If powershell passes all prereq does that means the load balancer is
okay? or does the powershell check if Load Balancer is in SSL offload
mode or not? I am not sure how our F5 is setup. Anyway to test this?
Also, without applying EP, does that mean i am vulnerable?
@Nino Bilic We have many old unsupported W7 clients in our environment,
does this client's work With Extended Protection enabled? Also we have
mix of Outlook clients, 2013, 2016, and newer. Is there some
requirements on client side?Thanks
@Vallee20 you do not have to install the "Windows authentication role
service" on Windows Server 2016 - it's already there. The steps to
manually configure Extended Protections can be found here:
https://microsoft.github.io/CSS-Exchange/Security/Extended-Protection/#enabling-extended-protection-manu...
Hello,I noticed
https://docs.microsoft.com/iis/configuration/system.webserver/security/authentication/windowsauthentication/extendedprotection/
does not reference Server 2016 or later. Does this mean the instructions
in the Windows Server 2012 R2 section apply to Server 2016? Thank you.
We are running Exchange 2016 with CU22 and had to hold off on CU23 due
to potential issues with the .NET upgrade requirement and an old
third-party agent. We do rely on Public Folders as well. If I understand
correctly, we should not enable Extended Protection until we can apply
CU23, but, we should...
Latest Comments