Microsoft Exchange and Active Directory Blog
Microsoft has released new security updates for Exchange Server 2013, 2016 and 209. These three vulnerabilities are fixed in Exchange Server 2016 and 2019: CVE-2021-41350 CVE-2021-41348 CVE-2021-34453 CVE-2021-41348 is a High severity vulnerability that allows privilege escalation. The following vulnerability is fixed in Exchange 2013: CVE-2021-26427 CVE-2021-26427 is ... Read more
Sometimes the Exchange log and trace files can take up a lot of disk space, which is why I get requests from time to time asking how the logs can be cleaned up. In most cases, the Exchange partition threatens to fill up and in many cases this is also the system partition. Unfortunately, in many cases the system partition, on which Exchange ... Read more
I recently had the requirement to export all valid certificates of a Windows certification authority so that the certificates could be entered into a certificate management software. I therefore created a small PowerShell script that exports all certificates that are still valid at the time the script runs to a folder. Since only ... Read more
Exchange Emergency Mitigation (EM) is, as already mentioned in this article, available from CU 11 for Exchange 2019 and CU 22 for Exchange 2016. The way it works is as simple as it is effective: The Exchange servers check every hour whether there is a new set of rules for mitigating a vulnerability. For this purpose, a signed XML document is sent every hour from ... Read more
Microsoft has released new updates for Exchange Server 2016 and 2019. Originally, Exchange 2016 was only supposed to receive security updates and no more new features via CU. However, CU 22 has now been released for Exchange 2016. CU 11 has been released for Exchange 2019. Both CUs contain the new "Exchange Emergency Mitigation" feature, which ... Read more
From 01.11.2021, at least Outlook 2013 SP1 is required for Microsoft 365. Previously, older Outlook versions usually worked with Microsoft 365 without any problems. From 01.11.2021, however, Microsoft will now block Outlook versions older than 2013 SP1 from being used and block these versions. Here is the corresponding article from Micorsoft: New ... Read more
This year's Micrsooft Ignite will once again be held as an online conference. As last year, participation in Ignite is free of charge. Registration is sufficient to either follow the sessions live online or to watch the recordings of the sessions later: Microsoft Ignite 2021 Ignite will take place from 02.11. to 04.11.2021. ... Read more
I have just uploaded the new version 3.10 of the Exchange Reporter. In the new version I have fixed numerous bugs that were reported to me. Here is a list of the fixed problems: mbxreport.ps1: Mailboxes close to the sending limit are not displayed (thanks Mario) mailreport.ps1: spelling error corrected (thanks Matthias) Error of module assignment in settings.ini corrected HealthChecker.ps1: HealthChecker script updated ... Read more
In a previous article, I described where the AMSI log files of the Exchange server can be found. As the logs are stored locally on the Exchange server, the logs are of little use if nobody reads them and attacks are only detected when it is too late. However, the logs can also be easily ... Read more
Microsoft has released Windows Server 2022. The successor to Windows Server 2019 has the build number "20348.169, Version 21H2" and is available in the Standard and Datacenter editions. An additional edition with the name "Windows Server 2022 Datacenter: Azure Edition" is only available on Microsoft Azure. There are no Essentials with Windows Server 2022 ... Read more
