Today is an out of band security release for Exchange. Due to the way that Exchange 2010 is serviced, security updates are released as a new update rollup (RU).
You can visit the Microsoft Security Response Center to read the details about this and the other released security updates.
Note – The image does not show RU 32, and I'll update it once the download site is corrected.
This is build 14.03.… Read the rest “Exchange 2010 SP3 RU32 Released”
Security updates were released today for Exchange 2010, 2013, 2016 and 2019. Attacks were detected which leveraged these vulnerabilities, so an out of band set of updates was released
This a remote code execution on TCP 443 and is already being exploited as a 0-Day attacks against on-premises Exchange servers.
Microsoft strongly recommends installing this update immediately. Internet facing server… Read the rest “Out of Band Critical Exchange Security Updates–March 2021”
After installing Defender for Identity sensor onto AD FS, you may experience an issue where the service does not enter the running state.
In the Microsoft Defender for Identity portal the sensor is reported as "Not Configured"
Since the AD FS sensor is new (January 2021), you initially installed sensors onto all of your AD Domain Controllers.
The below indicates that all o… Read the rest “Defender For Identity Sensor Service Fails To Start on AD FS – Sequence Contains No Elements”
The below post initially stemmed from an Exchange Risk Assessment which noted that all of the customer's Exchange servers were missing critical Windows updates. The customer's security team were slightly upset as they believed (mistakenly) that all assets were properly updated. This was not the case. When we looked into the details, the monthly Windows Server 2012 R2 updates had been failing to… Read the rest “Unable to Install Windows Updates or Windows Components”
Well, good bye to 2020. That was some year to put it mildly…
Again, we see that on-premises content has been reduced and the overall focus is Office 365 and Hybrid. AD FS certificates keep on expiring and so do WAP, thus those articles remain popular as ever.
Exchange 2019 CU8 has been released to the Microsoft Volume Licensing Center! Exchange 2019 has a different servicing strategy than Exchange 2007/2010 and utilises Cumulative Updates (CUs) rather than the Rollup Updates (RU/UR) which were used previously. CUs are a complete installation of Exchange 2019 and can be used to install a fresh server or to update a previously installed one. Exchange… Read the rest “Exchange 2019 CU8 Released”
Exchange 2016 CU19 has been released to the Microsoft download centre! Exchange 2016 has a different servicing strategy than Exchange 2007/2010 and utilises Cumulative Updates (CUs) rather than the Rollup Updates (RU/UR) which were used previously. CUs are a complete installation of Exchange 2016 and can be used to install a fresh server or to update a previously installed one. Exchange 2013 h… Read the rest “Exchange 2016 CU19 Released”
Today is patch Tuesday for December 2020 and contains a security advisory bulletin for Exchange 2010. Due to the way that Exchange 2010 is serviced, security updates are released as a new update rollup (RU).
You can visit the Microsoft Security Response Center to read the details about this and the other released security updates.
This is build 14.03.0509.000 of Exchange 2010, and KB 4593467 has the… Read the rest “Exchange 2010 SP3 RU31 Released”
Please be aware that Exchange 2013, Exchange 2016 and Exchange 2019 security updates were released as part of the December 2020 patch Tuesday release. The overall rating is critical, and the update resolves multiple issues.
Details for these, and previously released updates can be found in the Security Update Guide. Also note that Exchange 2010 SP3 RU31 was also released.
For all of th… Read the rest “Exchange December 2020 Security Updates”
After going through the steps to disable TLS 1.0 and TLS 1.1, it was noted that Managed Availability was not happy with one particular component in Exchange 2013. This was the OnPremisesSmtpClientSubmission probe and the monitor which was associated to it. The below is a reproduction of the customer environment.
For reference, you can review Protocols in TLS/SSL (Schannel SSP) for a listing of wh… Read the rest “Exchange 2013 OnPremisesSmtpClientSubmission – Unhealthy After Disabling TLS 1.0 and TLS 1.1”