Exam Ref 70-342 Advanced Solutions of Microsoft Exchange Server 2013 (2015)

---

Objective summary

Ethical walls are ways to ensure groups of users cannot email each other.

MailTips provide informational messages to Outlook and OWA users based on times when they might receive a non-deliverable email in response to sending their message, and optionally, when the sender needs to know additional information about the recipient.

Message classification is a way for users to tag messages so that the internal recipient can see a predetermined property of the message, and hopefully act on that message.

Because the server can read message classifications, transport rules can be used to enable certain restrictions and properties on the message.

Transport rules are version specific and will only run on servers that are that version or later.

Objective review

Answer the following questions to test your knowledge of the information in this objective. You can find the answers to these questions and explanations of why each answer choice is correct or incorrect in the “Answers” section at the end of this chapter.

1. Which of the following object types support MailTips? (Choose all that apply.)

A. Mailboxes

B. Security Groups (not mail enabled)

C. Dynamic Distribution Groups

D. Mail Users

E. Public Folders

F. Servers

2. How do you ensure that a partner organization can make use of the message classifications that you have set? (Choose two.)

A. They cannot use your message classifications.

B. They work without any configuration because the email message contains the required information to display the text of the classification.

C. They need to take an export of your classifications, and import them into their Exchange environment to ensure the display text and GUID match.

D. They need to ensure that the internal Exchange Server message headers that store message classifications are not stripped off by the header firewall.

3. You have an Exchange Server 2007 and 2013 co-existence organization. This will remain in co-existence for a while due to the number of mailboxes that need to be moved. How will you manage transport rules during this time?

A. Ensure all mail flow goes through a 2013 server.

B. Ensure that you do not create any transport rules on Exchange Server 2013, and instead only make them on a 2007 server.

C. Ensure that you do not create any transport rules on Exchange Server 2013, and instead only make them on a 2007 server. Then when you have made them, export them from 2007, and import them to 2013 again.

D. Ensure all mail flow goes through a 2007 server.

Answers

This section contains the solutions to the thought experiments and answers to the objective review questions in this chapter.

Objective 4.1: Thought experiment

1. The Enterprise additional CAL that you have for faculty members allows you to archive mailboxes on-premises, or in Office 365 without additional licenses. Students with just a standard CAL will need at least an Exchange Online Archive license per student.

2. Before you can implement Exchange In-Place Archiving, you need to configure a full hybrid configuration. This requires an Office 365 tenant with at least the EOA license allocated to it, DirSync enabled, and the Hybrid Configuration Wizard ran in Exchange on-premises.

3. You would create a retention tag for the duration of your semester in days, and set the action of this tag to MoveToArchive. The tag would apply to the entire mailbox (Type=All). You would then create a School of Fine Art - Students retention policy, and add the new retention tag to this policy. You would apply the policy to all student mailboxes before you give them an archive. This means that the Default MRM Policy archive would not be applied because the students already have one.

Objective 4.1: Review

1. Correct answer: A

A. Correct: The MoveToArchive is the correct action to use.

B. Incorrect: This is not a valid action.

C. Incorrect: This is not a valid action.

D. Incorrect: The All property is a type and not an action.

2. Correct answer: B

A. Incorrect: The cmdlet needed for this answer to be correct would be Enable- Mailbox <name> -Archive.

B. Correct: This cmdlet creates an archive in Office 365 for an on-premises mailbox.

C. Incorrect: You cannot have this option.

D. Incorrect: The cmdlet needed for this answer to be correct would be Enable- Mailbox <name> -Archive.

3. Correct answer: C

A. Incorrect: This is not a valid default policy name.

B. Incorrect: This is the default policy in Exchange 2010.

C. Correct: This is the default archive and retention policy in Exchange 2013.

Objective 4.2: Thought experiment

1. To change the DLP policy from testing without Policy Tips, to testing with Policy Tips, you would edit the settings of the policy from ECP, Compliance Management, Data Loss Prevention, and then edit the policy. It is not recommended to change the rules at the Mail Flow, rules area of ECP (though you could make the individual changes at that location).

2. You would want to be sure that any change did not affect a valid business process. For example, if credit card numbers are being sent via email, it might be that there is already an Enforced TLS send connector in place, or that you are sending them to some internal application with an address space outside of Exchange Server (so they appear to be going outside). The DLP Policy would impact this or other legitimate business processes, and before enforcing the rule and stopping the business process, you would need to have a valid and secure alternative process, or an exception made for the current process.

3. You would add a second DLP Policy to Exchange for the same template, and then you would edit the rules of the policy to fire only for the pilot group. Then you would enforce this DLP Policy. Then it will only affect users in your pilot group.

Objective 4.2: Review

1. Correct answer: D

A. Incorrect: The HasClassification transport rule condition is looking for message classifications and not data classifications.

B. Incorrect: The SentToScope transport rule condition is typically used in DLP rules, but it is not the rule type that makes a DLP rule. SentToScope is where the message is sent to, and is typically set to NotInOrganization.

C. Incorrect: The Description parameter of the transport rule outlines what the rule does, but does not actually cause the rule to do anything.

D. Correct: This is the cmdlet used in a transport rule to look up the data classifications contained in the email, and to act upon certain data classifications.

E. Incorrect: LegacyRegEx is a transport rule type from Exchange 2010. RegEx is used in custom DLP rules, but only when creating your own data classifications, which is not in the exam’s objective domain, and so knowing how to create your own classifications is beyond the scope of this book.

2. Correct answer: B

A. Incorrect: The two views of the transport rules are showing the same rules. Changes can be made anywhere, but to change in the compliance management pages is recommended.

B. Correct: The two views of the transport rules are showing the same rules. Changes can be made anywhere, but to change in the compliance management pages is recommended.

Objective 4.3: Thought experiment

1. To ensure short periods of storage of email for temporary employees, you would use a retention tag that deletes content after the time period, with the possible consideration of permanent delete, or delete and allow recovery depending upon the needs to be able to recover data. You also need to ensure mailbox quotas are in use because without a quota, a user could still store too much info within the retention period.

2. You would need to create the following policy, with the tags listed being part of this policy, and then apply this policy to all temporary employees. In this example you have an employee naming convention where login names that start with “T-” are temporary employees.

A. Retention Policy: Temporary Seasonal Staff Retention Policy

B. Default deletion retention tag of two months applied to the mailbox (Type=All)

C. Optional Junk Email folder tag for a shorter time period

D. No personal tags in this retention policy

E. No archive tags in this retention policy

F. Apply to all temporary staff with Get-Mailbox -ResultSize Unlimited | Where {$_.SamAccountName -ilike “T-*”} | Set-Mailbox -RetentionPolicy “Temporary Seasonal Staff Retention Policy”

Objective 4.3: Review

1. Correct answers: B, C, and E

A. Incorrect: The AgeLimitForRetention is a counter set in days, therefore two days is not sufficient for this solution.

B. Correct: These are the correct settings for the Deleted Items requirement.

C. Correct: These are the correct settings for the Archive requirement.

D. Incorrect: This tag uses an incorrect Type value.

E. Correct: These are the correct settings for the Delete After Five Years (1826 days) requirement.

F. Incorrect: This retention policy value of 1095 days is only for three years. The two-year move to archive is independent of the five-year delete, and is not added together to get a five-year delete.

2. Correct answer: A

A. Correct: Each mailbox can only have one retention policy.

B. Incorrect: You can create one archive tag that applies to a mailbox, and one deletion tag that applies to the same, but these are tags and not policies as asked by the question.

C. Incorrect: Do not mix up retention tags and retention policies. You can have one policy with the number of tags that you need in it.

D. Incorrect: Do not mix up retention tags and retention policies. You can have one policy with the number of tags that you need in it.

Objective 4.4: Thought experiment

1. You will need to look at the eDiscovery search functionality in Exchange Server, as well as the ability to hold data with the In-Place Hold functionality using retention policies and legal hold or In-Place search holds. You will need to ensure OAuth is configured between Exchange Server 2013 and Lync Server 2013 so that Lync conversations are persisted in the Exchange Mailbox, and finally you will need to look into the Exchange for SharePoint eDiscovery Center, as well as any SharePoint compliance features needed for that product.

2. You would choose to use a retention policy and hold policy at the same time because they are different, but complementary, things. The retention policy ensures that email is deleted once it exceeds a given age. The hold policy ensures that everything is persisted in the mailbox until it reaches a given age. With both policies in place, you can be sure that content that you may be best not keeping (as it is beyond any legal requirement to hold), is removed and so that any legal case against you that requires providing matching data that you hold will not return this old data (because you do not hold it anymore), but also ensuring that newer data is kept for the legally required duration if one exists.

Objective 4.4: Review

1. Correct answer: B

A. Incorrect: Both journaling and Legal Hold are able to copy all items.

B. Correct: Prior to CU7 (the IT Pro exam is not based on this later release) the only way to do recipients at time of message is journaling.

C. Incorrect: Both can store data in Exchange on-premises.

D. Incorrect: Search is based on the Exchange indexes, so performance is not based on the size of the database. Though a large mailbox is more likely to return extra results and take longer to export, the fact that journaling can be split across many databases means performance can be improved if required.

2. Correct answer: D

A. Incorrect: You can segregate these roles. Custom scopes in RBAC will allow this.

B. Incorrect: You cannot deny someone membership of a group to block their access to what the group can do.

C. Incorrect: eDiscovery searches in Exchange Hybrid are cross-forest, and so a search on-premises can include Office 365 mailboxes, and visa versa.

D. Correct: The exclusive scope would ensure that only the executive help desk team could manage the executives, including discovery searches.

3. Correct answers: D and E

A. Incorrect: This “message” contains “gamma” and the search says not to include “gamma.”

B. Incorrect: This search does not include “omega” and the query requires “omega” near “alpha.”

C. Incorrect: This search does not include “beta” and the query requires “beta” near “alpha.”

D. Correct: This search includes the required keywords.

E. Correct: This search includes the required keywords. The additional words do not take away from the result set.

Objective 4.5: Thought experiment

1. There are a number of valid answers to this question, but DLP, RMS, Rules, and MailTips are valid answers to this question. DLP fingerprinting of standard forms, RMS so that the content cannot be read outside the organization, transport rules to look for key worlds, and then automate the applying of actions such as RMS to the email. MailTips can be used to notify the user of a potential issue in advance of the user clicking Send.

2. You need to ensure that your message classifications are exported to an XML file and that classification is imported into the new organization.

3. The OAB generating mailbox server is used to calculate the number of users in a group each evening. This information is used for the following 24 hours until group metrics is regenerated.

Objective 4.5: Review

1. Correct answers: A, C, and D

A. Correct: Mailboxes (user mailboxes, resource mailboxes, and room mailboxes) can have MailTips.

B. Incorrect: Security groups are not mailbox recipients and so cannot have MailTips enabled for them. You can make a security group be an object in the address book by mail enabling it, and then you can set a MailTip on it.

C. Correct: Dynamic Distribution Groups support MailTips.

D. Correct: MailTips can be set on mail user objects.

2. Correct answers: C and D

A. Incorrect: They can use your classifications if they import your classifications and ensure that the Send and Receive connectors between your organization and theirs do not remove the Exchange Server internal forest, and organization headers.

B. Incorrect: The classification is an internal header on Exchange, and so the other organization, without specific configuration, will not see the message header.

C. Correct: The header in the message contains a GUID. Therefore, the display name of the classification needs to be added to the Active Directory of the recipient organization, and the GUID of the classification needs to match.

D. Correct: Because the header that contains the GUID is an internal header, it will be removed by the header firewall. Therefore, the send connector outbound from your organization, and the receive connector at the inbound organization need to ensure these internal headers are not stripped off. Hybrid mode to Exchange Online does this as part of the connectors, and so would need to be done for all other cross-forest partner organizations.

3. Correct answer: C

A. Incorrect: When two mailboxes are on the same 2007 server the mail flow will not go through a 2013 mailbox server, and so 2013 rules will never be applied.

B. Incorrect: This will partly work, though any changes made to the rules after the first 2013 server is installed will not be automatically replicated to the area of the Active Directory that 2013 uses to store rules.

C. Correct: The rules made on 2007 will work in 2013, but only if exported and imported again after each change. This ensures that any 2013 rule changes that might have occurred are removed upon this importing of the 2007 rules.

D. Incorrect: Mail flow between two mailboxes in the same 2013 DAG or Active Directory site will not ever go via a 2007 hub transport server.