To prevent Log4j vulnerability (CVE-2021-45105) we have upgraded Apache Log4j version 2.16 to 2.17.
An issue in generating data for Mailbox Sizes and Mailboxes with External Mail Forwarding reports has been fixed.
Release notes for build 4425 (Dec 16, 2021)
Enhanced support for Japanese and Chinese languages.
The Exchange Online PowerShell V2 module has been upgraded to the latest version.
Unable to update the mailbox auto-reply message when special characters are used.
Non-English characters were garbled during user creation.
Incorrect Display Names shown for a few licenses in the License by Service report.
Email notification failure for monitoring Microsoft 365 services.
Incorrect data generated for the Non-Owner Mailbox Access and Room Mailbox Usage reports.
Unable to generate data when reports are filtered by groups and for the Moderated By column in group reports.
Failure in archiving for customers using Microsoft SQL Server.
Chances for remote code execution (CVE-2021-44228 and CVE-2021-45046) were identified in applications that use Apache log4j versions above 2.0 and below 2.15.0. To prevent this vulnerability, we have upgraded log4j jar to version 2.16, and have removed the JndiLookup class from log4j jar's classpath.
The Microsoft Service Health API used to fetch data for monitoring has now been deprecated by Microsoft. M365 Manager Plus will now use a new Graph API to fetch details on Microsoft 365 Service Health. Users will have to update REST API permissions in Tenant Settings to ensure proper functioning of the monitoring feature.
The cmdlet used to fetch data for the Mail Traffic Summary report has been deprecated by Microsoft. M365 Manager Plus will now use a new cmdlet to fetch data for that report.
The UM Dial Plans report is deprecated from M365 Manager Plus as Microsoft no longer supports Unified Messaging.
Release notes for build 4423 (Oct 21, 2021)
A cross-site request forgery (CSRF) vulnerability, reported by Sahil Dhar through our bug bounty program, has been fixed.
A reflected cross-site scripting (reflected XSS) vulnerability, reported by Sahil Dhar through our bug bounty program, has been fixed.
An insufficient authorization vulnerability affecting a REST API URL has been fixed. The vulnerability was reported by Sahil Dhar through our bug bounty program.
Release notes for build 4421 (Oct 8, 2021)
Security issue fix:
Authentication bypass leading to arbitrary file-upload remote code execution vulnerability (CVE-2021-42099), reported by moon.
Release notes for build 4420 (Sep 29, 2021)
Leverage the Mailbox Folder Permission Changes management task to grant permissions to a mailbox's root folder.
The performance of Azure Active Directory User and Group reports has been improved.
Japanese and Chinese language support has been enhanced.
An issue of delayed archiving while running audits or generating reports has been fixed.
An issue in generating data for the Mailbox Sizes report has been fixed.
An issue in generating data for Synced Users and Cloud Users reports has been fixed.
An issue with Product Schedulers unavailability to a default admin with Log360 license has been fixed.
An issue in modifying litigation hold for soft deleted mailboxes has been fixed.
An issue in generating data for audit reports when the Callers or Targets filter in an audit profile is applied has been fixed.
An issue in exporting the Inactive Mobile Devices report when the inactive days filter in the report scheduler is applied has been fixed.
Release notes for build 4419 (Sep 22, 2021)
A post authentication command injection vulnerability affecting a REST API URL has been fixed. The vulnerability was reported by Sahil Dhar through our bug bounty program.
Release notes for build 4418 (Sep 20, 2021)
Issue faced while generating License Details report due to a change in Microsoft API has been fixed.
Release notes for build 4417 (Sep 8, 2021)
An authentication bypass vulnerability affecting some of the REST API URLs has been fixed.
Release notes for build 4416 (Sep 6, 2021)
The following issues have been fixed,
Remote code execution via BCP file overwrite .
Deleted contacts shown in All Mail Contacts report.
Error in retrieving data based on space separated values provided for Like constant in some audit and general reports.
Inability to add technicians in delegation module without MSOnline module.
Days To Expire filter not applied in Soon To Expire Licenses by User report.
Issue faced while using templates to create users along with MFA configuration.
Incorrect data shown when Recipient Type filter is applied in Manage License module.
Missing data in All Users report for MSSQL users.
Release notes for build 4415 (Aug 5, 2021)
Service pack files are now secured with digital signature to prevent unauthorized modifications while updating the product.
Incorrect data issue in MFA Enabled and MFA Disabled Users report.
Issue in creating Microsoft 365 groups with multiple owners.
Issue in exporting and scheduling reports when the data contains DST (Daylight Savings Time) transition date.
Error in showing Arabic characters in the Mail Subject column of Mail Trace reports.
Difficulty in loading details about draft messages with empty Sent Date Time field in Content Search module.
Missing to show the available data in the monitoring module, due to change in service name.
Issue in managing users based on group membership in License Management scheduler.
Details of external mails not being included in Mail Trace reports, when the count of unmanaged uses is greater than managed users.
Inability to create custom views of audit reports with multiple filter settings.
M365 Manager Plus will now use only service account for performing Microsoft 365 activities. Support for using technician credentials has been deprecated.
Release notes for build 4414 (May 12, 2021)
In the light of Skype for Business deprecation, M365 Manager Plus now uses MicrosoftTeams PowerShell module instead of SkypeOnlineConnector module for gathering data for all Skype General reports. Please note that to install MicrosoftTeams module, PowerShell version 5.1 or higher is required.
Release notes for build 4413 (May 10, 2021)
This build features enhanced Japanese language support.
Throttling issue while generating Mailbox Permissions reports.
Failing to gather data for SharePoint List Activities audit reports.
Issue in updating reports for users with MSSQL using Windows Authentication.
Empty values in default columns in Mailbox Size Restriction report.
Inability to enable or disable monitoring profiles.
Error thrown when a technician enables or disables report schedules.
Scheduled Stale Microsoft 365 Licenses report showing incorrect data compared to the actual report.
Federated domains not being displayed while working with management tasks or templates.
Not showing the License Status parameter with empty value while applying filters in License Detail report.
Empty Employee ID columns in All Users report.
Password expiry notifier excluding unlicensed users by default even when not chosen by the user.
Issue in removing columns from customized scheduled reports.
Issue in applying filters involving mailbox attributes in Manage License module.
Release notes for build 4412 (Mar 29, 2021)
The Exchange Online PowerShell V2 module has been upgraded to the latest version.
Due to receiving incorrect dates from Microsoft's Unified Audit Log, there has been a random occurrence of incorrect dates in certain audit logs. This issue has been resolved by our product team.
The issue of All Users report showing incorrect results after the completion of the full sync product scheduler has been fixed.
Release notes for build 4411 (Mar 11, 2021)
Issues faced while applying filters in the Manage License module have been fixed.
Groups that don’t belong to the Top N Groups report were shown earlier. This error has been fixed.
Release notes for build 4410 (Mar 5, 2021)
Database backup and restore, and robo update features are now available for MS SQL users.
An option to backup database while manually updating M365 Manager Plus has been added.
Issue in fetching MFA status of user accounts when REST API is enabled has been fixed.
Issue with technicians being able to create users in domains that do not belong to the virtual tenant delegated to them has been fixed.
The incorrect results issue due to insufficient data while performing mailbox content search has been fixed.
The option to manage users from MFA Enabled and MFA Disabled Users reports which was removed in build 4408 has been added again.
Technicians can now provide multiple values for ManageBy parameter while using CSV to create distribution groups.
Issue faced while applying filter based on Extended Properties in Azure AD STS Logon audit profile has been fixed.
Incorrect data issue faced while applying filter in the Inactive Mobile Devices report has been fixed.
Release notes for build 4408 (Jan 20, 2021)
Delta sync enabled reports : To help improve the product performance, few user, mailbox, contacts and group reports will only fetch the incremental changes after the first successful sync.
The issue faced by virtual tenant-delegated technicians during bulk user creation has been fixed.
Non-English language users can now view their Calendar Folder Statistics report properly.
The issues with Non-Owner Mailbox Access, Email Activity, Dynamic Distribution Group Members, Recently Password Reset Users (Self-Service) reports have been fixed.
MSOnline dependency is removed for the user creation task which can now be done using Graph API.
Please click here to check the fixes and enhancements on the previous version of the application.