Advanced Office 365 Routing: Locking Down Exchange On-Premises when MX points to Office 365

We often get request from customers to control mail flow routing in a hybrid deployment, for various compliance requirements. Achieving the desired routing greatly depends on where the MX record is pointed to and the involvement of 3rd party mail gateways. Also, use of Centralized Mail Transport and the two mandatory Office 365 native domains…


Giving you more control over public folder migration requests

In our continued efforts to improve the reliability, speed and administration experience of public folder migration, we are very glad to announce the availability of Remove-PublicFolderMailboxMigrationRequest cmdlet for the use of Exchange Online tenant administrators. The cmdlet will help tenant administrator remove individual public folder mailbox migration request, which is very helpful in scenarios where…


How to work with Inactive Mailboxes

It usually starts with the following question: Is there a way to release the license of an Exchange Online user that left the company, but at the same time, keep the mailbox content? To get this done, we have a feature called Inactive mailboxes, but as we have seen some of our customers being a…


Monitoring Exchange Online User Client Access and Usage with Graph, PowerShell and Power BI

Introduction As a Tenant Admin of an Office 365 Exchange Online organization, have you ever needed to monitor who, what, and where someone is connecting to your Exchange Online resources, like accessing mailboxes on mobile devices? I ran into this request a few weeks ago, from one of my customers. After hours of research, and…


Troubleshooting IMAP Migrations to Office 365

During my day to day work as a part of support organization, I work with and help troubleshoot mailbox migrations very often. One type of migrations that we see quite often is IMAP migrations. I wanted to put together an overview of IMAP migration good practices as well as troubleshooting tips related to IMAP migrations….


Contextualizing Attacker Activity within Sessions in Exchange Online

Overview The Exchange audit log is an important tool in the defender toolbox to understand the activity of users (or attackers masquerading as users) in an organization. Defenders can manually browse through their audit logs for user activity that indicates malicious activity. These audit logs feed many first-party and third-party protect, detect, and investigate capabilities…


Introducing the Exchange Online Fiddler Extension

Working in support at Microsoft, you get to deal with a lot of organizations who are migrating to Exchange Online. This type of migration dramatically changes how web traffic flows in the organization as the traffic moves away from Exchange on the Local Area Network to servers hosted by Microsoft in a Microsoft Data Center,…


Announcing Support for Controlled Connections to Public Folders in Outlook

Up to now, Administrators did not have control over which users would see public folders in their Outlook clients. If public folders were created within the organization or if an Exchange Online organization is configured to access on-premises public folders, all clients would make a connection to and show the “Public folders” object in Outlook….


MS11-025 required on Exchange Server versions released before October 2018

In the security advisories released on 10/09/2018, CVE-2010-3190 was updated to apply to Exchange Server. This bulletin now applies to all versions and cumulative updates for Exchange Server released prior to October 2018. The Exchange team is aware that the installation program for Exchange Server is applying an unpatched version of a Visual Studio released…


Deploy Exchange Server 2019 on Windows Server Core

Hurrah! If you have not yet heard: Exchange Server 2019 Public preview was announced earlier, and it is the first version of Exchange that you can install on Server Core! Now, while that’s great news, if you haven’t worked on Server Core, there may be bit of a learning curve. The purpose of this post…