Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server
https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/
Posts
Welcome to the 2022 MEC Airlift!
https://mecairlift.event.microsoft.com/ Get Ready for Basic Auth Deprecation in Exchange Online Sept 13, 2022 | 8:00am - 8:50am Ask the Experts: Basic Auth Deprecation in Exchange Online Sept 13, 2022 | 9:00am - 9:50am Messaging Security: Deep dive into Exchange Online Protection, Microsoft Defender for Office 365 and other Messaging Security Features Sept 13, 2022 | 9:00am - 9:50am Delighting Exchange Online Admins Sept 13, 2022 | 10:00am - 10:50am Deep Dive: Increasing mail flow security posture Sept 13, 2022 | 10:00am - 10:50am Exchange Online Onboarding Updates Sept 13, 2022 | 11:00am - 11:50am Recent and Upcoming Features from the Exchange Transport team Sept 13, 2022 | 11:00am - 11:50am Cross-tenant user data migration in Exchange Online Sept 13, 2022 | 12:00pm - 12:50pm Exchange Online and Exchange Hybrid Tips & Tricks Sept 13, 2022 | 2:00pm - 2:50pm Secure Exchange Online with Privileged Identity Management Sept 14, 2022 | 7:00am - 7:50am Troubleshooting Slow Email Deliver
Exchange Extended Protection Service - 前置作業
前置作業 若有Exchange ORG 中有Modern Hybrid server、Public Folder 等使用,可請排除或再詳細確認支援事項,也可參閱worldwide 的用戶反饋經驗 完成最新的CU & SU,基本支援N-1,如Exchange 2016 CU22也支援,但強烈建議直接上 到最新的CU23 (2022H1 CU) 所有EX 的CU/SU 版本要一致,可用Get-ExchangeServer | ft name, *version* 每台Exchange Server 上的TLS設定需完全相同 https://docs.microsoft.com/en-us/exchange/exchange-tls-configuration?view=exchserver-2019 可統一執行下列機碼 (部分需重開機才會生效) HealthChecker 也可檢查TLS 配置 可透過模擬方式執行腳本觀看結果 .\ExchangeExtendedProtectionManagement.ps1 -WhatIf 可用的參數詳細介紹 https://microsoft.github.io/CSS-Exchange/Security/Extended-Protection/ 執行路徑有debug log 可參考 完成模擬執行結果,詳細列出異動的步驟 實際執行結果 心得: 若組織內有多台Exchange Server 且分布多個site 如全球,那檢查步驟有可能非常耗時 執行前及執行後多用HealthChecker 驗證結果 EP 執行後不需要重開機或重設IIS
LAB: Manual enablement of Windows Extended Protection on Exchange Hybrid Server (classic hybrid)
#ExchangeHybird #Exchagne2016 #Extended-Protection(EP) Reference https://techcommunity.microsoft.com/t5/exchange-team-blog/released-august-2022-exchange-server-security-updates/ba-p/3593862 https://microsoft.github.io/CSS-Exchange/Security/Extended-Protection/ Apply AUG SU for CU23 Exchange2016-KB5015322-x64-en Download EP powershell .\ExchangeExtendedProtectionManagement.ps1 -SkipExchangeServerNames lab1-hybrid-01 .\ExchangeExtendedProtectionManagement.ps1 -ShowExtendedProtection Before apply EP After apply EP