0% found this document useful (0 votes)
140 views160 pages

Exchange Organization Example Document

The document describes the configuration of an Exchange on-premises organization. It includes details on the organization name and ID, accepted domains, journal rules, retention policies, and email address policies. Multiple servers, policies, and settings are defined.

Uploaded by

Nur Rochman
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
140 views160 pages

Exchange Organization Example Document

The document describes the configuration of an Exchange on-premises organization. It includes details on the organization name and ID, accepted domains, journal rules, retention policies, and email address policies. Multiple servers, policies, and settings are defined.

Uploaded by

Nur Rochman
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 160

Date 18/07/2018 13:53:57

Author DEMO2012R2\sysadmin

Version 1.11

Product XIA Configuration Server [10.1.4.25844]


Page 6 of 160 Contoso Technical Services
Description Exchange On-Premises (15.1.0.0)

Item Name Demo Organization

Item ID 1010

Primary Owner Name Technical Services

Primary Owner Contact [email protected]

Scanned on Date 17 July 2018

Client Version 10.1.4.25828

Item ID Direction Name Type Relationship Type

1011 Outbound EX1-2K12R2-DEMO Windows Server Has Exchange Server

1012 Outbound EX2-2K12R2-DEMO Windows Server Has Exchange Server

1000 Outbound CENTREL Solutions Container Contained Within

Page 7 of 160 Contoso Technical Services


Page 8 of 160 Contoso Technical Services
General Settings

Name Demo Organization

Id 58d6ed65-cba3-4d1a-895c-17e3eec45574

Organization Type Exchange On-Premises

Version 15.1.0.0

Version Name Exchange 2016

Page 9 of 160 Contoso Technical Services


Page 10 of 160 Contoso Technical Services
General Settings

Undeliverable Report Address [email protected]

2 Journal Rules

Name Enabled Recipient Send To

Journal True [All Messages] [email protected]

Safety Journal True [email protected] [email protected]

Page 11 of 160 Contoso Technical Services


General Settings

Name Journal

GUID 91475ac5-5b76-413a-a93d-6ed25b4f33fe

Last Updated 16/07/2018 16:42:11

Settings

Enabled True

Journal Email Address [email protected]

Recipient [All Messages]

Scope External messages only

Page 12 of 160 Contoso Technical Services


General Settings

Name Safety Journal

GUID 2ffdc1ba-d4f5-4688-904a-5a565252b30f

Last Updated 16/07/2018 11:37:33

Settings

Enabled True

Journal Email Address [email protected]

Recipient [email protected]

Scope All messages

Page 13 of 160 Contoso Technical Services


2 Retention Policies

Name Tags

ArbitrationMailbox AsyncOperationNotification
AutoGroup
ModeratedRecipients
Never Delete

Default MRM Policy 1 Month Delete


1 Week Delete
1 Year Delete
5 Year Delete
6 Month Delete
Default 2 year move to archive
Never Delete
Personal 1 year move to archive
Personal 5 year move to archive
Personal never move to archive
Recoverable Items 14 days move to archive

Page 14 of 160 Contoso Technical Services


General Settings

Name ArbitrationMailbox

GUID 2bc8dcbb-76b7-4c71-9f80-77ab4795eae6

Last Updated 15/07/2018 16:56:02

4 Retention Policy Tags

Name Type Retention Period Retention Action

AsyncOperationNotification Personal When the item reaches 30 days old Delete and allow recovery

AutoGroup Personal When the item reaches 30 days old Delete and allow recovery

ModeratedRecipients Personal When the item reaches 2 days old Delete and allow recovery

Never Delete Personal Never Delete and allow recovery

Page 15 of 160 Contoso Technical Services


General Settings

Name Default MRM Policy

GUID 723e956e-4112-4ec1-99c6-dbaa13ca9fdc

Last Updated 15/07/2018 16:56:02

11 Retention Policy Tags

Name Type Retention Period Retention Action

1 Month Delete Personal When the item reaches 30 days old Delete and allow recovery

1 Week Delete Personal When the item reaches 7 days old Delete and allow recovery

1 Year Delete Personal When the item reaches 365 days old Delete and allow recovery

5 Year Delete Personal When the item reaches 1825 days old Delete and allow recovery

6 Month Delete Personal When the item reaches 180 days old Delete and allow recovery

Default 2 year move to archive Default When the item reaches 730 days old Move to archive

Never Delete Personal Never Delete and allow recovery

Personal 1 year move to archive Personal When the item reaches 365 days old Move to archive

Personal 5 year move to archive Personal When the item reaches 1825 days old Move to archive

Personal never move to archive Personal Never Move to archive

Recoverable Items 14 days move to archive Recoverable When the item reaches 14 days old Move to archive
Items

Page 16 of 160 Contoso Technical Services


14 Retention Policy Tags

Name Type Retention Period Retention Action

1 Month Delete Personal When the item reaches 30 days old Delete and allow recovery

1 Week Delete Personal When the item reaches 7 days old Delete and allow recovery

1 Year Delete Personal When the item reaches 365 days old Delete and allow recovery

5 Year Delete Personal When the item reaches 1825 days old Delete and allow recovery

6 Month Delete Personal When the item reaches 180 days old Delete and allow recovery

AsyncOperationNotification Personal When the item reaches 30 days old Delete and allow recovery

AutoGroup Personal When the item reaches 30 days old Delete and allow recovery

Default 2 year move to archive Default When the item reaches 730 days old Move to archive

ModeratedRecipients Personal When the item reaches 2 days old Delete and allow recovery

Never Delete Personal Never Delete and allow recovery

Personal 1 year move to archive Personal When the item reaches 365 days old Move to archive

Personal 5 year move to archive Personal When the item reaches 1825 days old Move to archive

Personal never move to archive Personal Never Move to archive

Recoverable Items 14 days move to archive Recoverable When the item reaches 14 days old Move to archive
Items

Page 17 of 160 Contoso Technical Services


Page 18 of 160 Contoso Technical Services
1 Accepted Domains

Name Domain Name Type

demo2012r2.net demo2012r2.net Authoritative

Page 19 of 160 Contoso Technical Services


General Settings

Name demo2012r2.net

GUID 360cf431-bf64-4b9b-9f5d-1718139d7f87

Last Updated 15/07/2018 16:55:31

Accepted Domain Settings

Domain Name demo2012r2.net

Domain Type Authoritative

Default True

Accept Subdomains False

Page 20 of 160 Contoso Technical Services


1 Email Address Policies

Name Priority Applied

Default Policy Lowest True

Page 21 of 160 Contoso Technical Services


General Settings

Name Default Policy

GUID 4cad1512-c64f-40af-ab02-eb2f752a0585

Last Updated 15/07/2018 16:55:32

Email Address Policy Settings

Priority Lowest

Email Address Templates @demo2012r2.net

Primary SMTP Address Template @demo2012r2.net

Applied True

Applied To

Recipient Types All recipient types

Recipient Filter Alias -ne $null

Page 22 of 160 Contoso Technical Services


10 Receive Connectors

Name Enabled Role

Client Frontend EX1-2K12R2-DEMO True Frontend Transport

Client Frontend EX2-2K12R2-DEMO True Frontend Transport

Client Proxy EX1-2K12R2-DEMO True Hub Transport

Client Proxy EX2-2K12R2-DEMO True Hub Transport

Default EX1-2K12R2-DEMO True Hub Transport

Default EX2-2K12R2-DEMO True Hub Transport

Default Frontend EX1-2K12R2-DEMO True Frontend Transport

Default Frontend EX2-2K12R2-DEMO True Frontend Transport

Outbound Proxy Frontend EX1-2K12R2-DEMO True Frontend Transport

Outbound Proxy Frontend EX2-2K12R2-DEMO True Frontend Transport

Page 23 of 160 Contoso Technical Services


General Settings

Name Client Frontend EX1-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID f2935c4f-dfb2-4d23-b095-0e9def3d342c

Last Updated 15/07/2018 17:40:51

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:587
0.0.0.0:587

FQDN EX1-2K12R2-DEMO.demo2012r2.net

Page 24 of 160 Contoso Technical Services


General Settings

Name Client Frontend EX2-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 890c49d5-7edc-4397-a058-e7b280b7e5c3

Last Updated 15/07/2018 18:44:22

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:587
0.0.0.0:587

FQDN EX2-2K12R2-DEMO.demo2012r2.net

Page 25 of 160 Contoso Technical Services


General Settings

Name Client Proxy EX1-2K12R2-DEMO

Transport Role Hub Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 3c2d90d4-a3a4-48c6-a7d4-2dfc48ebc367

Last Updated 15/07/2018 17:19:32

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Servers


Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:465
0.0.0.0:465

FQDN EX1-2K12R2-DEMO.demo2012r2.net

Page 26 of 160 Contoso Technical Services


General Settings

Name Client Proxy EX2-2K12R2-DEMO

Transport Role Hub Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 824ffea9-32f0-4944-a6a2-c008aac55d1c

Last Updated 15/07/2018 18:24:01

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Servers


Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:465
0.0.0.0:465

FQDN EX2-2K12R2-DEMO.demo2012r2.net

Page 27 of 160 Contoso Technical Services


General Settings

Name Default EX1-2K12R2-DEMO

Transport Role Hub Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 9b955c95-2962-4c6f-bbcb-b9959de7dccb

Last Updated 15/07/2018 17:40:50

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Legacy Servers


Exchange Servers
Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings 0.0.0.0:2525
[::]:2525

FQDN EX1-2K12R2-DEMO.demo2012r2.net

Page 28 of 160 Contoso Technical Services


General Settings

Name Default EX2-2K12R2-DEMO

Transport Role Hub Transport

Enabled True

Comment

Protocol Logging Level None

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 513b19cf-cfa7-44b4-b78d-c522acea75c9

Last Updated 15/07/2018 18:44:21

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Legacy Servers


Exchange Servers
Exchange Users

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings 0.0.0.0:2525
[::]:2525

FQDN EX2-2K12R2-DEMO.demo2012r2.net

Page 29 of 160 Contoso Technical Services


General Settings

Name Default Frontend EX1-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level Verbose

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 6341530b-fad8-4ca4-b81e-d5b2a39276eb

Last Updated 15/07/2018 17:40:50

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Anonymous Users


Exchange Legacy Servers
Exchange Servers

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:25
0.0.0.0:25

FQDN EX1-2K12R2-DEMO.demo2012r2.net

Page 30 of 160 Contoso Technical Services


General Settings

Name Default Frontend EX2-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level Verbose

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID 2e179711-56ae-4938-9ba0-33b3dac793bc

Last Updated 15/07/2018 18:44:21

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Anonymous Users


Exchange Legacy Servers
Exchange Servers

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:25
0.0.0.0:25

FQDN EX2-2K12R2-DEMO.demo2012r2.net

Page 31 of 160 Contoso Technical Services


General Settings

Name Outbound Proxy Frontend EX1-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level Verbose

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID a6c50956-3401-423c-b7f8-5422de1886a2

Last Updated 15/07/2018 17:40:51

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Servers

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:717
0.0.0.0:717

FQDN EX1-2K12R2-DEMO.demo2012r2.net

Page 32 of 160 Contoso Technical Services


General Settings

Name Outbound Proxy Frontend EX2-2K12R2-DEMO

Transport Role Frontend Transport

Enabled True

Comment

Protocol Logging Level Verbose

Maximum Receive Message Size 36 MB (37,748,736 bytes)

Maximum Local Hop Count 12

Maximum Hop Count 60

GUID e6d623ee-457b-46f7-9e46-2ac012a1bd48

Last Updated 15/07/2018 18:44:21

Security

Authentication Mechanisms Basic authentication


Basic authentication only after starting TLS
Domain security (mutual Auth TLS)
Exchange Server authentication
Integrated Windows authentication
Transport Layer Security (TLS)

Permission Groups Exchange Servers

Scoping

Remote IP Ranges ::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff


0.0.0.0-255.255.255.255

Bindings [::]:717
0.0.0.0:717

FQDN EX2-2K12R2-DEMO.demo2012r2.net

Page 33 of 160 Contoso Technical Services


1 Rules

Name Enabled Priority

Sensitive Information True 0

Page 34 of 160 Contoso Technical Services


General Settings

Name Sensitive Information

GUID 22ac0383-c03d-4688-858e-36668a3512d4

Last Updated 16/07/2018 11:56:15

Settings

Audit Mode High

Comments Sensitive Information rule for US bank account numbers.

Defer Message On Processing Error True

Enabled True

Mode Enforce

Priority 0

Rule Version 15.0.5.3

Match Sender Address Header

Stop Processing More Rules True

Details

Description If the message:


The message contains any of these sensitive information types: 'U.S. Bank Account Number'
Take the following actions:
Set audit severity level to 'High'
and Stop processing more rules
and Send the incident report to [email protected], include these message properties in the
report: sender, recipients, subject, cc'd recipients, bcc'd recipients, matching rules, detected data
classifications, matching content, original mail
Except if the message:
Is received from '[email protected]'
Expiry date: 31/12/2019 11:30:00

Page 35 of 160 Contoso Technical Services


2 Send Connectors

Name Enabled

Journal True

Outbound True

Page 36 of 160 Contoso Technical Services


General Settings

Name Journal

Enabled True

Use Client Access Server False

Comment

Protocol Logging Level None

Maximum Send Message Size 35 MB (36,700,160 bytes)

GUID 8922be8e-827f-473b-a2e3-6de9cfc548b4

Last Updated 16/07/2018 11:51:34

Delivery

Mail Send Method MX record associated with recipient domain

Use External DNS Lookup Settings False

Scoping

Address Spaces 1 Address Spaces

Scoped Send Connector True

Source Transport Servers EX2-2K12R2-DEMO


EX1-2K12R2-DEMO

FQDN

1 Address Spaces

Type Domain Cost

SMTP *.journaldemo.net 1

Page 37 of 160 Contoso Technical Services


General Settings

Name Outbound

Enabled True

Use Client Access Server False

Comment

Protocol Logging Level None

Maximum Send Message Size 35 MB (36,700,160 bytes)

GUID d557d88d-cd13-4096-82c5-e4b9c633fa70

Last Updated 16/07/2018 15:44:34

Delivery

Mail Send Method Route mail through smart hosts


myhost.contoso.com

Smart Host Authentication Basic authentication only after starting TLS

Smart Host Username sysadmin

Use External DNS Lookup Settings False

Scoping

Address Spaces 1 Address Spaces

Scoped Send Connector True

Source Transport Servers EX2-2K12R2-DEMO


EX1-2K12R2-DEMO

FQDN smtp.demo2012r2.net

1 Address Spaces

Type Domain Cost

SMTP * 1

Page 38 of 160 Contoso Technical Services


Page 39 of 160 Contoso Technical Services
2 Mobile Device Mailbox Policies

Name Default Last Modified

Contoso False 16/07/2018 16:39:54

Default True 15/07/2018 17:28:29

Page 40 of 160 Contoso Technical Services


General Settings

Name Contoso

Default False

Allow Non-Provisionable Devices True

GUID 0ded286d-20a0-4ff6-a170-a0b9825a0036

Last Updated 16/07/2018 16:39:54

Security

Require Password True

Allow Simple Passwords False

Require Alphanumeric Passwords True

Required Character Sets 3

Require Device Encryption True

Minimum Password Length 4

Maximum Failed Password Attempts 8

Require Sign-in after the device has been inactive 15


for (minutes)

Enforce Password Lifetime (days) 90

Password Recycle Count 5

Device

Allow Removable Storage True

Allow Camera True

Allow Wi-Fi True

Allow Infrared True

Allow Internet Sharing True

Allow Remote Desktop True

Allow Bluetooth Allow

Page 41 of 160 Contoso Technical Services


Sync Settings

Include Past Calendar Items All

Include Past Email Items All

Limit Email Size Unlimited

Allow Direct Push When Roaming True

Allow HTML Email True

Allow Attachments True

Maximum Attachment Size Unlimited

Page 42 of 160 Contoso Technical Services


General Settings

Name Default

Default True

Allow Non-Provisionable Devices True

GUID bf929267-2848-4e3d-b851-15e1545ad28b

Last Updated 15/07/2018 17:28:29

Security

Require Password False

Device

Allow Removable Storage True

Allow Camera True

Allow Wi-Fi True

Allow Infrared True

Allow Internet Sharing True

Allow Remote Desktop True

Allow Bluetooth Allow

Sync Settings

Include Past Calendar Items All

Include Past Email Items All

Limit Email Size Unlimited

Allow Direct Push When Roaming True

Allow HTML Email True

Allow Attachments True

Maximum Attachment Size Unlimited

Page 43 of 160 Contoso Technical Services


Page 44 of 160 Contoso Technical Services
5 Add-Ins

Name Provider Enabled Default State

Action Items Microsoft True Enabled

Bing Maps Microsoft True Enabled

My Templates Microsoft True Enabled

Suggested Meetings Microsoft True Enabled

Unsubscribe Microsoft True Enabled

Page 45 of 160 Contoso Technical Services


General Settings

Name Action Items

Description Shows Action Item suggestions from your email. This add-in will not share your data with any
third-party service.

Add-In Settings

Enabled True

Default State Enabled

Permissions Read\write mailbox

Provider Name Microsoft

Version 1.0

Page 46 of 160 Contoso Technical Services


General Settings

Name Bing Maps

Description Map addresses found in your email. This add-in will send addresses to Bing but will not share your data
with any third-party service.

Add-In Settings

Enabled True

Default State Enabled

Permissions Restricted

Provider Name Microsoft

Version 1.1

Page 47 of 160 Contoso Technical Services


General Settings

Name My Templates

Description Use this add-in to save text and images you can insert into a message with one click. This add-in will
not share your data with any third-party service.

Add-In Settings

Enabled True

Default State Enabled

Permissions Read\write item

Provider Name Microsoft

Version 1.0

Page 48 of 160 Contoso Technical Services


General Settings

Name Suggested Meetings

Description Shows meeting suggestions found in your email and allows you to add them to your calendar. This
add-in will not share your data with any third-party service.

Add-In Settings

Enabled True

Default State Enabled

Permissions Read\write mailbox

Provider Name Microsoft

Version 1.1

Page 49 of 160 Contoso Technical Services


General Settings

Name Unsubscribe

Description This add-in is triggered by messages from subscription email feeds, and allows you to block the sender
or unsubscribe from the source. This add-in will not share your data with any third-party service.

Add-In Settings

Enabled True

Default State Enabled

Permissions Read\write mailbox

Provider Name Microsoft

Version 1.0

Page 50 of 160 Contoso Technical Services


6 Address Lists

Display Name Container Type

All Contacts \ Address List

All Distribution Lists \ Address List

All Rooms \ Address List

All Users \ Address List

Default Global Address List \ Global Address List

Public Folders \ Address List

Page 51 of 160 Contoso Technical Services


General Settings

Name All Contacts

GUID 1b7a6119-cabb-4c0a-888b-99cfe572d65f

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Address List

Container Name \

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (((ObjectCategory -like 'person') -and (ObjectClass -eq 'contact'))))

Page 52 of 160 Contoso Technical Services


General Settings

Name All Distribution Lists

GUID 17619bde-361b-40d4-9e3d-8422fd56d119

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Address List

Container Name \

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (ObjectCategory -like 'group'))

Page 53 of 160 Contoso Technical Services


General Settings

Name All Rooms

GUID 7782ee42-1651-4021-9e23-1d339cb605d8

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Address List

Container Name \

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (((RecipientDisplayType -eq 'ConferenceRoomMailbox') -or
(RecipientDisplayType -eq 'SyncedConferenceRoomMailbox'))))

Page 54 of 160 Contoso Technical Services


General Settings

Name All Users

GUID b2cb4b85-1dd6-42fb-becd-256d9042e004

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Address List

Container Name \

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (((((((ObjectCategory -like 'person') -and (ObjectClass -eq 'user') -and
(-not(Database -ne $null)) -and (-not(ServerLegacyDN -ne $null)))) -or (((ObjectCategory -like 'person')
-and (ObjectClass -eq 'user') -and (((Database -ne $null) -or (ServerLegacyDN -ne $null))))))) -and
(-not(RecipientTypeDetailsValue -eq 'GroupMailbox')))))

Page 55 of 160 Contoso Technical Services


General Settings

Name Default Global Address List

GUID 3d89a4be-35d4-4c02-bf81-1391feba71db

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Global Address List

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (((ObjectClass -eq 'user') -or (ObjectClass -eq 'contact') -or (ObjectClass -eq
'msExchSystemMailbox') -or (ObjectClass -eq 'msExchDynamicDistributionList') -or (ObjectClass -eq
'group') -or (ObjectClass -eq 'publicFolder'))))

Page 56 of 160 Contoso Technical Services


General Settings

Name Public Folders

GUID e68932fb-a1f2-428f-a7d4-c95d77dfe3fa

Last Updated 15/07/2018 16:55:30

Address List Settings

Address List Type Address List

Container Name \

Recipient Filter Type Custom

Recipient Filter ((Alias -ne $null) -and (ObjectCategory -like 'publicFolder'))

Page 57 of 160 Contoso Technical Services


Page 58 of 160 Contoso Technical Services
14 Admin Roles

Name Description

Compliance Management This role group will allow a specified user, responsible for compliance, to properly configure and
manage compliance settings within Exchange in accordance with their policy.

Delegated Setup Members of this management role group have permissions to install and uninstall Exchange on
provisioned servers. This role group shouldn't be deleted.

Discovery Management Members of this management role group can perform searches of mailboxes in the Exchange
organization for data that meets specific criteria.

Help Desk Members of this management role group can view and manage the configuration for individual
recipients and view recipients in an Exchange organization. Members of this role group can only
manage the configuration each user can manage on his or her own mailbox. Additional
permissions can be added by assigning additional management roles to this role group.

Hygiene Management Members of this management role group can manage Exchange anti-spam features and grant
permissions for antivirus products to integrate with Exchange.

Organization Management Members of this management role group have permissions to manage Exchange objects and
their properties in the Exchange organization. Members can also delegate role groups and
management roles in the organization. This role group shouldn't be deleted.

Public Folder Management Members of this management role group can manage public folders. Members can create and
delete public folders and manage public folder settings such as replicas, quotas, age limits, and
permissions as well as mail-enable and mail-disable public folders.

Recipient Management Members of this management role group have rights to create, manage, and remove Exchange
recipient objects in the Exchange organization.

Records Management Members of this management role group can configure compliance features such as retention
policy tags, message classifications, transport rules, and more.

Security Administrator Membership in this role group is synchronized across services and managed centrally. This role
group is not manageable through the administrator portals. Members of this role group may
include cross-service administrators, as well as external partner groups and Microsoft Support. By
default, this group may not be assigned any roles. However, it will be a member of the Security
Administrators role groups and will inherit the capabilities of that role group.

Security Reader Membership in this role group is synchronized across services and managed centrally. This role
group is not manageable through the administrator portals. Members of this role group may
include cross-service administrators, as well as external partner groups and Microsoft Support. By
default, this group may not be assigned any roles. However, it will be a member of the Security
Reader role groups and will inherit the capabilities of that role group.

Server Management Members of this management role group have permissions to manage all Exchange servers
within the Exchange organization, but members don't have permissions to perform operations that
have global impact in the Exchange organization.

UM Management Members of this management role group can manage Unified Messaging organization, server,
and recipient configuration.

View-Only Organization Management Members of this management role group can view recipient and configuration objects and their
properties in the Exchange organization.

Page 59 of 160 Contoso Technical Services


General Settings

Name Compliance Management

Description This role group will allow a specified user, responsible for compliance, to properly configure and
manage compliance settings within Exchange in accordance with their policy.

GUID 9f317cd5-b5ad-4165-bfe0-21d0e4696635

Last Updated 16/07/2018 16:24:33

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/sysadmin

Role Names Audit Logs


Compliance Admin
Data Loss Prevention
Information Rights Management
Journaling
Message Tracking
Retention Management
Transport Rules
View-Only Audit Logs
View-Only Configuration
View-Only Recipients

Write Scope Default

Page 60 of 160 Contoso Technical Services


General Settings

Name Delegated Setup

Description Members of this management role group have permissions to install and uninstall Exchange on
provisioned servers. This role group shouldn't be deleted.

GUID 3ef95e01-0b22-4e86-9fc8-725edbc095c1

Last Updated 16/07/2018 16:25:32

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/Administrator

Role Names View-Only Configuration

Write Scope Default

Page 61 of 160 Contoso Technical Services


General Settings

Name Discovery Management

Description Members of this management role group can perform searches of mailboxes in the Exchange
organization for data that meets specific criteria.

GUID aa531e50-99d5-490a-b671-172657a4ad58

Last Updated 16/07/2018 16:26:15

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Users/Enterprise Admins

Role Names Legal Hold


Mailbox Search

Write Scope Default

Page 62 of 160 Contoso Technical Services


General Settings

Name Help Desk

Description Members of this management role group can view and manage the configuration for individual
recipients and view recipients in an Exchange organization. Members of this role group can only
manage the configuration each user can manage on his or her own mailbox. Additional permissions
can be added by assigning additional management roles to this role group.

GUID 6fd16174-85cd-4d57-9d01-49418d1b6961

Last Updated 16/07/2018 16:22:36

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Users/1stLineSupport

Role Names User Options


View-Only Recipients

Write Scope Default

Page 63 of 160 Contoso Technical Services


General Settings

Name Hygiene Management

Description Members of this management role group can manage Exchange anti-spam features and grant
permissions for antivirus products to integrate with Exchange.

GUID 47a03c48-4bbf-4c20-a8cf-9dca11e7816f

Last Updated 16/07/2018 16:26:40

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/Administrator


demo2012r2.net/Staff/Administrators/sysadmin
demo2012r2.net/Users/Enterprise Admins

Role Names ApplicationImpersonation


Receive Connectors
Transport Agents
Transport Hygiene
View-Only Configuration
View-Only Recipients

Write Scope Default

Page 64 of 160 Contoso Technical Services


General Settings

Name Organization Management

Description Members of this management role group have permissions to manage Exchange objects and their
properties in the Exchange organization. Members can also delegate role groups and management
roles in the organization. This role group shouldn't be deleted.

GUID cfed3649-f8be-4474-a7d9-073a27515105

Last Updated 15/07/2018 16:55:36

Page 65 of 160 Contoso Technical Services


Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/sysadmin

Role Names Active Directory Permissions


Address Lists
ApplicationImpersonation
ArchiveApplication
Audit Logs
Cmdlet Extension Agents
Compliance Admin
Data Loss Prevention
Database Availability Groups
Database Copies
Databases
Disaster Recovery
Distribution Groups
Edge Subscriptions
E-Mail Address Policies
Exchange Connectors
Exchange Server Certificates
Exchange Servers
Exchange Virtual Directories
ExchangeCrossServiceIntegration
Federated Sharing
Information Rights Management
Journaling
Legal Hold
LegalHoldApplication
Mail Enabled Public Folders
Mail Recipient Creation
Mail Recipients
Mail Tips
Mailbox Import Export
Mailbox Search
MailboxSearchApplication
MeetingGraphApplication
Message Tracking
Migration
Monitoring
Move Mailboxes
My Custom Apps
My Marketplace Apps
My ReadWriteMailbox Apps
MyBaseOptions
MyContactInformation
MyDiagnostics
MyDistributionGroupMembership
MyDistributionGroups
MyMailboxDelegation
MyProfileInformation
MyRetentionPolicies
MyTeamMailboxes
MyTextMessaging
MyVoiceMail
OfficeExtensionApplication
Org Custom Apps
Org Marketplace Apps
Organization Client Access
Organization Configuration
Organization Transport Settings
POP3 And IMAP4 Protocols
Public Folders
Receive Connectors
Recipient Policies
Remote and Accepted Domains
Reset Password
Retention Management
Role Management
Security Admin
Security Group Creation and Membership
Security Reader
Send Connectors
SendMailApplication
Support Diagnostics
Team Mailboxes
TeamMailboxLifecycleApplication
Transport Agents
Transport Hygiene

Page 66 of 160 Contoso Technical Services


Transport Queues
Transport Rules
UM Mailboxes
UM Prompts
Unified Messaging
UnScoped Role Management
User Options
UserApplication
View-Only Audit Logs
View-Only Configuration
View-Only Recipients
WorkloadManagement

Write Scope Default

Page 67 of 160 Contoso Technical Services


General Settings

Name Public Folder Management

Description Members of this management role group can manage public folders. Members can create and delete
public folders and manage public folder settings such as replicas, quotas, age limits, and permissions
as well as mail-enable and mail-disable public folders.

GUID 0c28dc54-e110-4272-8ad5-cfbe2c578c10

Last Updated 16/07/2018 16:27:09

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Users/Enterprise Admins

Role Names Mail Enabled Public Folders


Public Folders

Write Scope Default

Page 68 of 160 Contoso Technical Services


General Settings

Name Recipient Management

Description Members of this management role group have rights to create, manage, and remove Exchange
recipient objects in the Exchange organization.

GUID f06e922c-569f-402f-8783-fb020ed0c0fe

Last Updated 16/07/2018 16:27:42

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Users/Enterprise Admins

Role Names Distribution Groups


Mail Recipient Creation
Mail Recipients
Message Tracking
Migration
Move Mailboxes
Recipient Policies
Team Mailboxes

Write Scope Default

Page 69 of 160 Contoso Technical Services


General Settings

Name Records Management

Description Members of this management role group can configure compliance features such as retention policy
tags, message classifications, transport rules, and more.

GUID 50f6feb3-72c1-4184-818a-7bb22027b423

Last Updated 16/07/2018 16:27:57

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Users/Enterprise Admins

Role Names Audit Logs


Journaling
Message Tracking
Retention Management
Transport Rules

Write Scope Default

Page 70 of 160 Contoso Technical Services


General Settings

Name Security Administrator

Description Membership in this role group is synchronized across services and managed centrally. This role group
is not manageable through the administrator portals. Members of this role group may include
cross-service administrators, as well as external partner groups and Microsoft Support. By default, this
group may not be assigned any roles. However, it will be a member of the Security Administrators role
groups and will inherit the capabilities of that role group.

GUID 9cf06860-a357-43b2-94f8-e4cc5e50956b

Last Updated 16/07/2018 16:23:02

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/sysadmin

Role Names Security Admin

Write Scope Default

Page 71 of 160 Contoso Technical Services


General Settings

Name Security Reader

Description Membership in this role group is synchronized across services and managed centrally. This role group
is not manageable through the administrator portals. Members of this role group may include
cross-service administrators, as well as external partner groups and Microsoft Support. By default, this
group may not be assigned any roles. However, it will be a member of the Security Reader role groups
and will inherit the capabilities of that role group.

GUID 2b8789c4-b058-4e71-9ed8-a693b0ec3c5e

Last Updated 15/07/2018 16:55:36

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names

Role Names Security Reader

Write Scope Default

Page 72 of 160 Contoso Technical Services


General Settings

Name Server Management

Description Members of this management role group have permissions to manage all Exchange servers within the
Exchange organization, but members don't have permissions to perform operations that have global
impact in the Exchange organization.

GUID d4bc8dfc-12bd-4cfa-836f-9d974b6522c3

Last Updated 16/07/2018 16:23:17

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/sysadmin

Role Names Database Copies


Databases
Exchange Connectors
Exchange Server Certificates
Exchange Servers
Exchange Virtual Directories
Monitoring
POP3 And IMAP4 Protocols
Receive Connectors
Transport Queues

Write Scope Default

Page 73 of 160 Contoso Technical Services


General Settings

Name UM Management

Description Members of this management role group can manage Unified Messaging organization, server, and
recipient configuration.

GUID 2ec93f0c-3983-4f15-b3b3-58d850394414

Last Updated 16/07/2018 16:28:20

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names demo2012r2.net/Staff/Administrators/sysadmin

Role Names UM Mailboxes


UM Prompts
Unified Messaging

Write Scope Default

Page 74 of 160 Contoso Technical Services


General Settings

Name View-Only Organization Management

Description Members of this management role group can view recipient and configuration objects and their
properties in the Exchange organization.

GUID b4f77631-89cb-43b5-b597-40c18b204317

Last Updated 15/07/2018 16:55:36

Role Group Settings

Managers demo2012r2.net/Microsoft Exchange Security Groups/Organization Management

Member Names

Role Names Monitoring


View-Only Configuration
View-Only Recipients

Write Scope Default

Page 75 of 160 Contoso Technical Services


1 Outlook Web App Policies

Name Last Modified

Default 15/07/2018 16:56:01

Page 76 of 160 Contoso Technical Services


General Settings

Name Default

GUID 4e3f8c00-ee8d-4706-bfa6-15c4128348fc

Offline Access Always

Last Updated 15/07/2018 16:56:01

Communication Management

All Address Lists True

Contacts True

Exchange ActiveSync True

Instant Messaging True

LinkedIn Contact Sync True

Mobile Device Contact Sync True

Text Messaging True

Unified Messaging True

Information Management

Inbox Rules True

Journaling True

Notes True

Recover Deleted Items True

Security

Change Password True

Junk Email Filtering True

User Experience

Email Signature True

Interesting Calendars True

Local Events False

Places False

Premium Client True

Themes True

Weather False

Page 77 of 160 Contoso Technical Services


Time Management

Calendar True

Reminders and Notifications True

Tasks True

File Access

Direct File Access (Private) True

Direct File Access (Public) True

Page 78 of 160 Contoso Technical Services


1 User Roles

Name Description

Default Role Assignment Policy This policy grants end users the permission to set their options in Outlook on the web and perform other
self-administration tasks.

Page 79 of 160 Contoso Technical Services


General Settings

Name Default Role Assignment Policy

Description This policy grants end users the permission to set their options in Outlook on the web and perform
other self-administration tasks.

GUID 63710c3e-feac-4ed2-a58a-8278d7fe65c2

Last Updated 15/07/2018 16:55:54

Assigned Roles My Custom Apps


My Marketplace Apps
My ReadWriteMailbox Apps
MyBaseOptions
MyContactInformation
MyDistributionGroupMembership
MyTeamMailboxes
MyTextMessaging
MyVoiceMail

Page 80 of 160 Contoso Technical Services


Page 81 of 160 Contoso Technical Services
1 Malware Filters

Name Enabled Priority

Default True Lowest

Page 82 of 160 Contoso Technical Services


General Settings

Name Default

Description

Priority Lowest

Enabled True

Default True

Last Updated 15/07/2018 16:55:31

Settings

Response Delete the entire message

Common Attachment Filter False

Notify Internal Senders False

Notify External Senders False

Notify Administrators (Internal Senders) False

Notify Administrators (External False


Senders)

Custom Notification Settings

Use Customized Notification Text False

Page 83 of 160 Contoso Technical Services


Page 84 of 160 Contoso Technical Services
3 Public Folders

Path Mail Enabled Mailbox Name

\ False Contoso Public Folder Mailbox

\Contoso True Contoso Public Folder Mailbox

\Contoso\Foods True Contoso Public Folder Mailbox

Page 85 of 160 Contoso Technical Services


General Settings

Mail Enabled False

Mailbox Name Contoso Public Folder Mailbox

Has Subfolders True

Maintain Per-user Information True

Statistics

Associated Item Count 0

Contact Count 0

Deleted Item Count 0

Owner Count 0

Total Items 0

Total Item Size 0 B (0 bytes)

Total Associated Item Size 0 B (0 bytes)

Total Deleted Item Size 0 B (0 bytes)

Last Updated 16/07/2018 10:59:22

Limits

Use Organization Quota Defaults True

Use Organization Retention Defaults True

Use Organization Age Limit Defaults True

2 Client Permissions

Name Access Rights

Anonymous None

Default Author

Page 86 of 160 Contoso Technical Services


General Settings

Mail Enabled True

Mailbox Name Contoso Public Folder Mailbox

Has Subfolders True

Maintain Per-user Information True

Statistics

Associated Item Count 0

Contact Count 1

Deleted Item Count 1

Owner Count 1

Total Items 3

Total Item Size 4.874 MB (5,110,675 bytes)

Total Associated Item Size 0 B (0 bytes)

Total Deleted Item Size 59.36 KB (60,785 bytes)

Last Updated 16/07/2018 15:29:58

Limits

Use Organization Quota Defaults False

Issue Warning 1.465 GB (1,572,864,000 bytes)

Prohibit Post 1.953 GB (2,097,152,000 bytes)

Maximum Item Size 10 MB (10,485,760 bytes)

Use Organization Retention Defaults True

Use Organization Age Limit Defaults True

3 Client Permissions

Name Access Rights

Anonymous None

Default Author

sysadmin Owner

Page 87 of 160 Contoso Technical Services


Mail

Alias Contoso

Display Name Contoso

Hide From Exchange Address List False

Email Addresses SMTP:[email protected]

Groups demo2012r2.net/Staff/Administrators/System Administrators

Forwarding Address demo2012r2.net/Staff/Administrators/Administrator

Deliver To Mailbox And Forward False

Delegation

Send As Accounts DEMO2012R2\sysadmin

Send On Behalf sysadmin

Page 88 of 160 Contoso Technical Services


General Settings

Mail Enabled True

Mailbox Name Contoso Public Folder Mailbox

Has Subfolders False

Maintain Per-user Information True

Statistics

Associated Item Count 0

Contact Count 1

Deleted Item Count 0

Owner Count 1

Total Items 0

Total Item Size 0 B (0 bytes)

Total Associated Item Size 0 B (0 bytes)

Total Deleted Item Size 0 B (0 bytes)

Last Updated 16/07/2018 11:00:49

Limits

Use Organization Quota Defaults True

Use Organization Retention Defaults True

Use Organization Age Limit Defaults True

3 Client Permissions

Name Access Rights

Anonymous None

Default Author

sysadmin Owner

Page 89 of 160 Contoso Technical Services


Mail

Alias Foods

Display Name Foods

Hide From Exchange Address List False

Email Addresses SMTP:[email protected]

Groups

Forwarding Address demo2012r2.net/Staff/Administrators/Administrator

Deliver To Mailbox And Forward False

Delegation

Send As Accounts DEMO2012R2\sysadmin

Send On Behalf sysadmin

Page 90 of 160 Contoso Technical Services


1 Public Folder Mailboxes

Name Database Contains

Contoso Public Folder Mailbox Mailbox Database 1494350726 Primary Hierarchy

Page 91 of 160 Contoso Technical Services


General Settings

Database Mailbox Database 1494350726

Contains Primary Hierarchy

Organizational Unit demo2012r2.net/Users

GUID e2aa4641-8926-4dc9-897d-2a2d1e8b9658

Last Updated 16/07/2018 11:58:50

Quota Settings

Use Default Mailbox Database Quota True


Settings

Page 92 of 160 Contoso Technical Services


Page 93 of 160 Contoso Technical Services
7 Mailboxes

Display Name Type Primary SMTP Address Last Logon Time

1stLineSupport User [email protected] 16/07/2018 16:35:34

2ndLineSupport User [email protected] 16/07/2018 16:36:19

Administrator User [email protected] 16/07/2018 16:52:24

Discovery Search Mailbox Discovery Mailbox DiscoverySearchMailbox{D919BA05-46A6-415f-80AD-7E09334BB852}@demo2012r2.net {Not Documented}

safety User [email protected] 16/07/2018 16:52:54

sysadmin User [email protected] 17/07/2018 14:32:47

undeliverable User [email protected] 16/07/2018 16:33:59

Page 94 of 160 Contoso Technical Services


2 Distribution Groups

Display Name Alias Primary SMTP Address

Service Desk servicedesk [email protected]

System Administrators sys_admins [email protected]

Page 95 of 160 Contoso Technical Services


General Settings

Display Name Service Desk

Alias servicedesk

Email Addresses SMTP:[email protected]

Automatically Update Email Addresses True

MailTip

Notes Use this group to send emails to the service desk.

Hide From Address Lists False

Organizational Unit demo2012r2.net/Users

Last Updated 16/07/2018 15:29:32

Ownership

Owners demo2012r2.net/Staff/Administrators/sysadmin

Membership

Members demo2012r2.net/Staff/Administrators/sysadmin
demo2012r2.net/Users/1stLineSupport
demo2012r2.net/Users/2ndLineSupport

Joining Owner approval: All requests are approved or rejected by group owners

Leaving Closed: Members can only be removed by the group owners. All requests to leave the group will be
rejected automatically.

Delivery Management

Accepted Sender Type Only senders inside my organization

Accepted Senders All senders can send messages to this group

Moderation

Messages Must Be Approved False

Delegation

Send As DEMO2012R2\sysadmin

Send On Behalf sysadmin

Page 96 of 160 Contoso Technical Services


General Settings

Display Name System Administrators

Alias sys_admins

Email Addresses SMTP:[email protected]

Automatically Update Email Addresses True

MailTip

Notes Use this group to send emails to all system administrators.

Hide From Address Lists False

Organizational Unit demo2012r2.net/Staff/Administrators

Last Updated 16/07/2018 16:41:30

Ownership

Owners demo2012r2.net/Staff/Administrators/sysadmin

Membership

Members demo2012r2.net/Microsoft Exchange System Objects/Contoso


demo2012r2.net/Staff/Administrators/Administrator
demo2012r2.net/Staff/Administrators/sysadmin

Joining Owner approval: All requests are approved or rejected by group owners

Leaving Closed: Members can only be removed by the group owners. All requests to leave the group will be
rejected automatically.

Delivery Management

Accepted Sender Type Only senders inside my organization

Accepted Senders All senders can send messages to this group

Moderation

Messages Must Be Approved False

Delegation

Send As DEMO2012R2\sysadmin

Send On Behalf sysadmin

Page 97 of 160 Contoso Technical Services


1 Dynamic Distribution Groups

Display Name Alias

Staff Staff

Page 98 of 160 Contoso Technical Services


General Settings

Display Name Staff

Alias Staff

Email Addresses SMTP:[email protected]

MailTip <html>
<body>
This will send an email to all members of staff.
</body>
</html>

Notes A dynamic distribution group for all members of staff.

Hide From Address Lists False

Last Updated 16/07/2018 16:41:30

Ownership

Owner demo2012r2.net/Staff/Administrators/sysadmin

Membership

Recipient Filter ((Alias -ne $null) -and (-not(Name -like 'SystemMailbox{*')) -and (-not(Name -like 'CAS_{*')) -and
(-not(RecipientTypeDetailsValue -eq 'MailboxPlan')) -and (-not(RecipientTypeDetailsValue -eq
'DiscoveryMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'PublicFolderMailbox')) -and
(-not(RecipientTypeDetailsValue -eq 'ArbitrationMailbox')) -and (-not(RecipientTypeDetailsValue -eq
'AuditLogMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'AuxAuditLogMailbox')) -and
(-not(RecipientTypeDetailsValue -eq 'SupervisoryReviewPolicyMailbox')))

Recipient Container demo2012r2.net/Staff

Delivery Management

Accepted Sender Type Only senders inside my organization

Accepted Senders All senders can send messages to this group

Moderation

Messages Must Be Approved False

Delegation

Send As DEMO2012R2\sysadmin

Send On Behalf sysadmin

Page 99 of 160 Contoso Technical Services


Page 100 of 160 Contoso Technical Services
1 Mailbox Databases

Name Member Servers Witness Server

DAG01 EX1-2K12R2-DEMO dc-2k12r2-demo.demo2012r2.net

Page 101 of 160 Contoso Technical Services


General Settings

Member Servers EX1-2K12R2-DEMO

Configure Networks Manually False

GUID 83efe9cd-5819-420c-b0c5-e7d127021859

Last Updated 16/07/2018 14:47:18

Witness

Witness Server dc-2k12r2-demo.demo2012r2.net

Witness Directory c:\DAGFileShareWitness

MapiDagNetwork

Enable Replication True

Interfaces {EX1-2K12R2-DEMO,Up,192.168.131.53}

Subnets {192.168.131.0/24,Up}

Page 102 of 160 Contoso Technical Services


2 Mailbox Databases

Name Master Master Type

Mailbox Database 1494350726 EX2-2K12R2-DEMO Server

Mailbox Database 1819933369 DAG01 Database Availability Group

Page 103 of 160 Contoso Technical Services


General Settings

Name Mailbox Database 1494350726

Last Full Backup [Not Configured]

Last Incremental Backup [Not Configured]

Master EX2-2K12R2-DEMO

Master Type Server

Mailbox Server EX2-2K12R2-DEMO

Copy Status Mounted

GUID 107dfabf-65c0-479c-8e06-1595ccbd23d6

Last Updated 15/07/2018 18:43:26

Maintenance

Journal Recipient

Enable Background Database Maintenance True

Mount At Startup True

Allow Database to be Overwritten by a Restore False

Enable Circular Logging False

Limits

Issue a Warning 1.899 GB (2,039,480,320 bytes)

Prohibit Send 2 GB (2,147,483,648 bytes)

Prohibit Send and Receive 2.3 GB (2,469,396,480 bytes)

Keep Deleted Items (Days) 14

Keep Deleted Mailboxes (Days) 30

Retain Deleted Items Until Database Backup False

Client Settings

Offline Address Book

1 Database Copies

Name Active Status Preference

Mailbox Database 1494350726\EX2-2K12R2-DEMO True Mounted 1

Page 104 of 160 Contoso Technical Services


General Settings

Name Mailbox Database 1819933369

Last Full Backup [Not Configured]

Last Incremental Backup [Not Configured]

Master DAG01

Master Type Database Availability Group

Mailbox Server EX1-2K12R2-DEMO

Copy Status Mounted

GUID 43c886e8-c794-4125-8727-815b55db074a

Last Updated 16/07/2018 14:48:32

Maintenance

Journal Recipient

Enable Background Database Maintenance True

Mount At Startup True

Allow Database to be Overwritten by a Restore False

Enable Circular Logging False

Limits

Issue a Warning 1.899 GB (2,039,480,320 bytes)

Prohibit Send 2 GB (2,147,483,648 bytes)

Prohibit Send and Receive 2.3 GB (2,469,396,480 bytes)

Keep Deleted Items (Days) 14

Keep Deleted Mailboxes (Days) 30

Retain Deleted Items Until Database Backup False

Client Settings

Offline Address Book

1 Database Copies

Name Active Status Preference

Mailbox Database 1819933369\EX1-2K12R2-DEMO True Mounted 1

Page 105 of 160 Contoso Technical Services


2 Servers

Name Roles Version

EX1-2K12R2-DEMO Mailbox Exchange Server 2016 CU9

EX2-2K12R2-DEMO Mailbox Exchange Server 2016 CU9

Page 106 of 160 Contoso Technical Services


General Settings

Name EX1-2K12R2-DEMO

Data Path C:\Program Files\Microsoft\Exchange Server\V15\Mailbox

Domain demo2012r2.net

Edition Standard Evaluation Edition

Display Version Version 15.1 (Build 1466.3)

Version Exchange Server 2016 CU9

Server Role Mailbox

Product ID

GUID e6a9927b-0b0c-43b6-8ce2-f0f9468b4f39

Last Updated 16/07/2018 14:48:32

Status Information

Current Config Domain Controller DC-2K12R2-DEMO.demo2012r2.net

Current Domain Controllers DC-2K12R2-DEMO.demo2012r2.net

Current Global Catalogs DC-2K12R2-DEMO.demo2012r2.net

Automatically Send Fatal Service Error Report False

Static Config Domain Controller [Not Set]

Static Domain Controllers [Not Set]

Static Excluded Domain Controllers [Not Set]

Static Global Catalogs [Not Set]

Host Information

Computer FQDN EX1-2K12R2-DEMO.demo2012r2.net

Manufacturer VMware, Inc.

Model VMware Virtual Platform

Name EX1-2K12R2-DEMO

Operating System Name Microsoft Windows Server 2012 R2 Datacenter

Service Pack None Installed

Processors Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz

Serial Number VMware-56 4d 16 7d 9e 34 63 49-a4 e8 6f a4 8b f5 94 17

Client Access

Autodiscover service internal URI https://ex1-2k12r2-demo.demo2012r2.net/Autodiscover/Autodiscover.xml

Autodiscover Site Scopes Default-First-Site-Name

Page 107 of 160 Contoso Technical Services


Databases

Database Availability Group DAG01

Mounted Database Count 1

1 Database Copies

Name Status

Mailbox Database 1819933369\EX1-2K12R2-DEMO Mounted

DNS Lookups

External DNS Settings Use DNS settings for "All network adapters (All available IPv4)"

Internal DNS Settings Use DNS settings for "All network adapters (All available IPv4)"

IMAP4

Authenticated time-out (seconds) 1,800

Banner string The Microsoft Exchange IMAP4 service is ready.

Calendar Retrieval iCalendar

Logon Method Secure TLS connection

Maximum Command Size (Bytes) 10,240

Maximum Connections (Single IP Address) 2,147,483,647

Maximum Connections 2,147,483,647

Maximum Connections Per User 16

MimeFormatString Best body format

Unauthenticated Time-out (Seconds) 60

Proxy Target Port 1993

SSL Connections [::]:993


0.0.0.0:993

TLS or Unencrypted Connections [::]:143


0.0.0.0:143

X.509 Certificate Name EX1-2K12R2-DEMO

Malware Filtering

Bypass Filtering False

Defer Attempts 3

Defer Wait Time 5

Force Rescan False

Primary Update Path http://amupdatedl.microsoft.com/server/amupdate

Secondary Update Path

Scan Error Action Block

Scan Timeout (Seconds) 300

Update Frequency (Minutes) 30

Update Timeout (Seconds) 150

Page 108 of 160 Contoso Technical Services


Outlook Anywhere

Enabled True

External Client Authentication Method Negotiate

External Clients Require SSL False

External Hostname

Internal Client Authentication Method NTLM

Internal Clients Require SSL False

Internal Hostname ex1-2k12r2-demo.demo2012r2.net

Path C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc

Allow SSL Offloading True

POP3

Authenticated time-out (seconds) 1,800

Banner string The Microsoft Exchange POP3 service is ready.

Calendar Retrieval iCalendar

Logon Method Secure TLS connection

Maximum Command Size (Bytes) 512

Maximum Connections (Single IP Address) 2,147,483,647

Maximum Connections 2,147,483,647

Maximum Connections Per User 16

Message Sort Order Ascending

MIME Format Best body format

Unauthenticated Time-out (Seconds) 60

Proxy Target Port 1995

SSL Connections [::]:995


0.0.0.0:995

TLS or Unencrypted Connections [::]:110


0.0.0.0:110

X.509 Certificate Name EX1-2K12R2-DEMO

Transport Logs

Message Tracking Log Enabled True

Message Tracking Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\MessageTracking

Connectivity Log Enabled True

Connectivity Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\Hub\Connectivity

Send Protocol Log C:\Program Files\Microsoft\Exchange


Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpSend

Receive Protocol Log C:\Program Files\Microsoft\Exchange


Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpReceive

Page 109 of 160 Contoso Technical Services


Transport Limits

Outbound Connection Failure Retry Interval 600


(Seconds)

Transient Failure Retry Interval (Minutes) 5

Transient Failure Retry Count 6

Maximum Time Since Submission (Days) 2

Notify Sender Delayed Message (Hours) 4

Maximum Concurrent Outbound Connections 1,000

Maximum Concurrent Outbound Connections Per 20


Domain

Unified Messaging Service

Unified Messaging Status Enabled

Dial Plans

Languages en-US

Startup Mode TCP

TCP Listening Port 5062

TLS Listening Port 5063

Maximum Calls Allowed 100

Unified Messaging Call Router Settings

Dial Plans

Startup Mode Tcp

TCP Listening Port 5060

TLS Listening Port 5061

Page 110 of 160 Contoso Technical Services


3 Certificates

Subject Issuer Expiry Date

EX1-2K12R2-DEMO EX1-2K12R2-DEMO 15 July 2023

Microsoft Exchange Server Auth Certificate Microsoft Exchange Server Auth Certificate 19 June 2023

WMSvc-EX1-2K12R2-DEMO WMSvc-EX1-2K12R2-DEMO 12 July 2028

Page 111 of 160 Contoso Technical Services


General

Subject Name EX1-2K12R2-DEMO

Subject CN=EX1-2K12R2-DEMO

Issuer CN=EX1-2K12R2-DEMO

Issuer Name EX1-2K12R2-DEMO

Valid From 15 July 2018

Expiry Date 15 July 2023

Key Usage Digital Signature


Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 6069155A5B47A9864162367ED6C7D337

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names EX1-2K12R2-DEMO


EX1-2K12R2-DEMO.demo2012r2.net

Properties

Friendly Name

Thumbprint 42B8E31CFB0B1C32D594C4C7083175B87A9B5491

Purposes Enable all purposes for this certificate

Page 112 of 160 Contoso Technical Services


General

Subject Name Microsoft Exchange Server Auth Certificate

Subject CN=Microsoft Exchange Server Auth Certificate

Issuer CN=Microsoft Exchange Server Auth Certificate

Issuer Name Microsoft Exchange Server Auth Certificate

Valid From 15 July 2018

Expiry Date 19 June 2023

Key Usage Digital Signature


Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 1FAAB997428DF7874627CFF6B40A6D34

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names

Properties

Friendly Name

Thumbprint FB0063D0C2518305E01C1898E5049D84C11D508F

Purposes Enable all purposes for this certificate

Page 113 of 160 Contoso Technical Services


General

Subject Name WMSvc-EX1-2K12R2-DEMO

Subject CN=WMSvc-EX1-2K12R2-DEMO

Issuer CN=WMSvc-EX1-2K12R2-DEMO

Issuer Name WMSvc-EX1-2K12R2-DEMO

Valid From 15 July 2018

Expiry Date 12 July 2028

Key Usage Data encipherment


Digital Signature
Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 7498C490A3DF24BB4D64C884022DD9DD

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names

Properties

Friendly Name

Thumbprint F5F0B1A4CBFADC5281B44E7C36ED6643E297F537

Purposes Enable all purposes for this certificate

Page 114 of 160 Contoso Technical Services


8 Virtual Directories

Name Type Last Modified

Autodiscover (Default Web Site) Autodiscover 15/07/2018 17:42:07

ecp (Default Web Site) ECP 15/07/2018 17:41:57

EWS (Default Web Site) EWS 15/07/2018 17:42:03

mapi (Default Web Site) Mapi 15/07/2018 17:42:59

Microsoft-Server-ActiveSync (Default Web Site) EAS 15/07/2018 17:42:19

OAB (Default Web Site) OAB 15/07/2018 17:42:23

owa (Default Web Site) OWA 15/07/2018 17:41:52

PowerShell (Default Web Site) PowerShell 15/07/2018 17:42:30

Page 115 of 160 Contoso Technical Services


General Settings

GUID d11434a9-c96f-4209-bb37-974695b16fac

Type Display Name Autodiscover

Last Updated 15/07/2018 17:42:07

Authentication

Integrated Windows Authentication True

Digest Authentication False

Basic Authentication True

Page 116 of 160 Contoso Technical Services


General Settings

GUID a18d1b51-a5cf-4b06-848f-0dcd6728baec

Type Display Name ECP

Last Updated 15/07/2018 17:41:57

Virtual Directory Settings

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/ecp

External URL

Web Site Default Web Site

Authentication

Integrated Windows Authentication False

Digest Authentication False

Basic Authentication True

Forms Authentication True

Page 117 of 160 Contoso Technical Services


General Settings

GUID e71d2888-d199-4119-95e2-139772d23a2a

Type Display Name EWS

Last Updated 15/07/2018 17:42:03

Virtual Directory Settings

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/EWS/Exchange.asmx

External URL

Enable MRS Proxy Endpoint False

Authentication

Integrated Windows Authentication True

Digest Authentication False

Basic Authentication False

Page 118 of 160 Contoso Technical Services


General Settings

GUID 1f3468e7-a7cd-4ec8-b524-430af6273ec8

Type Display Name Mapi

Last Updated 15/07/2018 17:42:59

Virtual Directory Settings

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/mapi

External URL

Authentication

Windows Authentication (NTLM) True

Windows Authentication (Kerberos) False

Windows Authentication (Negotiate) True

Basic Authentication True

Page 119 of 160 Contoso Technical Services


General Settings

GUID 89a6dd94-8bc7-48ea-a6bd-6db33e089f70

Type Display Name EAS

Last Updated 15/07/2018 17:42:19

Virtual Directory Settings

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/Microsoft-Server-ActiveSync

External URL

Authentication

SSL Enabled True

Basic Authentication True

Client Certificate Authentication Ignore client certificates

Page 120 of 160 Contoso Technical Services


General Settings

GUID 8a1bd18a-89a8-4f99-a5ae-93eb9355acfe

Type Display Name OAB

Last Updated 15/07/2018 17:42:23

Virtual Directory Settings

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/OAB

External URL

Polling Interval (Minutes) 480

Offline Address Books \Default Offline Address Book

Page 121 of 160 Contoso Technical Services


General Settings

GUID c38baccf-a0ab-461f-953d-a46ce9fc30c2

Type Display Name OWA

Last Updated 15/07/2018 17:41:52

Virtual Directory Settings

Web Site Default Web Site

Outlook Web App Version Exchange 2013

Internal URL https://ex1-2k12r2-demo.demo2012r2.net/owa

External URL

Authentication

Integrated Windows Authentication False

Digest Authentication False

Basic Authentication True

Forms Authentication True

Forms Logon Format Domain\user name

Communication Management

All Address Lists True

Contacts True

Exchange ActiveSync True

Instant Messaging True

Mobile Device Contact Sync True

Text Messaging True

Unified Messaging True

Information Management

Inbox Rules True

Journaling True

Notes True

Recover Deleted Items True

Security

Change Password True

Junk Email Filtering True

Page 122 of 160 Contoso Technical Services


User Experience

Email Signature True

Interesting Calendars True

Local Events False

Places False

Premium Client True

Themes True

Weather True

Time Management

Calendar True

Reminders and Notifications True

Tasks True

File Access

Direct File Access (Private) True

Direct File Access (Public) True

Page 123 of 160 Contoso Technical Services


General Settings

GUID efbded14-adc2-4c61-9c4c-9daa6ed6fb5f

Type Display Name PowerShell

Last Updated 15/07/2018 17:42:30

Virtual Directory Settings

Internal URL http://ex1-2k12r2-demo.demo2012r2.net/powershell

External URL

Authentication

Integrated Windows Authentication False

Basic Authentication False

Page 124 of 160 Contoso Technical Services


General Settings

Name EX2-2K12R2-DEMO

Data Path C:\Program Files\Microsoft\Exchange Server\V15\Mailbox

Domain demo2012r2.net

Edition Standard Evaluation Edition

Display Version Version 15.1 (Build 1466.3)

Version Exchange Server 2016 CU9

Server Role Mailbox

Product ID

GUID 7a568d71-fc33-4019-bc1e-a699638ec4df

Last Updated 15/07/2018 19:02:51

Status Information

Current Config Domain Controller DC-2K12R2-DEMO.demo2012r2.net

Current Domain Controllers DC-2K12R2-DEMO.demo2012r2.net

Current Global Catalogs DC-2K12R2-DEMO.demo2012r2.net

Automatically Send Fatal Service Error Report False

Static Config Domain Controller [Not Set]

Static Domain Controllers [Not Set]

Static Excluded Domain Controllers [Not Set]

Static Global Catalogs [Not Set]

Host Information

Computer FQDN EX2-2K12R2-DEMO.demo2012r2.net

Manufacturer VMware, Inc.

Model VMware Virtual Platform

Name EX2-2K12R2-DEMO

Operating System Name Microsoft Windows Server 2012 R2 Datacenter

Service Pack None Installed

Processors Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz

Serial Number VMware-56 4d 72 f3 5b c6 8c 15-21 df 18 9a 7d 88 e5 60

Client Access

Autodiscover service internal URI https://ex2-2k12r2-demo.demo2012r2.net/Autodiscover/Autodiscover.xml

Autodiscover Site Scopes Default-First-Site-Name

Page 125 of 160 Contoso Technical Services


Databases

Database Availability Group

Mounted Database Count 1

1 Database Copies

Name Status

Mailbox Database 1494350726\EX2-2K12R2-DEMO Mounted

DNS Lookups

External DNS Settings Use DNS settings for "All network adapters (All available IPv4)"

Internal DNS Settings Use DNS settings for "All network adapters (All available IPv4)"

IMAP4

Authenticated time-out (seconds) 1,800

Banner string The Microsoft Exchange IMAP4 service is ready.

Calendar Retrieval iCalendar

Logon Method Secure TLS connection

Maximum Command Size (Bytes) 10,240

Maximum Connections (Single IP Address) 2,147,483,647

Maximum Connections 2,147,483,647

Maximum Connections Per User 16

MimeFormatString Best body format

Unauthenticated Time-out (Seconds) 60

Proxy Target Port 1993

SSL Connections [::]:993


0.0.0.0:993

TLS or Unencrypted Connections [::]:143


0.0.0.0:143

X.509 Certificate Name EX2-2K12R2-DEMO

Malware Filtering

Bypass Filtering False

Defer Attempts 3

Defer Wait Time 5

Force Rescan False

Primary Update Path http://amupdatedl.microsoft.com/server/amupdate

Secondary Update Path

Scan Error Action Block

Scan Timeout (Seconds) 300

Update Frequency (Minutes) 30

Update Timeout (Seconds) 150

Page 126 of 160 Contoso Technical Services


Outlook Anywhere

Enabled True

External Client Authentication Method Negotiate

External Clients Require SSL False

External Hostname

Internal Client Authentication Method NTLM

Internal Clients Require SSL False

Internal Hostname ex2-2k12r2-demo.demo2012r2.net

Path C:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc

Allow SSL Offloading True

POP3

Authenticated time-out (seconds) 1,800

Banner string The Microsoft Exchange POP3 service is ready.

Calendar Retrieval iCalendar

Logon Method Secure TLS connection

Maximum Command Size (Bytes) 512

Maximum Connections (Single IP Address) 2,147,483,647

Maximum Connections 2,147,483,647

Maximum Connections Per User 16

Message Sort Order Ascending

MIME Format Best body format

Unauthenticated Time-out (Seconds) 60

Proxy Target Port 1995

SSL Connections [::]:995


0.0.0.0:995

TLS or Unencrypted Connections [::]:110


0.0.0.0:110

X.509 Certificate Name EX2-2K12R2-DEMO

Transport Logs

Message Tracking Log Enabled True

Message Tracking Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\MessageTracking

Connectivity Log Enabled True

Connectivity Log C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\Logs\Hub\Connectivity

Send Protocol Log C:\Program Files\Microsoft\Exchange


Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpSend

Receive Protocol Log C:\Program Files\Microsoft\Exchange


Server\V15\TransportRoles\Logs\Hub\ProtocolLog\SmtpReceive

Page 127 of 160 Contoso Technical Services


Transport Limits

Outbound Connection Failure Retry Interval 600


(Seconds)

Transient Failure Retry Interval (Minutes) 5

Transient Failure Retry Count 6

Maximum Time Since Submission (Days) 2

Notify Sender Delayed Message (Hours) 4

Maximum Concurrent Outbound Connections 1,000

Maximum Concurrent Outbound Connections Per 20


Domain

Unified Messaging Service

Unified Messaging Status Enabled

Dial Plans

Languages en-US

Startup Mode TCP

TCP Listening Port 5062

TLS Listening Port 5063

Maximum Calls Allowed 100

Unified Messaging Call Router Settings

Dial Plans

Startup Mode Tcp

TCP Listening Port 5060

TLS Listening Port 5061

Page 128 of 160 Contoso Technical Services


3 Certificates

Subject Issuer Expiry Date

EX2-2K12R2-DEMO EX2-2K12R2-DEMO 15 July 2023

Microsoft Exchange Server Auth Certificate Microsoft Exchange Server Auth Certificate 19 June 2023

WMSvc-EX2-2K12R2-DEMO WMSvc-EX2-2K12R2-DEMO 12 July 2028

Page 129 of 160 Contoso Technical Services


General

Subject Name EX2-2K12R2-DEMO

Subject CN=EX2-2K12R2-DEMO

Issuer CN=EX2-2K12R2-DEMO

Issuer Name EX2-2K12R2-DEMO

Valid From 15 July 2018

Expiry Date 15 July 2023

Key Usage Digital Signature


Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 435A735F97BBE18449A41A342F404413

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names EX2-2K12R2-DEMO


EX2-2K12R2-DEMO.demo2012r2.net

Properties

Friendly Name

Thumbprint 141FF6E5AF8611EB92315B54B0D3D331990F764E

Purposes Enable all purposes for this certificate

Page 130 of 160 Contoso Technical Services


General

Subject Name Microsoft Exchange Server Auth Certificate

Subject CN=Microsoft Exchange Server Auth Certificate

Issuer CN=Microsoft Exchange Server Auth Certificate

Issuer Name Microsoft Exchange Server Auth Certificate

Valid From 15 July 2018

Expiry Date 19 June 2023

Key Usage Digital Signature


Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 1FAAB997428DF7874627CFF6B40A6D34

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names

Properties

Friendly Name

Thumbprint FB0063D0C2518305E01C1898E5049D84C11D508F

Purposes Enable all purposes for this certificate

Page 131 of 160 Contoso Technical Services


General

Subject Name WMSvc-EX2-2K12R2-DEMO

Subject CN=WMSvc-EX2-2K12R2-DEMO

Issuer CN=WMSvc-EX2-2K12R2-DEMO

Issuer Name WMSvc-EX2-2K12R2-DEMO

Valid From 15 July 2018

Expiry Date 12 July 2028

Key Usage Data encipherment


Digital Signature
Key encipherment

Enhanced Key Usages Server Authentication (1.3.6.1.5.5.7.3.1)

Certificate Details

Public Key RSA (2048 Bits)

Serial Number 15AA44D58428DCBC434B89F2589C3F6F

Signature Algorithm sha1RSA

Version 3

CRL Distribution Points

Subject Alternative Names

Properties

Friendly Name

Thumbprint 5C800F594738CAD4EE50541678BBD6484ADA48AA

Purposes Enable all purposes for this certificate

Page 132 of 160 Contoso Technical Services


8 Virtual Directories

Name Type Last Modified

Autodiscover (Default Web Site) Autodiscover 15/07/2018 18:45:34

ecp (Default Web Site) ECP 15/07/2018 18:45:24

EWS (Default Web Site) EWS 15/07/2018 18:45:29

mapi (Default Web Site) Mapi 15/07/2018 18:46:23

Microsoft-Server-ActiveSync (Default Web Site) EAS 15/07/2018 18:45:44

OAB (Default Web Site) OAB 15/07/2018 18:45:49

owa (Default Web Site) OWA 15/07/2018 18:45:20

PowerShell (Default Web Site) PowerShell 15/07/2018 18:45:56

Page 133 of 160 Contoso Technical Services


General Settings

GUID 7d5f5905-e1f2-4863-8a0c-a2f2f1d8c60b

Type Display Name Autodiscover

Last Updated 15/07/2018 18:45:34

Authentication

Integrated Windows Authentication True

Digest Authentication False

Basic Authentication True

Page 134 of 160 Contoso Technical Services


General Settings

GUID 7a6b712f-ce4d-4405-9f2f-e89c6c268767

Type Display Name ECP

Last Updated 15/07/2018 18:45:24

Virtual Directory Settings

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/ecp

External URL

Web Site Default Web Site

Authentication

Integrated Windows Authentication False

Digest Authentication False

Basic Authentication True

Forms Authentication True

Page 135 of 160 Contoso Technical Services


General Settings

GUID 60afbded-d683-48c0-bf41-2c0a543bf6bb

Type Display Name EWS

Last Updated 15/07/2018 18:45:29

Virtual Directory Settings

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/EWS/Exchange.asmx

External URL

Enable MRS Proxy Endpoint False

Authentication

Integrated Windows Authentication True

Digest Authentication False

Basic Authentication False

Page 136 of 160 Contoso Technical Services


General Settings

GUID 4c247991-368b-4bfe-b0f3-1bc52ec81b63

Type Display Name Mapi

Last Updated 15/07/2018 18:46:23

Virtual Directory Settings

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/mapi

External URL

Authentication

Windows Authentication (NTLM) True

Windows Authentication (Kerberos) False

Windows Authentication (Negotiate) True

Basic Authentication True

Page 137 of 160 Contoso Technical Services


General Settings

GUID 91c613db-6a9a-4a0d-82f4-e0868cfc6200

Type Display Name EAS

Last Updated 15/07/2018 18:45:44

Virtual Directory Settings

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/Microsoft-Server-ActiveSync

External URL

Authentication

SSL Enabled True

Basic Authentication True

Client Certificate Authentication Ignore client certificates

Page 138 of 160 Contoso Technical Services


General Settings

GUID 890828fa-fa6c-452f-bb69-bd744ef2844f

Type Display Name OAB

Last Updated 15/07/2018 18:45:49

Virtual Directory Settings

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/OAB

External URL

Polling Interval (Minutes) 480

Offline Address Books

Page 139 of 160 Contoso Technical Services


General Settings

GUID ceac0542-c17a-4d94-875c-6100bad6f1bd

Type Display Name OWA

Last Updated 15/07/2018 18:45:20

Virtual Directory Settings

Web Site Default Web Site

Outlook Web App Version Exchange 2013

Internal URL https://ex2-2k12r2-demo.demo2012r2.net/owa

External URL

Authentication

Integrated Windows Authentication False

Digest Authentication False

Basic Authentication True

Forms Authentication True

Forms Logon Format Domain\user name

Communication Management

All Address Lists True

Contacts True

Exchange ActiveSync True

Instant Messaging True

Mobile Device Contact Sync True

Text Messaging True

Unified Messaging True

Information Management

Inbox Rules True

Journaling True

Notes True

Recover Deleted Items True

Security

Change Password True

Junk Email Filtering True

Page 140 of 160 Contoso Technical Services


User Experience

Email Signature True

Interesting Calendars True

Local Events False

Places False

Premium Client True

Themes True

Weather True

Time Management

Calendar True

Reminders and Notifications True

Tasks True

File Access

Direct File Access (Private) True

Direct File Access (Public) True

Page 141 of 160 Contoso Technical Services


General Settings

GUID 3b34362b-163c-43c6-bc12-49c5835d9123

Type Display Name PowerShell

Last Updated 15/07/2018 18:45:56

Virtual Directory Settings

Internal URL http://ex2-2k12r2-demo.demo2012r2.net/powershell

External URL

Authentication

Integrated Windows Authentication False

Basic Authentication False

Page 142 of 160 Contoso Technical Services


Page 143 of 160 Contoso Technical Services
1 Auto Attendants

Name Status

Contoso Auto Attendant Enabled

Page 144 of 160 Contoso Technical Services


General Settings

Dial Plan Contoso dial plan

Status Enabled

Access Numbers +44255552343

Response To Voice Commands True

Fallback Auto Attendant [Not Set]

GUID d6fa49f6-bfa7-47ba-a457-6d1d837bfe13

Last Updated 16/07/2018 13:57:02

Greetings

Business Hours Greeting Default greeting

Non-Business Hours Greeting Default greeting

International Announcement None

Business Hours

Time Zone (UTC+00:00) Dublin, Edinburgh, Lisbon, London

Business Hours Schedule Sun.08:00-Sun.19:00


Mon.08:00-Mon.19:00
Tue.08:00-Tue.19:00
Wed.08:00-Wed.19:00
Thu.08:00-Thu.19:00
Fri.08:00-Fri.19:00
Sat.08:00-Sat.19:00

Menu Navigation

Business Hours Menu Prompt

Business Hours Menu Navigation False

Non-Business Hours Menu Prompt

Non-Business Hours Menu Navigation False

Address Book And Operator Access

Allow Callers To Dial Users True

Allow Callers To Leave Voice Messages False

Allow Callers To Search Users In this dial plan only

Operator Extension

Allow Transfer To Operator During Business False


Hours

Allow Transfer To Operator During Non-Business False


Hours

Page 145 of 160 Contoso Technical Services


Authorization

Allow Calls in Same Dial Plan True

Allow Calls To Any Extension True

Authorized In-Country / Region Dialing Rules [Not Set]

Authorized International Dialling Rules [Not Set]

Page 146 of 160 Contoso Technical Services


2 Dial Plans

Name Extension Length URI Type

Contoso dial plan 5 SIP URI

Telephone extension dial plan 4 Telephone extension

Page 147 of 160 Contoso Technical Services


General Settings

Extension Length (Digits) 5

Dial Plan Type SIP URI

VoIP Security Type Secured

GUID 09ca597c-253a-4d9e-8471-176715ce2cbe

Last Updated 16/07/2018 15:35:03

Dial Codes

Outside Line Access Code 9

International Access Code 00

National Number Prefix 0

Country/Region Code 44

Country/Region Number Format

International Number Format

Number Formats For Incoming Calls

Outlook Voice Access

Welcome Greeting Enabled False

International Announcement Enabled False

Outlook Voice Access Numbers

Settings

Primary Search For Names LastFirst

Secondary Search For Names SmtpAddress

Audio Codec Mp3

Operator Extension

Sign-in Failures Before Disconnect 3

Maximum Call Duration (Minutes) 30

Maximum Recording Duration (Minutes) 20

Recording Idle Time Out (Seconds) 5

Input Failures Before Disconnect 3

Default Language English (United States)

Page 148 of 160 Contoso Technical Services


In-Country / Region Dialing Rules

Name Number Pattern Dialed Number Comment

Contoso dialing 91425xxxxxxxx 9xxxxxxxx Demonstration dialing rule.


rule

International Dialing Rules

Name Number Pattern Dialed Number Comment

International 91425xxxxxxxx 9xxxxxxxx Demonstration international dialing rule.


dialing rule

Dialing Authorization

Allow Calls In The Same Dial Plan True

Allow Calls To Any Extension False

Authorized In-Country / Region Dialing Rules

Authorized International Dialling Rules

Transfer And Search

Allow Transfer To Users True

Leave Voice Messages Without Calling True

Allow Callers To Search In this dial plan only

Include Additional Information None

Page 149 of 160 Contoso Technical Services


General Settings

Extension Length (Digits) 4

Dial Plan Type Telephone extension

VoIP Security Type SIP Secured

GUID c16afeea-8380-40ef-b209-7237cca9e323

Last Updated 16/07/2018 15:35:29

Dial Codes

Outside Line Access Code 9

International Access Code 00

National Number Prefix 0

Country/Region Code 44

Country/Region Number Format

International Number Format

Number Formats For Incoming Calls

Outlook Voice Access

Welcome Greeting Enabled False

International Announcement Enabled False

Outlook Voice Access Numbers

Settings

Primary Search For Names LastFirst

Secondary Search For Names SmtpAddress

Audio Codec Mp3

Operator Extension

Sign-in Failures Before Disconnect 3

Maximum Call Duration (Minutes) 30

Maximum Recording Duration (Minutes) 20

Recording Idle Time Out (Seconds) 5

Input Failures Before Disconnect 3

Default Language English (United States)

In-Country / Region Dialing Rules

There are no dialing rules configured.

Page 150 of 160 Contoso Technical Services


International Dialing Rules

There are no dialing rules configured.

Dialing Authorization

Allow Calls In The Same Dial Plan True

Allow Calls To Any Extension False

Authorized In-Country / Region Dialing Rules

Authorized International Dialling Rules

Transfer And Search

Allow Transfer To Users True

Leave Voice Messages Without Calling True

Allow Callers To Search In this dial plan only

Include Additional Information None

Page 151 of 160 Contoso Technical Services


2 Hunt Groups

Name Dial Plan IP Gateway Pilot Identifier

Contoso hunt group Telephone extension dial plan Contoso IP Gateway Telephone extension dial plan

Default Hunt Group Contoso dial plan Contoso IP Gateway

Page 152 of 160 Contoso Technical Services


1 IP Gateways

Name Address Status

Contoso IP Gateway ipgateway Enabled

Page 153 of 160 Contoso Technical Services


General Settings

Name Contoso IP Gateway

GUID f3f8305e-4dee-4c70-bedd-362011ee0b85

Last Updated 16/07/2018 14:02:55

Settings

Address ipgateway

Gateway Status Enabled

Forwarding Address

Allow Outgoing Calls True

Allow Message Waiting Indicator True

Page 154 of 160 Contoso Technical Services


2 Mailbox Policies

Name Dial Plan Minimum PIN Length

Contoso dial plan Default Policy Contoso dial plan 6

Telephone extension dial plan Default Policy Telephone extension dial plan 6

Page 155 of 160 Contoso Technical Services


General Settings

Dial Plan Contoso dial plan

Limit On Personal Greetings (Minutes) 5

Allow Analysis Of Voice Messages False

GUID 3f6ea626-2b65-4333-b195-efeed5101300

Last Updated 16/07/2018 13:48:12

User Features

Allow Voice Mail Preview True

Allow Call Answering Rules True

Allow Message Waiting Indicator True

Allow Outlook Voice Access True

Allow Missed Call Notifications True

Allow Play On Phone True

Allow Inbound Faxes False

Message Text

User Enabled For Unified Messaging [Not Set]

Outlook Voice Access PIN Reset [Not Set]

User Receives Voice Message [Not Set]

User Receives Fax Message [Not Set]

PIN Policies

Minimum PIN Length 6

PIN Recycle Count 5

Allow Common PIN Patterns False

Pin Lifetime 60 days

Sign-in Failures Before PIN Reset 5

Sign-in Failures Before Account Lockout 15

Dialing Authorization

Allow Calls in Same Dial Plan True

Allow Calls To Any Extension True

Authorized In-Country / Region Dialing Rules

Authorized International Dialling Rules

Page 156 of 160 Contoso Technical Services


Protected Voice Mail

Protect Voice Messages From Unauthenticated None


Callers

Protect Voice Messages From Authenticated None


Callers

Require Protected Play On Phone False

Allow Voice Responses To Email And Calendar True


Items

Message For Users Without WRM Support

Page 157 of 160 Contoso Technical Services


General Settings

Dial Plan Telephone extension dial plan

Limit On Personal Greetings (Minutes) 5

Allow Analysis Of Voice Messages False

GUID 094a6376-9246-4b6d-ae3e-06556db53af0

Last Updated 16/07/2018 14:06:01

User Features

Allow Voice Mail Preview True

Allow Call Answering Rules True

Allow Message Waiting Indicator True

Allow Outlook Voice Access True

Allow Missed Call Notifications True

Allow Play On Phone True

Allow Inbound Faxes False

Message Text

User Enabled For Unified Messaging [Not Set]

Outlook Voice Access PIN Reset [Not Set]

User Receives Voice Message [Not Set]

User Receives Fax Message [Not Set]

PIN Policies

Minimum PIN Length 6

PIN Recycle Count 5

Allow Common PIN Patterns False

Pin Lifetime 60 days

Sign-in Failures Before PIN Reset 5

Sign-in Failures Before Account Lockout 15

Dialing Authorization

Allow Calls in Same Dial Plan True

Allow Calls To Any Extension True

Authorized In-Country / Region Dialing Rules

Authorized International Dialling Rules

Page 158 of 160 Contoso Technical Services


Protected Voice Mail

Protect Voice Messages From Unauthenticated None


Callers

Protect Voice Messages From Authenticated None


Callers

Require Protected Play On Phone False

Allow Voice Responses To Email And Calendar True


Items

Message For Users Without WRM Support

Page 159 of 160 Contoso Technical Services


Version Username Date Time Description

1.11 DEMO2012R2\sysadmin 17 July 2018 14:35 Updated by XIA Configuration Client Data

1.10 DEMO2012R2\sysadmin 16 July 2018 16:55 Updated by XIA Configuration Client Data

1.09 DEMO2012R2\sysadmin 16 July 2018 16:44 Updated by XIA Configuration Client Data

1.08 DEMO2012R2\sysadmin 16 July 2018 15:46 Updated by XIA Configuration Client Data

1.07 DEMO2012R2\sysadmin 16 July 2018 15:38 Updated by XIA Configuration Client Data

1.06 DEMO2012R2\sysadmin 16 July 2018 15:16

1.05 DEMO2012R2\sysadmin 16 July 2018 14:53 Updated by XIA Configuration Client Data

1.04 DEMO2012R2\sysadmin 16 July 2018 14:25 Updated by XIA Configuration Client Data

1.03 DEMO2012R2\sysadmin 16 July 2018 11:38 Updated by XIA Configuration Client Data

1.02 DEMO2012R2\sysadmin 16 July 2018 11:11 Updated by XIA Configuration Client Data

Page 160 of 160 Contoso Technical Services

You might also like