A few users would like to share their calendars outside of the domain. How/what do you do to enable that feature for users?
Thank You for any help that may be provided.
↧
Sharing Calendar outside of the domain
↧
Recipient filtering doesn't work in Exchange 2013 enviroment
Good day all,
I am trying to activate Recipient filtering on my Exchange Edge 2013 server by using the manual below:
For some reason when I perform test using telnet nothing works.
Basically I should see something like this, but so far I am able to send e-mails as uknown user
mail from:<me@example.com>
250 2.1.0 Sender OK
rcpt to:<nouser@domain.com>
250 2.1.5 Recipient OK
data
354 Start mail input; end with
Write some Text Here.
.
550 5.1.1 User unknown
Your help will be really appreciated
↧
↧
Enable spoofing check on receive connector
I wanted to enable mail address spoofing check on my receive connector. So I used:
Get-ReceiveConnector 'default frontend SRV-EX' | Remove-ADPermission -User 'NT AUTHORITY\ANONYMOUS LOGON' -ExtendedRights Ms-Exch-SMTP-Accept-Any-Sender
It write to me error: cannot remove ace on object because it is not present. But when I check extended right Ms-Exch-SMTP-Accept-Any-Sender permission is missing on connector.
After that I trying to use telnet and send message (f.e. MAIL FROM: asdasd@sdafsdf.com) and this message is successfully delivered to my mailbox. Then I check extended rights on connector again and see Ms-Exch-SMTP-Accept-Any-Sender permission appeared there.
How can I totally remove it? What cause this behaviour?
↧
Encrypted email and contact group
Hello,
Does anyone know if it is possible to send an encrypted email to a contact group address?
I'm still trying to figure out how email encryption works. As I understand it,
A. Recipient of encrypted mails
1. Sends out a public key in the form of a digital certificate, which also represents his/her identity as the recipient of encrypted mails.
2. Keeps the private key.
B. Sender of encrypted mails
1. Encrypts the message using the public key in the digital certificate received from A above
2. Sends the encrypted message to A.
Now, is it possible for A to be a contact group, instead of an active directory user?
We are deploying Exchange 2013, and have an AD CS server for issuing certificates within our private network.
Regards,
Jon
Does anyone know if it is possible to send an encrypted email to a contact group address?
I'm still trying to figure out how email encryption works. As I understand it,
A. Recipient of encrypted mails
1. Sends out a public key in the form of a digital certificate, which also represents his/her identity as the recipient of encrypted mails.
2. Keeps the private key.
B. Sender of encrypted mails
1. Encrypts the message using the public key in the digital certificate received from A above
2. Sends the encrypted message to A.
Now, is it possible for A to be a contact group, instead of an active directory user?
We are deploying Exchange 2013, and have an AD CS server for issuing certificates within our private network.
Regards,
Jon
↧
Add signature before replied email text block
Currently, my company email's signature is handled by mail flow rules in Exchange Online. My question is, is it possible to put the signature between our message and the block for replied messages? Since with long email trails, the signatures would end up at the bottom of the email, and if someone needs to know the details of a particular sender, they would need to scroll all the way down searching through a bunch of signatures for the one they need. Changing the replied messages block isn't an option, for legal purposes (preserving evidence).
I hope I explained this right, since this is a question from a staff (a legal manager for my company). Also, if someone made a thread about this, please direct me to it.
Thanks in advance.
↧
↧
User getting bulk emails at 10 PM
There is a user whose mailbox seems to receive 200 or so emails in the night.
The emails were sent during the day but he received those only at 10 PM. These
200 emails end up in the "deleted Items" folder instead of the inbox.
We have one frontend CAS server and 2 mailbox servers (1 active mailbox + 1 archive store).
I have analysed the message header of one of these messages and it seems the message creation time was 10:36 PM and message received 2 seconds later in the problem
mailbox.
There are no transport rules configured for the mailbox.
Desktop guys advise me that there are no outlook rules configured on users outlook either.
Desktop guys sent a test message tot he user and he received the message straight away.
And the email that i looked at was a internal email. So from one user to another user in the same organisation.
So it does not hi the front end CAS server.Please advise
what else can I check.
↧
Email Routing For Users on Office 365
Hi.
I have the following setup & scenario in my environment:
3 x Exchange Server 2010 w/SP3; 1 x mailbox role, 1 x CA/Hub role + 1 x edge role.
I have a set of about 50 users on linked mailbox (on a specific domain e.g. xxx.com) who have moved out to Office 365 platform.
I need to keep their existing mailbox for specific duration due to compliance requirements.
I'm facing an issue where emails sent by my other Exchange users to this set of users (xxx.com) is still being sent to the existing internal mailbox rather then to their Office 365 mailbox.
How can I resolve this permanently?
For now, I have set a transport rule for every single mailbox to send a copy of the email to Office 365 mailbox.
Appreciate if someone can guide me through a permanent solution, as I'm wondering how would the routing work once these mailboxes have been removed.
Regards,
spurs_adr
Adrian
↧
Forwarding Shared Mailbox to DG not working as expected
We have a shared mailbox setup for our customers to send emails to.
I need to be able to forward these messages to 2 external email addresses.
If I put one of the external emails in the 'delivery options' it works.
When I change it to a Distribution Group (with the 2 external email addresses as members), the emails are no longer received at either external email destination.
What's stopping this from working?
↧
mail flow not working as desired...
Hi there.
Having problem that mail flow not doing ok. Quick description of environment.
Two active directory domains (parent and child relationship)
DOMAIN.LOCAL
DOMAIN.CHILD.LOCAL
Two sites (one for DOMAIN.LOCAL and one for DOMAIN.CHILD.LOCAL)
Two Exchange servers, each and one in their own sites.
Default E-mail adress of user in site 1: John.smith@domain.com
Default E-mail address of user in site 2: Lisa.smith@domain.RS
We have 2 send connectors, one for Exchange2013 in SITE1, and the other for EXCHANGE2013 in SITE2.
This send connectors are using "unique" smart hosts. Smart host 1 is in SITE1 and Smart host 2 is in SITE2.
Ok, the wicked scenario.
User from SITE1 (John.smith@domain.com) sends mail to (John.smith@gmail.com). Mail flow goes ok, it relays thru smart host in SITE1.
Now if John.smith@domain.com send mails toJohn.smith@gmail.com and puts CC or TO also address:lisa.smith@domain.rs, then this mailflow goes "outside" toJohn.smith@gmail.com with Smart Host 2 in SITE2, which is not a desired situation.
Basically we would like to when John.smith@domain.com sends mail to:John.smith@gmail.com and lisa.smith@domain.rs, that for domain.rs exchange servers would talk to each other, but for delivering toJohn.smith@gmail.com we would like that it goes thru Smart host 1 and not 2.
I hope I have describe my situation ok and it's understandable?
with best regards
bostjanc
↧
↧
DAG group replication question
I currently have two 2013 exchange servers at our primary site in a DAG group.
DAG group replicaiton traffic is on its on subnet, traffic separate from MAPI network.
wanting to add 3rd exchange to the dag group at a remote site, connected via IPSEC VPN tunnel.
I have read that the DAG group cannot have a gateway, but my firewall people tell me they cannot route traffic to the remote site without a gateway.
so obviously I am misunderstanding something, can someone straighten me out here?
↧
DNS question
We recently moved to Exchange 2013 from 2007, and we're in Hybrid mode right now as we can't fully divorce from 2007 yet.
I was going over our DNS records and I found that for some reason our 2013 MB server has the same external dns record/IP as the old 2007 hub transport. I'm not sure if this is a mistake or done on purpose and I just forgot during the migration madness.
Our new 2013 CAS server has it's own external ip.
My question is, do both my 2013 CAS and 2013 MB server need IP's in external DNS? I'm still a little fuzzy on which server sends out the mail since the roles have changed (or do they both?). To be safe I was just going to give them both IP's so we don't get caught up in external spam problems.
Thanks,
↧
Can I forward email to an external email address without creating a contact first?
I need to come up with a solution to forward users' emails to external address without the need to create a contact first.
Head, Network Security and Infrastructure
↧
Adding safe senders exchange 2013
Would like to add some email address to a white(safe sender) list. from what I've read is if you use theSet-ContentFilterConfig command, you overwrite the content filter configuration with a new configuration file! So how do you go about adding more than one at a time and having them all stay in the list? Thank you for your help.
↧
↧
Malware detection fails to identify virus from external sender
Recently one of my users I received a virus from an external sender. The virus was a VBScript macro in a Word Document. Usually the anti-malware filter would remove any suspicious attachments but in this case it left the attachment. However, when the user forwarded the email to an internal recipient the attachment was removed by the malware filtering policy.
I can not see a reason why this would happen. I had assumed it must have been a setting in the Malware filter policy but I can not see anything which would cause this.
Does anyone know why this might have happened and how I can stop it happening again?
↧
transport rules are skipped
Hi all,
we have a security requirement to lock down incoming and outgoing access for some of the mailboxes in our environment. as a result, we created 4 transport rules for this matter, in order of priority:
1. restrict all mails sent 'outside the organization' with no exceptions for the specified mailboxes
2. restrict all mails sent 'inside the organization' with no exceptions for the specified mailboxes
3. restrict all mails received from 'outside the organization' unless sender address pattern matches @ourdearpartner.com for the specified mailboxes
4. restrict all mails received from 'inside the organization' with no exceptions for the specified mailboxes
generally, incoming rules works fine since there can be only one sender. Problem occurs when the specified mailboxes attempt to send a single mail to 2 recipients, one inside and one outside the organization. depending on the order of rule priority, mails to either one of the recipient will go through. Note that none of the rules has the 'Stop processing more rules' option checked. The behaviour seems to be as long as one of the rules have applied, other rules are ignored.
we have moved from domino recently and its a big security breach for us. can anyone shed some lights? TIA
↧
DNS/SPF records
I have what's probably a simple problem but it's kind of an emergency right now.
We use split DNS. We have internally NAT ip's for the Exchange hosts. We have an external provider for external DNS and routable IP's.
My 2013 MB server is getting rejected for a new SPF record we introduced.
v=spf1 mx a ptr include:aspmx.pardot.com ~all
The record is formed right.
I looked at the bounce message and the external service bouncing the email shows my MB server hostname, but the internal NAT ip in the text. I'm not sure where this is coming from, I would imagine the NIC on the MB server, but obviously that is not the external reverse IP we listed in external DNS so I think this is why it's being rejected.
I was thinking I could do one of two things or both.
1. add an include for the hostname of my MB server
2. add the non-routable NAT IP to the SPF record
Not sure if i'm on the right track, or what the correct course of action should be.
Any help is greatly appreciated.
↧
Exchange 2013 - Identify users configured for TXT notifications
Is there a way to identify how many users have configured their account for TXT notifications? I am guessing that the information can be retrieved using powershell somehow.
Thanks!
Tom
↧
↧
Issue with mailforwarding in Exchange 2013 CU10
Since we installed CU10 we have an issue with forwarding mail to another mailbox.
Here is the situation.
I edit the settings of a mailbox in the exchange Admin Center and goto Mailbox Features, Mail flow, View details and tick Enable forwarding and select the user to which the mail must be forwarded and save those settings.
When i send a test email the mailbox i just edited the mail is not forwarded.
I checked in powershell if the Mailboxproperty "ForwardingSmtpAddress" but it was empty which would explain why the message isn't forwarded. If i tick the box "Deliver message to both forwarding address and mailbox" in the Exchange
Admin Center the property "DeliverToMailboxAndForward" is changed to True.
If i want to set the Mailboxproperty "ForwardingSmtpAddress" in Powershell which i already set in EAC i get the message
"WARNING: Before your forwarding settings can take effect, you need to contact your helpdesk and ask them to turn off the forwarding your administrator previously set." in Powershell.
I order to make the function work i have to disable Forwarding in EAC en configure forwarding via Powershell.
Only then the Mailboxproperty "ForwardingSmtpAddress is filled in and message forwarding is working. The strange thing is that this way the setting is not showed in EAC.
Is this a known issue since Exchange 2013 CU10
Ronald Van Der Meer
↧
Exchange 2013 "IP-AllowListEntry" not working
Hello,
we are using "Spamhaus ZEN" RBL for our Exchange.
There are a few IP-Adresses that I want to whitelist, this should work with "Add-IPAllowListEntry -IPAddress x.x.x.x"
The Command works successfully and returns the results with "Get-IPAllowListEntry"
Settings for IPAllowListConfig are "-Enabled True" and "-ExternalMail Enabled True"
My problem is that mails are being blocked even if they are on the whitelist.
Can someone tell me why that is happening?
I tried to restart TransportService and even whole Exchange server without success.
Regards
gugaua
↧
Blocking e-mails with attached office files that has dangerous macro
Hello
My company that I work in receives a lot of e-mails containing word, or excel files with a malicious macro in them. I was searching for a way, to block them but had little success.
Also i noticed, that all of them have no text written in them at all, only the malicious macro. Maybe there is a way to block attachments that have no text in them?
↧