Category: Exchange

September 24th, 2021 by Exchange
Security is a top priority for Microsoft and our customers, and we continue to work very hard to keep customer data secure from cyber-threats, while ensuring compliance with evolving regulations. As part of our continued work to help you protect your Exchange Servers, in the September 2021 Cumulative Update (CU) we have added a new feature called the Microsoft Exchange Emergency Mitigation service. This new service is not a replacement for installing Exchange Server Security Updates (SUs), but...

Keep on reading: New security feature in September 2021 Cumulative Update for Exchange Server

Posted in Exchange

September 23rd, 2021 by Exchange
In February 2021, we announced some changes to our plan for turning off Basic Authentication in Exchange Online. In summary, we announced we were postponing disabling Basic Auth for protocols in active use by your tenant until further notice, but that we would continue to disable Basic Auth for all protocols not being used. The overall scope of the program was also extended to include Exchange Web Services (EWS), Exchange ActiveSync (EAS), POP, IMAP, Remote PowerShell, MAPI, RPC, SMTP AUTH and...

Keep on reading: Basic Authentication and Exchange Online – September 2021 Update

Posted in Exchange

September 17th, 2021 by Exchange
We typically release Cumulative Updates (CUs) for Exchange Server on the third Tuesday of a month. In September 2021, that would be September 21st. Today we want to let you know that we will be releasing the September CUs for Exchange Server a week later, on September 28th instead....

Keep on reading: Delay of September 2021 Cumulative Update for Exchange Server

Posted in Exchange

September 9th, 2021 by Exchange
A few months back, we announced the general availability of the new Exchange admin center (EAC). The new EAC offers a faster, more secure, and more intelligent modern admin experience than the classic EAC and is helping admins work more efficiently. With the new EAC providing the majority of admin capabilities, today we are at the next stage of our journey, and we are announcing the retirement of the classic EAC in our WW deployment, to be fully deprecated by September 30, 2022....

Keep on reading: Deprecation of the classic Exchange admin center in WW service

Posted in Exchange

August 25th, 2021 by Exchange
This past week, security researchers discussed several ProxyShell vulnerabilities, including those which might be exploited on unpatched Exchange servers to deploy ransomware or conduct other post-exploitation activities. If you have installed the May 2021 security updates or the July 2021 security updates on your Exchange servers, then you are protected from these vulnerabilities. Exchange Online customers are also protected (but must make sure that all hybrid Exchange servers are updated)....

Keep on reading: ProxyShell vulnerabilities and your Exchange Server

Posted in Exchange

August 18th, 2021 by Exchange
Exchange Online ended supported for TLS1.0 and TLS1.1 in October 2020. We know that the push to meet our security and compliance requirements has made it difficult to support legacy clients and devices that use our service. A balance is needed in a shared service that hosts the emails of local bakeries as well as many countries’ governments....

Keep on reading: New opt-in endpoint available for SMTP AUTH clients still needing legacy TLS

Posted in Exchange

August 10th, 2021 by Exchange
The implementation of SRS in Exchange Online has been available for over 2 years now, but it is something we still focus on to ensure that the feature is as comprehensive and concise as possible given the many ways there are to forward messages and different routing scenarios. There are three upcoming changes in Exchange Online that will affect SRS: 1.     New on-premises connector setting We are introducing a new SRS parameter on outbound on-premises connectors that allow ad...

Keep on reading: Sender Rewriting Scheme Upcoming Changes

Posted in Exchange

August 5th, 2021 by Exchange
In this blog post, we want to address two scenarios customers have asked us about the Active Directory schema vulnerability detailed in our July 2021 security update announcement. Note: This blog post does not apply to customers who are in an Exchange Online hybrid configuration. Hybrid customers should follow the instructions in the July 2021 Security Update announcement to update their Active Directory schema. Without explicit action by a schema admin in your organization, you might be vulnera...

Keep on reading: How to update AD schema to address CVE-2021-34470 if Exchange is very old or no longer installed

Posted in Exchange

July 22nd, 2021 by Exchange
The Windows Antimalware Scan Interface (AMSI) is a versatile standard that allows applications and services to integrate with any antimalware product present on a machine. AMSI is vendor agnostic and designed to allow for the most common malware scanning and protection techniques provided by today's products to be integrated into applications....

Keep on reading: More about AMSI integration with Exchange Server

Posted in Exchange

July 20th, 2021 by Exchange
Sometimes you may need to restrict email delivery to specific recipients. The most common scenario is the need to control messages sent to large distribution groups. Depending on your organization's requirements, you may also need to control the messages sent to executive mailboxes or partner contacts. You can use moderation to accomplish these tasks. When you configure a recipient for moderation, all messages sent to that recipient are subject to approval by the designated moderator....

Keep on reading: Demystifying Moderation

Posted in Exchange