What is the conventional restriction for accessing Exchange PowerShell, and how does the article's method bypass it?

Conventionally, Exchange PowerShell requires a domain-joined host and uses FQDN, blocking external access. The article's method bypasses this by leveraging NTLM authentication after the ProxyShell patch (CVE-2022–41040), allowing remote command execution without domain membership. For more on ProxyShell exploitation, see Penetration Techniques - Remote Access to Exchange PowerShell.