34.5 C
Monday, June 17, 2024

Quick Tip : Turning off Exchange Admin Center for security reasons

For Exchange Server 2013,Exchange Server 2016

Most of the admins/consultants wants to turn off the Exchange admin center on the internet facing exchange servers. Due to the scare of Security Breach , Where guys who have potential access to exchange can do severe damage to the organization.

Lets see how to disable it.

Note after disabling , Exchange Admin Center wont be accessible. And only Exchange management shell will be active to manage the exchange server. Most of the organizations what they do is . They disable EAC on the internet facing servers and install a dummy Exchange Server with Exchange admin tools and manage using that. It makes sense in terms of security.

Get-EcpVirtualDirectory "EXCH01\ECP (Default Web Site)"




Set-ECPVirtualDirectory -Identity "EXCH01\ECP (Default Web Site)" -AdminEnabled $false


Satheshwaran Manoharan
Satheshwaran Manoharanhttps://www.azure365pro.com
Award-winning Technology Leader with a wealth of experience running large teams and diversified industry exposure in cloud computing. From shipping lines to rolling stocks.In-depth expertise in driving cloud adoption strategies and modernizing systems to cloud native. Specialized in Microsoft Cloud, DevOps, and Microsoft 365 Stack and conducted numerous successful projects worldwide. Also, Acting as a Technical Advisor for various start-ups.

Related Articles


  1. thanks for sharing this article i was planning since long time but the think is we want to keep active for internally where as we want to restrict ECP url from external site , would you kindly advise best options ?

    • Disabling only for external – Is not an recommended option. Its just to disable on the server completely. and use a spare server if you really need EAC to manage the server. Some people try to restrict on the virtual directory. which screws the environment at times.


Please enter your comment!
Please enter your name here