Wednesday , June 10 2020

Quick Tip : Turning off Exchange Admin Center for security reasons

For Exchange Server 2013,Exchange Server 2016

Most of the admins/consultants wants to turn off the Exchange admin center on the internet facing exchange servers. Due to the scare of Security Breach , Where guys who have potential access to exchange can do severe damage to the organization.

Lets see how to disable it.

Note after disabling , Exchange Admin Center wont be accessible. And only Exchange management shell will be active to manage the exchange server. Most of the organizations what they do is . They disable EAC on the internet facing servers and install a dummy Exchange Server with Exchange admin tools and manage using that. It makes sense in terms of security.

Get-EcpVirtualDirectory "EXCH01\ECP (Default Web Site)"

 

 

image

Set-ECPVirtualDirectory -Identity "EXCH01\ECP (Default Web Site)" -AdminEnabled $false

image

About Satheshwaran Manoharan

Satheshwaran Manoharan is an Microsoft Office Server and Services MVP , Publisher of Azure365pro.com. Specialized in Office365 / Microsoft Exchange / Virtualization , Sathesh is an Messaging Expert supporting/Designing/Deploying many medium size businesses to large enterprises when it comes to Corporate messaging and Virtualization Infrastructure

Check Also

Optimize Antispam Settings in Office 365

Lets see how to optimize anti spam settings in office 365. Anti spam settings can …

4 comments

  1. hi, is it possible to this for exchange 2010,

  2. thanks for sharing this article i was planning since long time but the think is we want to keep active for internally where as we want to restrict ECP url from external site , would you kindly advise best options ?

    • Satheshwaran Manoharan

      Disabling only for external – Is not an recommended option. Its just to disable on the server completely. and use a spare server if you really need EAC to manage the server. Some people try to restrict on the virtual directory. which screws the environment at times.

Leave a Reply

Your email address will not be published.