Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us money per month for bills, and since we don't believe in showing ads to our users, we try to make the money back through forum registrations.
 
  • Post
  • Reply
devmd01
Mar 7, 2006

Elektronik
Supersonik


Oscar Wilde Bunch posted:

I've taken to using BitTitan or Skykick. No goofing with hybrid, no connectors to clean up. Sure it costs, but being able to do on the fly mailbox type remaps (person to shared, shared to resource, person to resource, etc...) plus having a deployable client that does auto Outlook profile switching was worth it.

Bittitan is great. Used it to migrate the mailbox contents for ~1400 employees from an acquisition a couple of years ago and it was super easy to use. That was a slightly different use case though as all we were doing was copying the mailbox contents off of the separating companyís exchange, no identity migration.

We made another smaller acquisition last year and are in the planning stages of throwing out pretty much all of their IT infrastructure to include their O365 tenant. This one is a bit more complex since we are migrating identities and domain ownership to our tenant. Bittitan licenses just arrived, so itís time to get to work!

Adbot
ADBOT LOVES YOU

Thanks Ants
May 21, 2004

#essereFerrari




I like Migrationwiz but *providing your on-prem Exchange is working well* then doing a hybrid would still be my preferred way to do that migration, even if it's just so everything can be done in phases without anybody noticing.

Submarine Sandpaper
May 27, 2007



If this wasn't a one off I may be more inclined to do that. I think I'm going to go bittitan. No need for trusts or rectifying GUIDs or SMPT matching with the 365 tenant.

nvrgrls
Apr 24, 2004



https://github.com/cisagov/CHIRP

find out how owned yr servers are

Bob Morales
Aug 18, 2006


Just wear the fucking mask, Bob

I don't care how many people I probably infected with COVID-19 while refusing to wear a mask, my comfort is far more important than the health and safety of everyone around me!



A ticket came in: Allow Access to Outlook Web Access only from US

Internet Explorer
Jun 1, 2005


Bob Morales posted:

A ticket came in: Allow Access to Outlook Web Access only from US

And to think, it could be as easy as a click of a button.

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-location

Bob Morales
Aug 18, 2006


Just wear the fucking mask, Bob

I don't care how many people I probably infected with COVID-19 while refusing to wear a mask, my comfort is far more important than the health and safety of everyone around me!




It's easy in the firewall to do apply incoming GeoIP US-only

It's just going to create about 20 tickets to unblock certain things in the future.

nvrgrls
Apr 24, 2004



That's a problem for Future You.

nvrgrls
Apr 24, 2004



A few months ago I was in a meeting that got zoom-bombed and I was like "I know how to avoid this, I'll just make it so my Zooms can be US-only!" and then I got a call saying "hey so-and-so from Vancouver can't join the meeting"
whoopsy-daisy

Old Binsby
Jun 27, 2014



get patching boys/girls/x, 4 more critical exploits this month
https://techcommunity.microsoft.com/t5/exchange-team-blog/released-april-2021-exchange-server-security-updates/ba-p/2254617

snackcakes
May 7, 2005

A joint venture of Matsumura Fishworks and Tamaribuchi Heavy Manufacturing Concern



Performing some thread necromancy here...

I have a pretty new (to us) client that has an Exchange 2019 server and needs us to collect a bunch of emails for a legal matter.

I've run eDiscovery with Exchange online before but not on-premise. I'm running into a strange issue where it's not returning all emails.

If you use the eDiscovery preview it will show, say, 20000 emails but if you export to a discovery mailbox or pst it will only export 1400.

Checking the csv that gets exported with the pst shows a really big gap in emails returned.

Anyone have any ideas about what might be happening? Having a hard time even figuring out where I'd find an error log for this

you ate my cat
Jul 1, 2007



Has anyone ever dealt with cancelled meetings from a shared mailbox calendar being recreated on the attendees' calendars? There are a bunch of bits and pieces of suggestions online for it, but I'm trying to understand the underlying functionality of what's going on here. A user with delegate rights is cancelling a meeting, the recipients all receive cancellation notices, and the invite disappears as normal. The next day, the calendar repair assistant helpfully recreates the meeting with the "Exchange server re-created a meeting that was missing from your calendar" text.

I know I can probably do a search and destroy on everyone's calendars and remove the meeting that way, but I was hoping to understand more about what's happening. Is this a sync issue somehow? Or is there something else going on here? Any useful resources on the repair assistant or related topics that I can read?

bitterandtwisted
Sep 4, 2006






We're divesting part of our business and those staff have two email accounts while that is going on (one for us, one for the purchasing company)
The new company have set forwards from staff's new accounts to their old ones

Does that create an open relay if they get an external email that goes from eg gmail - > them -> us automatically via mail flow rule?

Will Styles
Jan 19, 2005


That's not technically an open relay. An open relay would be a third party connects to your server and is able to send an email to any recipient they wish, not just users at your domain. In your scenario the gmail.com sender would need to be sending specifically to recipients at a domain the other company is configured to accept mail for, and then those are sent to your servers.

Depending on how forwarding is done, and the trust relationship established between the two companies, you may run into some DMARC problems though. From your example, when the message arrives at your border it could be from a gmail.com sender, but sent by servers from the other company. This would fail SPF and if the message isn't signed with DKIM or DKIM doesn't align then the message would fail DMARC. Of course if you've safe listed messages coming from the other company then you won't have to worry about that (most likely).

Bob Morales
Aug 18, 2006


Just wear the fucking mask, Bob

I don't care how many people I probably infected with COVID-19 while refusing to wear a mask, my comfort is far more important than the health and safety of everyone around me!



Is there a way to view the full message headers in 365 Message trace? Would be useful for troubleshooting.

Only registered members can see post attachments!

Thanks Ants
May 21, 2004

#essereFerrari




At a guess you can take the message ID and shove it into eDiscovery and get the message itself, not sure if there's a way to restrict access to just the headers though.

Old Binsby
Jun 27, 2014



Afaik there is no method to do this on delivered user messages but you can check the headers of quarantined mail. You have to access the quarantine via the gui and click around until you find a 'preview message' button. Or use Get-QuarantineMessageHeader in powershell with the appropriate message ID.

Outside of quarantine, do the Thanks Ants thing. Or, if you don't like the clunkiness of eDiscovery/it's just a small number of messages, you could also ask a user to select it in Outlook and press ctrl+alt+f. A new mail window with the original message attached will appear, they can simply address it to you and send. It retains the headers of the original in attachment. Hard to do large scale, i guess

nvrgrls
Apr 24, 2004



A client has asked for a way to block an Exchange Online user from sending emails during specific time windows. Is this possible?

Boogalo
Jul 8, 2012

Meep Meep






nvrgrls posted:

A client has asked for a way to block an Exchange Online user from sending emails during specific time windows. Is this possible?

I guess you could set up a power app (or power automate? i get them confused) to powerhsell disable sending and then enable it on a schedule.

Thanks Ants
May 21, 2004

#essereFerrari




Countries are writing laws about being contacted outside of work, I'd have assumed companies have sprung up to control access to things on a schedule.

Adbot
ADBOT LOVES YOU

Maneki Neko
Oct 27, 2000



In the olden days I've seen companies using Windows Logon Hours to control that but I haven't seen a cloud version of that.

I suppose you could probably do something crazy with Azure AD Connect and pass through authentication but that kind of makes me shudder and the long auth times for things like activesync would probably get around it.

  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply