How TECH: May 2015

5/25/2015

Default settings for Exchange virtual directories

With you have problems on IIS permissions at Web configuration of Microsoft Exchange 2010, just see the technet website, show the original configurations.

https://technet.microsoft.com/pt-br/library/gg247612%28v=exchg.150%29.aspx

Default Client Access server IIS authentication and SSL settings

Virtual directory	Authentication method	SSL settings	Management method
Default website	Anonymous	Required	IIS management console
aspnet_client	Anonymous authentication	SSL required Requires 128-bit encryption	IIS management console
Autodiscover	Anonymous authentication Basic authentication Windows authentication	SSL required Requires 128-bit encryption	Exchange Management Shell (Shell)
ecp	Anonymous authentication Basic authentication	SSL required Requires 128-bit encryption	Exchange admin center (EAC) or Shell
EWS	Anonymous authentication Windows authentication	SSL required Requires 128-bit encryption	Shell
Microsoft-Server-ActiveSync	Basic authentication	SSL required Requires 128-bit encryption	EAC or Shell
OAB	Windows authentication	Not required	EAC or Shell
owa	Basic authentication	SSL required Requires 128-bit encryption	EAC or Shell
PowerShell	Anonymous authentication	Not required	Shell
Rpc	Basic authentication Windows authentication	SSL required Requires 128-bit encryption	Shell
RpcWithCert	By default, all authentication methods are disabled.	Required

Mailbox server

The following table lists the default settings on a stand-alone Exchange 2013 Mailbox server.

Default Mailbox server IIS authentication and SSL settings

Virtual directory	Authentication method	SSL settings	Management method
Default website	Anonymous authentication	SSL required Requires 128-bit encryption	This virtual directory can’t be configured by the user.
PowerShell	Anonymous authentication	Not required	Shell

5/18/2015

VPN Cisco / Kaspersky problens

Most common after install kaspersky antivirus, cisco vpn doens't works.

Depois de instalar o Kaspersky antivirus a vpn da cisco não funciona corretamente.

1. In Kaspersky, you must first disable Self-Defense

2. Go to your registry by typing regedit in the run menu
3. Navigate to \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\klwfp (note: for older Kaspersky versions it might be kltdi instead of klwfp)
4. There will be a key called "Start" and should have a default of "1". Change that to "4"

5. Enable Self-Defense again and restart
6. Once restarted when you connect via the VPN, you should be working again.