Microsoft Exchange and Active Directory Blog
Microsoft released a new security update for Exchange Server 2016 and 2019 yesterday. The update closes a vulnerability classified as "Important". Description of the vulnerability: A cross-site scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server. An authenticated attacker could exploit the vulnerability by ... Read more
Exchange Servers store a large part of the configuration in the Active Directory, which is why a backup of the Exchange Server does not include the configuration of the Exchange Server, but usually only the data (such as the mailboxes). Important settings such as permissions on mailboxes or settings for the virtual directories are stored in the Active Directory. Especially when ... Read more
Yesterday, Microsoft released a new update (CU) for Exchange Server 2019 and Exchange 2016. Here is an overview of the changes and fixes in the new CU: Cumulative Update 4 for Exchange Server 2019 Cumulative Update 15 for Exchange Server 2016 The CU 4 for Exchange 2019 can still only be downloaded via VLSC, MSDN ... Read more
I have just uploaded a new version of the Exchange Certificate Assistant. The old version still uses the Let's Encrypt protocol ACMEv1, which is no longer supported by Let's Encrypt. The new version 3 of the Certificate Assistant now uses the PowerShell module Posh-ACME to automatically request certificates for Exchange Server via Let's Encrypt. Posh-ACME is ACMEv2 ... Read more
It's been a while since the last article on Kemp and Exchange, so here's an updated version. For this test, I used a Kemp Loadmaster VLM-5000 (which is available for free with people with MCP ID for the HomeLab) and Exchange 2019. The Loadmaster firmware used is 7.2.48. The Loadmaster ... Read more
Microsoft has released a new security update for Exchange Server 2013 to 2019 (CVE-2019-1373). The update closes a vulnerability that, in the worst-case scenario, could allow code to be executed remotely. Microsoft classifies the severity of the vulnerability as critical. The update should therefore be installed as soon as possible. Microsoft provides the following details on ... Read more
Microsoft Ignite 2019 started today in Orlando. There aren't quite as many exciting Exchange-related topics at the Microsoft conference this time. Exchange 2019 was already announced last year, but this year there is no new Exchange version, so Exchange is probably only a topic in a few sessions this year. Perhaps ... Read more
Small warning regarding Apple devices and iOS 13. Apparently an old bug from iOS 6 times has returned and is causing trouble again in iOS 13. I warned about the problem "back then" here: Exchange 2007/2010: ActiveSync and iOS 6 bug With Apple iOS 13, too, there are more and more reports that there are ... Read more
Some time ago I had already pointed out the following error, here in connection with Exchange 2013: Exchange 2013: 451 4.7.0 Temporary server error. Please try again later. PRX2 If emails cannot be delivered and Exchange displays the error "451 4.7.0 Temporary server error. Please try again later. PRX2" in the queues, it is possible that ... Read more
During the installation of CU14 for Exchange Server 2016, I encountered the following error. The required schema update could not be performed either from the setup GUI or via shell. The setup aborts directly at "Step 1 of 18: Preparing the organization" with the following error: Here again the error message as text: 1 ... Read more
