Hi All, Just a few hours Ago the January 2023 Exchange Server Security Updates have been released. Released: January 2023 Exchange Server Security Updates In my case i have downloaded the Security Update 5 for Exchange 2016 CU23 Security Update For Exchange Server 2016 CU23 SU5 (KB5022143) Then run the Security Update When you run the HealthChecker and it has found an update close and reopen Exchange Management Shell after the update.

Hi All, Just a few days ago, Microsoft has released the Version v0.66.0 of theyr PowerToys. As always, there are a plenty of news. PowerToys Release v0.66.0 Highlights PowerToy utilities now ship with self-contained .NET 7, meaning it’s not necessary to install .NET as part of the installer and it’s easier to keep up to date. It’s possible to pick which of the installed OCR languages is used by Text Extractor by selecting it in the right-click context menu.

Hi All On December 01 Microsoft has announced in the Exchange Team Blog that they Support Role Based Access Control (RBAC) for Applications in Exchange Online. The most important Takeaways are: The Preview is now available to all customers in our worldwide multi-tenant environment, and we expect to reach general availability in H1 2023 This feature extends our current RBAC model and will replace the current Application Access Policy feature. Service Principals representing apps must be manually created in Exchange Online during the Preview, but this process will be automated to offer a more efficient user experience at GA The Preview provides two resource scoping mechanisms, both of which are supported by Exchange RBAC: management scopes, and admin units Blog Articles

Hi All, Do you know the Certification Authority Authorization (CAA) DNS Records? With these Records you can control what CA can issue Certificates for your domain. DNS Certification Authority Authorization CAA implementation mandatory for all certificate authorities by September 2017. RFC 8659 DNS Certification Authority Authorization (CAA) Resource Record That Record means no CA is allowed to issue Certificates and Wildcard Certifcates for that Domain domain.tld. IN CAA 0 issue ";" domain.

Hi All, Happy new Year to everybody! Thank’s for reading my Blog and following me on Twitter and Linkedin. It’s always good to review the past Year. In 2022 i did write 285 Blog Articles, that results in average 24 per Month. That’s one more than last year and the highest ever archieved since i started this Blog back in 2007. In total i had over 120'000 Pageviews Over 100'000 Unique User from around the World

Hi All, Did you come across “Authenticated Received Chain (ARC)”? Authenticated Received Chain (ARC) is an email authentication system designed to allow an intermediate mail server like a mailing list or forwarding service to sign an email’s original authentication results. This allows a receiving service to validate an email when the email’s SPF and DKIM records are rendered invalid by an intermediate server’s processing. ARC is defined in RFC 8617, published in July 2019, as “Experimental”

Hi All, If you are a frequent Reader of the Exchange Team Blog, then you probably saw, that they announced to depreciate Bad Item Limit (BIL) and Large Item Limit (LIL) until end of 2022. Deprecating bad item limit and large item limit migration parameters Migrations with Data Consistency Score (DCS) & more than you ever wanted to know! Let’s see that in Action Connect-ExchangeOnline $ONPREMCREDS = get-credential "CORP\Administrator" Let’s create a MoveRequest with the BadItemLimit Parameter.

Hi All, Today i helped a Collegue with an Exchange Online Folderpermission Problem. He could not remove the Permissions from a Mailbox Folder (MAPI Permission). Get-MailboxFolderPermission -Identity email@domain.tld:\Kalender | fl Let’s remove the User (In fact a Mail Enabled Security Group) Remove-MailboxFolderPermission -Identity email@domain.tld:\Kalender -User CH_DE_Room_Equipment_Reviewer This resulted in the following Error: Microsoft.Exchange.Management.StoreTasks.UserNotFoundInPermissionEntryException | There is no existing Permission entry found for user I’ve grabbed MFCMAPI from Stephen Griffin. First set some Options Tools > Options

Hi All, Do you know that there is a Feedback Policy in Microsoft Teams? Manage feedback policies in Microsoft Teams Connect-MicrosoftTeams Get-CsTeamsFeedbackPolicy Let’s enable FeatureSuggestions on the Global Policy Set-CsTeamsFeedbackPolicy -Identity Global -EnableFeatureSuggestions $True Get-CsTeamsFeedbackPolicy Let’s see all the Policies for my User. Teams Feedback Policy is blank - that means that the Global Policy will be applied Get-CsOnlineUser -Identity a.bohren@icewolf.ch | fl *pol* You can’t see that Policy in Teams Admin Center (TAC)

Hi All, I’ve performed a lot of Exchange Online Migrations this Year. After the Mailbox was migrated i did run a Post Migration Script to set some Setting on the Mailbox like: Set-MailboxRegionalConfiguration -Identity $UPN -TimeZone "W. Europe Standard Time" -DateFormat "dd.MM.yyyy" -TimeFormat "HH:mm" -Language "de-CH" -ErrorAction Stop Set-MailboxCalendarConfiguration -Identity $UPN -WeekStartDay Monday -WorkDays Weekdays -WorkingHoursStartTime 08:00:00 -WorkingHoursEndTime 17:00:00 -WorkingHoursTimeZone "W. Europe Standard Time" -ShowWeekNumbers $True -ErrorAction Stop In some cases there where this Error: “WorkHoursVersion1 is null”