# Generated with Microsoft365DSC version 1.24.717.1 # For additional information on how to use Microsoft365DSC, please visit https://aka.ms/M365DSC param ( ) Configuration M365TenantConfig { param ( ) $OrganizationName = $ConfigurationData.NonNodeData.OrganizationName Import-DscResource -ModuleName 'Microsoft365DSC' -ModuleVersion '1.24.717.1' Node localhost { EXOOwaMailboxPolicy "EXOOwaMailboxPolicy-OwaMailboxPolicy-Default" { ActionForUnknownFileAndMIMETypes = "Allow"; ActiveSyncIntegrationEnabled = $False; AdditionalStorageProvidersAvailable = $False; AllAddressListsEnabled = $True; AllowCopyContactsToDeviceAddressBook = $True; AllowedFileTypes = @(".rpmsg",".xlsx",".xlsm",".xlsb",".vstx",".vstm",".vssx",".vssm",".vsdx",".vsdm",".tiff",".pptx",".pptm",".ppsx",".ppsm",".docx",".docm",".zip",".xls",".wmv",".wma",".wav",".vtx",".vsx",".vst",".vss",".vsd",".vdx",".txt",".tif",".rtf",".pub",".ppt",".png",".pdf",".one",".mp3",".jpg",".gif",".doc",".csv",".bmp",".avi"); AllowedMimeTypes = @("image/jpeg","image/png","image/gif","image/bmp"); ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; BlockedFileTypes = @(".settingcontent-ms",".printerexport",".appcontent-ms",".application",".appref-ms",".vsmacros",".website",".msh2xml",".msh1xml",".diagcab",".webpnp",".ps2xml",".ps1xml",".mshxml",".gadget",".theme",".psdm1",".mhtml",".cdxml",".xbap",".vhdx",".pyzw",".pssc",".psd1",".psc2",".psc1",".msh2",".msh1",".jnlp",".aspx",".appx",".xnk",".xll",".wsh",".wsf",".wsc",".wsb",".vsw",".vhd",".vbs",".vbp",".vbe",".url",".udl",".tmp",".shs",".shb",".sct",".scr",".scf",".reg",".pyz",".pyw",".pyo",".pyc",".pst",".ps2",".ps1",".prg",".prf",".plg",".pif",".pcd",".osd",".ops",".msu",".mst",".msp",".msi",".msh",".msc",".mht",".mdz",".mdw",".mdt",".mde",".mdb",".mda",".mcf",".maw",".mav",".mau",".mat",".mas",".mar",".maq",".mam",".mag",".maf",".mad",".lnk",".ksh",".jse",".jar",".its",".isp",".iso",".ins",".inf",".img",".htc",".hta",".hpj",".hlp",".grp",".fxp",".exe",".der",".csh",".crt",".cpl",".com",".cnt",".cmd",".chm",".cer",".cab",".bgi",".bat",".bas",".asx",".asp",".app",".apk",".adp",".ade",".ws",".vb",".py",".pl",".js"); BlockedMimeTypes = @("application/x-javascript","application/javascript","application/msaccess","x-internet-signup","text/javascript","application/prg","application/hta","text/scriplet"); BookingsMailboxCreationEnabled = $True; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; ClassicAttachmentsEnabled = $True; ConditionalAccessPolicy = "Off"; DefaultTheme = ""; DirectFileAccessOnPrivateComputersEnabled = $True; DirectFileAccessOnPublicComputersEnabled = $False; DisplayPhotosEnabled = $True; Ensure = "Present"; ExplicitLogonEnabled = $True; ExternalImageProxyEnabled = $False; FeedbackEnabled = $True; ForceSaveAttachmentFilteringEnabled = $False; ForceSaveFileTypes = @(".svgz",".html",".xml",".swf",".svg",".spl",".htm",".dir",".dcr"); ForceSaveMimeTypes = @("Application/x-shockwave-flash","Application/octet-stream","Application/futuresplash","Application/x-director","application/xml","image/svg+xml","text/html","text/xml"); ForceWacViewingFirstOnPrivateComputers = $False; ForceWacViewingFirstOnPublicComputers = $False; FreCardsEnabled = $True; GlobalAddressListEnabled = $True; GroupCreationEnabled = $False; InstantMessagingEnabled = $True; InstantMessagingType = "Ocs"; InterestingCalendarsEnabled = $False; IRMEnabled = $True; IsDefault = $True; JournalEnabled = $False; LocalEventsEnabled = $False; LogonAndErrorLanguage = 0; MessagePreviewsDisabled = $False; Name = "OwaMailboxPolicy-Default"; NotesEnabled = $True; NpsSurveysEnabled = $False; OnSendAddinsEnabled = $True; OrganizationEnabled = $True; OutboundCharset = "AutoDetect"; OutlookBetaToggleEnabled = $False; OWALightEnabled = $True; PersonalAccountCalendarsEnabled = $False; PhoneticSupportEnabled = $False; PlacesEnabled = $False; PremiumClientEnabled = $True; PrintWithoutDownloadEnabled = $False; ProjectMocaEnabled = $False; PublicFoldersEnabled = $True; RecoverDeletedItemsEnabled = $True; ReferenceAttachmentsEnabled = $True; RemindersAndNotificationsEnabled = $True; ReportJunkEmailEnabled = $True; RulesEnabled = $True; SatisfactionEnabled = $False; SaveAttachmentsToCloudEnabled = $True; SearchFoldersEnabled = $True; SetPhotoEnabled = $True; SetPhotoURL = ""; ShowOnlineArchiveEnabled = $True; SignaturesEnabled = $True; SkipCreateUnifiedGroupCustomSharepointClassification = $True; TeamSnapCalendarsEnabled = $False; TenantId = $OrganizationName; TextMessagingEnabled = $True; ThemeSelectionEnabled = $True; UMIntegrationEnabled = $True; UseGB18030 = $False; UseISO885915 = $False; UserVoiceEnabled = $False; WacEditingEnabled = $True; WacExternalServicesEnabled = $True; WacOMEXEnabled = $False; WacViewingOnPrivateComputersEnabled = $True; WacViewingOnPublicComputersEnabled = $True; WeatherEnabled = $True; WebPartsFrameOptionsType = "SameOrigin"; } EXORemoteDomain "EXORemoteDomain-Default" { AllowedOOFType = "External"; ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; AutoForwardEnabled = $False; AutoReplyEnabled = $False; ByteEncoderTypeFor7BitCharsets = "Undefined"; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; CharacterSet = ""; ContentType = "MimeHtmlText"; DeliveryReportEnabled = $False; DisplaySenderName = $True; DomainName = "*"; Ensure = "Present"; Identity = "Default"; IsInternal = $False; LineWrapSize = "Unlimited"; MeetingForwardNotificationEnabled = $False; Name = "Default"; NDREnabled = $False; NonMimeCharacterSet = ""; PreferredInternetCodePageForShiftJis = "Undefined"; TargetDeliveryDomain = $False; TenantId = $OrganizationName; TrustedMailInboundEnabled = $False; TrustedMailOutboundEnabled = $False; UseSimpleDisplayName = $False; } EXOTransportConfig "EXOTransportConfig" { AddressBookPolicyRoutingEnabled = $False; AllowLegacyTLSClients = $False; ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; ClearCategories = $True; ConvertDisclaimerWrapperToEml = $False; DSNConversionMode = "PreserveDSNBody"; ExternalDelayDsnEnabled = $True; ExternalDsnLanguageDetectionEnabled = $True; ExternalDsnSendHtml = $True; HeaderPromotionModeSetting = "NoCreate"; InternalDelayDsnEnabled = $True; InternalDsnLanguageDetectionEnabled = $True; InternalDsnSendHtml = $True; IsSingleInstance = "Yes"; JournalingReportNdrTo = "<>"; JournalMessageExpirationDays = 0; MaxRecipientEnvelopeLimit = "Unlimited"; ReplyAllStormBlockDurationHours = 6; ReplyAllStormDetectionMinimumRecipients = 2500; ReplyAllStormDetectionMinimumReplies = 10; ReplyAllStormProtectionEnabled = $True; Rfc2231EncodingEnabled = $False; SmtpClientAuthenticationDisabled = $True; TenantId = $OrganizationName; } EXOTransportRule "EXOTransportRule-Require TLS for Sensitive Items" { ApplicationId = $ConfigurationData.NonNodeData.ApplicationId; ApplyOME = $False; AttachmentHasExecutableContent = $False; AttachmentIsPasswordProtected = $False; AttachmentIsUnsupported = $False; AttachmentProcessingLimitExceeded = $False; CertificateThumbprint = $ConfigurationData.NonNodeData.CertificateThumbprint; DeleteMessage = $False; Enabled = $True; Ensure = "Present"; ExceptIfAttachmentHasExecutableContent = $False; ExceptIfAttachmentIsPasswordProtected = $False; ExceptIfAttachmentIsUnsupported = $False; ExceptIfAttachmentProcessingLimitExceeded = $False; ExceptIfHasNoClassification = $False; HasNoClassification = $False; HeaderContainsMessageHeader = "msip_labels"; HeaderContainsWords = @("806a3351-2c56-4d33-8496-8e369f8bfd12","58d1c913-3f2c-4040-8ece-c035ee9fe68e","c8049022-b1c0-490a-a3c2-f01a7e38739a"); Mode = "Enforce"; ModerateMessageByManager = $False; Name = "Require TLS for Sensitive Items"; Priority = 0; Quarantine = $False; RecipientAddressType = "Resolved"; RemoveOME = $False; RemoveOMEv2 = $False; RemoveRMSAttachmentEncryption = $False; RouteMessageOutboundRequireTls = $True; RuleErrorAction = "Ignore"; RuleSubType = "None"; SenderAddressLocation = "Header"; SentToScope = "NotInOrganization"; StopRuleProcessing = $False; TenantId = $OrganizationName; } } } M365TenantConfig -ConfigurationData .\ConfigurationData.psd1