Hi,
In response to the recent Exchange exploit, one of the recommendations is to, "Remove public access to Outlook Web Access (OWA) and Exchange Control Panel (ECP)." The vulnerability I am talking about is this https://techcommunity.microsoft.com/t5/exchange-team-blog/released-march-2021-exchange-server-security-updates/ba-p/2175901
If we have an Exchange hybrid server on-prem, but the majority of our mailboxes are in the cloud (O365), do we still need to disable OWA for our users whose mailboxes are in the cloud?
How do I disable OWA for the mailbox on-prem? We are using Exchanger server 2019 Standard.
Thank you,