Notice
This September 2021 cumulative update (CU) will install Exchange Emergency Mitigation (EM) service. This service is designed to help secure your servers that are running Microsoft Exchange Server by applying mitigations to address any potential threats against them. It uses the cloud-based Office Config Service (OCS) to check for and download available mitigations and to send diagnostic data to Microsoft.
This CU has the following additional prerequisites:
-
IIS URL Rewrite Module
Note The app pools are restarted as a part of the IIS Rewrite module installation. Therefore, service might be disrupted.
Cumulative Update 22 for Microsoft Exchange Server 2016 was released on September 28, 2021. It includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. These fixes will also be included in later cumulative updates for Exchange Server 2016.
This update also includes new daylight saving time (DST) updates for Exchange Server 2016. For more information about DST, see Daylight Saving Time Help and Support Center.
New feature in this cumulative update
Microsoft Exchange Server 2016 now supports integration with Windows Antimalware Scan Interface (AMSI). This feature enables an AMSI-capable antivirus or antimalware solution to scan content in HTTP requests that're sent to the Exchange Server. Additionally, it will block a malicious request before it's handled by Exchange. For more details, see More about AMSI integration with Exchange Server.
Known issues in this cumulative update
-
In multidomain Active Directory forests in which Exchange is installed or has been prepared previously by using the /PrepareDomain option in Setup, this action must be completed after the /PrepareAD command for this cumulative update has been completed and the changes are replicated to all domains. Setup will try to run the /PrepareAD command during the first server installation. Installation will finish only if the user who initiated Setup has the appropriate permissions.
-
About the /PrepareDomain operation in multidomain
The /PrepareDomain operation automatically runs in the Active Directory domain in which the /PrepareAD command is run. However, it may be unable to update other domains in the forest. Therefore, a domain administrator should run the /PrepareDomain in other domains in the forest. -
About the permission question
Because the /PrepareAD is triggered in Setup, if the user who initiates Setup isn't a member of Schema Admins and Enterprise Admins, the readiness check will fail, and you receive the following error messages.Error 1:
The Active Directory schema isn't up-to-date, and this user account isn't a member of the 'Schema Admins' and/or 'Enterprise Admins' groups. For more informaion, visit: http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setipreadiness.SchemaUpdateRequired.aspx.
Error 2:
Global updates need to be made to Active Directory, and this user account isn't a member of the 'Enterprise Admins'group. For more information, visit: http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.GlobalUpdateRequred.aspx.
To avoid the errors, either the user should join Schema Admins and Enterprise Admins groups or another user in Schema Admins and Enterprise Admins groups should manually run /PrepareAD for this Cumulative Update first. Then, the Exchange admin user can start Setup.
-
-
Autodiscover Event ID 1 occurs after you install Cumulative Update 14 for Exchange Server 2016. For more information, see KB 4532190.
-
"500 Unexpected Error" when trying to create a user mailbox in ECP. For more information, see KB 5001874.
-
"Cannot Send Mail - Your mailbox is full" error when you use iPhone mail to send very large attachments. For more information, see KB 5004622.
Issues that this cumulative update fixes
This cumulative update also fixes the issues that are described in the following Microsoft Knowledge Base articles:
-
5006980 Bad signature error using PerfView in Exchange Server 2019 and 2016 (KB5006980)
-
5006982 On-premises Exchange queues back up because of incorrect default value (KB5006982)
-
5006983 Exchange Server 2019 and 2016 certificates created during setup use SHA-1 hash (KB5006983)
-
5006984 PrepareAD fails if Computers container or RODCs are renamed or moved in Exchange Server 2019 and 2016 (KB5006984)
-
5006986 Opening an Outlook message from the desktop removes line spacing (KB5006986)
-
5006988 Export of .pst file is unexpectedly triggered again in Exchange Server 2019 and 2016 (KB5006988)
-
5006989 Accepted domains with wildcards for subdomains are not honored when Edge server maps AddressSpaces (KB5006989)
-
5006992 No room lists found when trying to add a room in OWA in Exchange Server 2019 or 2016 (KB5006992)
-
5006993 Can't log on to OWA in Chrome if SSL is offloaded in Exchange Server 2019 and 2016 (KB5006993)
-
5006994 BCC values not retained in Sent Items in a shared mailbox in Exchange Server 2019 and 2016 (5006994)
-
5006995 Korean email messages display some recipients incorrectly in Exchange Server 2019 and 2016 (KB5006995)
-
5006996 Export-AutoDiscoverConfig exposes admin password and does not work against domain controllers that require signing (KB5006997)
-
5006997 Korean messages in OWA display "From" as "Start date" after you filter the list in Exchange Server 2019 and 2016
-
5007042 Error window appears when you view features in OWA Virtual Directory (KB5007042)
-
5007043 Exchange Server SU updates Add/Remove Programs incorrectly (KB5007043)
Get Cumulative Update 22 for Exchange Server 2016
Download Center
Download Cumulative Update 22 for Exchange Server 2016 (KB5005333) now
Volume Licensing Center
To get Cumulative Update 22 for Exchange Server 2016, go to Microsoft Volume Licensing Center.
Notes
-
The Cumulative Update 22 package can be used to run a new installation of Exchange Server 2016 or to upgrade an existing Exchange Server 2016 installation to Cumulative Update 22.
-
You don't have to install any previously released Exchange Server 2016 cumulative updates or service packs before you install Cumulative Update 22.
Cumulative update information
Prerequisites
This cumulative update requires Microsoft .NET Framework 4.8.
A component that's used within Exchange Server requires a new Visual C++ component to be installed together with Exchange Server. This prerequisite can be downloaded at Visual C++ Redistributable Packages for Visual Studio 2013. For more information, see KB 4295081.
For more information about the prerequisites to set up Exchange Server 2016, see Exchange Server 2016 prerequisites.
Restart requirement
You may have to restart the computer after you apply this cumulative update package.
Registry information
You don't have to make any changes to the registry after you apply this cumulative update package.
Removal information
After you install this cumulative update package, you can't uninstall the package to revert to an earlier version of Exchange Server 2016. If you uninstall this cumulative update package, Exchange Server 2016 is removed from the server.
File information
File hash information
File name |
SHA256 hash |
---|---|
ExchangeServer2016-x64-cu22.iso |
23808DF44427A7B7E2348234F282204F2D7BF845DA147A96284F7C7210546B77 |
UMLanguagePack.en-US.exe |
E8032F8CB90A813EE82AA27327F5DEB71512E32FB5DE0F34685149223CB8E591 |
More information
For more information about the deployment of Exchange Server 2016, see Release notes for Exchange Server 2016.
For more information about the coexistence of Exchange Server 2016 and earlier versions of Exchange Server in the same environment, see Exchange Server 2016 system requirements.
For more information about other Exchange updates, see Exchange Server Updates: Build numbers and release dates.
References
Learn about the terminology that Microsoft uses to describe software updates.
Change history
The following table summarizes some of the most important changes to this topic.
Date |
Description |
---|---|
August 30, 2021 |
Added a "New feature in this cumulative update" section. |
September 28, 2021 |
Added "Notice" at the top of the article. |