HOTSPOT
You have an Exchange Server 2013 organization that has mailbox audit logging enabled for all users.
You deploy two third-party applications named App1 and App2. Both applications access a mailbox
named Mailbox1.
App1 uses a mail-enabled user account named App1_user. App2 uses a mailbox-enabled user
account named App2_user.
You need to prevent the audit logs from containing entries that relate to App2.
Which command should you run? (To answer, select the appropriate options in the answer area.)
Explanation:
Note:
* Set-MailboxAuditBypassAssociation
Use the Set-MailboxAuditBypassAssociation cmdlet to configure mailbox audit logging bypass for
user or computer accounts such as service accounts for applications that access mailboxes
frequently.
When you configure a user or computer account to bypass mailbox audit logging, access or actions
taken by the user or computer account to any mailbox isn’t logged. By bypassing trusted user or
computer accounts that need to access mailboxes frequently, you can reduce the noise in mailbox
audit logs.
/ AuditBypassEnabled
The AuditBypassEnabled parameter specifies whether audit bypass is enabled for the user or
computer. Valid values include the following:
$true. Enables mailbox audit logging bypass
$false. Disables mailbox audit logging bypass
to exclude the Windows account used for the process from mailbox auditing to prevent accumulation of a large number of interesting but useless audit entries The Set-MailboxAuditByPassAssociation cmdlet excludes an account from mailbox auditing For example:
Set-MailboxAuditByPassAssociation –Identity ‘SomeFormofServiceAccount’
–AuditByPassEnabled $True