Recently, I got a question from a customer to list all users that already enrolled in Azure MFA (through, for example, the url https://aka.ms/mfasetup.
The following PowerShell code lists all non-disabled users that already enrolled in Azure MFA:
When logging in to a customers Exchange Server 2013 environment recently, a pop up caught my eye, indicating the following errror:
An expired certificate as such obviously isn’t such a weird event. However, when zooming into the error, the server that the error referred to was an old, already decommissioned, Exchange Server!
The following locations were checked, to no avail:
Get-ExchangeServer
Get-ExchangeCertificate
ADSI Edit
Certificate store on all Exchange Servers
After some googling searching the web with Bing, I found a solution on the web.
Keep in mind, to run the command, specific permissions are required. A management role needs to be created with Mailbox Import Export assigned role. Assigning the Discovery Management role is not enough!