Update 11/8/2022: We have now released November 2022 Security Updates for Exchange Server. Please install those (or newer) updates to address vulnerabilities mentioned in this post. Mitigations are n...
Updated Nov 08, 2022
Version 17.0
Blog Post
2 MIN READ
Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server
Nino_Bilic Can you clarify if for some default accounts like DiscoverySearchMailbox, guest, DefaultAccount, krbtgt, etc can be remote powershell disabled without harm something or what about DAG clusters, is there some accounts which must be remote PowerShell enabled to make DAG cluster operable. In this article https://learn.microsoft.com/en-us/powershell/exchange/control-remote-powershell-access-to-exchange-servers?view=exchange-ps&viewFallbackFrom=exchange-ps%22%20%5Cl%20%22use-the-exchange-management-shell-to-enable-or-disable-remote-powershell-access-for-a-user is nothing about this specific cases.
EDIT: and what about external url for powershell virtual directory should it be disabled (cleared) on some exchange server we have it enabled?
Thanks