Dear all,
I have the following issue - anyone can send mail from any existing e-mail account in the organization over smtp without knowing the password of the account from anywhere in the world. For example this script works from anywhere:
Send-MailMessage –From administrator@myorganization.com –To administrator@myorganization.com –Subject “Test Email” –Body “Test E-mail (body)” -SmtpServer mysmtpserver.myorganization.com
How this can be prohibited? Our exchange server is 2013 with hybrid environment, migrated in O365 most of the accounts.