Hi All, Do you know the Certification Authority Authorization (CAA) DNS Records? With these Records you can control what CA can issue Certificates for your domain. DNS Certification Authority Authorization https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization CAA implementation mandatory for all certificate authorities by September 2017. RFC 8659 DNS Certification Authority Authorization (CAA) Resource Record https://www.rfc-editor.org/rfc/rfc8659 That Record means no CA is allowed to issue Certificates and Wildcard Certifcates for that Domain domain.tld. IN CAA 0 issue "

Hi All, Happy new Year to everybody! Thank's for reading my Blog and following me on Twitter and Linkedin. It's always good to review the past Year. In 2022 i did write 285 Blog Articles, that results in average 24 per Month. That's one more than last year and the highest ever archieved since i started this Blog back in 2007. In total i had over 120'000 Pageviews Over 100'000 Unique User from around the World

Hi All, Did you come across "Authenticated Received Chain (ARC)"? Authenticated Received Chain (ARC) is an email authentication system designed to allow an intermediate mail server like a mailing list or forwarding service to sign an email's original authentication results. This allows a receiving service to validate an email when the email's SPF and DKIM records are rendered invalid by an intermediate server's processing. ARC is defined in RFC 8617, published in July 2019, as "

Hi All, If you are a frequent Reader of the Exchange Team Blog, then you probably saw, that they announced to depreciate Bad Item Limit (BIL) and Large Item Limit (LIL) until end of 2022. Deprecating bad item limit and large item limit migration parameters https://techcommunity.microsoft.com/t5/exchange-team-blog/deprecating-bad-item-limit-and-large-item-limit-migration/ba-p/3652478 Migrations with Data Consistency Score (DCS) – more than you ever wanted to know! https://techcommunity.microsoft.com/t5/exchange-team-blog/migrations-with-data-consistency-score-dcs-more-than-you-ever/ba-p/2393406 Let's see that in Action Connect-ExchangeOnline $ONPREMCREDS = get-credential "

Hi All, Today i helped a Collegue with an Exchange Online Folderpermission Problem. He could not remove the Permissions from a Mailbox Folder (MAPI Permission). Get-MailboxFolderPermission -Identity email@domain.tld:\Kalender | fl Let's remove the User (In fact a Mail Enabled Security Group) Remove-MailboxFolderPermission -Identity email@domain.tld:\Kalender -User CH_DE_Room_Equipment_Reviewer This resulted in the following Error: Microsoft.Exchange.Management.StoreTasks.UserNotFoundInPermissionEntryException | There is no existing Permission entry found for user I've grabbed MFCMAPI from Stephen Griffin. https://github.com/stephenegriffin/mfcmapi/releases/latest

Hi All, Do you know that there is a Feedback Policy in Microsoft Teams? Manage feedback policies in Microsoft Teams https://learn.microsoft.com/en-us/microsoftteams/manage-feedback-policies-in-teams Connect-MicrosoftTeams Get-CsTeamsFeedbackPolicy Let's enable FeatureSuggestions on the Global Policy Set-CsTeamsFeedbackPolicy -Identity Global -EnableFeatureSuggestions $True Get-CsTeamsFeedbackPolicy Let's see all the Policies for my User. Teams Feedback Policy is blank - that means that the Global Policy will be applied Get-CsOnlineUser -Identity a.bohren@icewolf.ch | fl *pol* You can't see that Policy in Teams Admin Center (TAC)

Hi All, I've performed a lot of Exchange Online Migrations this Year. After the Mailbox was migrated i did run a Post Migration Script to set some Setting on the Mailbox like: Set-MailboxRegionalConfiguration -Identity $UPN -TimeZone "W. Europe Standard Time" -DateFormat "dd.MM.yyyy" -TimeFormat "HH:mm" -Language "de-CH" -ErrorAction Stop Set-MailboxCalendarConfiguration -Identity $UPN -WeekStartDay Monday -WorkDays Weekdays -WorkingHoursStartTime 08:00:00 -WorkingHoursEndTime 17:00:00 -WorkingHoursTimeZone "W. Europe Standard Time" -ShowWeekNumbers $True -ErrorAction Stop In some cases there where this Error: "

Hi All, Yesterday my Jabra Evolve 65 Headset broke down. It had served me for several years. The leather Polster of the earprotection already ripped - but was fixed with glue. Now it was time to order a new one. As i was happy with the Headset i ordered the same again. It was delivered this morning. All that was left do do is charge the Battery and update the Firmware of the Headset and the Bluethooth Dongle.

Hi All, I write this Blog Article in Addition to the Exchange Online POP and IMAP OAUTH 2.0 Client Credentials Flow https://blog.icewolf.ch/archive/2022/12/17/exchange-online-pop-and-imap-oauth-2-0-client-credentials.aspx I tried out other ways of testing First we need to get the Access Token ############################################################################### # Get Access Token with MSAL ############################################################################### Import-Module MSAL.PS $AppID = "3bf0cf36-87bf-47a9-927b-0ef9df7cf146" $TenantID = "icewolfch.onmicrosoft.com" $ClientSecret = ConvertTo-SecureString "YourClientSecret" -AsPlainText -Force $Scope = "https://outlook.office.com/.default" Clear-MsalTokenCache $Token = Get-MSALToken -ClientId $AppID -ClientSecret $ClientSecret -TenantId $TenantID -Scope $Scope

Hi All, Yesterday the ExchangeOnlineManagement 3.1.0-Preview2 PowerShell Module has been released to the PowerShell Gallery. ExchangeOnlineManagement 3.1.0-Preview2 https://www.powershellgallery.com/packages/ExchangeOnlineManagement/3.1.0-Preview2 A few REST API cmdlets in Exchange Online PowerShell have been updated with the experimental UseCustomRouting switch. This switch routes the command directly to the required Mailbox server, and might improve overall performance. When you use the UseCustomRouting switch, you can use only the following values for identity of the mailbox: User principal name (UPN) Email address Mailbox GUID The UseCustomRouting switch is available only on the following REST API cmdlets in Exchange Online PowerShell: