![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 4%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETK%3C/text%3E%3C/svg%3E)
Exchange Server
Microsoft 用戶端/伺服器傳訊和共同作業軟體系列。
18 個問題
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 91%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJZ%3C/text%3E%3C/svg%3E)
Hi @Tang, Ken,
Welcome to the Microsoft Q&A platform!
Based on your description, you are dealing with a situation where the On-Perm Exchange network service has been hit by some brute force account attacks. Here are some strategies to help mitigate brute force attacks against your Exchange 2016 Hybrid setup:
- Adding an extra layer of security can significantly reduce the risk of unauthorized access.
- Limit access to Exchange services via VPN. This ensures that only users connected to the internal network can access the services.
- Configure your Active Directory to lock accounts after a certain number of failed login attempts. This helps prevent brute force attacks.
- Adding reCAPTCHA to your OWA/ECP login page can help block automated login attempts.
- Implement authentication policies to detect and block password spray attacks, which are a type of brute force attack.
- Regularly monitor your logs for suspicious activity and block IP addresses that show signs of brute force attempts.
Please feel free to contact me for any updates. And if this helps, don't forget to mark it as an answer.
Best,
Jake Zhang