When you install the September 2021 CU (or later) on Exchange Server 2016 or Exchange Server 2019, the EM service will be installed automatically on servers with the Mailbox role. Microsoft Exchange Emergency Mitigation (EM) provides the fastest and easiest way to temporarily resolve threats to connected on-premise Exchange servers before your IT security teamContinue reading “Exchange Emergency Mitigation (EM) service”
Author Archives: rafaelit
New Microsoft Exchange zero-day actively (RCE+SSRF) exploited in attacks
UPDATE Microsoft add updates: The tech giant has revised the blocking rule in IIS Manager from “.*autodiscover\.json.*Powershell.*” to “(?=.*autodiscover\.json)(?=.*powershell).” Also , Change the Condition input from {URL} to {UrlDecode:{REQUEST_URI}} and then click OK On Thursday, September 29, a Vietnamese security firm called GTSC published information and IOCs on what they claim is a pair of unpatched Microsoft Exchange ServerContinue reading “New Microsoft Exchange zero-day actively (RCE+SSRF) exploited in attacks”
On Upgrade , Raise Farm Behavior Level (FBL) on ADFS Farm Failed
The last step on ADFS (Active Directory Federation Services) upgrade from Previous version to the latest one is – Raise Farm Behavior Level (FBL). before we run the “Invoke-AdfsFarmBehaviorLevelRaise” command we should test the that the all environment is ready for upgrading . run “Test-AdfsFarmBehaviorLevelRaise” and check that all tests pass successfully. THE PROBLEM IfContinue reading “On Upgrade , Raise Farm Behavior Level (FBL) on ADFS Farm Failed”
Symantec MAA Cleanup Failed to delete sample
on Symantec maa (sandbox) your disk get out of space and you see that old samples are not Deleted (Cleanup) from the MAA machine. you can delete the old samples manually , But it not delete automatically as it should. if you check the “ma” log on the MAA machine you may see errors likeContinue reading “Symantec MAA Cleanup Failed to delete sample”
Azure Active Directory logs are lagging
Microsoft warned that customers might have noticed unusual delays in logging data from Azure AD and other Azure tools Summary of Impact: Between 21:35 UTC on 31 May and 09:54 UTC on 01 Jun 2022, customers may have experienced significant delays in availability of logging data for resources such as sign in and audit logs for AzureContinue reading “Azure Active Directory logs are lagging”
New office365 tab behavior Exchange Admin
NEW TAB for Exchange hybrid customers accessing Office 365 tab in the Exchange admin center (EAC) for their on-premises Exchange servers. https://techcommunity.microsoft.com/t5/exchange-team-blog/new-office-365-tab-behavior-in-the-on-premises-exchange-admin/ba-p/3415018 SHMUEL H.
Microsoft May Patch Updates Cause Windows AD Authentication Errors
Some May 2022 Microsoft Security Updates Are Leading to Authentication Failures. Microsoft reported : “After installing updates released May 10, 2022 on your domain controllers, you might see authentication failures on the server or client for services such as Network Policy Server (NPS), Routing and Remote access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP),”.Continue reading “Microsoft May Patch Updates Cause Windows AD Authentication Errors”
Released: May 2022 Exchange Server Security Updates
Microsoft released an SU for exchange servers. Starting with this release of Security Updates, Microsoft are releasing updates in a self-extracting auto-elevating .exe package These SUs are available for the following specific builds of Exchange Server: Exchange Server 2013 CU23 Exchange Server 2016 CU22 and CU23 Exchange Server 2019 CU11 and CU12 Manual run of /PrepareAllDomains is required : Because of additionalContinue reading “Released: May 2022 Exchange Server Security Updates”
Exchange 2022 Cumulative Update
After almost an year Microsoft released new cu for exchange 2019 and exchange 2016. the update includes the latest SUs including the updates released in the March 2022 SUs. As published on The Exchange Team (https://techcommunity.microsoft.com/t5/exchange-team-blog/released-2022-h1-cumulative-updates-for-exchange-server/ba-p/3285026) the most update are : Servicing Model Changes Microsoft announcing changes to there update delivery model for Exchange Server. Microsoft areContinue reading “Exchange 2022 Cumulative Update”