{"id":9513,"date":"2020-08-05T10:37:13","date_gmt":"2020-08-05T02:37:13","guid":{"rendered":"https:\/\/www.microdium.net\/public\/?p=9513"},"modified":"2020-08-05T10:37:13","modified_gmt":"2020-08-05T02:37:13","slug":"mailstore-server-version-13-0-new-update","status":"publish","type":"post","link":"https:\/\/www.microdium.com\/public\/2020\/08\/05\/mailstore-server-version-13-0-new-update\/","title":{"rendered":"MailStore Server Version 13.0 &#8211; New Update"},"content":{"rendered":"<h2 id=\"mailstore-server-13-0\">MailStore Server Version 13.0 &#8211; New Release<\/h2>\n<ul class=\"changelog-entry\">\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0Following Microsoft&#8217;s major product renaming for consumer and SMB products, the name Office 365 has been replaced by Microsoft 365 throughout the software. All references to Microsoft 365 interchangeably apply to the Office 365 Enterprise plans and other plans that kept Office 365 in their name.<\/li>\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0This release fully removes the support for establishing unencrypted connections to MailStore Server. This also includes the HTTP-to-HTTPS redirect option, which must be considered insecure without the use of properly configured HTTP Strict Transport Security (HSTS).<\/li>\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0Mobile Web Access has been fully removed in this release. Many improvements and bug fixes applied to the responsive Web Access in this release make it a suitable, modern, and secure replacement on all supported mobile devices, including support of authenticating users directly against Microsoft 365 and Google G Suite.<\/li>\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0To manage connections to remote SMB\/CIFS network shares, the Service Configuration tool now provides built-in functionality as an easier and more secure alternative to the startup script method available in previous versions. It is highly recommended to replace existing &#8220;net use&#8221; commands in the startup script with the new built-in functionality. A corresponding warning will appear on the administrator&#8217;s dashboard as long as &#8220;net use&#8221; commands are found in the startup script file. Please note that the Startup Script section in the Service Configuration tool is only visible if the startup script file actually exists.<\/li>\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0Microsoft has announced the removal of HTTP Basic Auth for Exchange Web Services (EWS) in Microsoft 365. As MailStore&#8217;s traditional Microsoft Exchange profiles support EWS with Basic Auth only, a new dedicated Microsoft 365 profile with support for modern OAuth authentication and a new Directory Service with support for authenticating users via OpenID Connect have been added. Customers of Microsoft 365 are advised to regularly check for Microsoft&#8217;s announcement on the timeline for removing HTTP Basic Auth, and should plan the migration to the new profiles in advance. Please note that IMAP access to the archive is no longer supported when using a directory service which authenticates users via OpenID Connect.<\/li>\n<li><strong><span class=\"changelog-label\">Note<\/span><\/strong>\u00a0Google has announced the removal of basic authentication types for IMAP in G Suite. IMAP is used in MailStore when authenticating users against G Suite. The existing direcory service settings for G Suite have therefore been extended to support the modern OpenID Connect authentication method. Customers of G Suite are advised to regularly check for Google&#8217;s announcement on the timeline for removing basic authentication, and should plan the migration to the new setting in advance. Please note that IMAP access to the archive is no longer supported when using a directory service which authenticates users via OpenID Connect.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Dedicated Microsoft 365 profiles for archiving and exporting emails using modern OAuth authentication as required by Microsoft. Please note that for technical and organizational reasons, these profiles are only available to MailStore administrators.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Directory Services: New profile for Microsoft 365 using modern OAuth authentication, to synchronize users via Microsoft Graph API and to enable synchronized users to authenticate directly with Microsoft using OpenID Connect.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Directory Services: Added OpenID Connect as authentication method to G Suite profile, which allows synchronized users to authenticate directly with G Suite.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Two-step login process in Client, Outlook Add-in, and Web Access which supports the use modern authentication via OpenID Connect to authenticate users directly against Microsoft 365 and Google&#8217;s G Suite.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Network share management added to Service Configuration tool as an easier and more secure alternative to using startup scripts.<\/li>\n<li><strong><span class=\"changelog-label\">New<\/span><\/strong>\u00a0Group Policy templates for Client and Outlook Add-in are now bundled with MailStore Server.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Options to allow unencrypted access via HTTP to MailStore Server fully removed in Service Configuration tool. This also includes the optional HTTP-to-HTTPS redirect.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Outlook Add-in: Support for unencrypted access via HTTP to MailStore Server fully removed.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Localization of Group Policy templates.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Improved handling of logging job results for Jobs that did not create any output.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Audit event MessageDelete is now set to &#8220;All Users&#8221; by default on new installations.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Port on which MailStore Server should listen for Let&#8217;s Encrypt validation requests can now be changed in the Service Configuration tool. Please note that Let&#8217;s Encrypt still connects to port 80 on the resolved external IP address.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0The admin dashboard and recent profile results warn about potentially insecure (e.g. unencrypted, Ignore SSL warning set) outbound connections to email servers or directory services. This has been just an information since version 12.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Client: Clicking on folder path in message view opens the folder and shows the messages therein.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Clicking on folder path in message view opens the folder and depending on display size shows the messages therein.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Show specific message if session has expired.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Major update of all underlying web framework components.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Increased available reading space for content in mobile view.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Search by &#8220;This Week&#8221; and &#8220;Last Week&#8221; filter take locale setting into account for first day of week.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Web Access: Images attached to emails will be displayed in web browser instead of downloaded when opened.<\/li>\n<li><strong><span class=\"changelog-label\">Improved<\/span><\/strong>\u00a0Unified handling of certificate validation across all clients that connect to MailStore Server. Please note that certificate thumbprints can no longer be whitelisted via Group Policies.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Messages of item class &#8220;IPM.Note.NotSupportedICal&#8221; cause ErrorAccessDenied exception when archiving from Microsoft 365 mailboxes.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Processing of Retention Policies does not mark broken search indexes as broken.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Audit Log cannot be opened when it contains an entry with a user name which includes a colon.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Passwords with leading or trailing space character cannot be used in Exchange\/Microsoft 365 archiving profile, although supported by Microsoft 365.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Client: In contrast to the Legacy Web Access and Outlook Add-in, only the date is shown in message list, but no time information.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Scrolling in sidebar does not behave as expected on iOS devices.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Sidebar does not scroll to expected position while switching between search and folder view.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Escape character visible in path property in message detail view.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Folders become inaccessible when a large folder hierarchy exist in the archive.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Microsoft Edge (Spartan) crashes when selecting a custom date.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: Content of emails with wide message body cannot be reached due to missing horizontal scroll bars in message view.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Web Access: In contrast to the Legacy Web Access and Outlook Add-in, only the date is shown in message list, but no time information.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Incorrect Dutch localization of &#8220;Uncheck all&#8221;.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Mobile Web Access is built upon the no longer maintained jQuery Mobile. To address security concerns and support modern OpenID Connect authentication method, Mobile Web Access has been removed in favor of the responsive Web Access.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Update of third party library, which fixes several minor issues in archiving, displaying and exporting of emails.<\/li>\n<li><strong><span class=\"changelog-label\">Fixed<\/span><\/strong>\u00a0Various minor bug fixes and improvements.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>MailStore Server Version 13.0 &#8211; New Release Note\u00a0Following Microsoft&#8217;s major product renaming for consumer and SMB products, the name Office 365 has been replaced by Microsoft 365 throughout the software. All references to Microsoft 365 interchangeably apply to the Office 365 Enterprise plans and other plans that kept Office 365 in their name. Note\u00a0This release [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[],"class_list":["post-9513","post","type-post","status-publish","format-standard","hentry","category-product-updates-microdium"],"_links":{"self":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/9513","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/comments?post=9513"}],"version-history":[{"count":0,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/9513\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/media?parent=9513"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/categories?post=9513"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/tags?post=9513"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}