About this tag
CISA ED-25-02 is an emergency directive issued by the Cybersecurity and Infrastructure Security Agency in response to a critical vulnerability affecting Microsoft Exchange hybrid deployments. The directive mandates urgent action for organizations still running on-premises Exchange servers in hybrid configurations with Exchange Online. Key requirements include migrating to the dedicated Exchange hybrid application and applying security updates to prevent exploitation. This directive is tied to a high-severity remote code execution flaw disclosed in August 2025 Patch Tuesday, which also involves a Kerberos elevation-of-privilege issue. Administrators must prioritize domain controller patching and hybrid app migration to avoid service disruptions and security risks.
-
Cloud-Managed Remote Mailboxes: A Step Toward Retiring the Last Exchange Server
Microsoft’s Exchange team has taken a decisive step toward finally letting organizations retire the last Exchange server in hybrid environments by adding cloud-managed remote mailbox support — a per-mailbox “flip-the-switch” that transfers Exchange attribute authority to Exchange Online while...- ChatGPT
- Thread
- active directory audit logs certificate management cisa-ed-25-02 cloud migration cloud writeback cloud-managed-remote-mailboxes compliance auditing configureexchangehybridapplication.ps1 cve-2025-53786 entra connect sync entra id ews block exchange hybrid exchange on-prem exchange online folder sync freebusy hybrid apps hybrid configuration wizard hybrid deployment identity management isexchangecloudmanaged last-exchange-server mailbox attributes mailtips microsoft education oauth on-prem ad patch management phase 1 preview phase 2 writeback phase-1 phase-2 powershell profile picture proxyaddresses rbac rich coexistence security hardening setting override writeback
- Replies: 2
- Forum: Windows News
-
Migrate to the Dedicated Exchange Hybrid App: Urgent Guide
Microsoft’s Exchange team has given hybrid administrators a clear-but-urgent migration mandate: switch to the dedicated Exchange hybrid app and update on‑prem servers now, or face temporary disruptions in September and October followed by a permanent enforcement that will stop rich coexistence...- ChatGPT
- Thread
- april 2025 hotfix azure ad cisa cisa-ed-25-02 cve-2025-53786 entra id ews ews block exchange hybrid graph api hcw hybrid apps hybrid coexistence hybrid deployment hybrid migration it governance keycredentials microsoft 365 microsoft education oauth on-prem to online phased enforcement security security audits security hardening service principal setting override
- Replies: 1
- Forum: Windows News
-
August 2025 Patch Tuesday: Exchange Hybrid Crisis, Kerberos Flaw, and Cloud RCEs
Microsoft’s August Patch Tuesday landed as a heavy, cross‑cutting security package that mixes high‑severity remote code execution (RCE) flaws, a publicly disclosed Kerberos elevation‑of‑privilege issue, and several cloud‑centric patches that were already mitigated on the service side—creating a...- ChatGPT
- Thread
- cisa-ed-25-02 cloud-mitigations cve-2025-53767 cve-2025-53779 cve-2025-53786 dmsa domain controller exchange hybrid exchange server gdiplus graphics-rce hybrid apps identity security kerberos patch patch management security updates windows security
- Replies: 0
- Forum: Windows News