How to use retentions policies in OWA

Similar Messages

• Filters for retentions policies in OWA

  I created new retention policy 'Move messages older then 180 days'
  my Retention Policy works good but I need setup some filters
  filter for some email boxes
  filtered emails should stay in Inbox folder and does not move into archive folder
  how I can do it ?
  thanks

  Hi,
  Agree with ManU PhiliP. If you want to prevent archiving items in a specific folder, you can apply a personal tag “never move to archive” to this folder.
  You can refer to the following blog for more details about this.
  http://blogs.technet.com/b/exchange/archive/2011/08/05/prevent-archiving-of-items-in-a-default-folder-in-exchange-2010.aspx
  You can use the Start-ManagedFolderAssistant cmdlet to immediately start messaging records management (MRM) processing of mailboxes that you specify.
  Best regards,
  Belinda Ma
  TechNet Community Support

• How often do Retention Policies run in O365 SharePoint?

  Hello,
  I am trying to set up a retention policy on a list in SharePoint Online (O365) that will initiate a workflow I built in SharePoint Designer.  I already noticed that I must create the workflow using the 2010 workflow template (not 2013), or else it does
  not show up in my retention policy as a workflow that can be initiated.  What I would like to know is the schedule for checking the information policies.  Is it weekly?  Specifically what day and time should I expect the policy
  to be checked?  We have an E3 license.
  I know that in an on-premise environment, the retention policy schedule can be modified in Central Admin, but we do not have access to modify this in O365.
  Thanks! 

  On premis these jobs run over the weekend( weekly). for the SPO that is official position:
  Since the timer jobs are managed by Microsoft and no option for users to adjust timer job configuration in SharePoint
  Online, I am sorry to inform you that we don’t have a time interval list the time jobs services as SharePoint On-Premise.
  But from
  this post "
   The Expiration Policy timer job is set to run daily, so there could be a delay in processing your retention policy".
  But if you need further information, open a services desk ticket
  with SPO.
  Please remember to mark your question as answered &Vote helpful,if this solves/helps your problem. ****************************************************************************************** Thanks -WS MCITP(SharePoint 2010, 2013) Blog: http://wscheema.com/blog

• Retention policies, expiration

  Exchange 2013 on-premise 1/27/2015
  I have a retention policy that moves deleted items from the deleted folder to the recovery folder after 2 weeks. it is applied to all mailboxes but for this example we will observer mine.
  when I look in my deleted items folder I see the retention policy applied, items are flagged with expiration dates.
  However, several say "This item is expired" "Expires 1/23/2015" this item for example was put in the deleted items folder on the 9th, today is the 27, it expired on the 23rd.
  So why hasn't it moved to the retention items folder?
  Exchange is 100% up-to-date, MS Outlook client is 100% up-to-date. I have run the MFA against my mailbox several times.

  Hi,
  Are you using retention policies on any other folders in your mailbox?  If so, are any of these working properly?
  If possible, please apply retention policy with permanently delete action to a test mailbox to check if these items can be deleted.
  Please check the application log whether it has Event ID 9017 and 9018, make sure the MRM works well. Please check the Microsoft Exchange Mailbox Assistants service is working well.
  You can also increase the diagnostic logging level for the MRM, and then monitor the Event in the application log.
  Best regards,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Belinda Ma
  TechNet Community Support

• How to use SMIME in OWA for External Recipeints

  Hello,
         I am using a hybrid on premises active directory with office 365 environment with AD synced to office 365 using DIRSYNC. We are trying to achieve being able to send encrypted emails to clients using SMIME in OWA. We have
  used certutil to import certificates for some internal users which seems to let you send an encrypted email to them. However when creating a contact in AD for the external user and successfully importing the cert (you can see it in the userCertificate and
  userSMIMECertificate attribute in the object)  we are unable to email the recipient with an encrypted email as OWA cannot find the certificate. Also the internal users certificates appear in theirs entries in the GAL however the external contacts
  do not have their certificate included.
  Could someone advise me how to use OWA to send SMIME encrypted emails to external recipients. You can't add a certificate to a contact in OWA as far as I can see.
  Many Thanks
  Paul

  Hi,
  Please refer to the following article :
  http://blogs.office.com/2014/02/26/smime-encryption-now-in-office-365/
  Using S/MIME in OWA
  In OWA, users can choose different options to encrypt the message and/or digitally sign it using S/MIME.
  Hope this helps!
  Thanks.
  Niko Cheng
  TechNet Community Support

• Different retention policies for RMAN

  Hi@all,
  on our DB Server with RHEL 6 and Oracle 11.2.0.3.0 we're creating the following backups with RMAN:
  - every day at 11:00 pm Level 0 backup
  - every day at 05:00 am, 11:00 am and 05:00 pm Level 1 backup
  I've activated this retention policy:
  CONFIGURE RETENTION POLICY TO RECOVERY WINDOW OF 7 DAYS;
  So every backup is obsolete after 7 days. We use the control file and no recovery catalog. We have to get so much backups in front of SLA's.
  Now (in front of our physical disk space) i want to switch the retention policy to the following:
  - Fullbackups (level 0)should be obsolete after 7 days
  - incremental backups (level 1) should be obsolete after 2 days
  - arch. redologs should be obsolete after 7 days (i like to use LogMiner and mostly i need the arch. redo logs from the last 7 days in our company)
  Is it possible in RMAN to define different retention policies for the different types of backups?
  Thanks for your help and regards,
  David

  David_Pasternak wrote:
  Hi@all,
  on our DB Server with RHEL 6 and Oracle 11.2.0.3.0 we're creating the following backups with RMAN:
  - every day at 11:00 pm Level 0 backup
  - every day at 05:00 am, 11:00 am and 05:00 pm Level 1 backup
  I've activated this retention policy:
  CONFIGURE RETENTION POLICY TO RECOVERY WINDOW OF 7 DAYS;
  So every backup is obsolete after 7 days. We use the control file and no recovery catalog. We have to get so much backups in front of SLA's.
  Now (in front of our physical disk space) i want to switch the retention policy to the following:
  - Fullbackups (level 0)should be obsolete after 7 days
  - incremental backups (level 1) should be obsolete after 2 days
  - arch. redologs should be obsolete after 7 days (i like to use LogMiner and mostly i need the arch. redo logs from the last 7 days in our company)
  Is it possible in RMAN to define different retention policies for the different types of backups?
  Thanks for your help and regards,
  David
  You misunderstand what retention policy is and how it works.
  When you say 'retention policy 7 days' you are telling rman to keep everything -- all backups of all types -- that are necessary to recover to any point within the last 7 days.   If you say 7 days, rman makes the decision on what he needs to recover, not you.
  And note that all recovery begins with the most recent full backup prior to the requested point in time.   So if you are taking a level 0 backup every seven days, with a 7 day retention, six days into the cycle, you will still need the level 0 backup from 13 days ago, so rman will not consider it obsolete.

• How to use single sign on to authenticate

  How to use single sign on to use the MS-AD for authentication
  I have created an data source which points to the MS-AD and tested
  Next how do i add this to the policies.
  Thanks
  NS

  Hi,
  Please, specify the products and versions that you are using?
  thanks,
  Thiago Leoncio

• How to use a custum permission in the .policy file

  Hi,
  I am stuck with the problem of having a custum permission that extands java.security.BasicPermission.
  I really want this permission to be checked from my .policy file, but when I try to include its location : c:\java_project\server\SpecialPolicy.class
  it pops a message that file is not found. I have tried dots, different slashes (back and forward) and still have no luck. I need this custum permission to be checked so that I can allow special access from a certain codebase so that say if I try a dangerous method I can just simply check in the code;
  this.getSecurityManager.checkPermission(new SpecialPermission("lol"));
  Also I need a paramater option, but I cant think of any since its not a FilePermission that takes a name and attributes (read, write..) what does BasicPermission take and if I extend it what attribute should I pass in. I dont really care about how this permission works, i just use it to restrict access to a certain functions in code that are ran from specific codeBAse.
  Please dont ask why I need this :)
  Thanks in advance, the documentation on how to add custum policies is simply NOT THERE. thus I have to bug people around.

  Hi
  If you just have to add another permission it is easy.
  Create a class extending the BasicPermission. Have an entry into
  the policy file like
  grant <Principal> {
  permission <CumstomPermission> "lol"
  }that should be all. If you do have a specific Principal, please
  do not forget to add the Principal to the relevant Subject after login.
  cheers
  Projyal

• How to use Javamail for accessing additional mailboxes -IMAP, Exchange 2010

  hi,
  I want to access a shared mailbox (NOT FOLDER) via Javamail API (1.4.5) using IMAP(s) with plain logon. The mailserver is a Exchange Server 2010.
  User: user1 ([email protected])
  pwd: xxxx
  shared mailbox: [email protected]
  Properties:
  mail.imaps.socketFactory.port = 993
  mail.imaps.starttls.enable = true
  mail.imaps.socketFactory.class = javax.net.ssl.SSLSocketFactory
  mail.imaps.socketFactory.fallback = false
  username = [email protected]
  password = xxxx
  I´ve managed to get access to the user1 - mailbox:
  Session session = Session.getInstance(properties, new ExchangeAuthenticator(username, password));
  session.setDebug(true);
  Store store = session.getStore("imaps");
  store.connect(imapHost, username, password);
  --> this works just fine! But now i want to access the additional mailbox by changing the login-String:
  [email protected]/shared_MB (user@domain/additional_MB)
  --> unfortunately I´m getting an "NO AUTHENTICATE" message:
  DEBUG: setDebug: JavaMail version 1.4.5
  DEBUG: getProvider() returning javax.mail.Provider[STORE,imaps,com.sun.mail.imap.IMAPSSLStore,Sun Microsystems, Inc]
  DEBUG: mail.imap.fetchsize: 16384
  DEBUG: mail.imap.statuscachetimeout: 1000
  DEBUG: mail.imap.appendbuffersize: -1
  DEBUG: mail.imap.minidletime: 10
  DEBUG: trying to connect to host "host.domain.com", port 993, isSSL true
  * OK The Microsoft Exchange IMAP4 service is ready.
  A0 CAPABILITY
  * CAPABILITY IMAP4 IMAP4rev1 AUTH=NTLM AUTH=GSSAPI AUTH=PLAIN UIDPLUS CHILDREN IDLE NAMESPACE LITERAL+
  A0 OK CAPABILITY completed.
  DEBUG IMAP: AUTH: NTLM
  DEBUG IMAP: AUTH: GSSAPI
  DEBUG IMAP: AUTH: PLAIN
  DEBUG: protocolConnect login, host=host.domain.com, [email protected]/shared_MB, password=<non-null>
  DEBUG IMAP: AUTHENTICATE PLAIN command trace suppressed
  DEBUG IMAP: AUTHENTICATE PLAIN command result: A1 NO AUTHENTICATE failed.
  javax.mail.AuthenticationFailedException: AUTHENTICATE failed.
  I was able to get access with Thunderbird and also with the Exchange OWA-Client, so I think there is something missing in my code...
  or is it just impossible to get access to a different mailbox using javamail and plain-auth?
  Thank you in advance.

  Thanks bshannon, that was a great idea!
  I haven´t found an solution yet, but I have maybe identified the real problem:
  Here is some interessting Thunderbird - Logging stuff:
  744[7161040]: try to log in
  744[7161040]: IMAP auth: server caps 0x1187235, pref 0x1006, failed 0x0, avail caps 0x1004
  744[7161040]: (GSSAPI = 0x1000000, CRAM = 0x20000, NTLM = 0x100000, MSN = 0x200000, PLAIN = 0x1000, LOGIN = 0x2, old-style IMAP login = 0x4)auth external IMAP login = 0x20000000
  744[7161040]: trying auth method 0x1000
  744[7161040]: got new password
  744[7161040]: IMAP: trying auth method 0x1000
  744[7161040]: PLAIN auth
  744[7161040]: 7082000:xmail.domain.com:NA:SendData: 2 authenticate plain
  744[7161040]: ReadNextLine [stream=7ec9e88 nb=3 needmore=0]
  744[7161040]: 7082000:xmail.domain.com:NA:CreateNewLineFromSocket: +
  744[7161040]: 7082000:xmail.domain.com:NA:SendData: Logging suppressed for this command (it probably contained authentication information)
  744[7161040]: ReadNextLine [stream=7ec9e88 nb=27 needmore=0]
  744[7161040]: 7082000:xmail.domain.com:NA:CreateNewLineFromSocket: 2 NO AUTHENTICATE failed.
  744[7161040]: authlogin failed
  744[7161040]: marking auth method 0x1000 failed
  ---> okay, so PLAIN AUTH is failing.....
  744[7161040]: IMAP auth: server caps 0x1187235, pref 0x1006, failed 0x1000, avail caps 0x4
  744[7161040]: (GSSAPI = 0x1000000, CRAM = 0x20000, NTLM = 0x100000, MSN = 0x200000, PLAIN = 0x1000, LOGIN = 0x2, old-style IMAP login = 0x4)auth external IMAP login = 0x20000000
  744[7161040]: trying auth method 0x4
  744[7161040]: got new password
  744[7161040]: IMAP: trying auth method 0x4
  744[7161040]: old-style auth
  744[7161040]: 7082000:xmail.xmail.domain.com:NA:SendData: Logging suppressed for this command (it probably contained authentication information)
  744[7161040]: ReadNextLine [stream=7ec9e88 nb=23 needmore=0]
  744[7161040]: 7082000:xmail.domain.com:NA:CreateNewLineFromSocket: 4 OK LOGIN completed.
  744[7161040]: login succeeded
  --> okay, so Thunderbird is using "old-style IMAP login" and is successful.
  Unfortunately I have no idea what that actually means or how to use it in Javamail (is it even supported?). Any suggestions?

• How to use OEM grid control to find any database not in archivelog mode?

  Hello,
  currently we have 130 databases, say, if I want to pick out any database currently NOT in archivelog mode, is there a quick way to find out ?
  by using OEM grid control
  or
  some trick similar,
  but really don't need to check each database manually.
  thank you very much!

  This query works in 12c - please run as SYSMAN.
  It is based on undocumented assumptions though +( AND key_value = 'NOARCHIVELOG')+.
    SELECT *
    FROM SYSMAN.MGMT$GROUP_DERIVED_MEMBERSHIPS O ,
      SYSMAN.MGMT$TARGET T ,
      sysman.MGMT$AVAILABILITY_CURRENT st
    WHERE
    o.member_target_type     IN ('oracle_database', 'rac_database')
    AND ( t.target_type           ='rac_database'
    OR (t.target_type             ='oracle_database'
    AND t.type_qualifier3        != 'RACINST'))
    AND o. member_target_guid     = t.target_guid
    AND t.target_guid             = st.target_guid
    AND st.availability_status    = 'Target Up'
    AND ( EXISTS
      (SELECT *
      FROM sysman.mgmt$metric_current i
      WHERE I.TARGET_GUID = O.MEMBER_TARGET_GUID
      AND metric_name     = 'archFull'
      AND Metric_Column   = 'archTotal'
      AND metric_label    = 'Archive Area'
      AND column_label    = 'Total Archive Area (KB)'
      AND key_value       = 'NOARCHIVELOG'
      ));Another way to achieve the goal is to push extended metrics (SELECT LOG_MODE FROM V$DATABASE) on each DB, and monitor the values they return to the repository. This is an example for a (slightly) different problem - http://iiotzov.wordpress.com/2012/08/08/how-to-use-the-new-oem-12c-metric-extensions-to-enforce-enterprise-wide-custom-policies .
  OEM Repository has many other great uses as well - http://iiotzov.files.wordpress.com/2012/05/oem-repository-a-second-look.doc , http://iiotzov.files.wordpress.com/2011/08/iotzov_oem_repository.pdf
  Iordan Iotzov
  http://iiotzov.wordpress.com/

• How to create & handle policies?

  Question from a customer (anonymized):
  It is my understanding that the reference implementation comes with 4 sample policies:  Ad-pol, dto-pol, sub-pol, and vod-pol.  Without a policy file, both the f4fpackager and the Adobe Access SDK fail to generate DRM data.  As such, we are trying to determine what policy file should be used for the initial implementation and the impact if we choose to change the policy file later (i.e. would we need to repackage all assets again to include the updated policy file?).
  In my mind, the first step is to understand what parameters can be declared in each policy file.  The second step is to determine what parameters are in scope for us (requirements).  And then finally, we need to implement the desired policy with the desired parameters (looks like we do this via the Policy Update List Manager?).  Would you agree with this approach?  Any recommendations overall – how other companies proceed?  Is the only documentation on this topic found in the Protecting Content -> Using the Adobe Access Reference Implementations document?

  The entire content prep and license server configuration life cycle is documented in the "Protecting Content" document.  All of the information I describe below can be found (in even more detail) there.  http://www.adobe.com/support/adobeaccess/pdfs/server/AdobeAccess_4_ProtectingContent.pdf
  The policies you’re speaking of our some sample/demo policies that our Reference Implementation License Server uses for our Business Rules sample.  It’s a mode you can set in the license server, where it’ll serve out licenses abiding by the restrictions in one of those Ad-Supported, Download-to-Own, Subscription, or Video-On-Demand sample policies you’re looking at.  Page 22 of the Ref Impl usage guide will demonstrate how to package content that'll demonstrate this Business Logic:  http://www.adobe.com/support/adobeaccess/pdfs/server/AdobeAccess_4_RefImpl.pdf
  A policy, once created, can be used in any situation, so you’re free to use those sample policies (if they suit you), or build your own policies using our Java Adobe Policy Manager, or by directly using our Adobe Access SDK.  I’ll go into details on how to use either approach below.
  [ What is a policy? ]
  A name:value set of license restrictions.  A description of all the license restrictions that can be defined in a policy can be found in the "Usage Rules" section here: http://www.adobe.com/support/adobeaccess/pdfs/server/AdobeAccess_4_ProtectingContent.pdf
  [ How is a policy used during packaging (encrypting)? ]
  The packager takes the policy as an opaque blob of data to insert into the DRM Metadata during packaging.  When the client requests a licnese, it'll send the entire DRM Metadata blob to the License Server (without parsing it).  The DRM Metadata contains the following information:
  - License Server URL
  - Policy
  - Content Encryption Key (encrypted using the License Server's Public Key)
  [ How is a policy used during Adobe Access License Server issuance? ]
  A policy is a suggested "blueprint" that the Adobe Access license server may choose to use in order to determine what constraints/restrictions to include into the license it vends to the client.  The key words here are "suggested" and "blueprint".  "Suggested" infers that the server can choose to only listen to some (or all) of the restrictions named in the policy.  The license server can even choose to override any/all of the policy fields.  To the extreme case, the license server may choose to completely ignore the policy sent up in the metadata and use it's own policy (by creating one from scratch, or using the built-in PolicyUpdateList functionality).
  Once all of the policy properties are decided, it is used by the License Server to generate a license to send down to the client.

• How to configure security policies like account locking, account expiry in portal application?

  Hi All,
  Can anybody pls tell me how to configure security policies like account locking,
  account expiry in portal application? By default, it has a 30 minutes lock period
  after 5 retries. But if I want to set other values or want to unlock account of
  a user, then what to do ?
  TIA,
  Sudarson

  I have read the SSO admin guide, and performed the steps for enabling SSL on the SSO, and followed the steps to configure mod_osso with virtual host on port 4443 as mentioned in the admin guide.
  The case now is that when I call my form (which is developed by forms developer suite 10g and deployed on the forms server which is SSO enabled) , it calls the SSO module on port 7777 using http (the default behaviour).
  on a URL that looks like this :
  http://myhostname:7777/pls/orasso/orasso.wwsso_app_admin.ls_login?Site2pstoreToken=.......
  and gives the error :
  ( Forbidden
  You don't have permisission to access /sso/auth on this server at port 7777)
  when I manually change the URL to :
  https://myhostname:4443/pls/orasso/orasso.wwsso_app_admin.ls_login?Site2pstoreToken=.......
  the SSO works correctly.
  The question is :
  How can I change this default behaviour and make it call SSO on port 4443 using https instead ?
  Any ideas ?
  Thanks in advance

• Retention Policies without Recreation of mailboxes

  Greetings,
  i'm wondering if it's possible to create Retention Policy and with these tags:
  Delete and Allow Recovery after 3 years
  Move to archive after 1 year
  without recreation of whole mailbox.
  Because I've several Databases with around 200 Mailboxes.
  Imagine how much bandwidth and time would it take to download new mailbox from server.
  For example in three years one mailbox has around 3GB.
  I tried applying this and it recreated all mailboxes, whole network went down because of download.
  Thank you.

  If I understood you correctly: it is possible to apply non-default retention policies to existing mailboxes,
  http://technet.microsoft.com/en-us/library/dd298052(v=exchg.150).aspx
  If I misunderstood you, please correct me. Hope it helps.
  Robert Mandziarz | IT Administrator:
  CodeTwo
  If this post helps resolve your issue, please click the "Mark as Answer" or "Helpful" button at the top of this message. By marking a post as Answered, or Helpful you help others find the answer
  faster.

• Bandwidth Management(Rate Limit) Using QoS Policies

  Hello,
  I need some advice. We have an ASA 5525 running version 8.6(1)2 and a 10 MG pipe. I have execs that want to limit bandwidth on users for stuff like youtube, stream media, and downloads. I found the article on ‘Bandwidth Management(Rate Limit) Using QoS Policies’ so it appears our firewall can do what we want. I’m not a cisco person. My knowledge is limited when it comes to configuration – that’s why we have SmartNet :). The advice I need is what to ask for, so to speak, when I put a case in. Can bandwidth be limited on end users and/or can they limit the ‘bandwidth rate limit’ to just youtube, steaming media, and downloads? If so, what should the limit be? and I’m assume this would be for ‘incoming’ traffic only? we’re running into some bandwidth hogs – usually youtube and/or streaming media. We have a Barracuda web filter which we’ve used to block and monitor activity but I simply do not have time to babysit this all day. I should also mention we do have critical data running up and down the pipe; such as credit card processing, DB replication between in house DB and hosted website, TPCx and EDI, FTP, and such that we don’t want restricted.
  Need input please,
  Thanks,
  D

  Hello,
  That's a question that you as the network admin of that organization could answer.
  How much traffic for business purposes must travel via HTTP/HTTPS?
  How much bandwith are you willing to provide to this 2 protocols?
  Those are the kind of answers you need to answer before setting the number
  Regards
  Remember to rate all of the helpful posts, Just click the 5 stars at the left of each post
  Julio

• Archived video retention policies

  Wondering if anyone has good links to video archive retention policies.
  We are probably going to institute some sort of retention policies in the near future.
  We will be keeping orginal tapes, and archiving the straight captures of the tapes.
  We obviously will also store the fcp projects.
  Also, we will be archiving the finished products.
  Looking for others' policies so we can see what other edu's and coms are setting as rules for how long stuff is stored in each format.
  thanks

  I keep the tapes.
  The FCP project files, stills, created graphics, project files and assets from applications like Motion and AE, music and sound effects...those I burn to DVD and archive. I also export a self contained movie of the final show...texted and textless and archive those to hard drive...and keep copies of the final output tapes.
  I never back up the captured footage that I have the tapes for. I either keep the tapes, or if required by the network, send the tapes back to them....since they own them. If they want the project revisited and rebuilt, they need to send them back.
  Shane