following page and uncheck any communication you no longer want to receive: www.pearsonitcertification.com/u.aspx.

Sale of Personal Information

Pearson does not rent or sell personal information in exchange for any payment of money.

While Pearson does not sell personal information, as defined in Nevada law, Nevada residents may email a request for no sale of their personal information to NevadaDesignatedRequest@pearson.com.

Supplemental Privacy Statement for California Residents

California residents should read our Supplemental privacy statement for California residents in conjunction with this Privacy Notice. The Supplemental privacy statement for California residents explains Pearson's commitment to comply with California law and applies to personal information of California residents collected in connection with this site and the Services.

Sharing and Disclosure

Pearson may disclose personal information, as follows:

  • As required by law.
  • With the consent of the individual (or their parent, if the individual is a minor)
  • In response to a subpoena, court order or legal process, to the extent permitted or required by law
  • To protect the security and safety of individuals, data, assets and systems, consistent with applicable law
  • In connection the sale, joint venture or other transfer of some or all of its company or assets, subject to the provisions of this Privacy Notice
  • To investigate or address actual or suspected fraud or other illegal activities
  • To exercise its legal rights, including enforcement of the Terms of Use for this site or another contract
  • To affiliated Pearson companies and other companies and organizations who perform work for Pearson and are obligated to protect the privacy of personal information consistent with this Privacy Notice
  • To a school, organization, company or government agency, where Pearson collects or processes the personal information in a school setting or on behalf of such organization, company or government agency.


This web site contains links to other sites. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects Personal Information. This privacy statement applies solely to information collected by this web site.

Requests and Contact

Please contact us about this Privacy Notice or if you have any requests or questions relating to the privacy of your personal information.

Changes to this Privacy Notice

We may revise this Privacy Notice through an updated posting. We will identify the effective date of the revision in the posting. Often, updates are made to provide greater clarity or to comply with changes in regulatory requirements. If the updates involve material changes to the collection, protection, use or disclosure of Personal Information, Pearson will provide notice of the change through a conspicuous notice on this site or other appropriate way. Continued use of the site after the effective date of a posted revision evidences acceptance. Please contact us if you have questions or concerns about the Privacy Notice or any objection to any revisions.

Last Update: November 17, 2020