Exchange Reporter Admin Audit Logs - X-Forwarded-For
We have enabled X-Forwarded-For on our load balancers and enabled this option in Exchange Reporter so now the OWA/ActiveSync logs show "realip" of incoming connections rather than the IP address of the VIP on the load balancer.
However, we have also enabled advanced mailbox auditing and soon realised that any admin or non-owner activity on the mailbox shows the load balancer IP instead of real internal or external IP address. I assume this is because this report runs PowerShell commands instead of checking the Exchange log files directly.
It would VERY handy for auditing/compliance purposes if Exchange reporter could report on real ip for advanced auditing section. I am sure many of your customers would appreciate this please.
New to ADSelfService Plus?