Microsoft Exchange and Active Directory Blog
New updates have just been released for all supported Exchange Server versions, which also fix the critical vulnerability from CVE-2018-8581. The updates should therefore be installed as soon as possible, as an exploit for this vulnerability has existed for some time. Click here to download the updates for Exchange 2010, 2013 and 2016: Cumulative Update 12 ... Read more
There is currently a security vulnerability in all Exchange Server versions, which makes it possible to obtain domain administrator authorizations via EWS or, for example, to redirect emails. What makes this vulnerability particularly critical is that it can be exploited remotely. The attacker only needs to have access to a mailbox on the Exchange Server. Since the EWS API and often also ... Read more
This short article is intended to list the most common causes of problems with the Outlook connection to Exchange during migration. Connection problems often occur after a mailbox has been moved to a newer Exchange version. Outlook then often displays one of the following messages: The Microsoft Exchange administrator has made a change that requires Outlook to be restarted. ... Read more
Here is a short article on the configuration of Sophos UTM Email Protection in conjunction with an internal Exchange 2013 / 2016 server. I use these settings privately, most SPAM is reliably filtered, viruses have not gotten through so far. The question about the configuration of Email Protection came from the article "Switching from POP retrieval to MX ... Read more
Important information for Exchange administrators: KB2565063 must be reinstalled on all Exchange Server versions released before October 2018. This currently affects all available Exchange versions and CUs. The background is that the installation files (new installation and update installation) of Exchange have an unpatched version installed and Exchange is therefore still vulnerable to a remote code ... Read more
The September update KB445127 for Windows Server 2016 from 20.09.2018 causes problems on domain controllers in connection with the Exchange GAL (Global Address List). After the update was installed on Windows Server 2016 Domain Controllers, Outlook clients can no longer access the Global Address List: I was also able to reproduce this problem as soon as more than 18 recipients ... Read more
New updates have been released for all Exchange Server versions. Exchange 2010 is also included. Click here to download directly: Exchange Server 2016 CU10 Exchange Server 2013 CU21 Exchange Server 2010 Update Rollup 22 Click here for details of the changes: Exchange Server 2016 CU10 Exchange Server 2013 CU21 Exchange Server 2010 ... Read more
When migrating from Exchange 2010 / 2013 to Exchange 2016, there may be problems with Autodiscover in connection with Kerberos. The problems range from permanent queries of the login information in Outlook to a complete crash of Outlook when a mailbox is moved to an Exchange 2016 server. When can the problem occur? The problem ... Read more
In this article, I already pointed out that Office 365 will only support TLS 1.2 from October 2018. However, before switching to the current TLS 1.2 version, the clients / servers with which the local Exchange server does not yet communicate via TLS 1.2 should be identified. The following small script can be used ... Read more
Three detailed articles on Exchange Server and TLS 1.2 have been published on the Exchange Team Blog. The articles are not only very worth reading, but also have an important background: From October 2018, Office 365 will require TLS 1.2 and will not accept mails from servers that only support TLS 1.0 or TLS 1.1. In plain language ... Read more
