Exchange Server

Événements, Exchange Server, Non classé

Comment répliquer des connecteurs Exchange

Context Audit Let’s get backup Exchange Reference Receive-ConnectorsGet-ReceiveConnector -Server $env:COMPUTERNAME | Export-Clixml -Path C:\EXPLOIT\$($env:COMPUTERNAME).ReceiveConnectors.xml Merge Connectors On the destination computers, let’s get only our usefull smtp relays. In the case above, we get back ‘Linux Relay’ and ‘SMTPRELAY’.We will ignore all other connectors. New Connector Here, we create a new relay connector on destination servers named ‘SMTP Relay’, and activate extended right ‘ms-Exch-SMTP-Accept-Any-Recipient’ in order to allow SMTP relaying. For the moment, only 127.0.0.1 will be allowedNew-ReceiveConnector -server $env:COMPUTERNAME -Name ‘SMTP Relay’ -Bindings ‘0.0.0.0:25’ -RemoteIPRanges 127.0.0.1 -usage Custom -TransportRole FrontendTransport$Rcv = Get-ReceiveConnector « $($env:COMPUTERNAME)\SMTP Relay »$Rcv | Set-ReceiveConnector -fqdn ‘smtprelay.mydomain.local’ -permissiongroups AnonymousUsers -AuthMechanism None -Banner ‘220 SMTP OK’ -ProtocolLoggingLevel Verbose$Rcv | Add-ADPermission -User ‘ANONYMOUS LOGON’ -ExtendedRights « ms-Exch-SMTP-Accept-Any-Recipient » Add allow IP addresses to relay And now, we only allow $IPs to relay, so easy …

Retour en haut