Microsoft Exchange - www.butsch.ch

CRUNCH Deployment DLP | Data Loss Prevention ENS | Endpoint Security Exchange 2010 Exchange 2013 Exchange 2016 Exchange 2019 FW Fortigate FW Sophos Intunes M365 - Exchange Online Mcafee/Trellix Microsoft Exchange Microsoft SCCM,MEM,MDT Microsoft Server OS MSME | Security for Exchange Scripting SECURITY Server 2016 Server 2022 [21H2/22H2/32H2] TIE/ATD/ATP | Sandbox - Advanced Threat Protection Tools we made VMWare W10

CRLcheck.exe Certificate Revocation List Check Tool to verify all CRL and OCSP on Windows client

23.03.2024 admin

CRLcheck.exe, Certificate Revocation List Check Tool to automatic verify CRL and OCSP internet reachability of all your EXE files that your client runs. Download 01.01.2026, NEW Release 2.2.0.0 rebuilt for server and small display resolutions like VM’s Version 2.2.0.0 Download from our Server or different software portals: https://www.butsch.ch/wp-content/uploads/tools/crlcheck/latest/crlcheck.7z https://www.softpedia.com/get/Security/Security-Related/Certificate-Revocation-List-Check-Tool.shtml https://www.majorgeeks.com/files/details/certificate_revocation_list_check_tool.html Over the past […]

Exchange 2013 M365,AZURE,INTUNE

Microsoft M365 O365 EXO throttles Exchange 2013 in HYBRID Exchange server version is out-of-date

04.03.2024 admin

Microsoft M365 O365 EXO throttles Exchange 2013 in HYBRID Mode, Queue is growing SMTP ERROR: Connecting Exchange server version is out-of-date Since December 2023, Microsoft has been throttling or blocking on-premises Exchange 2013 servers that are in Hybrid Mode, connecting to their cloud environment. Even if 99% of the mailboxes are already in the […]

Exchange 2007 M365,AZURE,INTUNE

Unable to delete Exchange Mailbox DSID-03152d1c, problem 4003 INSUFF_ACCESS_RIGHTS

29.02.2024 admin

ERROR: You want to delete a Exchange MAILBOX of a user. The user account is decativated. Crypt error: 0000005: SecErr: DSID-03152d1c, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0 This is because a local normal employee user has the ADMINSholder/adminCount flags set to 1/true. (Which is not good in Domain Environments) This is because the Active […]

Exchange 2016 Exchange 2019 M365 - Exchange Online

Enable Extended Protection for OS 2016 and Exchange 2016 (on-premises, no hybrid, no DAG) sample all steps explained

22.02.2024 admin

Here you will find all steps to protect from CVE-2024-21410 Exchange Leak. This sample handels and standlaone Exchange 2016 running on Server 2016. The customer has no DAG (Cluster), He is NOT in Hybrid Mode Classic or Modern (He has no CLOUD connection), all latest 02/2024 Windows Updates are installed, the latest CU for […]

Exchange 2013 Exchange 2016 Exchange 2019 M365 - Exchange Online Microsoft Exchange Server 2022 [21H2/22H2/32H2]

Exchange CVE-2024-21410 2016 2019 Extended Protection Kemp-F5 and Modern Hybrid Mode problem

19.01.2024 admin

Exchange CVE-2024-21410 2013/2016/2019 Extended Protection Kemp-F5 and Modern Hybrid Mode problem Primary target which is part of the attack: Make sure you ROLLOUT the Outlook.exe 02/2024 Patch. That is the most important thing. Esp. On Home Office/Remote Office which may have SMB/445 to WAN open and for VPN users NO traffic to/via VPN-2-HQ policy (Which […]

Azure Exchange 2016 Exchange 2019 Intunes M365 - Exchange Online M365,AZURE,INTUNE

Import Module Exchange Online | M365 | Hybrid

04.01.2024 admin

Import Module Exchange Online | M365 | Hybrid This guide explains how to import and connect the Exchange Online PowerShell module, and how Microsoft Entra Conditional Access policies such as MFA, legacy authentication blocking, device compliance, and sign-in restrictions can prevent successful connections. Start PowerShell Elevated Mouse right click on Windows PowerShell (this may prompt […]

Exchange 2007 Exchange 2010 Exchange 2013 Exchange 2016 Exchange 2019 M365 - Exchange Online Microsoft Exchange Outlook

Exchange-Powershell-list-all-user-who-have-a-Forward-or-Redirect-active

22.11.2023 admin

List or change Inboxrules employee have > Automatic E-Mail forwards to private or external E-Mail systems. Problem: In Exchange, users are able to forward E-Mail themself to an external private account. This is a problem because of compliance and if you don’t have a DLP (Data Lost Prevention). There are ways to prevent this (With […]

Exchange 2016 Exchange 2019 M365,AZURE,INTUNE Microsoft Exchange

M365/Azure, Full Hybrid Mode, M365 user unable to see free/Busy Room/meeting or book on-premise

22.06.2023 admin

This post was published to Butsch.ch at 15:06:54 22.06.2023 M365/Azure, Full Hybrid Mode, M365 user unable to see free/Busy Room/meeting or book on-premise Account www.butsch.ch Category Exchange 2016 ; Exchange 2019 ; M365,AZURE,INTUNE ; Microsoft Exchange PROBLEM: The test.M365 (cloud) users are unable to access free/busy info from the on-premise room mailbox and part two are unable […]

CRUNCH Exchange 2013 Exchange 2016 Exchange 2019 M365 - Exchange Online M365,AZURE,INTUNE Microsoft Exchange

M365/Exchange Hybrid OAuth Testing command, OAuth-Cert out-of-sync 4001, IIS VDIR OAuth wrong

21.06.2023 admin

www.butsch.ch Resolve and find OAuth problem in Exchange Hybrid Setup Environment Short Understanding OAuth: OAuth (Open Authorization) is an industry-standard protocol that enables secure authorization for third-party applications without the need to disclose user credentials. It allows users to grant limited access to their resources on one site to another site, without sharing their credentials. […]

Exchange 2016 Exchange 2019 M365,AZURE,INTUNE

Exchange 2013, 2016, 2019, Event 3028, KILLBIT error, you can safely ignore since 2014

20.06.2023 admin

We just stumbled again over the KILLBIT event 3028 warning on several Exchange Versions dated 06/2023. It still does not sound good from the text and you would think that some third party plugin or some health check blocks the files. Some say this is normal, some say you can safely ignore this. MS does […]

Exchange 2016 Exchange 2019 M365,AZURE,INTUNE Microsoft Exchange Outlook

M365 | on-premise, Outlook.exe DEBUG logging for troubleshooting complete guide

16.06.2023 admin

Enhancing Outlook Debug Logging for Troubleshooting Mike Butsch, www.butsch.ch What we want to do and why Outlook debug logging is a valuable tool for diagnosing and resolving issues within Microsoft Outlook. By enabling advanced logging, you gain deeper insights into the application’s behaviour, allowing for more effective troubleshooting. In this blog post, we will explore […]

Azure CRUNCH Exchange 2007 Exchange 2010 Exchange 2013 Exchange 2016 Exchange 2019 GPO | Gruppenrichtlinien M365 - Exchange Online M365,AZURE,INTUNE Microsoft Exchange Microsoft Server OS

Active Directory accounts with ADMINSholder/adminCount flag | No syncback from Azure, ms-ds-consistencyGuid

14.06.2023 admin

english, Management summary To gain a better understanding of the ADMINSholder/adminCount attribute, we recommend referring to the provided blog posts, which shed light on the impact of this flag, particularly regarding ActiveSync and GPO. This attribute poses a challenge in the synchronization process of the Synchronization Service Manager (Microsoft Azure AD Connect Synchronization Services) as […]

Exchange 2016 M365,AZURE,INTUNE Microsoft Exchange

Exchange Office M365 customers will have to upgrade their Office 2016/2019 by October 2023

07.06.2023 admin

How we found this info beside Technet: Error: Outlook 2016 verlangt neues Update (Aktuell: 16.0.4266.1001 / Erforderlich: 16.0.4600.1000) There is a link in the warning which leads to the rather delicate info abour EOL of Office 2016/2019 with M365. Fact: If you don’t want to update your Office 2016/2019, keep your Exchange on-premise DAG with […]

Azure ENS | Endpoint Security EPO | ePolicy Orchestrator Exchange 2013 Exchange 2016 Exchange 2019 M365 - Exchange Online M365,AZURE,INTUNE Mcafee/Trellix Microsoft Exchange SECURITY

M365, Exchange Online Remote Powershell blocked by T1056 Mitre Trellix

04.04.2023 admin

Trellix ENS 10.X, T1056 – Key capture using PowerShell detected, Host intrusion buffer overflow ExP:Illegal API Use Blocked an attempt to exploit C:\WINDOWS\SYSTEM32\WINDOWSPOWERSHELL\V1.0\POWERSHELL.EXE, which targeted the GetAsyncKeyState API. For efficient M365 and Exchange Online management, there are various methods available. While utilizing the PowerShell button within the Admin Portal is one option, it requires an Azure […]

Exchange 2010 Exchange 2013 Exchange 2016 Exchange 2019 Hotfixes, Updates M365,AZURE,INTUNE SECURITY SPAM Fortimail

CVE-2023-23397, Outlook.exe Exploit, PidLIDReminder custom Sound ab SMB für Termin Reminder

15.03.2023 admin

CVE-2023-23397 Was ausgenutz wird: Anstatt Standard Microsoft Outlook Sound kann man für ein meeting reminder einen Custom Sound angeben. Dieser kann auf einem Share liegen. Da liegt der Hund begraben. https://learn.microsoft.com/de-de/office/client-developer/outlook/mapi/pidlidreminderoverride-canonical-property https://www.forbes.com/sites/daveywinder/2023/03/15/microsoft-outlook-warning-critical-new-email-exploit-triggers-automatically-update-now/?sh=47f058ce6e5e CVE-2023-23397 ist ein Outlook-Bug. Wenn Sie eine eingehende E-Mail für einen Termin mit einer benutzerdefinierten Erinnerung (Ton, Attribut PidLIDReminder) senden, wird Outlook.exe (2012/2016) versuchen, […]

Certificate Revocation List Check Tool is designed to enhance security by performing several key functions related to executable files (EXE). It can scan your client for EXE files and examine their code-signing certificates. The tool also searches for the relevant CRL to determine whether it can be downloaded. It validates the integrity of the certificate chain, checks both the certificate and CRL for expiration dates, and can export a comprehensive list of all gathered information as a file. Additionally, it cross-references to ensure you are not using any revoked certificates, helping maintain a secure environment.

Category: Microsoft Exchange