Recent Discussions
Purview Retention Policy to target mailboxes in a security group?
Hi. not sure if I’m just being dumb, but it seems such a basic thing. I’ve created a purview retention policy, and I want to assign it to specific mailboxes. I seem to only have the option of “all users” or manually specify individual mailboxes. No option to select security groups…? Any advice appreciated. thanks.Solved39Views0likes2Comments
Allowing staff to view invitees and attendees to meetings in Room Calendars
I'm currently in the process of setting up Room finder and meeting rooms for the organisation I'm working for. I've manged to get it all pretty much done but one request I've received is to allow everyone in the organisation to see not only the meeting name and organiser which I've already achieved using \calendar -User default -AccessRights LimitedDetails but also see everyone who is invited to the meetings and if they have accepted or declined. Is this possible at all? I've been trying to find a way but seem to be hitting a dead end. Even if give people delegated access to the room resource they still can't see it. I would really appreciate hearing other peoples advice and experience on this and if it's even possible at all. Many thanksSolved32Views0likes1CommentLimit unauthenticated mail
The standard configuration in Exchange is that anyone internally can connect to telnet and send unauthenticated e-mail to anyone inside the organization. We want to limit this so that only those applications that need to send unauthenticated mail are allowed to do this. We have Exchange 2016 hybrid and the mail flow is routed via Exchange online. The local Exchange server is only used for administration and relay. With that setup, can we just remove 'anonymous authentication' from the 'Default Frontend' connector and add a connector with the ip addresses of the applications that will be allowed to send? Or will it break the mail flow? Anyone have any tips on how to achieve this? I could create a connector that contains the IP-ranges of our empoyee networks, but that seems a bit backwards.Solved84Views0likes4Comments
Exchange Online: New-Addresslist with RecipientFilter
Hello, our client will move from OnPrem Exchange to Cloud, i just set up an hybrid connection where everything works fine so far. I wanted to migrate the custom address lists from OnPrem to Online by rebuilding them with powershell. Our client has some companies and wants address lists for every company. They all have different domains so i want to create new address lists based on the UPNs. I tested with Get-Recipient -Filter and got the results i wanted, so i just used the same filter in New-Addresslist and don't get any results...what am i missing? Get-Recipient -Filter {((RecipientTypeDetails -eq 'UserMailbox') -or (RecipientTypeDetails -eq 'MailUser') -and (UserPrincipalName -like '*contoso.com') -and (HiddenFromAddressListsEnabled -eq 'False'))} // this gets me the results i wanted New-Addresslist -Name "Contoso" -RecipientFilter {((RecipientTypeDetails -eq 'UserMailbox') -or (RecipientTypeDetails -eq 'MailUser') -and (UserPrincipalName -like '*contoso.com') -and (HiddenFromAddressListsEnabled -eq 'False'))} // this creates an empty address listSolved55Views0likes3CommentsIphone Contacts GAL
Hello, we're migrating users from exchange onPrem to exchange online and we're looking into an issue reported. Users using Outlook on Iphone reported that they don't see all the contacts they are seeing on the outlook on PC. They only see the contacts's subset named to their users. Is there a way to have the outlook on Iphone to see the entire "all Contacts" address list ? thanks SCSolved62Views0likes2CommentsSystem mailbox corrupted
We're migrating from exchange 2013 to 2019 on-prem. All the mailboxes have been migrated to the new server including all the "system" mailbox as arbitration, auditing, etc Checking the enviroment, before decomissioning the exchange 2013 server we noticed an error we got this system mailbox that we don't understand what it is Get-Mailbox -filter { (name -like "SystemMailBox*") } | ft -AutoSize WARNING: The object XXXXXX/Microsoft Exchange System Objects/SystemMailbox{3654B126-D8E0-47B3-85FA-2CA0FCFF7711} has been corrupted or isn't compatible with Microsoft support requirements, and it's in an inconsistent state. The following validation errors happened: WARNING: Database is mandatory on UserMailbox. WARNING: Database is mandatory on UserMailbox. Name Alias ServerName ProhibitSendQuota ---- ----- ---------- ----------------- SystemMailbox{3654B126-D8E0-47B3-85FA-2CA0FCFF7711} SystemMailbox{3654B126-D8E0-47B3-85FA-2CA0FCFF7711} XXXXXX Unlimited The server mentioned in the "servername" column, here changed to XXXXX, does not exists anymore as it was an old DC decomissioned. The recipientTypeDetails of this mailbox is RecipientTypeDetails : LegacyMailbox is it a mailbox that is needed, and so be recovered in a way, or can this be deleted ?Solved91Views0likes1Comment
CBA setup for ActiveSync on Exchange server 2019 on premise
I was setting up CBA for active sync and owa on exchange on premise 2019 following this guide https://learn.microsoft.com/en-us/exchange/plan-and-deploy/post-installation-tasks/configure-certificate-based-auth?view=exchserver-2019 It was a struggle. First, I tried to make sure OWA would work on a domain PCs with CBA. Finally, after I did optional step from the guide above, increased uploadReadAheadSize value to 49152 for owa, ecp and activesync, I started getting error on browser “too many redirects, try clearing cookies”. Clearing cookies didn’t help (private windows also didn’t help), but then I installed another browser (chrome), and owa started working accepting certificates. The browser that I was experimenting with before (edge) still not working for owa, I guess something needs to be cleaned. I understand it is not specifically edge problem, but the fact that edge has cashed some data (since I did all testings on it) that doesn’t allow to connect. I was able to connect to owa with edge on another domain computer, which was not used before. After I got owa to work on PC, I installed user certificate on iphone, and owa works there with certificate too (great!! one problem solved). However, for some reason active sync still doesn’t work with client certificate set to required on the same iphone. I assume iphone should use same certificate it uses for owa (which works), so certificate is not the problem. Without requiring client certificate ActiveSync on iphone also works, so permissions/policies shouldn’t be the problem. I’m getting error codes 403 7 64 and 403 7 5. Does anybody have any suggestions???Solved47Views0likes1Comment
Access to Exchange Admin Centre blocked using most (but not all) URL links
Suddenly, when I try to use most of the published links to the Exchange Admin Centre, including the links on the Microsoft 365 Admin Centre, my access to the Admin Centre for Exchange is blocked. The messages vary but the most common one is "admin.exchange.microsoft.com closed the connection". All of the links for the other admin centres work just fine for me (Teams, InTune, SharePoint etc.) - it's just the Exchange Admin Centre link that are mostly problematic. Two examples of links that don't work for me: https://admin.exchange.microsoft.com/?landingpage=homepage&form=mac_sidebar https://admin.exchange.microsoft.com/#/homepage The only link I can find that still does work for me: https://admin.cloud.microsoft/exchange#/Solved541Views1like3CommentsSMTP Delivery to Mailbox fails
We have an exchange 2013 server in the Org and we added an exchange 2019 server on windows 2022. We got an issue where Exchange 2013 cannot forward email to exchange 2019 mailboxes due to SMTP error. In the log files we found we checked the TLS configuration on the exchange 2019 and TLS1.1 and 1.2 are enabled what can be the issue ?Solved128Views0likes6Comments
External Contact is shown in address list
We have external contacts in our Exchange Online address list. The setting "Hide from global address list (GAL)" also says yes. However, when I write an email in Exchange Online and enter the contact, the contact that should not be displayed is displayed, which shouldn't be the case. What's wrong here?Solved77Views0likes2CommentsUser's mailbox Limit not retained after cross forest migration
We're performing Cross Forest migration with the "prepare" and "move" scripts from microsoft, after migrating the users with ADMT. We noticed that the user's specific mailbox limits are not preserved, is there a way of migrating the mailboxes preserving such settingsSolved39Views0likes1Comment
Install exchange server Error :
Hi teams, i have a problem with installing exchange server , I want to install Exchange again on a server that has already uninstalled Exchange after uninstalling exchange i delete manulay the folder C:\Program Files\Microsoft\Exchange Server, now when i try to install exchange server i have this error : also with GUI : any idea , i find also these services in server : any helpSolved68Views0likes1CommentEntra ID Connect Hybrid Option
Hello, I've a question about the "Entra ID Connect - Exchange Hybrid Option". If that option hasn't been selected at the first configuration, since there was no need for, and lately the HCW in Exchange has been run to configure the Hybrid environment with the tenant, is it necessary/advisable to rerun the Entra ID connect and enable that option as well ? Any possible impact ? What if, on the contrary, that option is selected in an environment where no Hybrid Setup was made but there's an On-Prem exchange ? thanksSolved84Views1like4CommentsMultiple Exchange Org in hybrid
Hi all, we have the following configuration. One tenant. Two companies each with their AD Forest and Exchange Organization. The two forest are in trust with each other. On Forest A we have the EntraID Connector that is already configured to sync users from both the companies. On each forest there's an Exchange organization completely on-prem each responsible for their namespace. Now we'd like to configure both the exchange organization in hybrid mode with the common Tenant and perform the mailbox migration to exchange online to have the users of both companies to be able to share calendars, resources atc. Is that possible to configure exchange Hibryd on two exchange Org to the same tenant ? Are there any issues we must be aware of ? thanks SCSolved57Views0likes1CommentEnable IPv6
Hello, Recently the Exchange Team has enabled IPv6 for the accepted domains. When I check the status with 'Get-IPv6StatusForAcceptedDomain' for our domains, I see that IPv6 is enabled. But I see a difference between the domains where IPv6 is enabled by Micorosft Support (before IPv6 was global available). In the 'AdditionalInfo'-field there is no info (as expected). For domains where IPv6 is enabled through global availability, the Additional Info says: Enabled status does not guarantee that IPv6 is enabled for your domain. For more information, please use Get-Help Get-IPv6StatusForAcceptedDomain. What does this means? And how can I check if IPv6 is really enabled? Disable and enable IPv6 again makes no difference. The Get-Help command doesn't show any extra information.Solved111Views0likes2Commentsuninstall error exchange server CAS role:
hi teams , i have an error when i try to uninstall exchange server : in role CAS at 70% : the iis admin service not started , and i delete all folder (owa, mapi, ...) in http folder Configuration > CN=Configuration> CN=Services > CN=Microsoft Exchange > CN=EXOIP > CN=Administrative Groups > CN=Exchange Administrative Group (FYDIBOHF23SPDLT) > CN=Servers > CN=srv_name > CN=Protocols > CN=HTTP. and i delete also the folder http any helpSolved36Views0likes1CommentOrganization Sharing for specified group
Hello all, We have configured calendar sharing. All works well; we can see the calendars from the other organization and vice versa. The only issue is that the scope isn't right. The other organization can see all our users and we have to scope this. I have found the option to select a group, but this can only be an security group. I did some testing, but it seems like Dynamic lists cannot be used for this? And also nested groups - with distribution list as members - do not work? We are looking for a flexible solution, where we don't have to change groupmembership every week. Is there a working solution for this case? Kind regards, ArjanSolved61Views0likes4Comments'$skiptoken' limit error for Microsoft Exchange online Reporting web service API
I was working on integrating MessageTrace report API as a part of my SIEM integration: https://reports.office365.com/ecp/reportingwebservice/reporting.svc/MessageTrace[?ODATA options] I have noticed that, whenever my $skiptoken reaches the limit 999999 , it throws the following error with 500 status code: { "odata.error": { "code": "UnknownError", "message": { "lang": "", "value": "An error has occurred on the server." } } } It was working fine for the 999998 value, but wasn't for the $skiptoken value 999999. Is there any limitations on $skiptoken value from the API itself? Also, need information, if $skiptoken value 999999 exists, for example, "odata.nextLink": "../../reportingwebservice/reporting.svc/MessageTrace?$filter=StartDate%20eq%20DateTime'2024-12-02T00%3A00%3A00Z'%20and%20EndDate%20eq%20DateTime'2024-12-02T23%3A59%3A59Z'&$skiptoken=999999" then how can we request the data from next set of events? Can someone let me know, is there any max limit from Microsoft API side or for the $skiptoken?Solved80Views0likes2Comments
Events
Recent Blogs
- We’re introducing new tenant-level outbound email limits (also known as the Tenant External Recipient Rate Limit or TERRL).Feb 24, 202552KViews4likes143Comments
- We are announcing a change in behavior of the EWSEnabled tenant-wide switch in Exchange Online.Feb 20, 202512KViews3likes17Comments
