Em bảo bọn khách hàng dùng Outlook đi.

nếu nó nói khó dùng thì quảng cáo thêm tính năng Collaboration nữa là mê ngay.

Xong rồi lúc nào tìm ra vấn đề POP3 thì lại khuyên họ xài Outlook Express cho nhẹ nhàng.

anh chưa xài exchange nên chưa trả lời em ngay được. hỏi thử diendan, nadmad và các bạn khác xem.

Hi Harch !

MORE INFORMATION
The following is a list of the changes to security settings that apply when you run Exchange Server 2003 Setup to perform a new installation of Exchange Server 2003. The list also contains information about whether these out-of-the-box settings apply when you perform an upgrade installation of Exchange Server 2003:
- For both new and upgrade installations of Exchange Server 2003, members of the Builtin\Users group do not have the user right to log on locally to the Exchange Server 2003 computer. When you install Exchange Server 2003 on a member server, Exchange Server 2003 Setup removes the Builtin\Users group from the Log on locally policy setting for the local computer. As a result, authenticated users cannot log on locally to the Exchange Server 2003 computer.

Note that the Builtin\Users group is already removed from the Log on locally policy setting on a domain controller.
- If global message size limits are not already configured, the default maximum size limits for sending and for receiving individual messages are set to 10 megabytes (MB).

These settings apply to the first installation of Exchange Server 2003, regardless of whether you upgrade to Exchange Server 2003, perform a new installation of Exchange Server 2003 in a new organization, or add a new Exchange Server 2003 computer to an existing Exchange organization.
- If the maximum item size for public folders is not already configured, the default maximum item size for public folders is set to 10 MB.

This setting applies to both new and upgrade installations of Exchange Server 2003.
- By default, in a new installation of Exchange Server 2003, the Microsoft Exchange POP3 service, the Microsoft Exchange IMAP4 service, and the Network News Transfer Protocol (NNTP) service are disabled.

When you upgrade to Exchange Server 2003 from Exchange 2000 Server, your existing settings for these services are preserved.

By default, when you run Exchange Server 2003 in a cluster environment, the IMAP4, the POP3, and the NNTP cluster resources are not created when you create an Exchange Server 2003 virtual server. If you want to use these services on a cluster, you must start the appropriate service (the Exchange IMAP4 service, the Exchange POP3 service, and the Network News Transfer Protocol [NNTP] service) on the cluster node, and then manually create the resources by using the Cluster Administrator tool.
- By default, in a new installation of Exchange Server 2003, the default POP3 virtual server, the default IMAP4 virtual server, and the default NNTP virtual server are configured to use both basic authentication and integrated Windows authentication. Anonymous access is disabled.

When you upgrade to Exchange Server 2003, your existing virtual server settings are preserved in most scenarios. However, there is an exception when you upgrade an Exchange 2000 Server front-end server to Exchange Server 2003. In this scenario, the default IMAP4 virtual server and the default POP3 virtual server are both configured to only use basic authentication.
- By default, in Exchange Server 2003, Microsoft Outlook Mobile Access (OMA) Browse is disabled.

This setting applies to the first installation of Exchange Server 2003, regardless of whether you upgrade to Exchange Server 2003, perform a new installation of Exchange Server 2003 in a new organization, or add a new Exchange Server 2003 computer to an existing Exchange Server 2003 organization.
-The Everyone group and the Anonymous Logon group are not assigned the "Create top level folder permissions" permissions to public folders. If these permissions are already configured, Setup removes them.

Please visit website



Good lucky ! :D

Server-Level Settings
The POP3, IMAP4, and NNTP Cluster Resources Are Not Automatically Created When You Create a New Exchange Virtual Server
In previous versions of Microsoft Exchange, when you created an Exchange virtual server, the Post Office Protocol 3 (POP3) and the Internet Mail Access Protocol 4 (IMAP4) cluster resources were also created. Because these services are not enabled in the default Exchange 2003 installation, they are not automatically created. To create these resources, you must manually enable them and then start the corresponding service on the cluster node. You can then create the resource by using the Cluster Administrator utility.

Note Upgrades of existing Exchange virtual servers do not change these cluster resources. Additionally, Network News Transfer Protocol (NNTP) is not supported on a server cluster. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
--------
MORE INFORMATION
Component Functionality Notes
Exchange system attendant Active/active Multiple virtual servers for each node.
Information store Active/active After failover, each node is limited to four storage groups.
Message transfer agent (MTA) Active/passive One instance for each cluster. The MTA is in only one cluster group.
POP3 Active/active Multiple protocol virtual servers for each node.
IMAP Active/active Multiple protocol virtual servers for each node.
SMTP Active/active Multiple protocol virtual servers for each node.
HTTP Active/active Multiple protocol virtual servers for each node.
NNTP Not supported
Key Management Service Not supported (This component does not run on Exchange 2003 at all.)
Full-text indexing Active/active
Instant Messaging Not supported (This component does not run on Exchange 2003 at all.)
Chat Not supported (This component does not run on Exchange 2003 at all.)
Exchange Connector for Novell GroupWise Not supported
Exchange Connector for Lotus Notes Not supported
Exchange Connector for Lotus cc:Mail Not supported (This component does not run on Exchange 2003 at all.)
Exchange Connector for Microsoft Mail Not supported
Exchange Connector for IBM OV/VM (PROFS) Not supported
Exchange Connector for SNADS Not supported
Microsoft Exchange Event Not supported
Exchange Conference Server (ECS) Not supported (This component does not run on Exchange 2003 at all.)
---------
Members of the Domain Users Security Group Are Denied the Allow Log on Locally Right on an Exchange 2003 Computer

By default, when you install Exchange 2003, members of the Domain Users group are denied the Allow log on locally right to that computer. By default, members of the Domain Users group cannot log on locally to a domain controller. However, this restriction is extended to include member servers where Exchange 2003 is installed. This change applies to new installations, to upgrades, and to reinstallations of Exchange 2003. Members of the Backup Operators group, the Administrators group, and other security groups that have greater permissions than the other groups can still log on locally. This change is made during Exchange 2003 Setup by removing the local (built-in) Users security group from the Allow log on locally policy. To view this policy:
Click Start, click Run, type gpedit.msc in the Open box, and then click OK.
Under Computer Configuration, expand Windows Settings, expand Security Settings, expand Local Policies, and then click User Rights Assignment.
In the right pane, double-click Allow log on locally.
View the users and the groups that appear in the Allow log on locally box.
Access Control Entries Are Copied from the Program Files Folder When You Install Exchange Server 2003
When you install Exchange 2003 as a stand-alone server or on a cluster node, the permissions to the Exchange installation folder (by default, they are located in the C:\Program Files\Exchsrvr folder) are copied from the parent Program Files folder. If you install Exchange 2003 to a location other than the Program Files folder, these permissions are copied from the Program Files folder to the Exchange installation folder. Because of this, if you grant the Allow log on locally right to users who are not administrators, such as members of the Domain Users security group, these users are permitted access to sensitive information in the Exchsrvr installation folder(s). For example, they may be able to view sensitive information in the Mailroot\vsi 1\BadMail, PickUp, or Queue folders.

Note This issue also applies when you install Microsoft Mobile Information Server (MIS). Authenticated users who are permitted to log on locally to the server can view information in the PickUp folder.
A Global Event Object Has a Null Discretionary Access Control List
A security descriptor is created with a null discretionary access control list, and a security attributes class is configured to point to it. An event is then created by using these security attributes. Because a null discretionary access control list is used, if you permit the Allow log on locally right to users who are not administrators (such as members of the Domain Users security group), the potential exists for a malicious user to change the discretionary access control list of the object and interfere with its use.
The POP3, IMAP4, and NNTP Services Are Disabled on the Server
By default, in a new Exchange 2003 installation, the Exchange POP3 service, the IMAP4 service, and Network News Transfer Protocol (NNTP) Service are set to Disabled. When you upgrade to Exchange 2003 or reinstall Exchange 2003, the previous state of these services is preserved.
Storage Group-Level Settings
Maximum Public Folder Item Size Limit Is Set to 10 Megabytes for Each Public Folder Store

When you install Exchange 2003, the Maximum item size (KB) option is set to 10,240 kilobytes (10 megabytes). If you upgrade to Exchange 2003, or if you reinstall Exchange 2003, this option is set to 10,240 only if it was not already assigned another value. If this option was configured before you upgraded to, or reinstalled Exchange 2003, the previous value is not changed. This setting also affects new MAPI and Application public folder stores that you create by using Exchange System Manager. The Maximum item size (KB) value is stored in the messageSizeLimit attribute on each public folder store object in the Microsoft Active Directory directory service.
Protocol-Level Settings
Basic Authentication for the POP3 and IMAP4 Exchange Virtual Servers Is Enabled

By default, basic authentication (Basic_Auth) is enabled for the POP3 and IMAP4 Exchange virtual server instances in a new installation. However, when you upgrade to Exchange 2003, you experience the following:
On an Exchange back-end server, the available authentication methods in the Exchange POP3 and IMAP4 virtual server instances do not change.
On an Exchange front-end server, the authentication methods in the Exchange POP3 and IMAP4 virtual server instances are configured as follows:
Anonymous authentication (Anon_Auth): Disabled
Basic authentication (Basic_Auth): Enabled
Integrated Windows authentication (NT_Auth): Disabled
This applies to the default Exchange virtual server instances and to virtual server instances that you create by using the Exchange System Manager utility. However, Exchange virtual server instances that you created before you upgrade to Exchange 2003 or virtual server instances that you create before you reinstall Exchange 2003 are not modified. An exception is an Exchange front-end server, as noted previously.
Basic Authentication for the Exchange NNTP Virtual Server Is Enabled

By default, basic authentication (Basic_Auth) is enabled for an Exchange NNTP virtual server instance in a new installation. Authentication methods for the default Exchange NNTP virtual server are as follows:
Anonymous authentication (Anon_Auth): Disabled
Basic authentication (Basic_Auth): Enabled
Integrated Windows authentication (NT_Auth): Enabled
When you upgrade to Exchange 2003 or reinstall Exchange 2003, the default NNTP virtual server instance is always modified. Other Exchange NNTP virtual server instances that you create are not modified during an upgrade or a reinstallation of Exchange 2003. Additionally, if you remove Exchange 2003, integrated Windows authentication (NT_Auth) is disabled. This occurs because Network News Transfer Protocol (NNTP) is a Windows component and not part of Exchange 2003.

Hi,

Cám ơn tất cả các anh. Em đã config được rồi.