 |
 |
Here you will find all steps to protect from CVE-2024-21410 Exchange Leak. This sample handels and standlaone Exchange 2016 running on Server 2016. The customer has no DAG (Cluster), He is NOT in Hybrid Mode Classic or Modern (He has no CLOUD connection), all latest 02/2024 Windows Updates are installed, the latest CU for […]
Exchange CVE-2024-21410 2013/2016/2019 Extended Protection Kemp-F5 and Modern Hybrid Mode problem Primary target which is part of the attack: Make sure you ROLLOUT the Outlook.exe 02/2024 Patch. That is the most important thing. Esp. On Home Office/Remote Office which may have SMB/445 to WAN open and for VPN users NO traffic to/via VPN-2-HQ policy (Which […]
List or change Inboxrules employee have > Automatic E-Mail forwards to private or external E-Mail systems. Problem: In Exchange, users are able to forward E-Mail themself to an external private account. This is a problem because of compliance and if you don’t have a DLP (Data Lost Prevention). There are ways to prevent this (With […]
This post was published to Butsch.ch at 15:06:54 22.06.2023 M365/Azure, Full Hybrid Mode, M365 user unable to see free/Busy Room/meeting or book on-premise Account www.butsch.ch Category Exchange 2016 ; Exchange 2019 ; M365,AZURE,INTUNE ; Microsoft Exchange PROBLEM: The test.M365 (cloud) users are unable to access free/busy info from the on-premise room mailbox and part two are unable […]
www.butsch.ch Resolve and find OAuth problem in Exchange Hybrid Setup Environment Short Understanding OAuth: OAuth (Open Authorization) is an industry-standard protocol that enables secure authorization for third-party applications without the need to disclose user credentials. It allows users to grant limited access to their resources on one site to another site, without sharing their credentials. […]
We just stumbled again over the KILLBIT event 3028 warning on several Exchange Versions dated 06/2023. It still does not sound good from the text and you would think that some third party plugin or some health check blocks the files. Some say this is normal, some say you can safely ignore this. MS does […]
Enhancing Outlook Debug Logging for Troubleshooting Mike Butsch, www.butsch.ch What we want to do and why Outlook debug logging is a valuable tool for diagnosing and resolving issues within Microsoft Outlook. By enabling advanced logging, you gain deeper insights into the application’s behaviour, allowing for more effective troubleshooting. In this blog post, we will explore […]
english, Management summary To gain a better understanding of the ADMINSholder/adminCount attribute, we recommend referring to the provided blog posts, which shed light on the impact of this flag, particularly regarding ActiveSync and GPO. This attribute poses a challenge in the synchronization process of the Synchronization Service Manager (Microsoft Azure AD Connect Synchronization Services) as […]
How we found this info beside Technet: Error: Outlook 2016 verlangt neues Update (Aktuell: 16.0.4266.1001 / Erforderlich: 16.0.4600.1000) There is a link in the warning which leads to the rather delicate info abour EOL of Office 2016/2019 with M365. Fact: If you don’t want to update your Office 2016/2019, keep your Exchange on-premise DAG with […]
Trellix ENS 10.X, T1056 – Key capture using PowerShell detected, Host intrusion buffer overflow ExP:Illegal API Use Blocked an attempt to exploit C:\WINDOWS\SYSTEM32\WINDOWSPOWERSHELL\V1.0\POWERSHELL.EXE, which targeted the GetAsyncKeyState API. For efficient M365 and Exchange Online management, there are various methods available. While utilizing the PowerShell button within the Admin Portal is one option, it requires an Azure […]
CVE-2023-23397 Was ausgenutz wird: Anstatt Standard Microsoft Outlook Sound kann man für ein meeting reminder einen Custom Sound angeben. Dieser kann auf einem Share liegen. Da liegt der Hund begraben. https://learn.microsoft.com/de-de/office/client-developer/outlook/mapi/pidlidreminderoverride-canonical-property https://www.forbes.com/sites/daveywinder/2023/03/15/microsoft-outlook-warning-critical-new-email-exploit-triggers-automatically-update-now/?sh=47f058ce6e5e CVE-2023-23397 ist ein Outlook-Bug. Wenn Sie eine eingehende E-Mail für einen Termin mit einer benutzerdefinierten Erinnerung (Ton, Attribut PidLIDReminder) senden, wird Outlook.exe (2012/2016) versuchen, […]
TIP: Cleanup everything LOCAL before you even think of moving anything to M365 or Azure or even starting the Connector PRO TIP: Full manual list of Objects/attribute to check on your local ADS in this blog. This blog entry is mainly about those two steps of the MS Technet: https://learn.microsoft.com/en-us/microsoft-365/enterprise/prepare-for-directory-synchronization?view=o365-worldwide Directory Clean-up Tasks Directory object […]
“We once had a case where we needed to install a URL-Rewrite Module in IIS CAS 2010 to submit more information to the Rapid7 Solution. (This was during a time before all the monthly leaks for 2013/2016/2019 came up, pushing all customers towards M365, and it was unclear what the module would do inside Exchange, […]
On an Exchange 2016/2019/M365/Azure you want to change the TLS Certificate of your Receive Connector. Your SAN (Subject Alternate Name) or Wildcard Certificate has no Common Name [CN] (Empty). When you try to assign the cert the regular way you get an error. Nothing wrong with the Cert company just the other side (Requester/Converter) as […]
ISO/PATCH: ExchangeServer2016-x64-cu20 Cumulative Update 20 for Exchange Server 2016 (microsoft.com) Problem: Exchange 2016 CU20 Setup.exe /preparead (Version 15.1.2242.4 Fails) on Server 2016 (1607) Step Configuring Microsoft Exchange Server Organization Preparation results FAILED Exchange 2016 CU 20 need and fails to update Active Directory Schema to newer Version (setup.exe /prepareschema works setup.exe /Preparead fails) if you […]
