Cheat Sheet: Setting Exchange Mailbox User Permissions via PowerShell

One of the things I get asked about quite a lot, is how you can set specific permissions in Exchange Server and Exchange Online. Most cases the Management Console (in 2010) or the Exchange Admin Center (EAC, Exchange 2013 & 2016 and Online) provide most basic permissions like Full Access, Send As and Send On Behalf. However, sometimes an admin has to set Send on Behalf permissions on a Shared Mailbox or disable AutoMapping, those options are not available via

Read more

Yay! Renewed as an Exchange MVP

Today was a nerve racking day (a lot of F5/F9 to refresh my MVP profile page and to see if I got that one mail in Outlook), but eventually I received some good news: Dear Dave Stork, Congratulations! We are pleased to present you with the 2015 Microsoft® MVP Award! This award is given to exceptional technical community leaders who actively share their high quality, real world expertise with others. We appreciate your outstanding contributions in Exchange Server technical communities

Read more

Checking security protocols and ciphers on your Exchange servers

Microsoft states that Exchange 2010 and 2013 are secure out of the box. With this they mean that every traffic coming in and out of Exchange is one way or another encrypted. Whether this is web traffic or specific for SMTP. Even IMAP and POP are enabled with mandatory encryption (although the services are disabled by default). However the past few months we’ve had reports that specific encryption protocols and ciphers (algorithms used for encryption and decryption) used aren’t considered safe

Read more

IIS Exploit can reboot your Windows Server; install patch KB3042553 ASAP

This week Microsoft release a patch for Windows 7/Windows Server 2008 R2 and up that fixed a critical remote execution bug, see MS15-034 and CVE-2015-1635 for more info. Unfortunately the patch was reversed engineered and now an exploit is available. This was detected and described by ISC SANS. They added Denial of Service (DoS) as possible impact, next to Remote Code Execution. As it turns out, the DoS in question actually causes a Blue Screen of Death (BSoD, also known as bugcheck)

Read more

Azure Active Directory Synchronization: Object Matching

This post is the fifth in a series about Azure Active Directory Synchronization and will cover Object Matching. Other posts have covered and will cover: Introduction, Part 1 Introduction, Part 2 Filtering, Part 1 Filtering, Part 2 Alternate Logon ID Object Matching and Joining Object matching or joining is relevant if you have multiple Active Directory (AD) forests you want to use for Directory Synchronization to Azure Active Directory (Azure AD). Previously with DirSync, it wasn’t possible (or supported) to connect

Read more

Azure Active Directory Synchronization: Filtering, Part 2

This post is the fourth in a series about Azure Active Directory Synchronization and will cover Filtering. Originally I’ve planned to make this one post, but in my opinion it became to large and complex thus again a part 2. Other posts have covered and will cover: Introduction, Part 1 Introduction, Part 2 Filtering, Part 1 Object Matching Alternate Logon ID In the previous post I discussed why and how to filter: Domain, Organizational Unit or Attribute based filtering. When to

Read more

Azure Active Directory Synchronization: Filtering, Part 1

This post is the third in a series about Azure Active Directory Synchronization and will cover Filtering. Originally I’ve planned to make this one post, but in my opinion it became too large and complex thus again a part 2. Other posts have covered and will cover: Introduction, Part 1 Introduction, Part 2 Filtering, Part 2 Object Matching Alternate Logon ID   Why would you want to filter? In most cases the current Active Directory (AD) implementation contains a lot

Read more

Azure Active Directory Synchronization: An Introduction, Part 2

This post is the second in a series about Azure Active Directory Synchronization, covering part 2 of an introduction. Previous and follow up posts have covered and will cover: Introduction, Part 1 Filtering, Part 1 Filtering, Part 2 Object Matching Alternate Logon ID As most organizations will not require FIM, I will focus my attention mostly on AADSync. Although DirSync is (unless features from AADSync are required) the first choice, it’s deprecated, but more importantly: most concepts are still unchanged.

Read more

Azure Active Directory Synchronization: An Introduction, Part 1

This post is a first in a series about Azure Active Directory Synchronization, covering part 1 of the introduction. Follow up posts will cover: Introduction Part 2 Filtering Part 1 Filtering Part 2 Object Matching Alternate Logon ID   Why you want to Sync For those who don’t work regularly with Office 365 or other Microsoft cloud services (like Azure, Exchange Online Protection), it can be a complex myriad of information to work through in order to find out what you exactly need. In

Read more

Using your browser to check Exchange 2013 protocol health

Sometimes you’re not at work and you suspect there is something wrong with your Exchange 2013 servers and you can’t access your environment remotely for whatever reason. Well, in some cases you can check this with just a browser. For each Exchange protocol, there is an URL you can use to check the health. The format would be: https://<External FQDN>/<protocol>/healthcheck.htm If the specific protocol is working correctly, the Exchange server will respond with: 200 OK SERVER.CONTOSO.LOCAL The server.contoso.local would be the

Read more
1 2 3 4 18