EXCHANGE

Hi All, I’ve explained how “Mail Transfer Agent Strict Transport Security (MTA-STS)” works in this Article Mail Transfer Agent Strict Transport Security (MTA-STS) PS.MTA-STS A Month ago, the PS.MTA-STS PowerShell Module was announced on the Exchange Team Blog Introducing PS.MTA-STS: a PowerShell module to enhance mail flow security with MTA-STS Today a new Version has been released PowerShell Gallery PS.MTA-STS 1.2.0 I’ve tested the Module back then and contacted Jamy Klotzsche and worked with him to improve the Module on GitHub PS.

Hi All, What is MTA-STS Mail Transfer Agent Strict Transport Security (MTA-STS) makes sure that Emails are Transfered over a secured TLS Connection but has lower requirements than DNS based Authentification of Named Entities (DANE). “Mail Transfer Agent Strict Transport Security (MTA-STS)” has been defined in 2018 in the following RFC rfc8461 SMTP MTA Strict Transport Security (MTA-STS) MTA-STS benefits: Emails are transfered over a secure TLS connection Must use TLS-Version 1.

Hi All, Somehow i missed that on the Microsoft Remote Connectivity Analyzer there exists a DNSSEC and DANE DNSSEC and DANE Validation Test Simpy enter the Domain of the MX Record You get the same Information with my Get-Mailprotection Script from the PowerShell Gallery I am using the new PSResourceGet here instead of the PowerShellGet commands. Installation of the Script Install-PSResource Get-MailProtection Get Information about a Domain - even more detailed than in the Remote Connectivity Analyzer

Hi All, While writing the Blog Article that Microsoft is moving to New cloud.microsoft Domain for M365 i’ve been stumbled across something very interesting. In the Article from the Exchange Team Blog from Septemer 2023, they have anounced that Inbound DANE will be available between March and July 2024 using a new Domain *.mx.microsoft Implementing Inbound SMTP DANE with DNSSEC for Exchange Online Mail Flow I’ve decided to test DNSSEC with MXToolbox

Hi All, Yesterday, Microsoft has anouced on the Exchange Team Blog the Exchange Server 2016/2019 March Updates. Released: March 2024 Exchange Server Security Updates OutsideInModule is disabled after installing Exchange Server March 2024 SU After you install the March 2024 security update, text extraction workloads can no longer be performed for the following file types: Jpeg Tiff AutoCAD Known issues with this release: Download domains not working after installing the March 2024 SU OwaDeepTestProbe and EacBackEndLogonProbe fail after installing March 2024 SU Downloads:

Hi All, Microsoft has published several Blog Articles on the Exchange Team Blog, that they will throttle then block old and unpatched on-premises Exchange Servers. Throttling and Blocking Email from Persistently Vulnerable Exchange Servers to Exchange Online Update on Transport Enforcement System in Exchange Online How to pause throttling and blocking of out-of-date on-premises Exchange Servers Timeline They started in Summer 2023 with Exchange 2007. Now in February 2024 they start to block Exchange 2013 - Extended Support ended on 11 April 2023

Hi All, A few years ago, i have already written an Article how to Enable DKIM in Exchange Online. Enable DKIM in Office 365 Things change over time and so does the Exchange Admin Center. Enabling DKIM has moved to the Microsoft Defender Admin Portal. Here are some older Articles regarding DKIM SPF / DKIM / DMARC DKIM with Exchange To enable DKIM in Exchange Online you have to go to the Microsoft Defender Admin Portal and select > Policies & rules > Threat Policies > Email authentication settings

Hi All, Yesterday, Microsoft has anounced on the Exchange Team Blog the 2024 H1 Cumulative Update (Exchange 2019 CU14) Update. Released: 2024 H1 Cumulative Update for Exchange Server News: Exchange 2016 ist supported only with the latest CU (CU23) - Update to the latest Security Update (SU) Exchange 2019 CU14: Exchange Server Support for Windows Extended Protection is enabled by default (Can be disabled with Setup Parameter /DoNotEnableEP or /DoNotEnableEPFEEWS but is not recommended) Read the Prerequisites for enabling Extended Protection on Exchange server New Exchange Schema Version (setup.

Hi All, Recently i wanted to do some Tests with my Exchange 2019 Infrastructure in my Azure Lab and did run in some Problems with EdgeSync. I knew it was working before, because i have blogged how to setup Exchange 2019 Edge Transport Role. I was lucky and explained the Problem on the Exchange Coffee Talk with some experienced Friends from the Exchange Community. They gave me some helpful tips 😍

Hi All, This Week, the Microsoft Exchange Team Blog announced the “granular Configuration feature” for Exchange Hybrid Configuration Wizard (HCW). Hybrid Configuration Wizard with granular configuration feature is now available Details about the configuration Options can be found here Choose Exchange Hybrid Configuration They also updated the Permissions required Hybrid Configuration wizard Note that Global admin permissions are required if Exchange hybrid is configured for the first time! You can download the new Exchange Hybrid Configuration Wizard here: http://aka.