This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 54%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ECP was working fine on our Exchange 2013 server (only one on-prem server). Not sure what happened or when, but now when I log into ECP the left sidebar only contains the line "tools" and on the rights side are links to the now deprecated Best Practices Analyzer.
OWA is working fine though this is only an issue with ECP.
So far I've tried a couple of things like:
But without any success.
Any and all suggestions on what to try next are highly appreciated.
Well, I've figured out the problem. Somehow the group scope of the "Organization Management" group had changed from "Universal" to "Domain Local". Changing it back to Universal fixed the problem.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 71%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELZ%3C/text%3E%3C/svg%3E)
It's great that your issue is solved, and thanks for your sharing. If you have any other issues, please feel free to post in our forum.
Have a nice day.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi
Any windows updates apply to the server? What errors are you seeing in the event log?
Hi and thanks for your suggestions.
Viewing "Installed Updates", there is nothing recent there.
And I don't see anything in the event log that might explain this issue.
Ran Get-ServerHealth and everything looks fine there also.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 97%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
If you have event ID 31 "MSExchange Control Panel" in the App Log try reinstalling RBAC roles:
Open Exchange Management Shell (EMS):
Close EMS and reopen EMS to refresh roles, then open new browser window to ECP.
Thanks, there is indeed event ID 31 in the App log after rebooting the Exchange server.
Unfortunately the Install-CannedRBACRoles and Install-CannedRBACRoleAssignments commands and then reopening EMS do not fix it.
I also see event ID 74 "MSExchange RBAC" in the App event log - not sure if that matters though.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 76%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Where did you find those commands? I see no official ms doc anywhere describing Install-CannedRBACRoles
@ajs
Did you make any modification in your organization recently?
Do you get any alert or error when log into EAC? If it's convenient, you can post the screenshot of the EAC page, and don't forget to cover your personal information.
Do you have other administrator accounts in your organization? You can log into EAC with other administrator accounts to see if the issue can be reproduced.
You can go to ADUC to add a user mailbox as a member of Organization Management role group for test.
If permissions of Organization Management work well, sign out and re-login EAC with that user account, we will see these:
Please also verify, if you can check and management user mailboxes from EMS with the same account you used to log into EAC.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi and thanks.
The user I use to log in with is aready part of the Exchange "Organizational Management" group and there is no error when I try to log in, just this strange page (see below).
We have tried other admin accounts and they all have the same issue.
In EMS, with the logged in admin account and run Get-MailBox, I get an AD error that the object wasn't found for all other objects than the logged in account.
