e3009ad3-e42c-4118-a1a1-2088ba3ac5d9
PowerShell is a robust tool that can control almost all components of Windows and applications such as Exchange. It can, therefore, cause great damage in the hands of attackers. Its Constrained Language mode blocks dangerous features, thereby preventing misuse. It's best practice to enable Constrained Language mode to avoid this risk.
Important Note: Constrained Language mode is needed for Exchange Server normal Operation. Is not recommended to disable it if the server is running Exchange.
https://4sysops.com/archives/mitigating-powershell-risks-with-constrained-language-mode/
The easiest way is to create the environment variable "__PSLockDownPolicy" and set its value to 4.
Important Note: Constrained Language mode is needed for Exchange Server's normal Operation. Is not recommended to disable it if the server is running Exchange.