• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 75
  • Last Modified:

Exchange 2010 account @iphone is getting emails even after password change

I have a SBS 2011 box with pre installed Exchange 2010 Version 14.3 (Build 123.4)
Users are receiving emails at iPhone. I noticed a strange thing; even after changing password of windows logon account, users can still receive & send emails at iPhone even without updating the new password in the iPhone exchange account settings.

iPhone asked the new password after restarting the server only.

Is it the genuine procedure or is the server got compromised? If its a policy, where to find & modify the policy.

Thanks for reading the concern.
0
Akash Bansal
Asked:
Akash Bansal
  • 4
  • 4
2 Solutions
 
Cliff GaliherCommented:
Perfectly normal. Authentication issues a token for a length of time and that token os still valid after a password change. You won't have to re-auth until the token expires. You really don't want to mess with this behavior. It has ramifications well beyond exchange.
1
 
Akash BansalIT ProfessionalAuthor Commented:
What is the token age normally? Worried if my server is compromised or not.
0
 
Cliff GaliherCommented:
Several hours. Is there a reason you think the server is compromised?
1
Transaction-level recovery for Oracle database

Veeam Explore for Oracle delivers low RTOs and RPOs with agentless transaction log backup and transaction-level recovery of Oracle databases. You can restore the database to a precise point in time, even to a specific transaction.

 
Akash BansalIT ProfessionalAuthor Commented:
Thanks.
User having admin privilege  reported a suspicious attachment he opened.
I submitted it to Avira; now it is added to the virus definition.


https://analysis.avira.com/en/status?uniqueid=5v1rPZISYhnBq1FR0vdkSVqFDNqYZtDA&incidentid=2099562

A few months back one of my friend lost money as his google mail password was hacked & hacker successfully diverted some expected payments to his account. The friend click almost the same type of link in pdf file & innocently entered his password to the phishing link.
0
 
Cliff GaliherCommented:
Well, as a general rule, admins should have separate admin accounts. For example, I may have an account called "cliff" that is a standard user that has an exchange mailbox and is a standard user, and "admin-cliff" that does *not* have an exchange mailbox and is used for admin tasks.  Admin accounts are further secured with 2FAband/or all external access blocked. That way admin credentials would never be leaked how you described.
1
 
Akash BansalIT ProfessionalAuthor Commented:
Yes! You are correct, I would advice my friends to make separate admin accounts.
What is 2FAband?
0
 
Cliff GaliherCommented:
Typo. 2FA and/or.
1
 
Akash BansalIT ProfessionalAuthor Commented:
As google mail has an option to sign out from all devices. So after changing the password of gmail, we click on "sign out all other web sessions", I guess this ensure that all other devices are forced logout.

How can we do it with on premises exchange 2010/2013 or 2016 users sessions.
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now