Exchange

October 2023 Exchange Server Security Updates

October 2023 Exchange Server Security Updates

Andres Bohren
Hi All, It’s again Patchday and Microsoft has released Security Updates for Exchange 2016 and 2019. Exchange Team Blog Released: October 2023 Exchange Server Security Updates Updates: Security Update For Exchange Server 2019 CU12 SU10 (KB5030877) Security Update For Exchange Server 2019 CU13 SU3 (KB5030877) Security Update For Exchange Server 2016 CU23 SU10 (KB5030877) The Token Cache will be fixed with the OS Updates for IIS. Today, Windows team has released the IIS fix for root cause of this vulnerability, in the form of fix for CVE-2023-36434.
ExchangeOnlineManagement 3.3.0 released as GA

ExchangeOnlineManagement 3.3.0 released as GA

Andres Bohren
Hi All, Just a few days ago, Microsoft has released a new Preview Version of the ExchangeOnlineManagement PowerShell Module. PowerShell Gallery ExchangeOnlineManagement 3.3.0 Release notes for v3.3.0: Support to skip loading cmdlet help files with Connect-ExchangeOnline. Global variable EXO_LastExecutionStatus can now be used to check the status of the last cmdlet that was executed. Bug fixes in Connect-ExchangeOnline and Connect-IPPSSession. Support of user controls enablement by policy for features that are onboarded to Viva feature access management.
Azure AD Connect cloud sync

Azure AD Connect cloud sync

Andres Bohren
Hi All, I am using Azure AD Connect since it was named DirSync. As i am setting up my new Exchange Hybrid Lab - i had the opportunity to try “Azure AD cloud sync”. MS Learn What is Azure AD Connect cloud sync? In the Link abvoe you can find a Table of Features that Azure AD cloud sync is not capable of. Connect to LDAP directories Support for device objects Support for Pass-Through Authentication Filter on objects’ attribute values Allow advanced customization for attribute flows Support for device writeback > Customers should use Cloud Kerberos trust for this moving forward Support for group writeback Support for merging user attributes from multiple domains Azure AD Domain Services support Unlimited number of objects per AD domain Large groups with up to 250,000 members Exchange hybrid writeback Long time, one of the biggest issue was that Azure AD cloud sync did not support the “Exchange hybrid writeback”.
Exchange Online Custom RBAC Role for AWS

Exchange Online Custom RBAC Role for AWS

Andres Bohren
Hi All, I’ve had an interesting Use Case some Weeks ago. The collegues from the AWS Cloud Team wanted to create a Mailenabled Security List for each Application they create. So they can inform the right People and i guess also assign permissions to these People. I expected, that this will be an easy task. Just a few Microsoft Graph Commands to create a Group and add Members. But i was very wrong.
How Exchange Online DMARC Aggregate Reports Change the Game

How Exchange Online DMARC Aggregate Reports Change the Game

Andres Bohren
Hi All, Gain visibility with DMARC In the current digital era, email has become a crucial component of both our personal and professional lives. However, with the sophistication of cyber threats rising, it is more important than ever to ensure the security and legitimacy of email communications. This is where Domain-based Message Authentication, Reporting, and Conformance (DMARC) comes into play. The Mailservers of Recipients that support DMARC, provide feedback to domain owners about the use of their domains; this feedback can provide valuable insights about the use and abuse of your domains.
August 2023 Exchange Server Security Updates

August 2023 Exchange Server Security Updates

Andres Bohren
Hi All, It’s again Patchday and Microsoft has released Security Updates for Exchange 2016 and 2019. Exchange Team Blog Released: August 2023 Exchange Server Security Updates CVE-2023-21709 Microsoft Exchange Server Elevation of Privilege Vulnerability You have to run a Script after the Installation to Address CVE-2023-21709. The Update fails on Non-English Operating System. Workaround can be found here Exchange Server 2019 and 2016 August 2023 security update installation fails on non-English operating systems
ExchangeOnlineManagement 3.3.0 Preview1 available

ExchangeOnlineManagement 3.3.0 Preview1 available

Andres Bohren
Hi All, Just a few days ago, Microsoft has released a new Preview Version of the ExchangeOnlineManagement PowerShell Module. PowerShell Gallery ExchangeOnlineManagement 3.3.0-Preview1 Release notes for v3.3.0-Preview1: Support to skip loading cmdlet help files with Connect-ExchangeOnline. Global variable EXO_LastExecutionStatus can now be used to check the status of the last cmdlet that was executed. Bug fixes in Connect-ExchangeOnline and Connect-IPPSSession. Support of user controls enablement by policy for features that are onboarded to Viva feature access management.
Exchange Online IMAP and SMTP OAuth 2.0 with Delegated Permissions

Exchange Online IMAP and SMTP OAuth 2.0 with Delegated Permissions

Andres Bohren
Hi All, This Week i had to Troubleshoot an Application with IMAP and SMTP Access to a Shared Mailbox that uses Microsoft Graph Delegated Permissions. I’ve already blogged about how to Use Application Permissions Exchange Online POP and IMAP OAuth 2.0 Client Credentials Flow Exchange Online - Other ways of Testing IMAP OAuth2 Client Credential Flow Register Azure AD (EntraID) Application Register a new Application Note down the following: Display name Application ID Tenant ID Click on “Add a Redirect URI”
Hybrid Configuration Wizard supports REST

Hybrid Configuration Wizard supports REST

Andres Bohren
Hi All, Yesterday i saw an update from the Exchange Team Blog Updated Hybrid Configuration Wizard Available Today, we’re excited to announce the latest release of the Hybrid Configuration Wizard (HCW), which now supports Exchange Online REST-based APIs. We recommend that all customers download the latest version of HCW from https://aka.ms/hybridwizard. For me it started with some Troubleshooting as i got the Errors: “You cannot start application Microsoft Office 365 Hybrid Configuration Wizard from this location becaus it’s allready installed from a diffrent location”.
New Outlook for Windows - Public Preview

New Outlook for Windows - Public Preview

Andres Bohren
Hi All, I’ve tested out the New Outlook (aka “One Outlook”) almost a year ago. Now it is in public Preview and everybody can test it. It’s a Windows Program that uses WebView2 Techology to render OWA Sites in a Window - comparable to a Progressive Web App (PWA). Getting started with the new Outlook for Windows There are still some limitations: the new Outlook for Windows does not support other account types like Yahoo!