Microsoft Exchange and Active Directory Blog
OpenAI AI is currently on everyone's lips and every day there are new articles in the media about GPT3 or GPT-4 with tests of how well or badly something works. There are calls for the regulation of AI systems and some people are already predicting mass unemployment. Whether all this ... Read more
CU13 for Exchange Server 2019 was released yesterday. The CU13 contains all previous security updates and brings new features for Exchange Server 2019. The CU13 can be downloaded here: CU13 finally brings Modern Authentication (OAuth 2.0) for on-prem Exchange Server. Until now, Modern Authentication was only available in conjunction with the hybrid configuration, i.e. ... Read more
During an Exchange 2016 to Exchange 2019 migration, no mailboxes could be moved to the new Exchange 2019 databases. The MoveRequests got stuck at 0% and showed the error StalledDueToSource_DiskLatency: No matter how big or small the mailbox was: No mailbox could be moved. Directly after creating the MoveRequest, the error StalledDueToSource_DiskLatency was displayed. Also ... Read more
Problems can occur on an Exchange 2019 server if a database is larger than 1 TB. On an Exchange 2019 Standard Server, the maximum database size is 1 TB, if the database is larger, there are problems with failover within the DAG. Also, databases that are larger than 1 TB can no longer be ... Read more
In order to continue to guarantee the security of Exchange Online, Microsoft is gradually starting to block old Exchange Server versions. The new system, which is now being introduced gradually, is called the "Transport-based Enforcement System" and has three functions: Reporting, throttling and blocking. In the first stage, administrators are informed that old Exchange Server versions are present in the company. Read more
Microsoft has released new security updates for Exchange Server 2013, 2016 and 2019. This is likely to be the last security update for Exchange 2013, as support for Exchange 2013 ends on 11.04.2023. The March update for Exchange also fixes the problem with the crashing EWS Web Application Pool in IIS. Applications that use EWS should therefore ... Read more
Microsoft has updated the recommendations for exclusions for virus scanners on Exchange Server: Specifically, contrary to the original recommendation, these directories and processes should no longer be excluded from the virus scanner: Existing exclusions for virus scanners should therefore be adjusted. The script from Paul Cunningham, which creates a list of all exclusions, is suitable for new Exchange installations: Unfortunately, ... Read more
The "Windows Extended Protection" security feature was introduced with a security update in August 2022 for Exchange Server 2013, 2016 and 2019 and protects against man in the middle (MitM) attacks. In small organizations where there is only a single Exchange Server, without load balancers and web application firewalls, Windows Extended Protection can be activated quite easily. In ... Read more
Microsoft has released new security updates for Exchange 2013, 2016 and 2019. A total of 4 vulnerabilities classified as important have been fixed. Details on the closed vulnerabilities can be found here: As you can see, all 4 vulnerabilities are Remote Code Execution vulnerabilities, so the updates should be installed as soon as possible. Here it goes ... Read more
Anyone who has made several Exchange servers highly available via a load balancer uses NTLM for the authentication of Outlook users by default. With a few adjustments, however, Kerberos can also be used for authentication. Compared to NTLM, Kerberos reduces the number of logins compared to the Active Directory, which can lead to better speed. Kerberos is also ... Read more
