Not a week goes by where I don’t get asked a question about eDiscovery or retention of data in the Office 365 (or Microsoft 365 platform). We’ll mainly focus on mailbox questions here, though a lot of the concepts apply to SharePoint content as well.… [ Continue reading ]
Tag: Exchange Online
Wipe-ExchangeOnlineMailbox has moved!
Just a quick post today–I’ve re-published my Wipe-ExchangeOnlineMailbox script to the PowerShell gallery.
Hopefully, this helps everyone who continues to want to use this script. Good luck!
And, if you accidentally delete too much stuff, be sure to check out my post about recovering from self-inflicted wounds: Using Restore-RecoverableItems, or “how I saved my own bacon”
What happens when an Office 365 customer doesn’t point to EOP as their MX?
I get asked this question quite frequently–usually by customers who want to continue using their existing on-premises antispam or antimalware gateway or want to attempt to implement a defense-in-depth strategy.
The graph and intelligence behind Exchange Online Protection (EOP) processes at least half a trillion (500,000,000,000) messages a month–the AI behind it is continually monitoring and learning what is spam and what is not. … [ Continue reading ]
Create a Catch-All Mailbox in Office 365
While working on a cross-tenant issue with a customer, I had the requirement minimize the number of non-delivery reports sent to external users. I suggested the best way to do this might be a catch-all mailbox.… [ Continue reading ]
Reviewing the Exchange Mailbox Diagnostics Log
A peer of mine today asked if it was possible to review the log of the Managed Folder Assistant, and, if it was, how to find the last time it ran.
As it turns out, you can! … [ Continue reading ]
Exchange Online Protection 550 5.4.1 Recipient address rejected: Access Denied. AS(201806281)
Today, I found myself working with a customer that was experiencing delivery failures to some Office 365 recipients from all external senders.
As problems go, this one definitely finds itself in the “interesting” category. … [ Continue reading ]
Apply Security & Compliance Center Retention Labels to Outlook Folders
I couldn’t really come up with a cool-sounding title for this post, so I just went with the basics of what it does.
Last week, I worked with a customer that wanted to deploy custom retention labels to custom folders inside a user’s mailbox–the idea being that they would create a custom folder structure such as this under a user’s Inbox:
\Inbox
\Inbox\Retention Schedule
\Inbox\Retention Schedule\2 Year (apply a 2-year retention label to everything in this folder)
\Inbox\Retention Schedule\4 Year (apply a 4-year retention label to everything in this folder)
\Inbox\Retention Schedule\7 Year (apply a 7-year retention label to everything in this folder)
\Inbox\Retention Schedule\Forever (apply a ‘Never delete’ retention label to everything in this folder)
Seems easy enough, right? … [ Continue reading ]
Exchange Online Protection (EOP) Best Practices and Recommendations
Yes. I said it.
Someone needed to put a line in the sand and today, that person is me. I’m going to say these are some best practices.
But of course, your mileage may vary, depending on your type of organization (users at a local bank or city government will have different threats presented to them than an engineering firm with international customers, for example). … [ Continue reading ]
Removing Orphaned Mailbox Searches
An issue came up today for one of my customers–how to remove orphaned mailbox searches in Exchange Online. Apparently, they have about 300 mailboxes in this state. Oops.
So, in order to do this, you need to go through a handful of steps:
- Identify all of the Mailbox Searches.
Update to Forwarding Address Export Import Tool
Every now and then, I get a ahead of myself. I’ve updated a typo in the script on the gallery, a vestige of when I updated the script to use server-side filtering. The bug revealed itself when you did not use the -Domain parameter.… [ Continue reading ]
Getting Around the Basics of Azure Automation for Office 365
One of the the things that we’ve learned about the cloud over the past few years is that you still need an environment (a utility server, an app server, a something) to run batch jobs and custom scripts against your environments. … [ Continue reading ]
Update to the WipeExchangeOnlineMailbox tool
Who knew you’d need an update to a tool meant to delete things?
After working with a partner today and an out-of-control email application spamming user mailboxes, we decided an update was necessary. Outlook became unusable with several hundred thousand messages in Deleted Items. … [ Continue reading ]
Migrating from Exchange Online eDiscovery and In-Place Hold to the Security & Compliance Center
One of the issues that some of my larger customers have been dealing with is the lack of tooling and planning around moving legacy Exchange Online In-Place eDiscovery & Holds to the new(ish) Security & Compliance Center. … [ Continue reading ]
Find Allowed Users, Domains, and IPs in Office 365
If you’ve ever asked anyone how to do virtually anything, the answer is usually “It depends.” Just as there is no wrong way to eat a Reese’s Peanut Butter Cup and more than one way to skin a cat, so it frequently is with technological tasks. … [ Continue reading ]
Delegating Reporting Access for Exchange Online
Earlier this week, I had a request for assistance with delegating reporting features in Exchange Online to non-administrative users. This is a frequent topic of discussion when it comes to compliance and security officers validating that systems are not being misused by unauthorized persons.… [ Continue reading ]
Migrate-EOPSettings now does ATP!
ATP! ATP!
At long last, I’ve made a first pass at updating the Migrate-EOPSettings script to now include settings for Advanced Threat Protection. I’ve had several customers moving their instances from commercial EOP to Office 365 GCC, and while my Migrate EOP script would capture just about everything, it came to my attention that we still had configuration to do for ATP. … [ Continue reading ]
Update to the Export-CalendarProcessing tool
As luck would have it, I have one more update to deliver today.
One of my peers (shout out to Mike Manning) noticed that when using the ExportImport-CalendarProcessing tool, mailbox objects that have some special characters in them don’t get processed correctly on the import function. … [ Continue reading ]
Fixing Office 365 Anonymous Group Write-back and External Delivery
Yes, Hell has frozen over. The cows have come home. The lady of size has sung.
I have come up with a “best case” solution for the Office 365 hybrid group write-back problem.
Background
For the long(er) background, you’ll probably want to go see this post.… [ Continue reading ]
Forwarding Address Import and Export
Four score and many moons ago, I was working on one of my first projects in Microsoft Consulting Services. This particular customer (a university) shared their Active Directory infrastructure with a hospital. During the course of their business, employees would frequently move between organizations. … [ Continue reading ]
Mail-enabling Guest Users or “How I made everyone show up in the Address Book”
So, today, I received an email from one of my esteemed colleagues asking how we could get B2B Azure AD tenant guests to show up in the Office 365 GAL. I thought, “Yeah, that should be something that’s possible. … [ Continue reading ]