Exchange Organization Example Document
Uploaded by
Nur RochmanExchange Organization Example Document
Uploaded by
Nur RochmanDate 18/07/2018 13:53:57
Author DEMO2012R2\sysadmin
Version 1.11
Product XIA Configuration Server [10.1.4.25844]
Page 6 of 160 Contoso Technical Services
Description Exchange On-Premises (15.1.0.0)
Item Name Demo Organization
Item ID 1010
Primary Owner Name Technical Services
Primary Owner Contact [email protected]
Scanned on Date 17 July 2018
Client Version 10.1.4.25828
Item ID Direction Name Type Relationship Type
1011 Outbound EX1-2K12R2-DEMO Windows Server Has Exchange Server
1012 Outbound EX2-2K12R2-DEMO Windows Server Has Exchange Server
1000 Outbound CENTREL Solutions Container Contained Within
Page 7 of 160 Contoso Technical Services
Page 8 of 160 Contoso Technical Services
General Settings
Name Demo Organization
Id 58d6ed65-cba3-4d1a-895c-17e3eec45574
Organization Type Exchange On-Premises
Version 15.1.0.0
Version Name Exchange 2016
Page 9 of 160 Contoso Technical Services
Page 10 of 160 Contoso Technical Services
General Settings
Undeliverable Report Address [email protected]
2 Journal Rules
Name Enabled Recipient Send To
Journal True [All Messages] [email protected]
Safety Journal True [email protected] [email protected]
Page 11 of 160 Contoso Technical Services
General Settings
Name Journal
GUID 91475ac5-5b76-413a-a93d-6ed25b4f33fe
Last Updated 16/07/2018 16:42:11
Settings
Enabled True
Journal Email Address [email protected]
Recipient [All Messages]
Scope External messages only
Page 12 of 160 Contoso Technical Services
General Settings
Name Safety Journal
GUID 2ffdc1ba-d4f5-4688-904a-5a565252b30f
Last Updated 16/07/2018 11:37:33
Settings
Enabled True
Journal Email Address [email protected]
Recipient [email protected]
Scope All messages
Page 13 of 160 Contoso Technical Services
2 Retention Policies
Name Tags
ArbitrationMailbox AsyncOperationNotification
AutoGroup
ModeratedRecipients
Never Delete
Default MRM Policy 1 Month Delete
1 Week Delete
1 Year Delete
5 Year Delete
6 Month Delete
Default 2 year move to archive
Never Delete
Personal 1 year move to archive
Personal 5 year move to archive
Personal never move to archive
Recoverable Items 14 days move to archive
Page 14 of 160 Contoso Technical Services
General Settings
Name ArbitrationMailbox
GUID 2bc8dcbb-76b7-4c71-9f80-77ab4795eae6
Last Updated 15/07/2018 16:56:02
4 Retention Policy Tags
Name Type Retention Period Retention Action
AsyncOperationNotification Personal When the item reaches 30 days old Delete and allow recovery
AutoGroup Personal When the item reaches 30 days old Delete and allow recovery
ModeratedRecipients Personal When the item reaches 2 days old Delete and allow recovery
Never Delete Personal Never Delete and allow recovery
Page 15 of 160 Contoso Technical Services
General Settings
Name Default MRM Policy
GUID 723e956e-4112-4ec1-99c6-dbaa13ca9fdc
Last Updated 15/07/2018 16:56:02
11 Retention Policy Tags
Name Type Retention Period Retention Action
1 Month Delete Personal When the item reaches 30 days old Delete and allow recovery
1 Week Delete Personal When the item reaches 7 days old Delete and allow recovery
1 Year Delete Personal When the item reaches 365 days old Delete and allow recovery
5 Year Delete Personal When the item reaches 1825 days old Delete and allow recovery
6 Month Delete Personal When the item reaches 180 days old Delete and allow recovery
Default 2 year move to archive Default When the item reaches 730 days old Move to archive
Never Delete Personal Never Delete and allow recovery
Personal 1 year move to archive Personal When the item reaches 365 days old Move to archive
Personal 5 year move to archive Personal When the item reaches 1825 days old Move to archive
Personal never move to archive Personal Never Move to archive
Recoverable Items 14 days move to archive Recoverable When the item reaches 14 days old Move to archive
Items
Page 16 of 160 Contoso Technical Services
14 Retention Policy Tags
Name Type Retention Period Retention Action
1 Month Delete Personal When the item reaches 30 days old Delete and allow recovery
1 Week Delete Personal When the item reaches 7 days old Delete and allow recovery
1 Year Delete Personal When the item reaches 365 days old Delete and allow recovery
5 Year Delete Personal When the item reaches 1825 days old Delete and allow recovery
6 Month Delete Personal When the item reaches 180 days old Delete and allow recovery
AsyncOperationNotification Personal When the item reaches 30 days old Delete and allow recovery
AutoGroup Personal When the item reaches 30 days old Delete and allow recovery
Default 2 year move to archive Default When the item reaches 730 days old Move to archive
ModeratedRecipients Personal When the item reaches 2 days old Delete and allow recovery
Never Delete Personal Never Delete and allow recovery
Personal 1 year move to archive Personal When the item reaches 365 days old Move to archive
Personal 5 year move to archive Personal When the item reaches 1825 days old Move to archive
Personal never move to archive Personal Never Move to archive
Recoverable Items 14 days move to archive Recoverable When the item reaches 14 days old Move to archive
Items
Page 17 of 160 Contoso Technical Services
Page 18 of 160 Contoso Technical Services
1 Accepted Domains
Name Domain Name Type
demo2012r2.net demo2012r2.net Authoritative
Page 19 of 160 Contoso Technical Services
General Settings
Name demo2012r2.net
GUID 360cf431-bf64-4b9b-9f5d-1718139d7f87
Last Updated 15/07/2018 16:55:31
Accepted Domain Settings
Domain Name demo2012r2.net
Domain Type Authoritative
Default True
Accept Subdomains False
Page 20 of 160 Contoso Technical Services
1 Email Address Policies
Name Priority Applied
Default Policy Lowest True
Page 21 of 160 Contoso Technical Services
General Settings
Name Default Policy
GUID 4cad1512-c64f-40af-ab02-eb2f752a0585
Last Updated 15/07/2018 16:55:32
Email Address Policy Settings
Priority Lowest
Email Address Templates @demo2012r2.net
Primary SMTP Address Template @demo2012r2.net
Applied True
Applied To
Recipient Types All recipient types
Recipient Filter Alias -ne $null
Page 22 of 160 Contoso Technical Services
10 Receive Connectors
Name Enabled Role
Client Frontend EX1-2K12R2-DEMO True Frontend Transport
Client Frontend EX2-2K12R2-DEMO True Frontend Transport
Client Proxy EX1-2K12R2-DEMO True Hub Transport
Client Proxy EX2-2K12R2-DEMO True Hub Transport
Default EX1-2K12R2-DEMO True Hub Transport
Default EX2-2K12R2-DEMO True Hub Transport
Default Frontend EX1-2K12R2-DEMO True Frontend Transport
Default Frontend EX2-2K12R2-DEMO True Frontend Transport
Outbound Proxy Frontend EX1-2K12R2-DEMO True Frontend Transport
Outbound Proxy Frontend EX2-2K12R2-DEMO True Frontend Transport
Page 23 of 160 Contoso Technical Services
General Settings
Name Client Frontend EX1-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID f2935c4f-dfb2-4d23-b095-0e9def3d342c
Last Updated 15/07/2018 17:40:51
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:587
0.0.0.0:587
FQDN EX1-2K12R2-DEMO.demo2012r2.net
Page 24 of 160 Contoso Technical Services
General Settings
Name Client Frontend EX2-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 890c49d5-7edc-4397-a058-e7b280b7e5c3
Last Updated 15/07/2018 18:44:22
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:587
0.0.0.0:587
FQDN EX2-2K12R2-DEMO.demo2012r2.net
Page 25 of 160 Contoso Technical Services
General Settings
Name Client Proxy EX1-2K12R2-DEMO
Transport Role Hub Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 3c2d90d4-a3a4-48c6-a7d4-2dfc48ebc367
Last Updated 15/07/2018 17:19:32
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Servers
Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:465
0.0.0.0:465
FQDN EX1-2K12R2-DEMO.demo2012r2.net
Page 26 of 160 Contoso Technical Services
General Settings
Name Client Proxy EX2-2K12R2-DEMO
Transport Role Hub Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 824ffea9-32f0-4944-a6a2-c008aac55d1c
Last Updated 15/07/2018 18:24:01
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Servers
Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:465
0.0.0.0:465
FQDN EX2-2K12R2-DEMO.demo2012r2.net
Page 27 of 160 Contoso Technical Services
General Settings
Name Default EX1-2K12R2-DEMO
Transport Role Hub Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 9b955c95-2962-4c6f-bbcb-b9959de7dccb
Last Updated 15/07/2018 17:40:50
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Legacy Servers
Exchange Servers
Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings 0.0.0.0:2525
[::]:2525
FQDN EX1-2K12R2-DEMO.demo2012r2.net
Page 28 of 160 Contoso Technical Services
General Settings
Name Default EX2-2K12R2-DEMO
Transport Role Hub Transport
Enabled True
Comment
Protocol Logging Level None
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 513b19cf-cfa7-44b4-b78d-c522acea75c9
Last Updated 15/07/2018 18:44:21
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Legacy Servers
Exchange Servers
Exchange Users
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings 0.0.0.0:2525
[::]:2525
FQDN EX2-2K12R2-DEMO.demo2012r2.net
Page 29 of 160 Contoso Technical Services
General Settings
Name Default Frontend EX1-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level Verbose
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 6341530b-fad8-4ca4-b81e-d5b2a39276eb
Last Updated 15/07/2018 17:40:50
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Anonymous Users
Exchange Legacy Servers
Exchange Servers
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:25
0.0.0.0:25
FQDN EX1-2K12R2-DEMO.demo2012r2.net
Page 30 of 160 Contoso Technical Services
General Settings
Name Default Frontend EX2-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level Verbose
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID 2e179711-56ae-4938-9ba0-33b3dac793bc
Last Updated 15/07/2018 18:44:21
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Anonymous Users
Exchange Legacy Servers
Exchange Servers
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:25
0.0.0.0:25
FQDN EX2-2K12R2-DEMO.demo2012r2.net
Page 31 of 160 Contoso Technical Services
General Settings
Name Outbound Proxy Frontend EX1-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level Verbose
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID a6c50956-3401-423c-b7f8-5422de1886a2
Last Updated 15/07/2018 17:40:51
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Servers
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:717
0.0.0.0:717
FQDN EX1-2K12R2-DEMO.demo2012r2.net
Page 32 of 160 Contoso Technical Services
General Settings
Name Outbound Proxy Frontend EX2-2K12R2-DEMO
Transport Role Frontend Transport
Enabled True
Comment
Protocol Logging Level Verbose
Maximum Receive Message Size 36 MB (37,748,736 bytes)
Maximum Local Hop Count 12
Maximum Hop Count 60
GUID e6d623ee-457b-46f7-9e46-2ac012a1bd48
Last Updated 15/07/2018 18:44:21
Security
Authentication Mechanisms Basic authentication
Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)
Permission Groups Exchange Servers
Scoping
Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
0.0.0.0-255.255.255.255
Bindings [::]:717
0.0.0.0:717
FQDN EX2-2K12R2-DEMO.demo2012r2.net
Page 33 of 160 Contoso Technical Services
1 Rules
Name Enabled Priority
Sensitive Information True 0
Page 34 of 160 Contoso Technical Services
General Settings
Name Sensitive Information
GUID 22ac0383-c03d-4688-858e-36668a3512d4
Last Updated 16/07/2018 11:56:15
Settings
Audit Mode High
Comments Sensitive Information rule for US bank account numbers.
Defer Message On Processing Error True
Enabled True
Mode Enforce
Priority 0
Rule Version 15.0.5.3
Match Sender Address Header
Stop Processing More Rules True
Details
Description If the message:
The message contains any of these sensitive information types: 'U.S. Bank Account Number'
Take the following actions:
Set audit severity level to 'High'
and Stop processing more rules
and Send the incident report to [email protected], include these message properties in the
report: sender, recipients, subject, cc'd recipients, bcc'd recipients, matching rules, detected data
classifications, matching content, original mail
Except if the message:
Is received from '[email protected]'
Expiry date: 31/12/2019 11:30:00
Page 35 of 160 Contoso Technical Services
2 Send Connectors
Name Enabled
Journal True
Outbound True
Page 36 of 160 Contoso Technical Services
General Settings
Name Journal
Enabled True
Use Client Access Server False
Comment
Protocol Logging Level None
Maximum Send Message Size 35 MB (36,700,160 bytes)
GUID 8922be8e-827f-473b-a2e3-6de9cfc548b4
Last Updated 16/07/2018 11:51:34
Delivery
Mail Send Method MX record associated with recipient domain
Use External DNS Lookup Settings False
Scoping
Address Spaces 1 Address Spaces
Scoped Send Connector True
Source Transport Servers EX2-2K12R2-DEMO
EX1-2K12R2-DEMO
FQDN
1 Address Spaces
Type Domain Cost
SMTP *.journaldemo.net 1
Page 37 of 160 Contoso Technical Services
General Settings
Name Outbound
Enabled True
Use Client Access Server False
Comment
Protocol Logging Level None
Maximum Send Message Size 35 MB (36,700,160 bytes)
GUID d557d88d-cd13-4096-82c5-e4b9c633fa70
Last Updated 16/07/2018 15:44:34
Delivery
Mail Send Method Route mail through smart hosts
myhost.contoso.com
Smart Host Authentication Basic authentication only after starting TLS
Smart Host Username sysadmin
Use External DNS Lookup Settings False
Scoping
Address Spaces 1 Address Spaces
Scoped Send Connector True
Source Transport Servers EX2-2K12R2-DEMO
EX1-2K12R2-DEMO
FQDN smtp.demo2012r2.net
1 Address Spaces
Type Domain Cost
SMTP * 1
Page 38 of 160 Contoso Technical Services
Page 39 of 160 Contoso Technical Services
2 Mobile Device Mailbox Policies
Name Default Last Modified
Contoso False 16/07/2018 16:39:54
Default True 15/07/2018 17:28:29
Page 40 of 160 Contoso Technical Services
General Settings
Name Contoso
Default False
Allow Non-Provisionable Devices True
GUID 0ded286d-20a0-4ff6-a170-a0b9825a0036
Last Updated 16/07/2018 16:39:54
Security
Require Password True
Allow Simple Passwords False
Require Alphanumeric Passwords True
Required Character Sets 3
Require Device Encryption True
Minimum Password Length 4
Maximum Failed Password Attempts 8
Require Sign-in after the device has been inactive 15
for (minutes)
Enforce Password Lifetime (days) 90
Password Recycle Count 5
Device
Allow Removable Storage True
Allow Camera True
Allow Wi-Fi True
Allow Infrared True
Allow Internet Sharing True
Allow Remote Desktop True
Allow Bluetooth Allow
Page 41 of 160 Contoso Technical Services
Sync Settings
Include Past Calendar Items All
Include Past Email Items All
Limit Email Size Unlimited
Allow Direct Push When Roaming True
Allow HTML Email True
Allow Attachments True
Maximum Attachment Size Unlimited
Page 42 of 160 Contoso Technical Services
General Settings
Name Default
Default True
Allow Non-Provisionable Devices True
GUID bf929267-2848-4e3d-b851-15e1545ad28b
Last Updated 15/07/2018 17:28:29
Security
Require Password False
Device
Allow Removable Storage True
Allow Camera True
Allow Wi-Fi True
Allow Infrared True
Allow Internet Sharing True
Allow Remote Desktop True
Allow Bluetooth Allow
Sync Settings
Include Past Calendar Items All
Include Past Email Items All
Limit Email Size Unlimited
Allow Direct Push When Roaming True
Allow HTML Email True
Allow Attachments True
Maximum Attachment Size Unlimited
Page 43 of 160 Contoso Technical Services
Page 44 of 160 Contoso Technical Services
5 Add-Ins
Name Provider Enabled Default State
Action Items Microsoft True Enabled
Bing Maps Microsoft True Enabled
My Templates Microsoft True Enabled
Suggested Meetings Microsoft True Enabled
Unsubscribe Microsoft True Enabled
Page 45 of 160 Contoso Technical Services
General Settings
Name Action Items
Description Shows Action Item suggestions from your email. This add-in will not share your data with any
third-party service.
Add-In Settings
Enabled True
Default State Enabled
Permissions Read\write mailbox
Provider Name Microsoft
Version 1.0
Page 46 of 160 Contoso Technical Services
General Settings
Name Bing Maps
Description Map addresses found in your email. This add-in will send addresses to Bing but will not share your data
with any third-party service.
Add-In Settings
Enabled True
Default State Enabled
Permissions Restricted
Provider Name Microsoft
Version 1.1
Page 47 of 160 Contoso Technical Services
General Settings
Name My Templates
Description Use this add-in to save text and images you can insert into a message with one click. This add-in will
not share your data with any third-party service.
Add-In Settings
Enabled True
Default State Enabled
Permissions Read\write item
Provider Name Microsoft
Version 1.0
Page 48 of 160 Contoso Technical Services
General Settings
Name Suggested Meetings
Description Shows meeting suggestions found in your email and allows you to add them to your calendar. This
add-in will not share your data with any third-party service.
Add-In Settings
Enabled True
Default State Enabled
Permissions Read\write mailbox
Provider Name Microsoft
Version 1.1
Page 49 of 160 Contoso Technical Services
General Settings
Name Unsubscribe
Description This add-in is triggered by messages from subscription email feeds, and allows you to block the sender
or unsubscribe from the source. This add-in will not share your data with any third-party service.
Add-In Settings
Enabled True
Default State Enabled
Permissions Read\write mailbox
Provider Name Microsoft
Version 1.0
Page 50 of 160 Contoso Technical Services
6 Address Lists
Display Name Container Type
All Contacts \ Address List
All Distribution Lists \ Address List
All Rooms \ Address List
All Users \ Address List
Default Global Address List \ Global Address List
Public Folders \ Address List
Page 51 of 160 Contoso Technical Services
General Settings
Name All Contacts
GUID 1b7a6119-cabb-4c0a-888b-99cfe572d65f
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Address List
Container Name \
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (((ObjectCategory -like 'person') -and (ObjectClass -eq 'contact'))))
Page 52 of 160 Contoso Technical Services
General Settings
Name All Distribution Lists
GUID 17619bde-361b-40d4-9e3d-8422fd56d119
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Address List
Container Name \
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (ObjectCategory -like 'group'))
Page 53 of 160 Contoso Technical Services
General Settings
Name All Rooms
GUID 7782ee42-1651-4021-9e23-1d339cb605d8
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Address List
Container Name \
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (((RecipientDisplayType -eq 'ConferenceRoomMailbox') -or
(RecipientDisplayType -eq 'SyncedConferenceRoomMailbox'))))
Page 54 of 160 Contoso Technical Services
General Settings
Name All Users
GUID b2cb4b85-1dd6-42fb-becd-256d9042e004
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Address List
Container Name \
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (((((((ObjectCategory -like 'person') -and (ObjectClass -eq 'user') -and
(-not(Database -ne $null)) -and (-not(ServerLegacyDN -ne $null)))) -or (((ObjectCategory -like 'person')
-and (ObjectClass -eq 'user') -and (((Database -ne $null) -or (ServerLegacyDN -ne $null))))))) -and
(-not(RecipientTypeDetailsValue -eq 'GroupMailbox')))))
Page 55 of 160 Contoso Technical Services
General Settings
Name Default Global Address List
GUID 3d89a4be-35d4-4c02-bf81-1391feba71db
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Global Address List
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (((ObjectClass -eq 'user') -or (ObjectClass -eq 'contact') -or (ObjectClass -eq
'msExchSystemMailbox') -or (ObjectClass -eq 'msExchDynamicDistributionList') -or (ObjectClass -eq
'group') -or (ObjectClass -eq 'publicFolder'))))
Page 56 of 160 Contoso Technical Services
General Settings
Name Public Folders
GUID e68932fb-a1f2-428f-a7d4-c95d77dfe3fa
Last Updated 15/07/2018 16:55:30
Address List Settings
Address List Type Address List
Container Name \
Recipient Filter Type Custom
Recipient Filter ((Alias -ne $null) -and (ObjectCategory -like 'publicFolder'))
Page 57 of 160 Contoso Technical Services
Page 58 of 160 Contoso Technical Services
14 Admin Roles
Name Description
Compliance Management This role group will allow a specified user, responsible for compliance, to properly configure and
manage compliance settings within Exchange in accordance with their policy.
Delegated Setup Members of this management role group have permissions to install and uninstall Exchange on
provisioned servers. This role group shouldn't be deleted.
Discovery Management Members of this management role group can perform searches of mailboxes in the Exchange
organization for data that meets specific criteria.
Help Desk Members of this management role group can view and manage the configuration for individual
recipients and view recipients in an Exchange organization. Members of this role group can only
manage the configuration each user can manage on his or her own mailbox. Additional
permissions can be added by assigning additional management roles to this role group.
Hygiene Management Members of this management role group can manage Exchange anti-spam features and grant
permissions for antivirus products to integrate with Exchange.
Organization Management Members of this management role group have permissions to manage Exchange objects and
their properties in the Exchange organization. Members can also delegate role groups and
management roles in the organization. This role group shouldn't be deleted.
Public Folder Management Members of this management role group can manage public folders. Members can create and
delete public folders and manage public folder settings such as replicas, quotas, age limits, and
permissions as well as mail-enable and mail-disable public folders.
Recipient Management Members of this management role group have rights to create, manage, and remove Exchange
recipient objects in the Exchange organization.
Records Management Members of this management role group can configure compliance features such as retention
policy tags, message classifications, transport rules, and more.
Security Administrator Membership in this role group is synchronized across services and managed centrally. This role
group is not manageable through the administrator portals. Members of this role group may
include cross-service administrators, as well as external partner groups and Microsoft Support. By
default, this group may not be assigned any roles. However, it will be a member of the Security
Administrators role groups and will inherit the capabilities of that role group.
Security Reader Membership in this role group is synchronized across services and managed centrally. This role
group is not manageable through the administrator portals. Members of this role group may
include cross-service administrators, as well as external partner groups and Microsoft Support. By
default, this group may not be assigned any roles. However, it will be a member of the Security
Reader role groups and will inherit the capabilities of that role group.
Server Management Members of this management role group have permissions to manage all Exchange servers
within the Exchange organization, but members don't have permissions to perform operations that
have global impact in the Exchange organization.
UM Management Members of this management role group can manage Unified Messaging organization, server,
and recipient configuration.
View-Only Organization Management Members of this management role group can view recipient and configuration objects and their
properties in the Exchange organization.
Page 59 of 160 Contoso Technical Services
General Settings
Name Compliance Management
Description This role group will allow a specified user, responsible for compliance, to properly configure and
manage compliance settings within Exchange in accordance with their policy.
GUID 9f317cd5-b5ad-4165-bfe0-21d0e4696635
Last Updated 16/07/2018 16:24:33
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/sysadmin
Role Names Audit Logs
Compliance Admin
Data Loss Prevention
Information Rights Management
Journaling
Message Tracking
Retention Management
Transport Rules
View-Only Audit Logs
View-Only Configuration
View-Only Recipients
Write Scope Default
Page 60 of 160 Contoso Technical Services
General Settings
Name Delegated Setup
Description Members of this management role group have permissions to install and uninstall Exchange on
provisioned servers. This role group shouldn't be deleted.
GUID 3ef95e01-0b22-4e86-9fc8-725edbc095c1
Last Updated 16/07/2018 16:25:32
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/Administrator
Role Names View-Only Configuration
Write Scope Default
Page 61 of 160 Contoso Technical Services
General Settings
Name Discovery Management
Description Members of this management role group can perform searches of mailboxes in the Exchange
organization for data that meets specific criteria.
GUID aa531e50-99d5-490a-b671-172657a4ad58
Last Updated 16/07/2018 16:26:15
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Users/Enterprise Admins
Role Names Legal Hold
Mailbox Search
Write Scope Default
Page 62 of 160 Contoso Technical Services
General Settings
Name Help Desk
Description Members of this management role group can view and manage the configuration for individual
recipients and view recipients in an Exchange organization. Members of this role group can only
manage the configuration each user can manage on his or her own mailbox. Additional permissions
can be added by assigning additional management roles to this role group.
GUID 6fd16174-85cd-4d57-9d01-49418d1b6961
Last Updated 16/07/2018 16:22:36
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Users/1stLineSupport
Role Names User Options
View-Only Recipients
Write Scope Default
Page 63 of 160 Contoso Technical Services
General Settings
Name Hygiene Management
Description Members of this management role group can manage Exchange anti-spam features and grant
permissions for antivirus products to integrate with Exchange.
GUID 47a03c48-4bbf-4c20-a8cf-9dca11e7816f
Last Updated 16/07/2018 16:26:40
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/Administrator
demo2012r2.net/Staff/Administrators/sysadmin
demo2012r2.net/Users/Enterprise Admins
Role Names ApplicationImpersonation
Receive Connectors
Transport Agents
Transport Hygiene
View-Only Configuration
View-Only Recipients
Write Scope Default
Page 64 of 160 Contoso Technical Services
General Settings
Name Organization Management
Description Members of this management role group have permissions to manage Exchange objects and their
properties in the Exchange organization. Members can also delegate role groups and management
roles in the organization. This role group shouldn't be deleted.
GUID cfed3649-f8be-4474-a7d9-073a27515105
Last Updated 15/07/2018 16:55:36
Page 65 of 160 Contoso Technical Services
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/sysadmin
Role Names Active Directory Permissions
Address Lists
ApplicationImpersonation
ArchiveApplication
Audit Logs
Cmdlet Extension Agents
Compliance Admin
Data Loss Prevention
Database Availability Groups
Database Copies
Databases
Disaster Recovery
Distribution Groups
Edge Subscriptions
E-Mail Address Policies
Exchange Connectors
Exchange Server Certificates
Exchange Servers
Exchange Virtual Directories
ExchangeCrossServiceIntegration
Federated Sharing
Information Rights Management
Journaling
Legal Hold
LegalHoldApplication
Mail Enabled Public Folders
Mail Recipient Creation
Mail Recipients
Mail Tips
Mailbox Import Export
Mailbox Search
MailboxSearchApplication
MeetingGraphApplication
Message Tracking
Migration
Monitoring
Move Mailboxes
My Custom Apps
My Marketplace Apps
My ReadWriteMailbox Apps
MyBaseOptions
MyContactInformation
MyDiagnostics
MyDistributionGroupMembership
MyDistributionGroups
MyMailboxDelegation
MyProfileInformation
MyRetentionPolicies
MyTeamMailboxes
MyTextMessaging
MyVoiceMail
OfficeExtensionApplication
Org Custom Apps
Org Marketplace Apps
Organization Client Access
Organization Configuration
Organization Transport Settings
POP3 And IMAP4 Protocols
Public Folders
Receive Connectors
Recipient Policies
Remote and Accepted Domains
Reset Password
Retention Management
Role Management
Security Admin
Security Group Creation and Membership
Security Reader
Send Connectors
SendMailApplication
Support Diagnostics
Team Mailboxes
TeamMailboxLifecycleApplication
Transport Agents
Transport Hygiene
Page 66 of 160 Contoso Technical Services
Transport Queues
Transport Rules
UM Mailboxes
UM Prompts
Unified Messaging
UnScoped Role Management
User Options
UserApplication
View-Only Audit Logs
View-Only Configuration
View-Only Recipients
WorkloadManagement
Write Scope Default
Page 67 of 160 Contoso Technical Services
General Settings
Name Public Folder Management
Description Members of this management role group can manage public folders. Members can create and delete
public folders and manage public folder settings such as replicas, quotas, age limits, and permissions
as well as mail-enable and mail-disable public folders.
GUID 0c28dc54-e110-4272-8ad5-cfbe2c578c10
Last Updated 16/07/2018 16:27:09
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Users/Enterprise Admins
Role Names Mail Enabled Public Folders
Public Folders
Write Scope Default
Page 68 of 160 Contoso Technical Services
General Settings
Name Recipient Management
Description Members of this management role group have rights to create, manage, and remove Exchange
recipient objects in the Exchange organization.
GUID f06e922c-569f-402f-8783-fb020ed0c0fe
Last Updated 16/07/2018 16:27:42
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Users/Enterprise Admins
Role Names Distribution Groups
Mail Recipient Creation
Mail Recipients
Message Tracking
Migration
Move Mailboxes
Recipient Policies
Team Mailboxes
Write Scope Default
Page 69 of 160 Contoso Technical Services
General Settings
Name Records Management
Description Members of this management role group can configure compliance features such as retention policy
tags, message classifications, transport rules, and more.
GUID 50f6feb3-72c1-4184-818a-7bb22027b423
Last Updated 16/07/2018 16:27:57
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Users/Enterprise Admins
Role Names Audit Logs
Journaling
Message Tracking
Retention Management
Transport Rules
Write Scope Default
Page 70 of 160 Contoso Technical Services
General Settings
Name Security Administrator
Description Membership in this role group is synchronized across services and managed centrally. This role group
is not manageable through the administrator portals. Members of this role group may include
cross-service administrators, as well as external partner groups and Microsoft Support. By default, this
group may not be assigned any roles. However, it will be a member of the Security Administrators role
groups and will inherit the capabilities of that role group.
GUID 9cf06860-a357-43b2-94f8-e4cc5e50956b
Last Updated 16/07/2018 16:23:02
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/sysadmin
Role Names Security Admin
Write Scope Default
Page 71 of 160 Contoso Technical Services
General Settings
Name Security Reader
Description Membership in this role group is synchronized across services and managed centrally. This role group
is not manageable through the administrator portals. Members of this role group may include
cross-service administrators, as well as external partner groups and Microsoft Support. By default, this
group may not be assigned any roles. However, it will be a member of the Security Reader role groups
and will inherit the capabilities of that role group.
GUID 2b8789c4-b058-4e71-9ed8-a693b0ec3c5e
Last Updated 15/07/2018 16:55:36
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names
Role Names Security Reader
Write Scope Default
Page 72 of 160 Contoso Technical Services
General Settings
Name Server Management
Description Members of this management role group have permissions to manage all Exchange servers within the
Exchange organization, but members don't have permissions to perform operations that have global
impact in the Exchange organization.
GUID d4bc8dfc-12bd-4cfa-836f-9d974b6522c3
Last Updated 16/07/2018 16:23:17
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/sysadmin
Role Names Database Copies
Databases
Exchange Connectors
Exchange Server Certificates
Exchange Servers
Exchange Virtual Directories
Monitoring
POP3 And IMAP4 Protocols
Receive Connectors
Transport Queues
Write Scope Default
Page 73 of 160 Contoso Technical Services
General Settings
Name UM Management
Description Members of this management role group can manage Unified Messaging organization, server, and
recipient configuration.
GUID 2ec93f0c-3983-4f15-b3b3-58d850394414
Last Updated 16/07/2018 16:28:20
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names demo2012r2.net/Staff/Administrators/sysadmin
Role Names UM Mailboxes
UM Prompts
Unified Messaging
Write Scope Default
Page 74 of 160 Contoso Technical Services
General Settings
Name View-Only Organization Management
Description Members of this management role group can view recipient and configuration objects and their
properties in the Exchange organization.
GUID b4f77631-89cb-43b5-b597-40c18b204317
Last Updated 15/07/2018 16:55:36
Role Group Settings
Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management
Member Names
Role Names Monitoring
View-Only Configuration
View-Only Recipients
Write Scope Default
Page 75 of 160 Contoso Technical Services
1 Outlook Web App Policies
Name Last Modified
Default 15/07/2018 16:56:01
Page 76 of 160 Contoso Technical Services
General Settings
Name Default
GUID 4e3f8c00-ee8d-4706-bfa6-15c4128348fc
Offline Access Always
Last Updated 15/07/2018 16:56:01
Communication Management
All Address Lists True
Contacts True
Exchange ActiveSync True
Instant Messaging True
LinkedIn Contact Sync True
Mobile Device Contact Sync True
Text Messaging True
Unified Messaging True
Information Management
Inbox Rules True
Journaling True
Notes True
Recover Deleted Items True
Security
Change Password True
Junk Email Filtering True
User Experience
Email Signature True
Interesting Calendars True
Local Events False
Places False
Premium Client True
Themes True
Weather False
Page 77 of 160 Contoso Technical Services
Time Management
Calendar True
Reminders and Notifications True
Tasks True
File Access
Direct File Access (Private) True
Direct File Access (Public) True
Page 78 of 160 Contoso Technical Services
1 User Roles
Name Description
Default Role Assignment Policy This policy grants end users the permission to set their options in Outlook on the web and perform other
self-administration tasks.
Page 79 of 160 Contoso Technical Services
General Settings
Name Default Role Assignment Policy
Description This policy grants end users the permission to set their options in Outlook on the web and perform
other self-administration tasks.
GUID 63710c3e-feac-4ed2-a58a-8278d7fe65c2
Last Updated 15/07/2018 16:55:54
Assigned Roles My Custom Apps
My Marketplace Apps
My ReadWriteMailbox Apps
MyBaseOptions
MyContactInformation
MyDistributionGroupMembership
MyTeamMailboxes
MyTextMessaging
MyVoiceMail
Page 80 of 160 Contoso Technical Services
Page 81 of 160 Contoso Technical Services
1 Malware Filters
Name Enabled Priority
Default True Lowest
Page 82 of 160 Contoso Technical Services
General Settings
Name Default
Description
Priority Lowest
Enabled True
Default True
Last Updated 15/07/2018 16:55:31
Settings
Response Delete the entire message
Common Attachment Filter False
Notify Internal Senders False
Notify External Senders False
Notify Administrators (Internal Senders) False
Notify Administrators (External False
Senders)
Custom Notification Settings
Use Customized Notification Text False
Page 83 of 160 Contoso Technical Services
Page 84 of 160 Contoso Technical Services
3 Public Folders
Path Mail Enabled Mailbox Name
\ False Contoso Public Folder Mailbox
\Contoso True Contoso Public Folder Mailbox
\Contoso\Foods True Contoso Public Folder Mailbox
Page 85 of 160 Contoso Technical Services
General Settings
Mail Enabled False
Mailbox Name Contoso Public Folder Mailbox
Has Subfolders True
Maintain Per-user Information True
Statistics
Associated Item Count 0
Contact Count 0
Deleted Item Count 0
Owner Count 0
Total Items 0
Total Item Size 0 B (0 bytes)
Total Associated Item Size 0 B (0 bytes)
Total Deleted Item Size 0 B (0 bytes)
Last Updated 16/07/2018 10:59:22
Limits
Use Organization Quota Defaults True
Use Organization Retention Defaults True
Use Organization Age Limit Defaults True
2 Client Permissions
Name Access Rights
Anonymous None
Default Author
Page 86 of 160 Contoso Technical Services
General Settings
Mail Enabled True
Mailbox Name Contoso Public Folder Mailbox
Has Subfolders True
Maintain Per-user Information True
Statistics
Associated Item Count 0
Contact Count 1
Deleted Item Count 1
Owner Count 1
Total Items 3
Total Item Size 4.874 MB (5,110,675 bytes)
Total Associated Item Size 0 B (0 bytes)
Total Deleted Item Size 59.36 KB (60,785 bytes)
Last Updated 16/07/2018 15:29:58
Limits
Use Organization Quota Defaults False
Issue Warning 1.465 GB (1,572,864,000 bytes)
Prohibit Post 1.953 GB (2,097,152,000 bytes)
Maximum Item Size 10 MB (10,485,760 bytes)
Use Organization Retention Defaults True
Use Organization Age Limit Defaults True
3 Client Permissions
Name Access Rights
Anonymous None
Default Author
sysadmin Owner
Page 87 of 160 Contoso Technical Services
Alias Contoso
Display Name Contoso
Hide From Exchange Address List False
Email Addresses SMTP:[email protected]
Groups demo2012r2.net/Staff/Administrators/System Administrators
Forwarding Address demo2012r2.net/Staff/Administrators/Administrator
Deliver To Mailbox And Forward False
Delegation
Send As Accounts DEMO2012R2\sysadmin
Send On Behalf sysadmin
Page 88 of 160 Contoso Technical Services
General Settings
Mail Enabled True
Mailbox Name Contoso Public Folder Mailbox
Has Subfolders False
Maintain Per-user Information True
Statistics
Associated Item Count 0
Contact Count 1
Deleted Item Count 0
Owner Count 1
Total Items 0
Total Item Size 0 B (0 bytes)
Total Associated Item Size 0 B (0 bytes)
Total Deleted Item Size 0 B (0 bytes)
Last Updated 16/07/2018 11:00:49
Limits
Use Organization Quota Defaults True
Use Organization Retention Defaults True
Use Organization Age Limit Defaults True
3 Client Permissions
Name Access Rights
Anonymous None
Default Author
sysadmin Owner
Page 89 of 160 Contoso Technical Services
Alias Foods
Display Name Foods
Hide From Exchange Address List False
Email Addresses SMTP:[email protected]
Groups
Forwarding Address demo2012r2.net/Staff/Administrators/Administrator
Deliver To Mailbox And Forward False
Delegation
Send As Accounts DEMO2012R2\sysadmin
Send On Behalf sysadmin
Page 90 of 160 Contoso Technical Services
1 Public Folder Mailboxes
Name Database Contains
Contoso Public Folder Mailbox Mailbox Database 1494350726 Primary Hierarchy
Page 91 of 160 Contoso Technical Services
General Settings
Database Mailbox Database 1494350726
Contains Primary Hierarchy
Organizational Unit demo2012r2.net/Users
GUID e2aa4641-8926-4dc9-897d-2a2d1e8b9658
Last Updated 16/07/2018 11:58:50
Quota Settings
Use Default Mailbox Database Quota True
Settings
Page 92 of 160 Contoso Technical Services
Page 93 of 160 Contoso Technical Services
7 Mailboxes
Display Name Type Primary SMTP Address Last Logon Time
1stLineSupport User [email protected] 16/07/2018 16:35:34
2ndLineSupport User [email protected] 16/07/2018 16:36:19
Administrator User [email protected] 16/07/2018 16:52:24
Discovery Search Mailbox Discovery Mailbox DiscoverySearchMailbox{D919BA05-46A6-415f-80AD-7E09334BB852}@demo2012r2.net {Not Documented}
safety User [email protected] 16/07/2018 16:52:54
sysadmin User [email protected] 17/07/2018 14:32:47
undeliverable User [email protected] 16/07/2018 16:33:59
Page 94 of 160 Contoso Technical Services
2 Distribution Groups
Display Name Alias Primary SMTP Address
Service Desk servicedesk [email protected]
System Administrators sys_admins [email protected]
Page 95 of 160 Contoso Technical Services
General Settings
Display Name Service Desk
Alias servicedesk
Email Addresses SMTP:[email protected]
Automatically Update Email Addresses True
MailTip
Notes Use this group to send emails to the service desk.
Hide From Address Lists False
Organizational Unit demo2012r2.net/Users
Last Updated 16/07/2018 15:29:32
Ownership
Owners demo2012r2.net/Staff/Administrators/sysadmin
Membership
Members demo2012r2.net/Staff/Administrators/sysadmin
demo2012r2.net/Users/1stLineSupport
demo2012r2.net/Users/2ndLineSupport
Joining Owner approval: All requests are approved or rejected by group owners
Leaving Closed: Members can only be removed by the group owners. All requests to leave the group will be
rejected automatically.
Delivery Management
Accepted Sender Type Only senders inside my organization
Accepted Senders All senders can send messages to this group
Moderation
Messages Must Be Approved False
Delegation
Send As DEMO2012R2\sysadmin
Send On Behalf sysadmin
Page 96 of 160 Contoso Technical Services
General Settings
Display Name System Administrators
Alias sys_admins
Email Addresses SMTP:[email protected]
Automatically Update Email Addresses True
MailTip
Notes Use this group to send emails to all system administrators.
Hide From Address Lists False
Organizational Unit demo2012r2.net/Staff/Administrators
Last Updated 16/07/2018 16:41:30
Ownership
Owners demo2012r2.net/Staff/Administrators/sysadmin
Membership
Members demo2012r2.net/Microsoft Exchange System Objects/Contoso
demo2012r2.net/Staff/Administrators/Administrator
demo2012r2.net/Staff/Administrators/sysadmin
Joining Owner approval: All requests are approved or rejected by group owners
Leaving Closed: Members can only be removed by the group owners. All requests to leave the group will be
rejected automatically.
Delivery Management
Accepted Sender Type Only senders inside my organization
Accepted Senders All senders can send messages to this group
Moderation
Messages Must Be Approved False
Delegation
Send As DEMO2012R2\sysadmin
Send On Behalf sysadmin
Page 97 of 160 Contoso Technical Services
1 Dynamic Distribution Groups
Display Name Alias
Staff Staff
Page 98 of 160 Contoso Technical Services
General Settings
Display Name Staff
Alias Staff
Email Addresses SMTP:[email protected]
MailTip <html>
<body>
This will send an email to all members of staff.
</body>
</html>
Notes A dynamic distribution group for all members of staff.
Hide From Address Lists False
Last Updated 16/07/2018 16:41:30
Ownership
Owner demo2012r2.net/Staff/Administrators/sysadmin
Membership
Recipient Filter ((Alias -ne $null) -and (-not(Name -like 'SystemMailbox{*')) -and (-not(Name -like 'CAS_{*')) -and
(-not(RecipientTypeDetailsValue -eq 'MailboxPlan')) -and (-not(RecipientTypeDetailsValue -eq
'DiscoveryMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'PublicFolderMailbox')) -and
(-not(RecipientTypeDetailsValue -eq 'ArbitrationMailbox')) -and (-not(RecipientTypeDetailsValue -eq
'AuditLogMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'AuxAuditLogMailbox')) -and
(-not(RecipientTypeDetailsValue -eq 'SupervisoryReviewPolicyMailbox')))
Recipient Container demo2012r2.net/Staff
Delivery Management
Accepted Sender Type Only senders inside my organization
Accepted Senders All senders can send messages to this group
Moderation
Messages Must Be Approved False
Delegation
Send As DEMO2012R2\sysadmin
Send On Behalf sysadmin
Page 99 of 160 Contoso Technical Services
Page 100 of 160 Contoso Technical Services
1 Mailbox Databases
Name Member Servers Witness Server
DAG01 EX1-2K12R2-DEMO dc-2k12r2-demo.demo2012r2.net
Page 101 of 160 Contoso Technical Services
General Settings
Member Servers EX1-2K12R2-DEMO
Configure Networks Manually False
GUID 83efe9cd-5819-420c-b0c5-e7d127021859
Last Updated 16/07/2018 14:47:18
Witness
Witness Server dc-2k12r2-demo.demo2012r2.net
Witness Directory c:\DAGFileShareWitness
MapiDagNetwork
Enable Replication True
Interfaces {EX1-2K12R2-DEMO,Up,192.168.131.53}
Subnets {192.168.131.0/24,Up}
Page 102 of 160 Contoso Technical Services
2 Mailbox Databases
Name Master Master Type
Mailbox Database 1494350726 EX2-2K12R2-DEMO Server
Mailbox Database 1819933369 DAG01 Database Availability Group
Page 103 of 160 Contoso Technical Services
General Settings
Name Mailbox Database 1494350726
Last Full Backup [Not Configured]
Last Incremental Backup [Not Configured]
Master EX2-2K12R2-DEMO
Master Type Server
Mailbox Server EX2-2K12R2-DEMO
Copy Status Mounted
GUID 107dfabf-65c0-479c-8e06-1595ccbd23d6
Last Updated 15/07/2018 18:43:26
Maintenance
Journal Recipient
Enable Background Database Maintenance True
Mount At Startup True
Allow Database to be Overwritten by a Restore False
Enable Circular Logging False
Limits
Issue a Warning 1.899 GB (2,039,480,320 bytes)
Prohibit Send 2 GB (2,147,483,648 bytes)
Prohibit Send and Receive 2.3 GB (2,469,396,480 bytes)
Keep Deleted Items (Days) 14
Keep Deleted Mailboxes (Days) 30
Retain Deleted Items Until Database Backup False
Client Settings
Offline Address Book
1 Database Copies
Name Active Status Preference
Mailbox Database 1494350726\EX2-2K12R2-DEMO True Mounted 1
Page 104 of 160 Contoso Technical Services
General Settings
Name Mailbox Database 1819933369
Last Full Backup [Not Configured]
Last Incremental Backup [Not Configured]
Master DAG01
Master Type Database Availability Group
Mailbox Server EX1-2K12R2-DEMO
Copy Status Mounted
GUID 43c886e8-c794-4125-8727-815b55db074a
Last Updated 16/07/2018 14:48:32
Maintenance
Journal Recipient
Enable Background Database Maintenance True
Mount At Startup True
Allow Database to be Overwritten by a Restore False
Enable Circular Logging False
Limits
Issue a Warning 1.899 GB (2,039,480,320 bytes)
Prohibit Send 2 GB (2,147,483,648 bytes)
Prohibit Send and Receive 2.3 GB (2,469,396,480 bytes)
Keep Deleted Items (Days) 14
Keep Deleted Mailboxes (Days) 30
Retain Deleted Items Until Database Backup False
Client Settings
Offline Address Book
1 Database Copies
Name Active Status Preference
Mailbox Database 1819933369\EX1-2K12R2-DEMO True Mounted 1
Page 105 of 160 Contoso Technical Services
2 Servers
Name Roles Version
EX1-2K12R2-DEMO Mailbox Exchange Server 2016 CU9
EX2-2K12R2-DEMO Mailbox Exchange Server 2016 CU9
Page 106 of 160 Contoso Technical Services
General Settings
Name EX1-2K12R2-DEMO
Data Path C:\Program Files\Microsoft\Exchange Server\V15\Mailbox
Domain demo2012r2.net
Edition Standard Evaluation Edition
Display Version Version 15.1 (Build 1466.3)
Version Exchange Server 2016 CU9
Server Role Mailbox
Product ID
GUID e6a9927b-0b0c-43b6-8ce2-f0f9468b4f39
Last Updated 16/07/2018 14:48:32
Status Information
Current Config Domain Controller DC-2K12R2-DEMO.demo2012r2.net
Current Domain Controllers DC-2K12R2-DEMO.demo2012r2.net
Current Global Catalogs DC-2K12R2-DEMO.demo2012r2.net
Automatically Send Fatal Service Error Report False
Static Config Domain Controller [Not Set]
Static Domain Controllers [Not Set]
Static Excluded Domain Controllers [Not Set]
Static Global Catalogs [Not Set]
Host Information
Computer FQDN EX1-2K12R2-DEMO.demo2012r2.net
Manufacturer VMware, Inc.
Model VMware Virtual Platform
Name EX1-2K12R2-DEMO
Operating System Name Microsoft Windows Server 2012 R2 Datacenter
Service Pack None Installed
Processors Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Serial Number VMware-56 4d 16 7d 9e 34 63 49-a4 e8 6f a4 8b f5 94 17
Client Access
Autodiscover service internal URI https://ex1-2k12r2-demo.demo2012r2.net/Autodiscover/Autodiscover.xml
Autodiscover Site Scopes Default-First-Site-Name
Page 107 of 160 Contoso Technical Services
Databases
Database Availability Group DAG01
Mounted Database Count 1
1 Database Copies
Name Status
Mailbox Database 1819933369\EX1-2K12R2-DEMO Mounted
DNS Lookups
External DNS Settings Use DNS settings for "All network adapters (All available IPv4)"
Internal DNS Settings Use DNS settings for "All network adapters (All available IPv4)"
IMAP4
Authenticated time-out (seconds) 1,800
Banner string The Microsoft Exchange IMAP4 service is ready.
Calendar Retrieval iCalendar
Logon Method Secure TLS connection
Maximum Command Size (Bytes) 10,240
Maximum Connections (Single IP Address) 2,147,483,647
Maximum Connections 2,147,483,647
Maximum Connections Per User 16
MimeFormatString Best body format
Unauthenticated Time-out (Seconds) 60
Proxy Target Port 1993
SSL Connections [::]:993
0.0.0.0:993
TLS or Unencrypted Connections [::]:143
0.0.0.0:143
X.509 Certificate Name EX1-2K12R2-DEMO
Malware Filtering
Bypass Filtering False
Defer Attempts 3
Defer Wait Time 5
Force Rescan False
Primary Update Path http://amupdatedl.microsoft.com/server/amupdate
Secondary Update Path
Scan Error Action Block
Scan Timeout (Seconds) 300
Update Frequency (Minutes) 30
Update Timeout (Seconds) 150
Page 108 of 160 Contoso Technical Services
Outlook Anywhere
Enabled True
External Client Authentication Method Negotiate
External Clients Require SSL False
External Hostname
Internal Client Authentication Method NTLM
Internal Clients Require SSL False
Internal Hostname ex1-2k12r2-demo.demo2012r2.net
Path C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc
Allow SSL Offloading True
POP3
Authenticated time-out (seconds) 1,800
Banner string The Microsoft Exchange POP3 service is ready.
Calendar Retrieval iCalendar
Logon Method Secure TLS connection
Maximum Command Size (Bytes) 512
Maximum Connections (Single IP Address) 2,147,483,647
Maximum Connections 2,147,483,647
Maximum Connections Per User 16
Message Sort Order Ascending
MIME Format Best body format
Unauthenticated Time-out (Seconds) 60
Proxy Target Port 1995
SSL Connections [::]:995
0.0.0.0:995
TLS or Unencrypted Connections [::]:110
0.0.0.0:110
X.509 Certificate Name EX1-2K12R2-DEMO
Transport Logs
Message Tracking Log Enabled True
Message Tracking Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\MessageTracking
Connectivity Log Enabled True
Connectivity Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\Hub\Connectivity
Send Protocol Log C:\Program Files\Microsoft\Exchange
Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpSend
Receive Protocol Log C:\Program Files\Microsoft\Exchange
Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpReceive
Page 109 of 160 Contoso Technical Services
Transport Limits
Outbound Connection Failure Retry Interval 600
(Seconds)
Transient Failure Retry Interval (Minutes) 5
Transient Failure Retry Count 6
Maximum Time Since Submission (Days) 2
Notify Sender Delayed Message (Hours) 4
Maximum Concurrent Outbound Connections 1,000
Maximum Concurrent Outbound Connections Per 20
Domain
Unified Messaging Service
Unified Messaging Status Enabled
Dial Plans
Languages en-US
Startup Mode TCP
TCP Listening Port 5062
TLS Listening Port 5063
Maximum Calls Allowed 100
Unified Messaging Call Router Settings
Dial Plans
Startup Mode Tcp
TCP Listening Port 5060
TLS Listening Port 5061
Page 110 of 160 Contoso Technical Services
3 Certificates
Subject Issuer Expiry Date
EX1-2K12R2-DEMO EX1-2K12R2-DEMO 15 July 2023
Microsoft Exchange Server Auth Certificate Microsoft Exchange Server Auth Certificate 19 June 2023
WMSvc-EX1-2K12R2-DEMO WMSvc-EX1-2K12R2-DEMO 12 July 2028
Page 111 of 160 Contoso Technical Services
General
Subject Name EX1-2K12R2-DEMO
Subject CN=EX1-2K12R2-DEMO
Issuer CN=EX1-2K12R2-DEMO
Issuer Name EX1-2K12R2-DEMO
Valid From 15 July 2018
Expiry Date 15 July 2023
Key Usage Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 6069155A5B47A9864162367ED6C7D337
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names EX1-2K12R2-DEMO
EX1-2K12R2-DEMO.demo2012r2.net
Properties
Friendly Name
Thumbprint 42B8E31CFB0B1C32D594C4C7083175B87A9B5491
Purposes Enable all purposes for this certificate
Page 112 of 160 Contoso Technical Services
General
Subject Name Microsoft Exchange Server Auth Certificate
Subject CN=Microsoft Exchange Server Auth Certificate
Issuer CN=Microsoft Exchange Server Auth Certificate
Issuer Name Microsoft Exchange Server Auth Certificate
Valid From 15 July 2018
Expiry Date 19 June 2023
Key Usage Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 1FAAB997428DF7874627CFF6B40A6D34
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names
Properties
Friendly Name
Thumbprint FB0063D0C2518305E01C1898E5049D84C11D508F
Purposes Enable all purposes for this certificate
Page 113 of 160 Contoso Technical Services
General
Subject Name WMSvc-EX1-2K12R2-DEMO
Subject CN=WMSvc-EX1-2K12R2-DEMO
Issuer CN=WMSvc-EX1-2K12R2-DEMO
Issuer Name WMSvc-EX1-2K12R2-DEMO
Valid From 15 July 2018
Expiry Date 12 July 2028
Key Usage Data encipherment
Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 7498C490A3DF24BB4D64C884022DD9DD
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names
Properties
Friendly Name
Thumbprint F5F0B1A4CBFADC5281B44E7C36ED6643E297F537
Purposes Enable all purposes for this certificate
Page 114 of 160 Contoso Technical Services
8 Virtual Directories
Name Type Last Modified
Autodiscover (Default Web Site) Autodiscover 15/07/2018 17:42:07
ecp (Default Web Site) ECP 15/07/2018 17:41:57
EWS (Default Web Site) EWS 15/07/2018 17:42:03
mapi (Default Web Site) Mapi 15/07/2018 17:42:59
Microsoft-Server-ActiveSync (Default Web Site) EAS 15/07/2018 17:42:19
OAB (Default Web Site) OAB 15/07/2018 17:42:23
owa (Default Web Site) OWA 15/07/2018 17:41:52
PowerShell (Default Web Site) PowerShell 15/07/2018 17:42:30
Page 115 of 160 Contoso Technical Services
General Settings
GUID d11434a9-c96f-4209-bb37-974695b16fac
Type Display Name Autodiscover
Last Updated 15/07/2018 17:42:07
Authentication
Integrated Windows Authentication True
Digest Authentication False
Basic Authentication True
Page 116 of 160 Contoso Technical Services
General Settings
GUID a18d1b51-a5cf-4b06-848f-0dcd6728baec
Type Display Name ECP
Last Updated 15/07/2018 17:41:57
Virtual Directory Settings
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/ecp
External URL
Web Site Default Web Site
Authentication
Integrated Windows Authentication False
Digest Authentication False
Basic Authentication True
Forms Authentication True
Page 117 of 160 Contoso Technical Services
General Settings
GUID e71d2888-d199-4119-95e2-139772d23a2a
Type Display Name EWS
Last Updated 15/07/2018 17:42:03
Virtual Directory Settings
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/EWS/Exchange.asmx
External URL
Enable MRS Proxy Endpoint False
Authentication
Integrated Windows Authentication True
Digest Authentication False
Basic Authentication False
Page 118 of 160 Contoso Technical Services
General Settings
GUID 1f3468e7-a7cd-4ec8-b524-430af6273ec8
Type Display Name Mapi
Last Updated 15/07/2018 17:42:59
Virtual Directory Settings
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/mapi
External URL
Authentication
Windows Authentication (NTLM) True
Windows Authentication (Kerberos) False
Windows Authentication (Negotiate) True
Basic Authentication True
Page 119 of 160 Contoso Technical Services
General Settings
GUID 89a6dd94-8bc7-48ea-a6bd-6db33e089f70
Type Display Name EAS
Last Updated 15/07/2018 17:42:19
Virtual Directory Settings
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/Microsoft-Server-ActiveSync
External URL
Authentication
SSL Enabled True
Basic Authentication True
Client Certificate Authentication Ignore client certificates
Page 120 of 160 Contoso Technical Services
General Settings
GUID 8a1bd18a-89a8-4f99-a5ae-93eb9355acfe
Type Display Name OAB
Last Updated 15/07/2018 17:42:23
Virtual Directory Settings
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/OAB
External URL
Polling Interval (Minutes) 480
Offline Address Books \Default Offline Address Book
Page 121 of 160 Contoso Technical Services
General Settings
GUID c38baccf-a0ab-461f-953d-a46ce9fc30c2
Type Display Name OWA
Last Updated 15/07/2018 17:41:52
Virtual Directory Settings
Web Site Default Web Site
Outlook Web App Version Exchange 2013
Internal URL https://ex1-2k12r2-demo.demo2012r2.net/owa
External URL
Authentication
Integrated Windows Authentication False
Digest Authentication False
Basic Authentication True
Forms Authentication True
Forms Logon Format Domain\user name
Communication Management
All Address Lists True
Contacts True
Exchange ActiveSync True
Instant Messaging True
Mobile Device Contact Sync True
Text Messaging True
Unified Messaging True
Information Management
Inbox Rules True
Journaling True
Notes True
Recover Deleted Items True
Security
Change Password True
Junk Email Filtering True
Page 122 of 160 Contoso Technical Services
User Experience
Email Signature True
Interesting Calendars True
Local Events False
Places False
Premium Client True
Themes True
Weather True
Time Management
Calendar True
Reminders and Notifications True
Tasks True
File Access
Direct File Access (Private) True
Direct File Access (Public) True
Page 123 of 160 Contoso Technical Services
General Settings
GUID efbded14-adc2-4c61-9c4c-9daa6ed6fb5f
Type Display Name PowerShell
Last Updated 15/07/2018 17:42:30
Virtual Directory Settings
Internal URL http://ex1-2k12r2-demo.demo2012r2.net/powershell
External URL
Authentication
Integrated Windows Authentication False
Basic Authentication False
Page 124 of 160 Contoso Technical Services
General Settings
Name EX2-2K12R2-DEMO
Data Path C:\Program Files\Microsoft\Exchange Server\V15\Mailbox
Domain demo2012r2.net
Edition Standard Evaluation Edition
Display Version Version 15.1 (Build 1466.3)
Version Exchange Server 2016 CU9
Server Role Mailbox
Product ID
GUID 7a568d71-fc33-4019-bc1e-a699638ec4df
Last Updated 15/07/2018 19:02:51
Status Information
Current Config Domain Controller DC-2K12R2-DEMO.demo2012r2.net
Current Domain Controllers DC-2K12R2-DEMO.demo2012r2.net
Current Global Catalogs DC-2K12R2-DEMO.demo2012r2.net
Automatically Send Fatal Service Error Report False
Static Config Domain Controller [Not Set]
Static Domain Controllers [Not Set]
Static Excluded Domain Controllers [Not Set]
Static Global Catalogs [Not Set]
Host Information
Computer FQDN EX2-2K12R2-DEMO.demo2012r2.net
Manufacturer VMware, Inc.
Model VMware Virtual Platform
Name EX2-2K12R2-DEMO
Operating System Name Microsoft Windows Server 2012 R2 Datacenter
Service Pack None Installed
Processors Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Serial Number VMware-56 4d 72 f3 5b c6 8c 15-21 df 18 9a 7d 88 e5 60
Client Access
Autodiscover service internal URI https://ex2-2k12r2-demo.demo2012r2.net/Autodiscover/Autodiscover.xml
Autodiscover Site Scopes Default-First-Site-Name
Page 125 of 160 Contoso Technical Services
Databases
Database Availability Group
Mounted Database Count 1
1 Database Copies
Name Status
Mailbox Database 1494350726\EX2-2K12R2-DEMO Mounted
DNS Lookups
External DNS Settings Use DNS settings for "All network adapters (All available IPv4)"
Internal DNS Settings Use DNS settings for "All network adapters (All available IPv4)"
IMAP4
Authenticated time-out (seconds) 1,800
Banner string The Microsoft Exchange IMAP4 service is ready.
Calendar Retrieval iCalendar
Logon Method Secure TLS connection
Maximum Command Size (Bytes) 10,240
Maximum Connections (Single IP Address) 2,147,483,647
Maximum Connections 2,147,483,647
Maximum Connections Per User 16
MimeFormatString Best body format
Unauthenticated Time-out (Seconds) 60
Proxy Target Port 1993
SSL Connections [::]:993
0.0.0.0:993
TLS or Unencrypted Connections [::]:143
0.0.0.0:143
X.509 Certificate Name EX2-2K12R2-DEMO
Malware Filtering
Bypass Filtering False
Defer Attempts 3
Defer Wait Time 5
Force Rescan False
Primary Update Path http://amupdatedl.microsoft.com/server/amupdate
Secondary Update Path
Scan Error Action Block
Scan Timeout (Seconds) 300
Update Frequency (Minutes) 30
Update Timeout (Seconds) 150
Page 126 of 160 Contoso Technical Services
Outlook Anywhere
Enabled True
External Client Authentication Method Negotiate
External Clients Require SSL False
External Hostname
Internal Client Authentication Method NTLM
Internal Clients Require SSL False
Internal Hostname ex2-2k12r2-demo.demo2012r2.net
Path C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc
Allow SSL Offloading True
POP3
Authenticated time-out (seconds) 1,800
Banner string The Microsoft Exchange POP3 service is ready.
Calendar Retrieval iCalendar
Logon Method Secure TLS connection
Maximum Command Size (Bytes) 512
Maximum Connections (Single IP Address) 2,147,483,647
Maximum Connections 2,147,483,647
Maximum Connections Per User 16
Message Sort Order Ascending
MIME Format Best body format
Unauthenticated Time-out (Seconds) 60
Proxy Target Port 1995
SSL Connections [::]:995
0.0.0.0:995
TLS or Unencrypted Connections [::]:110
0.0.0.0:110
X.509 Certificate Name EX2-2K12R2-DEMO
Transport Logs
Message Tracking Log Enabled True
Message Tracking Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\MessageTracking
Connectivity Log Enabled True
Connectivity Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\Hub\Connectivity
Send Protocol Log C:\Program Files\Microsoft\Exchange
Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpSend
Receive Protocol Log C:\Program Files\Microsoft\Exchange
Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpReceive
Page 127 of 160 Contoso Technical Services
Transport Limits
Outbound Connection Failure Retry Interval 600
(Seconds)
Transient Failure Retry Interval (Minutes) 5
Transient Failure Retry Count 6
Maximum Time Since Submission (Days) 2
Notify Sender Delayed Message (Hours) 4
Maximum Concurrent Outbound Connections 1,000
Maximum Concurrent Outbound Connections Per 20
Domain
Unified Messaging Service
Unified Messaging Status Enabled
Dial Plans
Languages en-US
Startup Mode TCP
TCP Listening Port 5062
TLS Listening Port 5063
Maximum Calls Allowed 100
Unified Messaging Call Router Settings
Dial Plans
Startup Mode Tcp
TCP Listening Port 5060
TLS Listening Port 5061
Page 128 of 160 Contoso Technical Services
3 Certificates
Subject Issuer Expiry Date
EX2-2K12R2-DEMO EX2-2K12R2-DEMO 15 July 2023
Microsoft Exchange Server Auth Certificate Microsoft Exchange Server Auth Certificate 19 June 2023
WMSvc-EX2-2K12R2-DEMO WMSvc-EX2-2K12R2-DEMO 12 July 2028
Page 129 of 160 Contoso Technical Services
General
Subject Name EX2-2K12R2-DEMO
Subject CN=EX2-2K12R2-DEMO
Issuer CN=EX2-2K12R2-DEMO
Issuer Name EX2-2K12R2-DEMO
Valid From 15 July 2018
Expiry Date 15 July 2023
Key Usage Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 435A735F97BBE18449A41A342F404413
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names EX2-2K12R2-DEMO
EX2-2K12R2-DEMO.demo2012r2.net
Properties
Friendly Name
Thumbprint 141FF6E5AF8611EB92315B54B0D3D331990F764E
Purposes Enable all purposes for this certificate
Page 130 of 160 Contoso Technical Services
General
Subject Name Microsoft Exchange Server Auth Certificate
Subject CN=Microsoft Exchange Server Auth Certificate
Issuer CN=Microsoft Exchange Server Auth Certificate
Issuer Name Microsoft Exchange Server Auth Certificate
Valid From 15 July 2018
Expiry Date 19 June 2023
Key Usage Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 1FAAB997428DF7874627CFF6B40A6D34
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names
Properties
Friendly Name
Thumbprint FB0063D0C2518305E01C1898E5049D84C11D508F
Purposes Enable all purposes for this certificate
Page 131 of 160 Contoso Technical Services
General
Subject Name WMSvc-EX2-2K12R2-DEMO
Subject CN=WMSvc-EX2-2K12R2-DEMO
Issuer CN=WMSvc-EX2-2K12R2-DEMO
Issuer Name WMSvc-EX2-2K12R2-DEMO
Valid From 15 July 2018
Expiry Date 12 July 2028
Key Usage Data encipherment
Digital Signature
Key encipherment
Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)
Certificate Details
Public Key RSA (2048 Bits)
Serial Number 15AA44D58428DCBC434B89F2589C3F6F
Signature Algorithm sha1RSA
Version 3
CRL Distribution Points
Subject Alternative Names
Properties
Friendly Name
Thumbprint 5C800F594738CAD4EE50541678BBD6484ADA48AA
Purposes Enable all purposes for this certificate
Page 132 of 160 Contoso Technical Services
8 Virtual Directories
Name Type Last Modified
Autodiscover (Default Web Site) Autodiscover 15/07/2018 18:45:34
ecp (Default Web Site) ECP 15/07/2018 18:45:24
EWS (Default Web Site) EWS 15/07/2018 18:45:29
mapi (Default Web Site) Mapi 15/07/2018 18:46:23
Microsoft-Server-ActiveSync (Default Web Site) EAS 15/07/2018 18:45:44
OAB (Default Web Site) OAB 15/07/2018 18:45:49
owa (Default Web Site) OWA 15/07/2018 18:45:20
PowerShell (Default Web Site) PowerShell 15/07/2018 18:45:56
Page 133 of 160 Contoso Technical Services
General Settings
GUID 7d5f5905-e1f2-4863-8a0c-a2f2f1d8c60b
Type Display Name Autodiscover
Last Updated 15/07/2018 18:45:34
Authentication
Integrated Windows Authentication True
Digest Authentication False
Basic Authentication True
Page 134 of 160 Contoso Technical Services
General Settings
GUID 7a6b712f-ce4d-4405-9f2f-e89c6c268767
Type Display Name ECP
Last Updated 15/07/2018 18:45:24
Virtual Directory Settings
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/ecp
External URL
Web Site Default Web Site
Authentication
Integrated Windows Authentication False
Digest Authentication False
Basic Authentication True
Forms Authentication True
Page 135 of 160 Contoso Technical Services
General Settings
GUID 60afbded-d683-48c0-bf41-2c0a543bf6bb
Type Display Name EWS
Last Updated 15/07/2018 18:45:29
Virtual Directory Settings
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/EWS/Exchange.asmx
External URL
Enable MRS Proxy Endpoint False
Authentication
Integrated Windows Authentication True
Digest Authentication False
Basic Authentication False
Page 136 of 160 Contoso Technical Services
General Settings
GUID 4c247991-368b-4bfe-b0f3-1bc52ec81b63
Type Display Name Mapi
Last Updated 15/07/2018 18:46:23
Virtual Directory Settings
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/mapi
External URL
Authentication
Windows Authentication (NTLM) True
Windows Authentication (Kerberos) False
Windows Authentication (Negotiate) True
Basic Authentication True
Page 137 of 160 Contoso Technical Services
General Settings
GUID 91c613db-6a9a-4a0d-82f4-e0868cfc6200
Type Display Name EAS
Last Updated 15/07/2018 18:45:44
Virtual Directory Settings
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/Microsoft-Server-ActiveSync
External URL
Authentication
SSL Enabled True
Basic Authentication True
Client Certificate Authentication Ignore client certificates
Page 138 of 160 Contoso Technical Services
General Settings
GUID 890828fa-fa6c-452f-bb69-bd744ef2844f
Type Display Name OAB
Last Updated 15/07/2018 18:45:49
Virtual Directory Settings
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/OAB
External URL
Polling Interval (Minutes) 480
Offline Address Books
Page 139 of 160 Contoso Technical Services
General Settings
GUID ceac0542-c17a-4d94-875c-6100bad6f1bd
Type Display Name OWA
Last Updated 15/07/2018 18:45:20
Virtual Directory Settings
Web Site Default Web Site
Outlook Web App Version Exchange 2013
Internal URL https://ex2-2k12r2-demo.demo2012r2.net/owa
External URL
Authentication
Integrated Windows Authentication False
Digest Authentication False
Basic Authentication True
Forms Authentication True
Forms Logon Format Domain\user name
Communication Management
All Address Lists True
Contacts True
Exchange ActiveSync True
Instant Messaging True
Mobile Device Contact Sync True
Text Messaging True
Unified Messaging True
Information Management
Inbox Rules True
Journaling True
Notes True
Recover Deleted Items True
Security
Change Password True
Junk Email Filtering True
Page 140 of 160 Contoso Technical Services
User Experience
Email Signature True
Interesting Calendars True
Local Events False
Places False
Premium Client True
Themes True
Weather True
Time Management
Calendar True
Reminders and Notifications True
Tasks True
File Access
Direct File Access (Private) True
Direct File Access (Public) True
Page 141 of 160 Contoso Technical Services
General Settings
GUID 3b34362b-163c-43c6-bc12-49c5835d9123
Type Display Name PowerShell
Last Updated 15/07/2018 18:45:56
Virtual Directory Settings
Internal URL http://ex2-2k12r2-demo.demo2012r2.net/powershell
External URL
Authentication
Integrated Windows Authentication False
Basic Authentication False
Page 142 of 160 Contoso Technical Services
Page 143 of 160 Contoso Technical Services
1 Auto Attendants
Name Status
Contoso Auto Attendant Enabled
Page 144 of 160 Contoso Technical Services
General Settings
Dial Plan Contoso dial plan
Status Enabled
Access Numbers +44255552343
Response To Voice Commands True
Fallback Auto Attendant [Not Set]
GUID d6fa49f6-bfa7-47ba-a457-6d1d837bfe13
Last Updated 16/07/2018 13:57:02
Greetings
Business Hours Greeting Default greeting
Non-Business Hours Greeting Default greeting
International Announcement None
Business Hours
Time Zone (UTC+00:00) Dublin, Edinburgh, Lisbon, London
Business Hours Schedule Sun.08:00-Sun.19:00
Mon.08:00-Mon.19:00
Tue.08:00-Tue.19:00
Wed.08:00-Wed.19:00
Thu.08:00-Thu.19:00
Fri.08:00-Fri.19:00
Sat.08:00-Sat.19:00
Menu Navigation
Business Hours Menu Prompt
Business Hours Menu Navigation False
Non-Business Hours Menu Prompt
Non-Business Hours Menu Navigation False
Address Book And Operator Access
Allow Callers To Dial Users True
Allow Callers To Leave Voice Messages False
Allow Callers To Search Users In this dial plan only
Operator Extension
Allow Transfer To Operator During Business False
Hours
Allow Transfer To Operator During Non-Business False
Hours
Page 145 of 160 Contoso Technical Services
Authorization
Allow Calls in Same Dial Plan True
Allow Calls To Any Extension True
Authorized In-Country / Region Dialing Rules [Not Set]
Authorized International Dialling Rules [Not Set]
Page 146 of 160 Contoso Technical Services
2 Dial Plans
Name Extension Length URI Type
Contoso dial plan 5 SIP URI
Telephone extension dial plan 4 Telephone extension
Page 147 of 160 Contoso Technical Services
General Settings
Extension Length (Digits) 5
Dial Plan Type SIP URI
VoIP Security Type Secured
GUID 09ca597c-253a-4d9e-8471-176715ce2cbe
Last Updated 16/07/2018 15:35:03
Dial Codes
Outside Line Access Code 9
International Access Code 00
National Number Prefix 0
Country/Region Code 44
Country/Region Number Format
International Number Format
Number Formats For Incoming Calls
Outlook Voice Access
Welcome Greeting Enabled False
International Announcement Enabled False
Outlook Voice Access Numbers
Settings
Primary Search For Names LastFirst
Secondary Search For Names SmtpAddress
Audio Codec Mp3
Operator Extension
Sign-in Failures Before Disconnect 3
Maximum Call Duration (Minutes) 30
Maximum Recording Duration (Minutes) 20
Recording Idle Time Out (Seconds) 5
Input Failures Before Disconnect 3
Default Language English (United States)
Page 148 of 160 Contoso Technical Services
In-Country / Region Dialing Rules
Name Number Pattern Dialed Number Comment
Contoso dialing 91425xxxxxxxx 9xxxxxxxx Demonstration dialing rule.
rule
International Dialing Rules
Name Number Pattern Dialed Number Comment
International 91425xxxxxxxx 9xxxxxxxx Demonstration international dialing rule.
dialing rule
Dialing Authorization
Allow Calls In The Same Dial Plan True
Allow Calls To Any Extension False
Authorized In-Country / Region Dialing Rules
Authorized International Dialling Rules
Transfer And Search
Allow Transfer To Users True
Leave Voice Messages Without Calling True
Allow Callers To Search In this dial plan only
Include Additional Information None
Page 149 of 160 Contoso Technical Services
General Settings
Extension Length (Digits) 4
Dial Plan Type Telephone extension
VoIP Security Type SIP Secured
GUID c16afeea-8380-40ef-b209-7237cca9e323
Last Updated 16/07/2018 15:35:29
Dial Codes
Outside Line Access Code 9
International Access Code 00
National Number Prefix 0
Country/Region Code 44
Country/Region Number Format
International Number Format
Number Formats For Incoming Calls
Outlook Voice Access
Welcome Greeting Enabled False
International Announcement Enabled False
Outlook Voice Access Numbers
Settings
Primary Search For Names LastFirst
Secondary Search For Names SmtpAddress
Audio Codec Mp3
Operator Extension
Sign-in Failures Before Disconnect 3
Maximum Call Duration (Minutes) 30
Maximum Recording Duration (Minutes) 20
Recording Idle Time Out (Seconds) 5
Input Failures Before Disconnect 3
Default Language English (United States)
In-Country / Region Dialing Rules
There are no dialing rules configured.
Page 150 of 160 Contoso Technical Services
International Dialing Rules
There are no dialing rules configured.
Dialing Authorization
Allow Calls In The Same Dial Plan True
Allow Calls To Any Extension False
Authorized In-Country / Region Dialing Rules
Authorized International Dialling Rules
Transfer And Search
Allow Transfer To Users True
Leave Voice Messages Without Calling True
Allow Callers To Search In this dial plan only
Include Additional Information None
Page 151 of 160 Contoso Technical Services
2 Hunt Groups
Name Dial Plan IP Gateway Pilot Identifier
Contoso hunt group Telephone extension dial plan Contoso IP Gateway Telephone extension dial plan
Default Hunt Group Contoso dial plan Contoso IP Gateway
Page 152 of 160 Contoso Technical Services
1 IP Gateways
Name Address Status
Contoso IP Gateway ipgateway Enabled
Page 153 of 160 Contoso Technical Services
General Settings
Name Contoso IP Gateway
GUID f3f8305e-4dee-4c70-bedd-362011ee0b85
Last Updated 16/07/2018 14:02:55
Settings
Address ipgateway
Gateway Status Enabled
Forwarding Address
Allow Outgoing Calls True
Allow Message Waiting Indicator True
Page 154 of 160 Contoso Technical Services
2 Mailbox Policies
Name Dial Plan Minimum PIN Length
Contoso dial plan Default Policy Contoso dial plan 6
Telephone extension dial plan Default Policy Telephone extension dial plan 6
Page 155 of 160 Contoso Technical Services
General Settings
Dial Plan Contoso dial plan
Limit On Personal Greetings (Minutes) 5
Allow Analysis Of Voice Messages False
GUID 3f6ea626-2b65-4333-b195-efeed5101300
Last Updated 16/07/2018 13:48:12
User Features
Allow Voice Mail Preview True
Allow Call Answering Rules True
Allow Message Waiting Indicator True
Allow Outlook Voice Access True
Allow Missed Call Notifications True
Allow Play On Phone True
Allow Inbound Faxes False
Message Text
User Enabled For Unified Messaging [Not Set]
Outlook Voice Access PIN Reset [Not Set]
User Receives Voice Message [Not Set]
User Receives Fax Message [Not Set]
PIN Policies
Minimum PIN Length 6
PIN Recycle Count 5
Allow Common PIN Patterns False
Pin Lifetime 60 days
Sign-in Failures Before PIN Reset 5
Sign-in Failures Before Account Lockout 15
Dialing Authorization
Allow Calls in Same Dial Plan True
Allow Calls To Any Extension True
Authorized In-Country / Region Dialing Rules
Authorized International Dialling Rules
Page 156 of 160 Contoso Technical Services
Protected Voice Mail
Protect Voice Messages From Unauthenticated None
Callers
Protect Voice Messages From Authenticated None
Callers
Require Protected Play On Phone False
Allow Voice Responses To Email And Calendar True
Items
Message For Users Without WRM Support
Page 157 of 160 Contoso Technical Services
General Settings
Dial Plan Telephone extension dial plan
Limit On Personal Greetings (Minutes) 5
Allow Analysis Of Voice Messages False
GUID 094a6376-9246-4b6d-ae3e-06556db53af0
Last Updated 16/07/2018 14:06:01
User Features
Allow Voice Mail Preview True
Allow Call Answering Rules True
Allow Message Waiting Indicator True
Allow Outlook Voice Access True
Allow Missed Call Notifications True
Allow Play On Phone True
Allow Inbound Faxes False
Message Text
User Enabled For Unified Messaging [Not Set]
Outlook Voice Access PIN Reset [Not Set]
User Receives Voice Message [Not Set]
User Receives Fax Message [Not Set]
PIN Policies
Minimum PIN Length 6
PIN Recycle Count 5
Allow Common PIN Patterns False
Pin Lifetime 60 days
Sign-in Failures Before PIN Reset 5
Sign-in Failures Before Account Lockout 15
Dialing Authorization
Allow Calls in Same Dial Plan True
Allow Calls To Any Extension True
Authorized In-Country / Region Dialing Rules
Authorized International Dialling Rules
Page 158 of 160 Contoso Technical Services
Protected Voice Mail
Protect Voice Messages From Unauthenticated None
Callers
Protect Voice Messages From Authenticated None
Callers
Require Protected Play On Phone False
Allow Voice Responses To Email And Calendar True
Items
Message For Users Without WRM Support
Page 159 of 160 Contoso Technical Services
Version Username Date Time Description
1.11 DEMO2012R2\sysadmin 17 July 2018 14:35 Updated by XIA Configuration Client Data
1.10 DEMO2012R2\sysadmin 16 July 2018 16:55 Updated by XIA Configuration Client Data
1.09 DEMO2012R2\sysadmin 16 July 2018 16:44 Updated by XIA Configuration Client Data
1.08 DEMO2012R2\sysadmin 16 July 2018 15:46 Updated by XIA Configuration Client Data
1.07 DEMO2012R2\sysadmin 16 July 2018 15:38 Updated by XIA Configuration Client Data
1.06 DEMO2012R2\sysadmin 16 July 2018 15:16
1.05 DEMO2012R2\sysadmin 16 July 2018 14:53 Updated by XIA Configuration Client Data
1.04 DEMO2012R2\sysadmin 16 July 2018 14:25 Updated by XIA Configuration Client Data
1.03 DEMO2012R2\sysadmin 16 July 2018 11:38 Updated by XIA Configuration Client Data
1.02 DEMO2012R2\sysadmin 16 July 2018 11:11 Updated by XIA Configuration Client Data
Page 160 of 160 Contoso Technical Services
You might also like
- Exchange Server 2010 (Beta) - Student Manual100% (1)Exchange Server 2010 (Beta) - Student Manual276 pages
- Lean Six Sigma Black Belt: Mindset, Skill set and Tool setFrom EverandLean Six Sigma Black Belt: Mindset, Skill set and Tool setNo ratings yet
- CP Harmony Email Collaboration Admin GuideNo ratings yetCP Harmony Email Collaboration Admin Guide348 pages
- @vtucode - in 21CS61 Module 4 2021 SchemeNo ratings yet@vtucode - in 21CS61 Module 4 2021 Scheme31 pages
- Microsoft Exchange Server Survival GuideNo ratings yetMicrosoft Exchange Server Survival Guide508 pages
- Interview Questions & Answers: 1.tell Me About YourselfNo ratings yetInterview Questions & Answers: 1.tell Me About Yourself31 pages
- What Discipleship Is Not 5 Common FlawsNo ratings yetWhat Discipleship Is Not 5 Common Flaws10 pages
- Whitepaper Guide To Email Archiving en 150dpiNo ratings yetWhitepaper Guide To Email Archiving en 150dpi24 pages
- 09-Exchange Online Protection, Archiving & ComplianceNo ratings yet09-Exchange Online Protection, Archiving & Compliance39 pages
- Email - Retention Best Practices (White PPR)No ratings yetEmail - Retention Best Practices (White PPR)20 pages
- August Barclays Bank Statement BankStatements NetNo ratings yetAugust Barclays Bank Statement BankStatements Net4 pages
- Feeling The Full Force of A Four Front Offensive Re-Interpreting The Red Army's 1944 Belorussian and L'vov-Peremshyl' Operations by Robert N. WattNo ratings yetFeeling The Full Force of A Four Front Offensive Re-Interpreting The Red Army's 1944 Belorussian and L'vov-Peremshyl' Operations by Robert N. Watt38 pages
- Professional Archive - Journaling From Office 365 - 20240321No ratings yetProfessional Archive - Journaling From Office 365 - 2024032111 pages
- Misleading Information From The BattlefieldNo ratings yetMisleading Information From The Battlefield118 pages
- Email Services Deployment Administrator GuideNo ratings yetEmail Services Deployment Administrator Guide25 pages
- Assessmentplanreport ExchangeonlineassessmentNo ratings yetAssessmentplanreport Exchangeonlineassessment5 pages
- E R A P: Mail Etention AND Rchiving OlicyNo ratings yetE R A P: Mail Etention AND Rchiving Olicy7 pages
- Zimbra Archiving and Discovery WhitepaperNo ratings yetZimbra Archiving and Discovery Whitepaper13 pages
- Configuring Auto-Archive For Outlook 2007: About Backing Up or Deleting Items Using Auto-ArchiveNo ratings yetConfiguring Auto-Archive For Outlook 2007: About Backing Up or Deleting Items Using Auto-Archive6 pages
- Email Archiving: There's More To Archiving Than Keeping Copies of Old EmailsNo ratings yetEmail Archiving: There's More To Archiving Than Keeping Copies of Old Emails7 pages
- Solving Your Top 5 Email Archiving ChallengesNo ratings yetSolving Your Top 5 Email Archiving Challenges6 pages
- The Art of My Neighbor Totoro - Viz Media, Subs. of Shogakukan Inc (2005) - TextNo ratings yetThe Art of My Neighbor Totoro - Viz Media, Subs. of Shogakukan Inc (2005) - Text45 pages
- Iaa Email Archiving and Retention PolicyNo ratings yetIaa Email Archiving and Retention Policy3 pages
- Email Acceptable Use Policy Word TemplateNo ratings yetEmail Acceptable Use Policy Word Template1 page
- Dark Side of The Family Essay Structure For A1 and A2No ratings yetDark Side of The Family Essay Structure For A1 and A29 pages
- Butch Femme in The Personal Advertisements of LesbiansNo ratings yetButch Femme in The Personal Advertisements of Lesbians9 pages
- 2023 LCK Summer Awards 투표 결과 (공유용) - Rookie of the YearNo ratings yet2023 LCK Summer Awards 투표 결과 (공유용) - Rookie of the Year1 page
