Event banner

Exchange AMA

Event Ended
Wednesday, May 10, 2023, 09:00 AM PDT
In-Person

Event details

We are excited to announce an Exchange AMA on Wednesday, May 10th at 9:00 AM Pacific time!   On March 23, 2023, Microsoft announced a new transport-based enforcement system in Exchange Online tha...
Meenah_Khosraw
Updated May 10, 2023
exchange online
ScottSchnoll's avatar
ScottSchnoll
Former Employee
May 10, 2023
Yes, eventually those servers will be in scope, too. Exchange 2010 is unsupported and should no longer be used.
Eriq_VanBibber's avatar
Eriq_VanBibber
Brass Contributor
May 10, 2023
Well, that seems counter to my similar question yesterday. I thought the tracking was only between tenant related servers (e.g. my on-prem server sending to my tenant)?
  • ScottSchnoll's avatar
    ScottSchnoll
    Former Employee
    May 10, 2023
    No; it does not matter who in Exchange Online is the recipient. We're blocking messages from persistently vulnerable Exchange Servers no matter who they are sent to.
    • Eriq_VanBibber's avatar
      Eriq_VanBibber
      Brass Contributor
      May 10, 2023

      Ok. I think some strong clarity is needed here. My takeaways are:

      1. Initially, Ex2007 servers tied to a tenant (attribution, as you mentioned yesterday) will be first.

      2. Ex2010 server tied to a tenant next.

      3. Ex2013 next

      4. Ex2016, Ex2019 and (i suppose) Ex2025, next.

      5. Non-hybrid connections

      6. All Exchange servers that connect directly to O365 (regardless of tenant relationship)

      7. All Exchange servers direct or indirect (thru gateways).

       

      Correct me where i'm wrong please.

      • duzsb's avatar
        duzsb
        Copper Contributor
        May 10, 2023
        My understanding is - based on Scott's answer - the Tenant relationship does not matter.
Date and Time
May 10, 20239:00 AM - 10:00 AM PDT