Microsoft Exchange Server 2013 – Advanced Solutions: Advanced Security

This course is included in our On-demand training solution.


It is important to protect your Exchange Server 2013 messaging infrastructure devices and end-points against unauthorized access to controlled or confidential information, and enterprise networks require an effective network access control embedded within the network infrastructure. In this course, you’ll learn how to secure Exchange 2013 messaging and select an appropriate security strategy by evaluating a variety of security features such as role-based access control (RBAC), BitLocker, and smart cards. This course will also describe how to implement IRM with Active Directory Rights Management Services (AD RMS) as well as how to configure and interpret mailbox and administrative audit logging. This course is one of a series in the SkillSoft learning path that covers the objectives for the Advanced Solutions of Microsoft Exchange Server (70-342) 2013 exam.

Target Audience

This learning path is targeted at senior Microsoft Exchange administrators who plan and manage multi-site enterprise class deployments of Exchange servers. It is also designed for individuals who seek professional distinction through the Exchange 2013 MSCE. This is done by completing the Microsoft Certified Solutions Associate (MCSA) – Office 365 certification and then taking the 70-341 – Core Solutions of Microsoft Exchange Server 2013 exam and the 70-342 – Advanced Solutions of Microsoft Exchange Server 2013 exam.



Expected Duration

120 min.

Course Objectives

Course Introduction

Securing Exchange 2013 Messaging Solution

  • match the Exchange 2013 security capabilities to their functions
  • RBAC

  • describe features of role-based access control (RBAC)
  • Management Role Groups

  • match the role group to its function
  • Management Role Assignment Policies

  • describe the management of role assignment policies
  • BitLocker Considerations

  • describe how BitLocker can be used in mitigating unauthorized access to data
  • Smart Card Overview

  • describe how smart cards are used to secure e-mail
  • Information Rights Management

  • describe how Information Rights Management (IRM) is used to protect data
  • S/MIME

  • describe how S/MIME is used to protect data
  • Exchange Hosted Encryption (EHE) and TLS

  • describe how Exchange Hosted Encryption (EHE) and TLS are used in data protection
  • AD RMS Accounts

  • match the AD RMS account to its role
  • Creating an AD RMS Template

  • create an AD RMS template using the Windows Server GUI
  • Distributing an AD RMS Template

  • configure the rights policy template for distribution
  • Creating an AD RMS Template with PowerShell

  • prepare Windows PowerShell for AD RMS template creation
  • Creating Transport Protection Rules

  • create a transport protection rule using the EAC
  • Configuring Transport Decryption and IRM

  • configure transport decryption
  • Configuring Mailbox Audit Logging

  • configure mailbox audit logging
  • The Set-MailboxAuditBypassAssociation Command

  • configure a mailbox to bypass audit logging
  • Configuring Mailbox Access Logging

  • configure mailbox access logging
  • The Set-AdminAuditLogConfig Command

  • configure Set-AdminAuditLogConfig parameters
  • Exercise: Advanced Security Solutions in Exchange 2013