Exchange Server

Latest Articles

Why a Potential Autodiscover Flaw is Just the Tip of an Iceberg

It's often helpful when security researchers like Guardicore shed light on flaws in Microsoft Exchange - however, the Autodiscover protocol isn't flawed in the way they describe. Even though the issue is hard to replicate, it shouldn't distract from the work you need to do to protect your organization from the underlying reason why people want your credentials.

September 28, 2021

Hot Air and Publicity for Purported Autodiscover Security Flaw

Lots of excitement was generated when Guardicore revealed a purported vulnerability with the Exchange Autodiscover service. However, the almost total lack of detail about the configuration used for testing and to generate the reported results makes it impossible for Exchange administrators to check the theory against their own deployment. I don't think a problem exists with Exchange Online, but it's possible that poor DNS practice or flawed third-party clients could cause an issue with on-premises servers. The case remains to be proved.

September 23, 2021

Why can’t you remove the last Exchange Server?

So, you've completed your migration to Exchange Online. Email flows smoothly into and out of the cloud, and all your mailboxes are now online. What's next for your Exchange Servers, now that you've made the transition? After completion you will have several tasks to perform to remove Exchange Servers from your environment, but there is one important caveat you need to know about; if you run Azure AD Connect then you can't remove every Exchange Server from your environment. You will need to keep at least one around for management purposes. In this article, I'll walk through what you can do to minimise what you keep and need to maintain, and what you can consider planning for in the future. You can also join me at TEC this week, on September 2nd.

August 30, 2021

Exchange Vulnerabilities Still Being Exploited and Blackhat USA 2021 highlights what’s still to come. What should you do?

It has been a tiring year for Exchange on-premises and hybrid administrators and unfortunately, it's not getting any easier. The HAFNIUM exploits cast a negative light on Microsoft Exchange, re-emphasizing why email is a crucial part of any organization and that nothing and no one is exempt from an attack. Find out why and what you can do to protect your organization NOW.

August 10, 2021

Attend TEC 2021 and Learn from the Very Best

TEC 2021, The Experts Conference, takes place as a virtual event on September 1-2. In this article, Tony selects his favorite sessions from the event agenda. This isn't to say that the other sessions are no good. Everyone's got their own favorite topics and there are many other TEC sessions which will make others very happy.

August 4, 2021

The Practical 365 Update: S2, Ep 22 – Exchange Updates, Teams 2.0 Deep-Dive plus Justin Morris from Microsoft with real-world advice on Teams Hybrid Meetings

On the show this week, Steve and Paul discuss Teams version 2.0 - and take a deep dive into why the new version will perform better. Justin Morris from Microsoft joins us with expert, real-world advice on Teams Rooms, we discuss Exchange updates (with new features!), Windows 11 planning guidance, plus find out the key features rolling out to your tenant now.

July 9, 2021