 |
 |
|
Try our new Certificate Revocation List Check Tool CRLcheck.exe is a tool developed to verify digital signatures of executable files. It collects files from known paths on your client, checks their signature, and checks Certificate Revocation Lists (CRL) and OCSP download. This helps avoid delays in launching files. |
||
We just stumbled again over the KILLBIT event 3028 warning on several Exchange Versions dated 06/2023. It still does not sound good from the text and you would think that some third party plugin or some health check blocks the files. Some say this is normal, some say you can safely ignore this. MS does […]
Enhancing Outlook Debug Logging for Troubleshooting Mike Butsch, www.butsch.ch What we want to do and why Outlook debug logging is a valuable tool for diagnosing and resolving issues within Microsoft Outlook. By enabling advanced logging, you gain deeper insights into the application’s behaviour, allowing for more effective troubleshooting. In this blog post, we will explore […]
english, Management summary To gain a better understanding of the ADMINSholder/adminCount attribute, we recommend referring to the provided blog posts, which shed light on the impact of this flag, particularly regarding ActiveSync and GPO. This attribute poses a challenge in the synchronization process of the Synchronization Service Manager (Microsoft Azure AD Connect Synchronization Services) as […]
How we found this info beside Technet: Error: Outlook 2016 verlangt neues Update (Aktuell: 16.0.4266.1001 / Erforderlich: 16.0.4600.1000) There is a link in the warning which leads to the rather delicate info abour EOL of Office 2016/2019 with M365. Fact: If you don’t want to update your Office 2016/2019, keep your Exchange on-premise DAG with […]
Trellix ENS 10.X, T1056 – Key capture using PowerShell detected, Host intrusion buffer overflow ExP:Illegal API Use Blocked an attempt to exploit C:\WINDOWS\SYSTEM32\WINDOWSPOWERSHELL\V1.0\POWERSHELL.EXE, which targeted the GetAsyncKeyState API. For efficient M365 and Exchange Online management, there are various methods available. While utilizing the PowerShell button within the Admin Portal is one option, it requires an Azure […]
CVE-2023-23397 Was ausgenutz wird: Anstatt Standard Microsoft Outlook Sound kann man für ein meeting reminder einen Custom Sound angeben. Dieser kann auf einem Share liegen. Da liegt der Hund begraben. https://learn.microsoft.com/de-de/office/client-developer/outlook/mapi/pidlidreminderoverride-canonical-property https://www.forbes.com/sites/daveywinder/2023/03/15/microsoft-outlook-warning-critical-new-email-exploit-triggers-automatically-update-now/?sh=47f058ce6e5e CVE-2023-23397 ist ein Outlook-Bug. Wenn Sie eine eingehende E-Mail für einen Termin mit einer benutzerdefinierten Erinnerung (Ton, Attribut PidLIDReminder) senden, wird Outlook.exe (2012/2016) versuchen, […]
TIP: Cleanup everything LOCAL before you even think of moving anything to M365 or Azure or even starting the Connector PRO TIP: Full manual list of Objects/attribute to check on your local ADS in this blog. This blog entry is mainly about those two steps of the MS Technet: https://learn.microsoft.com/en-us/microsoft-365/enterprise/prepare-for-directory-synchronization?view=o365-worldwide Directory Clean-up Tasks Directory object […]
“We once had a case where we needed to install a URL-Rewrite Module in IIS CAS 2010 to submit more information to the Rapid7 Solution. (This was during a time before all the monthly leaks for 2013/2016/2019 came up, pushing all customers towards M365, and it was unclear what the module would do inside Exchange, […]
On an Exchange 2016/2019/M365/Azure you want to change the TLS Certificate of your Receive Connector. Your SAN (Subject Alternate Name) or Wildcard Certificate has no Common Name [CN] (Empty). When you try to assign the cert the regular way you get an error. Nothing wrong with the Cert company just the other side (Requester/Converter) as […]
ISO/PATCH: ExchangeServer2016-x64-cu20 Cumulative Update 20 for Exchange Server 2016 (microsoft.com) Problem: Exchange 2016 CU20 Setup.exe /preparead (Version 15.1.2242.4 Fails) on Server 2016 (1607) Step Configuring Microsoft Exchange Server Organization Preparation results FAILED Exchange 2016 CU 20 need and fails to update Active Directory Schema to newer Version (setup.exe /prepareschema works setup.exe /Preparead fails) if you […]
Problem: Exchange 2013/2016 Activeync MDM Handy stops syncing, Event 2002, limit max, Targetbackend, will be rejected In generall this could be a EAS Activesync device running mad or a user using functions like Time to leave on iPhone (See link at end of document here) It’s rather important we find what causes the effect inseatd […]
Error: This mailbox database is associated with one or more active MailboxExport requests Source: This means you have current/Pending/stalled as sample PST Exports running (Maybe very old). Solution: You will have to remove those you are able to remove the emtpy old Exchange MDB. Get-MailboxExportRequest (ExchangePowerShell) | Microsoft Docs Microsoft Exchange Error […]
WINMAIL.DAT Transport Neutral Encapsulation Format oder TNEF ist ein proprietäres E-Mail-Anhangsformat, das von Microsoft Outlook und Microsoft Exchange Server verwendet wird. Eine Datei mit TNEF-Codierung wird in der Regel als winmail.dat oder win.dat bezeichnet und hat einen MIME-Typ von Application/MS-TNEF. Der offizielle (IANA) Medientyp ist jedoch application/vnd.ms-tnef. Wie oder wann passiert das? Wenn ein Absender […]
All you need are working samples not thousands lists and Technet Articles. So here we go with some Exchange Powershell we daily use. Maybe you want lists of all fields so you can choose one to use for the filter first. Get all user info from a certain OU Starting OU would be: OU=Active,OU=Users_W7,OU=BUTSCH,DC=butsch,DC=ch Get-ADUser […]
Activesync with Exchange 2013 does not work, ADMINSHOLDER Flag (an old bad friend) ERROR YOU SEE: Access+is+denied.%0d%0aActive+directory+response%3a+00000005%3a+SecErr%3a+DSID-03152612%2c+problem+4003+(INSUFF%5FACCESS%5FRIGHTS)%2c+data+0%0a_ We just had a user with Activesync with a user migrated from 2007 to 2013. The user was fresh made on 2007 and migrated forth and back a few times. https://testconnectivity.microsoft.com/ Did show all info he can get […]
