Category: M365 – Exchange Online


List or change Inboxrules employee have > Automatic E-Mail forwards to private or external E-Mail systems. Problem: In Exchange, users are able to forward E-Mail themself to an external private account. This is a problem because of compliance and if you don’t have a DLP (Data Lost Prevention). There are ways to prevent this (With […]

M365/Intunes | MDM and MAM enrollement, Primary user, User Scope Limitation what affect

M365/Intunes | MDM and MAM enrolled difference explained   First, let’s take a look at two different models: MDM and MAM. These models provide options for managing endpoints, including computers, clients, mobiles, and smartphones.     Mobile Device Management (MDM) Often device corporate owned and paid (Regular employee of SBS or Enterprise)     MDM […]

M365/CLOUD, watch Microsoft status LIVE | See who has high volume traffic at homeoffice Microsoft M36X has been scaling up its information system to address downtime, which is unsurprising considering the recent outages experienced in the past months. Checking the Twitter Status M365 ( in the morning is a good way to anticipate what to expect before opening your IT Support Ticket system. This allows you to […]

M365/Exchange Hybrid OAuth Testing command, OAuth-Cert out-of-sync 4001, IIS VDIR OAuth wrong Resolve and find OAuth problem in Exchange Hybrid Setup Environment Short Understanding OAuth: OAuth (Open Authorization) is an industry-standard protocol that enables secure authorization for third-party applications without the need to disclose user credentials. It allows users to grant limited access to their resources on one site to another site, without sharing their credentials. […]

Active Directory accounts with ADMINSholder/adminCount flag | No syncback from Azure, ms-ds-consistencyGuid

english, Management summary To gain a better understanding of the ADMINSholder/adminCount attribute, we recommend referring to the provided blog posts, which shed light on the impact of this flag, particularly regarding ActiveSync and GPO. This attribute poses a challenge in the synchronization process of the Synchronization Service Manager (Microsoft Azure AD Connect Synchronization Services) as […]

M365, Exchange Online Remote Powershell blocked by T1056 Mitre Trellix

Trellix ENS 10.X, T1056 – Key capture using PowerShell detected, Host intrusion buffer overflow ExP:Illegal API Use Blocked an attempt to exploit C:\WINDOWS\SYSTEM32\WINDOWSPOWERSHELL\V1.0\POWERSHELL.EXE, which targeted the GetAsyncKeyState API. For efficient M365 and Exchange Online management, there are various methods available. While utilizing the PowerShell button within the Admin Portal is one option, it requires an Azure […]

M365/Hybrid Exchange Setup: Steps to verify on-premise, Prepare for Directory Synchronization (IDFIX, UPN, Proxyaddress)

TIP: Cleanup everything LOCAL before you even think of moving anything to M365 or Azure or even starting the Connector PRO TIP: Full manual list of Objects/attribute to check on your local ADS in this blog. This blog entry is mainly about those two steps of the MS Technet: Directory Clean-up Tasks Directory object […]

Exchange 2010 – 2016 Migration remove of old MDB fails (Mailboxexports)

  Error: This mailbox database is associated with one or more active MailboxExport requests Source: This means you have current/Pending/stalled as sample PST Exports running (Maybe very old). Solution: You will have to remove those you are able to remove the emtpy old Exchange MDB. Get-MailboxExportRequest (ExchangePowerShell) | Microsoft Docs     Microsoft Exchange Error […]

WINMAIL.DAT (Exchange 2007-2016-M365) Outlook – DEUTSCH

WINMAIL.DAT Transport Neutral Encapsulation Format oder TNEF ist ein proprietäres E-Mail-Anhangsformat, das von Microsoft Outlook und Microsoft Exchange Server verwendet wird. Eine Datei mit TNEF-Codierung wird in der Regel als winmail.dat oder win.dat bezeichnet und hat einen MIME-Typ von Application/MS-TNEF. Der offizielle (IANA) Medientyp ist jedoch application/ Wie oder wann passiert das? Wenn ein Absender […]

Exchange 2013/2016 and 2010 Proxy back (400) Bad Request, ADS-user in too many ADS-groups member

Exchange 2010/2013/2016 Migration, problem after DNS-pointing to 2016 structure with some users Outlook.exe When you thought Kerberos Bloating is way back 2012 it returns. And after some research it is still all over the place. It does affect on premise Solutions as well as cloud solution like ADFS, AZURE etc. Error: This error (HTTP 400 […]

How to turn off Autodiscover Warning in Outlook 2010, 2013, 2016, 2019

How to turn off Autodiscover Warning in Outlook 2010/2013/2016/2019 (Exchange 2010/2013/2016) Warnung: Das Konto wurde fuer die Einstellung auf die Website umgeleitet A little bit more explained than in the Microsoft KB and with a check THAT if you ONLY set the Registry key if the OFFICE Version is installed. During Migrations you could […]

Turn of Autodiscover warning box agree Outlook.exe with GPO

How to turn off Autodiscover Warning in Outlook 2010/2013/2016/2019 Warnung: Das Konto wurde fuer die Einstellung auf die Website umgeleitet A little bit more explained than in the Microsoft KB and with a check THAT if you ONLY set the Registry key if the OFFICE Version is installed. During Migrations you could otherwise run […]

Powershell RUS Adressrichtlinien Setzen fuer Exchange

Wie mache ich ein Adressrichtlinie im Exchange 2007/2010 Zur Auswahl in der GUI stehen nur einige Optionen. Leider nicht die Option: Erster Buchstabe Vorname . Nachname @ Domain Diese muss man im PowerShell machen: new-EmailAddressPolicy -Name ‘’ -IncludedRecipients ‘AllRecipients’ -Priority ‘Lowest’ -EnabledEmailAddressTemplates ‘’ So kann man alle Werte der RUS-Richtlinie ansehen: Get-EmailAddressPolicy -identity “” | […]