Solved

Exchange Server 2010 Hardening

Posted on 2012-12-22
6
626 Views
Last Modified: 2012-12-26
Hi ,

We are planning to upgrade Exchange from Exchange 2007 to Exchange 2010. Please let me know what is the best practices to do the Exchange Serevr 2010 Hardeing before putting into Production environment.
0
Comment
Question by:padas6
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 52

Expert Comment

by:Manpreet SIngh Khatra
ID: 38715153
What is your current infrastructure and do you have the budget for HA ?
Look i dont think anyone can give you a complete answer before knowing your thoughts and basic requirements

- Rancy
"Merry Christmas and Happy New Year"
0
 

Author Comment

by:padas6
ID: 38715168
Hi Rancy,

Current Infrastructure is Exchange Server 2007 SCC model with Single HUb & Single CAS, duel Iron Port is being used for SMTP gateway with 2000 user mailbox .

We are planning to Migrate with below feature,

1. Two HUB & CAS in Cas Array
2. Two Mailbox Server is in DAG Functionality.

We are already going to start to installation but I have couple of queries which I posted today itself.

I just wanted to know if any good guidelline is availble for Exchange Hardening.
0
 
LVL 52

Expert Comment

by:Manpreet SIngh Khatra
ID: 38715179
Perfect for your concern for point 1 & 2

Look i would suggest use Storage Calculator to understand whats best with number of Mailbox DB's you should have .... (Ram, Storage, Bandwidth)

Are you not getting a EDGE but using Ironport itself i guess ?
What exactly do you mean by Hardening ?

- Rancy
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:padas6
ID: 38715189
Server haredening, sany Minimum port opening, renaming local administrator account, basically you can server Server Hardening & if any thing I can focus on Exchange part.
0
 
LVL 52

Accepted Solution

by:
Manpreet SIngh Khatra earned 300 total points
ID: 38715197
Look Ports i guess should be opened for it to communicate with DC\GC and fr port25 and HTTP and HTTPS rest depends if there is some additional ports you need to open on it.

http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/b2f623cc-ab97-402d-92f7-18e7fe0cc516

http://loguinfo.blogspot.in/2007/12/hardening-exchange-server.html

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_26646314.html

- Rancy
0
 

Author Closing Comment

by:padas6
ID: 38720872
Usuable link.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question