Message tracking logs are being written to an encrypted folder

[This topic is intended to address a specific issue called out by the Exchange Server Analyzer Tool. You should apply it only to systems that have had the Exchange Server Analyzer Tool run against them and are experiencing that specific issue. The Exchange Server Analyzer Tool, available as a free download, remotely collects configuration data from each server in the topology and automatically analyzes the data. The resulting report details important configuration issues, potential problems, and nondefault product settings. By following these recommendations, you can achieve better performance, scalability, reliability, and uptime. For more information about the tool or to download the latest versions, see "Microsoft Exchange Analyzers" at]  

Topic Last Modified: 2007-01-17

The Microsoft® Exchange Server Analyzer Tool queries the Win32_Directory Microsoft Windows® Management Instrumentation (WMI) class to determine the value of the Encrypted key for the message tracking log files. If the value for this key is True, an error is displayed.

When message tracking is enabled on an Exchange 2000 Server or an Exchange Server 2003 computer, the tracking logs are written to the following default location:

<drive>:\Program Files\Exchsrvr\ServerName.log

where <drive> is the drive containing the \Program Files\Exchsrvr path and ServerName is the host name of the Exchange Server computer.

Microsoft does not support the storage of Exchange data files on an Encrypting File System (EFS) encrypted volume. When you store your Exchange data files on an encrypted volume, the additional overhead significantly impacts the performance of Exchange. The Exchange data files include all the following files:

  • .edb files

  • .stm files

  • .log files

  • .dat files

  • .eml files

  • .chk files

To help secure your Exchange data files, it is recommended that you prevent unauthorized access to the Exchange computer and that you use the S/MIME message format to encrypt message data.

To turn off file encryption for a specified folder

  1. Right-click the folder for which you want to turn off file encryption, and then click Properties.

  2. On the General tab, click Advanced.

  3. In the Advanced Attributes dialog box, clear the Encrypt contents to secure data check box, and then click OK.

As an alternative to the preceding procedure, you can move the message tracking log files to a different, non-encrypted folder. For more information about moving the message tracking log files, see the following Microsoft Knowledge Base articles: