EXCHANGE

Hi All, A few hours ago, Microsoft has released the ExchangeOnlineManagement 3.9.0 PowerShell Module. I don’t know what magic they used, but it was not there yesterday. PowerShell Gallery ExchangeOnlineManagement 3.9.0 v3.9.0: Introduce -EnableSearchOnlySession switch in Connect-IPPSSession cmdlet, which enables certain eDiscovery and related cmdlets that connect to other M365 services I am using the new PSResourceGet here instead of the PowerShellGet commands. Show installed Versions and what’s available in PowerShell Gallery.

Hi All, Microsoft has released the Exchange Server Security Updates yesterday for all currently supported Versions: Exchange Server Subscription Edition (SE) Exchange Server 2019 Exchange Server 2016 Exchange Team Blog Article Released: August 2025 Exchange Server Security Updates Exchange Server Subscription Edition In my case, i’ve downloaded the Security Update for Exchange Server Subscription Edition Security Update for Exchange Server Subscription Edition SU1 (KB5063224) Description of the security update for Microsoft Exchange Server Subscription Edition RTM: August 12, 2025 (KB5063224) Installation After the Download i started the *.

Hi All, Just a few days ago, Microsoft has announced that the updated Hybrid configuration Wizard (HCW) now supports the Configuration of the Dedicated Hybrid App. Dedicated Hybrid App: temporary enforcements, new HCW and possible hybrid functionality disruptions CVE-2025-53786 Microsoft Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability Microsoft has also announced some block Tests. As the Adoption of Dedicated Hybrid App does not seem at the Level Microsoft is expecting.

Hi All, A few days ago, Microsoft has released the ExchangeOnlineManagement 3.9.0-Preview1 PowerShell Module. PowerShell Gallery ExchangeOnlineManagement 3.9.0-Preview1 v3.9.0-Preview1: Introduce -EnableSearchOnlySession switch in Connect-IPPSSession cmdlet, which enables certain eDiscovery and related cmdlets that connect to other M365 services I am using the new PSResourceGet here instead of the PowerShellGet commands. Show installed Versions and what’s available in PowerShell Gallery. You need to use the -Prerelease Parameter to show Preview Versions of a Module

Hi All, I’ve found an Issue in my Get-Mailprotection Script and fixed it. The updated Version has been released. PowerShell Gallery Get-Mailprotection 1.17 Release Notes 1.17 Fixed Bug Autodiscover A Record I am using the new PSResourceGet here instead of the PowerShellGet commands. Show installed Versions and what’s available in PowerShell Gallery Get-InstalledPSResource -Name Get-Mailprotection -Scope CurrentUser Find-PSResource -Name Get-Mailprotection Uninstall old Version and install new Version Uninstall-PSResource -Name Get-Mailprotection -Scope CurrentUser Install-PSResource -Name Get-Mailprotection -Scope CurrentUser Get-InstalledPSResource -Name Get-Mailprotection -Scope CurrentUser Use the Script

Hi All, A few days ago, i did publish the Article Installing ADFS on Windows Server 2025. That gave me the opportunity, to test some scenarios with Exchange and Active Directory Federation Services (ADFS). ADFS Server Let’s start the ADFS MMC C:\Windows\ADFS\Microsoft.IdentityServer.msc Create relying party trusts in AD FS for Outlook on the web and the EAC As you can see, the Relying Party Trusts are empty Create Relying Party Trust for Outlook on the Web (owa)

Hi All, A few Months ago, Microsoft has announced the Exchange Hybrid App. They announced that in Q2 2025 the HCW will support the creation of the Exchange Hybrid Application. Not sure if that is already the case. So i did write this Script to check for updated Versions of Hybrid Configuration Wizard (HCW). Exchange Server Security Changes for Hybrid Deployments Browser Developer Tools In the Browser development tools i’ve analyzed the URL that is used to download the Hybrid Configuration Wizard (HCW) when requesting https://aka.

Hi All, In my professional Life, i have architected and implemented many Exchange Hybrid Organizations. Most of the Time the MX Records still point to the OnPrem Mailgateway or a 3rd Party Service for AntiMalware, Antispam, AntiPhishing. These Systems have well designed Rules for preventing Malware and unwanted Mails. But customers forget, that with Exchange Online by default comes two MX Records to your Tenant, where someone potentially can bypass all these checks from the OnPrem Mailgateway and deliver Mails directly to Exchange Online Protection (EOP).

Hi All, I had to debug an Application that sends a Mail with an Attachment via Graph API. I’ve created this Small Script to Test the Functionality. Entra Application You need an Entra Application. Entra Application: Certificate Authentication: Permissions: Application: Mail.ReadWrite Application: Mail.Send Application Access Policy I’ve written a whole Article Application Access Policy in Exchange Online Limit Microsoft Graph Access to specific Exchange Mailboxes Connect-ExchangeOnline -ShowBanner:$False Get-DistributionGroup -Identity PostmasterGraphRestriction | fl DisplayName, PrimarySmtpAddress, ExternalDirectoryObjectId Get-DistributionGroupMember -Identity PostmasterGraphRestriction | fl DisplayName, PrimarySmtpAddress,ExternalDirectoryObjectId With this Application Access Policy you restrict the Graph Permissions of the Entra Application to the Members of the Distribution Group.

Hi All, Microsoft has released the Exchange Server Subscription Edition (SE) today. Exchange Team Blog Exchange Server Subscription Edition (SE) is now available System Requirements Release Notes KB5047155 Check also the Updated Information Upgrading your organization from current versions to Exchange Server SE Exchange SE CU1 release was moved to H1 CY26 Exchange SE CU2 was added, with the H2 CY26 release date Exchange SE coexistence block for E2016/E2019 will be coming in Exchange SE CU2 (previously CU1) Download I’ve downloaded the ISO from the Download Center