Exchange Online

Office 365 now includes out-of-the-box email encryption, which might just mean that the era of using S/MIME and PGP might be coming to a close, at least inside Office 365. The new functionality scores highly on ease of use and integration, but the lack of support in the current Outlook desktop clients means that adoption will be slow.

Microsoft upgraded their EOP anti-spoofing capabilities inside Office 365, which is good, but they didn’t tell anyone. The first users knew was when they started to receive messages stamped with “the sender failed our fraud detection checks” – something that is never assuring. This only applies to ATP customers, but it’s not the first time Microsoft has failed to communicate important news.

Exchange Online has two new PowerShell cmdlets to help administrators recover deleted email on behalf of users. You can now search for deleted items and recover found items without having to sign into a user’s mailbox, something that will be popular with both administrators and users alike. The joy of helping users find email they deleted and can’t find themselves…

Microsoft says that Office 365 will support internationalized email addresses (EAI) in Q1 2018. Support is limited to inbound and outbound email and you will not be able to assign email addresses with non-Latin characters to Office 365 accounts until all the heavy lifting is done to make sure that nothing breaks, including in hybrid organizations.

Exchange Online Protection now highlights unauthenticated users – or messages that come from people who cannot prove their identity. Instead of a nice picture (or avatar), you see a question mark for the user. Maybe this might make people think twice about the opportunity to send money to someone to liberate funds held in a bank. Just maybe.

A year ago, Microsoft said RPC over HTTP was dead from Oct 31, 2017 and that Outlook clients must use MAPI over HTTP to connect to Exchange Online. The protocol is still dead, but it will persist in a zombie-like unsupported mode. The question is for how long?

You can capture Exchange mailbox events in the Office 365 audit log, but only if you remember to enable auditing for target mailboxes. Exchange Online doesn’t enable new mailboxes for auditing by default, so administrators must remember to enable the mailboxes manually – and check for new mailboxes periodically. If you don’t, nothing is recorded and your audit log will be empty.

After returning from the Ignite conference, I have pages of notes to pour over. Here are some of the more interesting things i learned about Office 365, including who should be in my “inner loop” and “outer loop”, why Microsoft talks about Microsoft 365 when they really mean Office 365, and some Exchange Online cmdlets I had not heard about before.

Revealed at the Ignite conference, Microsoft plans to make some changes relatively soon to relieve the complexity and overhead of deploying and managing hybrid Exchange organizations. Microsoft also showed how to move mailboxes between tenants. It’s a small part of the tenant-to-tenant migration scenario, but it’s good to see it happening.

Microsoft has new tools to migrate public folders (the “cockroaches of Exchange”) to Office 365 Groups. Sounds good. The good news is that the tools work, even if they need a lot of manual oversight. ISVs offer tools to do the same job with more automation. The choice is yours!