Chat now with support
Chat with Support

Quest has tools and processes in place to identify, protect, detect, and remediate vulnerabilities and incidents when they occur, including external security partners. As part of our standard security operations, Quest does not use CrowdStrike in any of our operations. We are reviewing our third parties, and so far, there is minimal affect. It is Quest's policy not to provide further technical details unless they directly impact customer data.

Security Explorer 9.9 - Release Notes

Minimum requirements for Microsoft Exchange for Security Explorer

Topics:
Client access server configuration
Client Configuration

Client access server configuration

1
Check that all Exchange Windows services that have Automatic startup type are started.
2
Check that IIS Admin Service and World Wide Web Publishing Service IIS Services are started.
3
Check that the Exchange Web Application is configured correctly in IIS:
Authentication: Windows Authentication is Enabled
SSL Settings: Require SSL is switched on
4
Exchange Server 2010 and 2013 only: Enable Windows PowerShell® Remoting on the Exchange Server by running the Windows PowerShell command: Enable-PSRemoting –force.

Client Configuration

1
Open port 443 on the firewall.
2
Install an Exchange Server SSL certificate.

Permission requirements to manage Microsoft Exchange in Security Explorer
To connect to an Exchange 2010 Organization, a user must be a domain user, have a mailbox on one of the Exchange Servers, be a member of the Organization Management group, and have impersonation rights.
For more details on configuring user impersonation, see Configuring Exchange Impersonation in Exchange 2010.
To connect to an Exchange 2013 or 2016 Organization, a user must be a domain user, have a mailbox on one of the Exchange Servers, be a member of the Organization Management domain group, and have impersonation rights.
To configure impersonation in Security Explorer
1
In the Navigation pane, expand Role Based Access Control | Roles | ApplicationImpersonation | Assignments.
2
Select Assignments, and select File | New.
3
Enter the name and user.
4
Select RecipientRelativeWriteScope and choose Organization from the list.
5
Click OK and restart Security Explorer.
To connect to an Exchange 2010–2013 Organization (Mixed Mode), a user must be a domain user, have a mailbox on one of the 2013 Exchange Servers, be a member of the Organization Management domain group, and have impersonation rights on the Exchange 2010 and 2013 client access servers.
 
* 
IMPORTANT: Only a user who is a Domain Administrator and Exchange Administrator has no restrictions for mailbox management in Security Explorer. There are possible restrictions in Security Explorer for mailbox management. See Restrictions with mailbox management.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating