Recent Discussions
Gmail to Microsoft 365 Migration Issue Open for 7+ Days – Seeking Guidance or Escalation Path
I’m facing an issue with a Gmail to Microsoft 365 migration that has been open for more than 7 days, and I’m looking for guidance or an escalation path from the community. Scenario: Migration type: Gmail to Microsoft 365 Issue started: April 22 Current status: Stuck with no clear resolution What’s happening: The support ticket has been active since April 22. However, the updates I’ve been receiving are generic responses such as “we are working on it” and “this has been prioritized.” Despite multiple follow-ups, there has been: No clear root cause identified No ETA provided No technical breakdown of the issue I also requested a callback from the assigned manager and technical lead to better understand the situation, but the communication has remained email-only with repeated status updates. What I’m looking for: Has anyone faced similar issues during Gmail → Microsoft 365 migrations? Are there known blockers or common causes that could lead to this kind of delay? What is the recommended escalation path when support is unable to provide technical clarity or ETA? Any insights, workarounds, or guidance would be highly appreciated. Thank you in advance.
Cross Tenant Migration licensing
Hello, I'm planning a native cross-tenant migration for several shared mailboxes that have archives enabled. I’m looking to confirm if it is necessary to temporarily convert these to user mailboxes in the source to ensure the archive data migrates successfully. Also, what specific licenses should I assign to the target objects specifically, do I need to provide an Exchange Online Plan 2 plus the Cross-Tenant User Data Migration add-on for each shared mailbox? If anyone has handled archived shared mailboxes recently, I’d appreciate a quick confirmation on the cleanest licensing and conversion steps. Thank you in advance ! :)
Hybrid Exchange 2019 move to M365
Dear All, I am asked to move/ migrate the existing Hybrid Exchange to M365. All mailboxes are located in M365. MX Record is pointing to the third-party spam filtering company which we are not too sure either stay with them or not. My next concern is the Send and Receive connectors. has any one of you done similar task like this? any help or document/ link would be much appreciated. Regards
Exchange 2016 Decommission
Hi all, I am trying to decom my 2016 environment and cannot disable (Disable-Mailbox) the final 16 mailboxes (out of thousands). Am getting the error Active directory response: 00002098: SecErr: DSID-03150A45, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0. I have been troubleshooting this for HOURS now. It's not enabling inheritance on the user perms (every article suggests that). The perm exchange trusted subsystem isn't there. The users do not have any admin groups. It's nothing that I can find in the first 6 pages of googling. Sadly, of course, there is no support anymore so can't even raise a ticket. Can't uninstall Exchange with mailboxes left :( Any idea's are more than welcome, please. Thank you.Exchange Online to Deprecate Legacy TLS for POP3 and IMAP4
Microsoft will start to refuse inbound IMAP4 and POP3 client connections using legacy TLS versions (1.0 and 1.1) in July 2026. The move is consistent with other projects to remove obsolete or insecure email protocols from Exchange Online to increase the overall security of the online email service. In this article, we examine some methods to understand the POP3 and IMAP4 usage within a tenant. https://office365itpros.com/2026/04/29/legacy-tls-removal/
Permission activesync on smartphone
Hi everyone, when you grant the permissions in question to manage company email from a smartphone, do these permissions, in addition to Remote Wipe, Password Enforcement and Device Encryption (I remember these as the main ones), somehow give the Exchange administrator access to my personal data? For example, photos, any documents saved on the SD card or on the smartphone itself? Thanks in advanced!Send admin notifications on x number of messages from an email address
Hi, We're having a problem with a repeat spam/phishing offender that recycles email addresses from a particular domain. Because the email address is new it hasn't had a chance to be picked up by blacklists, so it doesn't get picked up as spam. We can't block on content, subject or sender because it all changes so for these campaigns we're relying on user reports to give us the heads up. We also can't block the domain because we receive legitimate email from the domain also. I'd like to change this so we can hit them before users notice and possibly whilst the spam campaign is in flight but I'm unsure as to how to go about it. Is there a rule or other setting I can configure which sends notifications to specific e-mail addresses if, say 100 emails were received from any email address (or from a specific domain?) within an hour, or 5 hours? I don't see how I can configure such a rule in mailflow rules so I'm guessing this might be somewhere else. There's an element of us likely being falsely alerted to marketing campaigns, but hopefully it's configurable enough that we can limit it down to only applying this against a specific sender domain, or adding a new custom mailflow rule which will lower the likelihood of false positives. Many thanks, - LswardWill these commands fix our phantom meetings issue?
I opened a ticket with Microsoft Support for an issue we are facing where "phantom" meetings are appearing in at least two of our meeting room calendars. The subject of the meeting says "Private appointment" and the lock icon appears at the bottom, and when you click on any of them they disappear from the calendar, only to re-appear when you navigate away and come back. They appear in Classic Outlook, New Outlook and Outlook for the web. The support rep is telling me to run these commands on the room mailbox to "reset the room mailbox availability cache": Set-CalendarProcessing -Identity <roommailboxupn> -RemoveOldMeetingMessages $true Set-CalendarProcessing -Identity <roommailboxupn> -AutomateProcessing AutoAccept But if I run Get-CalendarProcessing, it confirms that these are the existing settings already: Get-CalendarProcessing -Identity <roommailboxupn> | fl RemoveOldMeetingMessages,AutomateProcessing RemoveOldMeetingMessages : True AutomateProcessing : AutoAccept This can't possibly do anything, right? I should ask my CSAM to open a GetHelp on this case, right? Does anyone know how to actually fix this issue?High Volume Email is Generally Available and Ready to Charge
On April 1, Microsoft announced the general availability for the High-Volume Email (HVE) solution together with details of the PAYG charges incurred to send email to internal recipients, which is all that HVE can do. Microsoft will enable HVE charging on June 1, 2026, Before then, you’ll need to create a billing policy and link it to a valid Azure subscription if you want to continue to use HVE. https://office365itpros.com/2026/04/23/hve-ga-charging/Is the Archive mailbox self-help diagnostic working for anyone?
Just curious: is the archive mailbox self-help diagnostic at https://aka.ms/PillarArchiveMailbox working for anyone? When I run it, instead of getting results about the user whose UPN I entered, I get this: The following issues were found with your archive mailbox. No account was found for [The UPN of my admin account]. Make sure you've entered the correct email address or create a new account with that name. For more information, see Add users to Office 365. I tried opening a ticket with Microsoft Support, but they refused to work on it without requiring me to do all the legwork of gathering logs and HAR traces and who knows what else, despite the fact that the support agent was able to replicate the exact same issue in his lab.
User cannot rename categories even when being the owner
Hi guys, I have a user that cannot rename categories in a mailbox whilst being the owner. As you can her permission level is set on owner. And yet the rename is greyed out: User says she was able to rename just some time ago, but when she tried on 17/04/2026 she couldn't. Anyone has any ideas?Preserving permissions during EXO migration
Hi, Can you help me understand the outcome of preserving the permissions in our scenario. Exchange Server 2016 (soon Exchange SE) in a hybrid with Exchange Online. We are moving 75% of the mailboxes to Exchange Online. What ways will preserve or break the full-access or sendas permissions? I guess best way would be to migrate both the user and the shared mailbox at the same time in the same batch to keep the permission? If we migrate the user in batch 1 and shared mailbox in batch 2 will that preserve/break the full access/send as? If we migrate the shared mailbox in batch 1 and usermailbox in batch 2 will that preserve/break the full access/send as? If the permission is linked directly on the shared mailbox or via a security group is there a difference? Thanks!
Microsoft Exchange Report
I faced a new issue today, don't know if anything breaks at Microsoft or any new thing roll out from there, the things is unable to check usage report properly as well as unable to export the email activity, Mailbox Usage etc report under report- exchange and other tabs as well in customer tenant. I have Global Reader privilege but still facing this issue. Anyone faced this type of issue from today or before? If anyone knows about its pleas update your comment here. Thanks..Issue with certificate renewal for exchange Edge Transport Server
Hello team, I have come across a very particular problem I deployed 2 exchange server 2019 with one edge transport server When we are renewing the Certificates with wildcard certificate on both mailbox server ,and on edge transport server ,it is impossible for me to renew the edge subscription It says the cerificate is in "doublon" (repetitive) on one of the Exchange servers.I have always been using same certificate on exchange server be it edge or mailbox I tested a bogus different certificate on mailbox and on edge,only then th e edge sync works Did anybody come across this issue. ThanksAdministratively retract a user's email
I was recently asked to retract a message that was sent in-error to staff. I ran a discovery/search, and saved it, but when I ran the powershell script after connecting to Exchange, the script could not find the search, something like name not found. I verfied the name was correct, and I am a global admin so permissions should not have been an issue. Does anyone know of any accurate documentation to run a search and retract? I had to use an old YouTube video and could not find anything in Microsoft's documentation.Email Showing as Quarantined in a Message Trace, but Not Showing up in MS Defender
A customer of ours was waiting on an email to arrive and to help figure out where the email was or if it was sent yet we ran a message trace. The message trace showed that the email was sent to quarantine. With this information in mind, I went to MS Defender > Email & collaboration > Review > Quarantine but could not find the message. I modified some of the filters and could not get the quarantined message to appear. I triple checked the filters I created and made sure the information was correct. I also removed all filters and looked for the time period the email came in, but could not find it. Not sure if this is related, but this email had a significant delay likely coming from the sender. Any thoughts or ideas? Or anything that I am missing?
ARC verification fail (40) on specific Exchange Online frontends - recurring issue
Hello, We are observing recurring arc=fail (40) errors on messages forwarded through Exchange Online, caused by specific frontend servers. The same messages pass ARC verification correctly on other providers (Google, etc.). Affected frontends identified so far: CH2PEPF0000013F.namprd02.prod.outlook.com - build 15.20.9700.17 (March 14, 2026) CH3PEPF0000000B.namprd04.prod.outlook.com - build 15.20.9769.17 (April 6, 2026) Both share the same build suffix .17. The signing implementation on our side has been cryptographically verified as correct and RFC 6376 compliant. The issue has also been reported on the IETF ietf-smtp mailing list with full technical analysis. Cryptographic analysis shows the failing servers append a spurious trailing \r\n to the last header before computing the verification hash, violating RFC 6376 Section 3.7. Is there a pattern with .17 frontend builds and ARC verification? Reagards VittorioMailbox for Service Account (exchange online)
Hi Our organisation isn't ready to move to Exchange Online yet, though we have Office 365 e3 licencing. I need to create a service account that can send emails via Outlook 365 for use In Power Automate. The documentation I have seen for adding a mailbox to an existing AAD user requires assigning an exchange licence to the account via the licence portal. I can't see any such licences though we do have e3 licencing which are visible that I assume covers this? Unfortunately the admin who did the original configuration has moved on and I don't have a global admin role so have to go through a support team that can't help me with my lack of knowledge in the area! Any advice would be very much appreciated as what ( i think) should be a simple task has taken a lot of time to try and get to the bottom of! Thanks, Dale.Cross Tenant Mailbox Migration: NotAcceptedDomainException
This week I'm performing a new cross tenant mailbox migration. I have some experience with this kind of migrations, ( it's the third one I'm in charge of ), and with the new procedure, ( will paste the link with the instructions at the end of this article ), an Azure Key Vault is no longer required, so I was very confident and thought that I would no have any issue. But, as sometimes occurs, I was wrong The setup was quite easy, and the mail users configuration was like always, so no a big deal. But now comes the point... Once I launched the migration batch, half of the users started syncing correctly and the ther ones failed, ( neither a MoveRequest was able to start for them ). Once I checked the errors, I got the same for all the failed ones: " NotAcceptedDomainException: You can't use the domain because it's not an accepted domain for your organization ". Ok. No problem... ( I thought ). I work with Exchange since more than 10 years and this is a common error message. ( Again I was wrong ). I started to check the mail users, looking for some misspelled domain, missing alias, spaces, etc... Basically, the troubleshooting for this kind of errors. But from my perspective all looked good. So, I decided to reconfigure all the mailusers with a script, launch a delta sync, and resume the failed moverequest. But again, same error for all of them. Checked again, with PS, from source and target tenant, checked in AD, all the proxy addresses... Nothing, all was correct! Non sense... Ok. At that point I decid to compare some syncing mail users with some failed ones, looking for anything that could be a pattern. And "voilá"! The syncing users were all licensed in O365... The failed ones not! After assigning a license to the failed ones and resume the MoveRequest, all started to work smoothly. For sure, I would have saved many hours of work if the error message had been: " The user is not licensed ". But, yeah... It would have been too simple 🙂 Summarizing, make sure that the mail users have an O365 license before you start the migration batch. And remember, not always the error messages are what they seems to be 🙂 Cross Tenant Mailbox Migration procedure, ( Preview 😞 https://docs.microsoft.com/en-us/microsoft-365/enterprise/cross-tenant-mailbox-migration?view=o365-worldwide
Recent Blogs
- Exchange Online is deprecating old legacy TLS 1.0/1.1 endpoints for POP and IMAP clients.Apr 27, 2026
- We wanted to provide a few updates related to modernizing DNS Security in Exchange Online.Apr 23, 2026
