Forum Widgets
Latest Discussions
Send admin notifications on x number of messages from an email address
Hi, We're having a problem with a repeat spam/phishing offender that recycles email addresses from a particular domain. Because the email address is new it hasn't had a chance to be picked up by blacklists, so it doesn't get picked up as spam. We can't block on content, subject or sender because it all changes so for these campaigns we're relying on user reports to give us the heads up. We also can't block the domain because we receive legitimate email from the domain also. I'd like to change this so we can hit them before users notice and possibly whilst the spam campaign is in flight but I'm unsure as to how to go about it. Is there a rule or other setting I can configure which sends notifications to specific e-mail addresses if, say 100 emails were received from any email address (or from a specific domain?) within an hour, or 5 hours? I don't see how I can configure such a rule in mailflow rules so I'm guessing this might be somewhere else. There's an element of us likely being falsely alerted to marketing campaigns, but hopefully it's configurable enough that we can limit it down to only applying this against a specific sender domain, or adding a new custom mailflow rule which will lower the likelihood of false positives. Many thanks, - Lsward
One 365 mailbox and several non 365 mailboxes
I am trying to configure the situation where I have one user on a microsoft 365 subscription and several other users on the domain using IMAP. I have configured the domain to send emails to the 365 subscriber and that works. However I am battling to get emails to the IMAP users. I have set up connectors to and from 365 and they validate correctly. However when I try to send a message from outside to one of the IMAP users I get Diagnostic-Code: smtp;554 5.4.14 Hop count exceeded - possible mail loop ATTR34 On researching this there are various tutorials which suggest loading exchangeonlinemanagement, connnect to the domain and execute Start-EdgeSynchronization I then get an error telling me the command is not recognised. Having searched it seems this command is only for on premises exchange servers and not the on line subscription model have. Any pointers to where I am going wrong would be gratefully received.
How do you identify the "You've joined the xxx group" emails?
When you join a microsoft 365 group via Outlook you get an email (apparently from yourself) to say you have joined it. How do you actually identify these emails on Exchange? I've looked at the headers but nothing really stands out. I need to exclude these types emails from rules.
Exchange Server SE Hybrid License and Upgrades
Hi, I have a question about Exchange Server SE. Reading the FAQ I found this: As with previous versions, Exchange Server SE will continue to provide free licenses for qualified hybrid use via the Hybrid Configuration Wizard (HCW); however, unlike previous versions, you will need to either purchase SA for this license to get Exchange Server updates or have a cloud subscription license that satisfies the requirements. Does this mean I need to have SA to do the updates? Which cloud licenses do I need to buy to be able to update Exchange Server SE? Thanks RegardsMultiple objects with Sid S-1-5-10 were found.
When I tried to set exchange on-premise user mailbox permission, I'm getting the below error. I have used the below script. What we missed ? This works for some objects. $sid = "S-1-5-10"; Add-MailboxPermission -Identity "TestExchange213" -User $sid -AccessRights FullAccess -confirm:$false;Exchange Outlook Cache mode
Hi ladies and gents, We have a requirement to set Outlook cache mode set to download 3 months of emails. The environment consists of Exchange Online, Intune and M365 and the devices are cloud native Win 11. Could you please advise the best way to achieve this. GPO is not an option, and Intune does not have a policy for this.
External tag applied to internal users hidden from GAL
We have noticed our users who are hidden from the GAL have the external tag applied to their Profile Card as well as mail sent to other internal users. I suspect this may be related to the recent roadmap item, https://www.microsoft.com/en-us/microsoft-365/roadmap?id=498231. Was this an expected behavior for internal users?External tag in Cards
After the rollout of the https://www.microsoft.com/en-us/microsoft-365/roadmap?id=498231 our users who are hidden from the GAL have the External tag applied when sending internally, as well as the external tag on their profile cards. Was this an expected behavior with this change?
Problems after upgrade to CU14
Hi, I'm in the process of migrating from Exchange 2013 CU23 to Exchange 2019. I installed Exchange 2019 CU13 on Win2022 Server, in coexistence with our 2013 and everything was looking good. Before starting with the testing to route emails through 2019, I checked that CU14 was released recently, so I download/install the CU14 in upgrade mode (with the no EP flag) to have the last build, and now I'm having problems with virtual directories, mailboxes, and so ON. Already run the healtchecker powershell scripts and nothing out of the ordinary. Some of the problems I'm having: 1. When I clic on the 'authentication' tab in any Virtual Directory (ECP, OWA, EWS) I got this error: "The task wasn't able to connect to IIS on the server <FQDN>. Make sure that the server exists and can be reached from this computer: The RPC server is unavailable." The other tabs don't throw me any errors, but almost all options are greyed-out. 2. In SERVERS > DATABASES, when entering the properties of any Database that are on the new EX2019, I got this error: 'Exchange can't connect to the Information Store service on server <FQDN>. Make sure that the service is running and that there is network connectivity to the server.' I cannot create a new Database neither and the status of the currents 2019 Mailbox databases says Uknown and BadCopyCount = 1. 3. SERVERS > CERTIFICATES: Cannot see any Cert here for the EX2019. The error I get: "Cannot connect to the remote procedure call service on the server named <servername>. Verify that a valid computer name was used and the Microsoft Exchange Service Host service is started." Already check: - Binding of the Certificate 'Microsoft Exchange 'on the BackEnd and our Public Certificate on the Frontend Server. - All Exchange Services are up and running. - Restart of IIS. It appears that is something with permissions and/or with IIS that breakdown after the installation, but still don't know what it is. Al things related to the 2013 environment appears to be normal and functioning. according. Something I noticed, on the Certificate error it says the name of the server, and in the other errors, it says the FQDN of the server. Please guide me here, what could be the problem and what to check/confirm. Thanks in advance.
