Pau Lo

<div>
<div class="content wysiwyg-content">
what would be some good tests to perform on an exchange online (recently migrated all mailboxes from on-prem exchange to office365 exchange online) environment for a risk assessment/audit process. I can think of basics such as permissions on mailboxes for the security aspect but wanted to build a list of perhaps the top 5 areas an audit would benefit. I appreciate such a task would be slightly different to an audit/risk assessment from an on-prem audit, but getting some assurances that the exchange online environment is configured, administered and managed in line with best practice would be useful as I am sure there are still things admins can overlook/get wrong/common mistakes just like they could internal hosted systems. I know reviews such as this often focus solely on security but any other worthwhile checks would also be interesting.
</div>
</div>


what would be some good tests to perform on an exchange online (recently migrated all mailboxes from on-prem exchange to office365 exchange online) environment for a risk assessment/audit process. I can think of basics such as permissions on mailboxes for the security aspect but wanted to build a list of perhaps the top 5 areas an audit would benefit. I appreciate such a task would be slightly different to an audit/risk assessment from an on-prem audit, but getting some assurances that the exchange online environment is configured, administered and managed in line with best practice would be useful as I am sure there are still things admins can overlook/get wrong/common mistakes just like they could internal hosted systems. I know reviews such as this often focus solely on security but any other worthwhile checks would also be interesting.

office365 / exchange online healthcheck

An email client, email reader or more formally mail user agent (MUA) is a computer program in the category of groupware environments used to access and manage a user's email. A web application that provides message management, composition, and reception functions may internally act as an email client; as a whole, it is commonly referred to as webmail. Likewise, email client may be referred to a piece of computer hardware or software whose primary or most visible role is to work as an email client. Email clients can also have other systems, like calendars, notes and contact managers.

Email Clients

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Exchange

Office 365 is a group of software plus services subscriptions that provides productivity software and related services to its subscribers. Office 365 allows the use of Microsoft Office apps on Windows and OS X, provides storage space on Microsoft's cloud storage service OneDrive, and grants 60 Skype minutes per month. Office 365 includes e-mail and social networking services through hosted versions of Exchange Server, Skype for Business Server, SharePoint and Office Online, integration with Yammer, as well as access to the Office software. All of Office 365's components can be managed and configured through an online portal; users can be added manually, imported from a CSV file, or Office 365 can be set up for single sign-on with a local Active Directory using Active Directory Federation Services.

Microsoft 365

Within Internet message handling services (MHS), a message transfer agent or mail transfer agent (MTA) or mail relay is software that transfers electronic mail messages from one computer to another using a client–server application architecture. A MTA implements both the client (sending) and server (receiving) portions of the Simple Mail Transfer Protocol (SMTP). The terms mail server, mail exchanger, and MX host may also refer to a computer performing the MTA function. The Domain Name System (DNS) associates a mail server to a domain with mail exchanger (MX) resource records containing the domain name of a host providing MTA services.