Microsoft Exchange and Active Directory Blog
There are currently still many Exchange servers that have not been provided with the urgently needed security updates. This is not only about the ProxyLogon and ProxyShell vulnerabilities, which were already closed in April by corresponding updates, but now also about the vulnerability CVE-2021-42321, which has been closed with the latest Exchange updates. About the exploitation of ... Read more
Microsoft has released new security updates for all supported Exchange Servers (2013, 2016, 2019). In particular, Microsoft mentions the vulnerability CVE-2021-42321 (Remote Code Execution) in Exchange 2016 and 2019, which is already being exploited in a limited number of targeted attacks. The number of attacks is likely to increase as the update may now make the vulnerability easier to detect. ... Read more
Microsoft has released new security updates for Exchange Server 2013, 2016 and 209. These three vulnerabilities are fixed in Exchange Server 2016 and 2019: CVE-2021-41350 CVE-2021-41348 CVE-2021-34453 CVE-2021-41348 is a High severity vulnerability that allows privilege escalation. The following vulnerability is fixed in Exchange 2013: CVE-2021-26427 CVE-2021-26427 is ... Read more
I have just uploaded the new version 3.10 of the Exchange Reporter. In the new version I have fixed numerous bugs that were reported to me. Here is a list of the fixed problems: mbxreport.ps1: Mailboxes close to the sending limit are not displayed (thanks Mario) mailreport.ps1: spelling error corrected (thanks Matthias) Error of module assignment in settings.ini corrected HealthChecker.ps1: HealthChecker script updated ... Read more
During a migration from Exchange onPrem to Microsoft 365, the error occurred that users synchronized via AADConnect could not log in to some services (such as Exchange Online and Office Portal) (HTTP 500 error). However, it was possible to log in to Teams and OneDrive without any problems. Logging in via Edge and Internet Explorer was also possible on ... Read more
The ExchangeHealthChecker has been around for some time, but many people still seem to be unaware of this useful script. However, it is worth running the script from time to time to prevent problems. The ExchangeHealthChecker analyzes the Exchange configuration and lists the most common configuration problems. The script therefore makes troubleshooting much easier. For example, the ExchangeHealthChecker lists expired certificates, ... Read more
It's currently in the news again: attackers are trying to exploit Exchange security vulnerabilities. This time, however, the updates have been available for some time. Anyone who has not yet installed the latest security updates should do so as soon as possible. Here is a summary of the available security updates: New security updates for Exchange Server (April 2021) New security updates for Exchange Server ... Read more
After installing the July security updates, it may happen that the Exchange Administrative Center (EAC) and OWA can no longer be opened. The cause is an expired certificate for Exchange Server OAuth authentication. Microsoft also refers to this problem in the release notes of the updates. Unfortunately, the notes on the updates are overlooked ... Read more
A week ago, Microsoft released new security updates for Exchange Server 2013, 2016 and 2019. I'm only reporting on this now because I've been on vacation for the last 14 days. But thanks to the CVE reporter, this shouldn't be a problem :-) The following four vulnerabilities are closed by the updates CVE-2021-31196 CVE-2021-34470 CVE-2021-33768 CVE-2021-31206 Here's ... Read more
In the standard Active Directory setting, the display name is formed from the first and last name. However, many companies, mostly in German-speaking countries, change the generation of the display name to "last name and first name". This has the advantage that users are easier to find in the Exchange address book and in the Active Directory, as the sorting is based on the surname and ... Read more
