Comprehensive protection Multi-engine antivirus Continuously evolving anti-spam protection Policy enforcement Enterprise class reliability Geographically.

Slides:

Advertisements

Similar presentations

Message Trace & Headers for Office 365 Enhancements (Feb 2014)

Advertisements

Office 365 for Enterprises ITExpo February 2, 2012.

Admin: Simple to provision and configure Policy driven via Transport Rules Customizable branding of encrypted s and mail reading portal Allows.

 This session details common scenarios for deploying Office 365 services. Office 365 provides a breadth of capability, but often there is a key scenario.

TrustPort Net Gateway traffic protection. Keep It Secure Entry point protection –Clear separation of the risky internet and secured.

Microsoft ® Exchange Online Advanced Security Name Title Microsoft Corporation.

Exchange Online Protection & Mail Flow

Used by many 100,000s of customers Used by many 10,000,000s of users Processing Billions of s a day Using Thousands of servers Across dozens of.

On-premises Exchange Online Protection Office 365 Directory Sync ADFS (optional) Single sign on Secure mail flow Existing environment.

Module 6 Implementing Messaging Security. Module Overview Deploying Edge Transport Servers Deploying an Antivirus Solution Configuring an Anti-Spam Solution.

Curtis Parker | December 2010 | Microsoft Corporation.

FROM RICHARD RODRIGUES JOHN ANIMALU FELIX SHULMAN THE HONORARY MEMBERS OF THE INTERCONTINENTAL GROUP Information security in real business firewall security.

Microsoft Ignite /16/2017 1:30 PM

Connector- Based Customer Delivery Pool Mailbox (On-premises) Mailbox or Application (On-premises) Higher Risk High Risk Delivery Pool Resolve.

Forefront Online Protection for Exchange Renato Francesco Giorgini Evangelist IT Pro

Fact check True or False: Over half of the messages received today in Exchange Online are spam True. About 67 % of all messages are spam True or False:

Understanding Microsoft Forefront Online Protection for Exchange Robert Gillies Solution Architect Microsoft Corporation EXL201.

Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Exchange Online Office 365 Overview & InfrastructureLync Online Administration.

Security challenges Used by many 100,000s of customers Used by many 10,000,000s of users Processing Billions of s a day Using Thousands of.

Office 365 SMTP Relay June Relay Method Send to rcpts in domain Relay to Internet via O365 Configuration Requirements Requires Authentication.

SIM334. Internet Comprehensive Protection Multi-Engine Antivirus and Multi layered continuously evolving Anti-spam In the Leader’s quadrant in the.

Protect communications Multi-engine anti-malware and enhanced spam filtering to help protect your environment from threats Enforce policy Flexible.

Configuring Hybrid Exchange the Easy Way

Overview of Exchange 2013 Architecture Transport components shipping with Exchange 2013 Mail Routing Scenarios Transport High Availability SMTP Client.

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.

Message Trace Office 365 May 2013.

TechEd /20/2017 2:02 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.

Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.

SIM331 High-accuracy spam filtering Multiple virus-scanning engines Hub Transport Mailbox External About 90% of is junk Tuned for enterprise.

Srinivas L Technology Specialist – Security | Microsoft

What’s New in WatchGuard XCS v9.1 Update 2. WatchGuard XCS v9.1 Update 2  Introduce New Features WatchGuard XCS Outlook Add-in Secur Encryption.

Clinton Ho Program Manager Microsoft Corporation SESSION CODE: SIA311.

Copyright© Microsoft Corporation Speaker:Engagement consultant Title of presentation:Assessment of the Environment Length of presentation: 45 minutes Audience:Customer.

CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.

SIM309. Connection Analysis (IP-based edge blocks) Reputation Analysis Connection Filtering Protect businesses from receiving –borne viruses.

SMTP PROTOCOL CONFIGURATION AND MANAGEMENT Chapter 8.

Securing Microsoft® Exchange Server 2010

Module 6: Manage and Configure Messaging. Configuring Internet Mail Using Small Business Server (SBS) 2008 Console Configuring Protection Configuring.

Client X CronLab Spam Filter Technical Training Presentation 19/09/2015.

Exchange Online Protection. About Speaker Prabhat Nigam Microsoft MVP: Exchange Server MCSE: Messaging 2013, MCITP 2010/2007, MS Ex – Microsoft Exchange.

Module 2 Designing Microsoft® Exchange Server 2010 Integration with the Current Infrastructure.

Module 9 Configuring Messaging Policy and Compliance.

Module 6 Planning and Deploying Messaging Security.

Virtual techdays INDIA │ august 2010 virtual techdays INDIA │ august 2010 Moving/Co-existing your messaging platform to the cloud with Exchange.

Outlook 2007 basics. Create an account An account must be created before sending/receiving . Follow these steps to create an account:

Module 5 Managing Message Transport. Module Overview Overview of Message Transport Configuring Message Transport.

Module 7: Managing Message Transport. Overview Introduction to Message Transport Implementing Message Transport.

Module 5 Managing Message Transport. Module Overview Overview of Message Transport Configuring Message Transport.

Module 12 Integrating Exchange Server 2010 with Other Messaging Systems.

Module 5 Planning and Deploying Message Transport in Microsoft® Exchange Server 2010.

“SaaS secure web and gateways frequently provide efficiency and cost advantages, and a growing number of offerings are delivering an improved.

Understanding Microsoft Forefront Online Protection for Exchange Nathan Winters Microsoft Corporation EXL201.

Copyright ©2015 WatchGuard Technologies, Inc. All Rights Reserved WatchGuard Training WatchGuard XCS What’s New in version 10.1.

Implementing Microsoft Exchange Online with Microsoft Office 365

BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)

Scott Schnoll Senior Content Developer Microsoft Corporation Securing Your Exchange Deployment.

VIRTUAL SERVERS Chapter 7. 2 OVERVIEW Exchange Server 2003 virtual servers Virtual servers in a clustering environment Creating additional virtual servers.

Managing Office 365 Identities and Requirements.

Fighting Spam in an Exchange Environment Tzahi Kolber IT Supervisor - Polycom Israel.

On-premises Exchange Online Protection Office 365 Directory Sync Secure mail flow Existing environment.

Office 365 Migration Challenges Drew St. John 2016 Redmond Summit | Identity Without Boundaries May 24, 2016 Consultant

How to Implement Exchange Online Protection (EOP)

Office 365 Migration – Understanding Migrations Part 1

Microsoft - Managing Office 365 Identities and Requirements

Securing the Network Perimeter with ISA 2004

Threat Management Gateway

Real Microsoft Exam Questions and Answers

Migrating to Office 365 from Google mail and exchange

06 | Planning Exchange Online and Configuring DNS Records

Office 365 Security & Compliance: Exchange Online Protection

Presentation transcript:

Comprehensive protection Multi-engine antivirus Continuously evolving anti-spam protection Policy enforcement Enterprise class reliability Geographically load-balanced datacenters Queuing capabilities to help ensure no mail is lost Live phone support Streamlined administration console Office 365 integration Detailed reporting

Spam Protection Outlook Safe/Blocked Senders Content Scanning Bulk Mail Filtering Content Filter Advanced Options Customer Feedback False Positive/Negatives Customer Feedback False Positive/Negatives Policy Quarantine Policy Quarantine Edge Blocks is routed to EOP data centres based on MX record resolution Policy Enforcement Custom Rules Allows/Rejects SPAM Quarantine SPAM Quarantine Spam Analysts - The Big Picture Virus Scanning AV Engine 1 AV Engine 2 AV Engine 3 Envelope blocks IP-based edge blocking

NDR Delivery Pool Bulk Delivery Pool Internet Outbound Pool High Risk Delivery Pool Higher Risk Outbound Pool Normal Score Spam Protection Content Scanning and Heuristics Content Filter Advanced Options Virus Scanning AV Engine 1 AV Engine 2 AV Engine 3 Policy Enforcement Custom Rules Quarantine Encryption Spam Analysts – The Big Picture

Step 1: Verify prerequisites Step 2: Configure mail flow (connectors) Step 3: Add and validate domains Step 4: Customize spam and policy settings Step 5: Enable mail flow Step 6: Monitor and fine tune

On-Prem Mail Environment Exchange Online Protection Outbound Connector Inbound Connector Outbound TLS Connector Inbound TLS Connector EOP connectors between on-premises and EOP need to be created *Additional connectors can be created between EOP and partners to force TLS Configure mail flow (connectors) Partner Environment

Prior to EOP (Fabrikam uses EOP) With EOP (Fabrikam uses EOP) Contoso Fabrikam Cert CN = mail.contoso.com Cert CN = mail.fabrikam.com Contoso EOP Fabrikam Cert CN = mail.contoso.com Cert CN = mail.protection.outlook.com Cert CN = mail.fabrikam.com

On-Prem Mail APAC Exchange Online Protection On-Prem Mail AMER On-Prem Mail EMEA Outbound Connector 1 Outbound Connector 3 Outbound Connector 2 Inbound Connector 1

Spam and policy customization

EOP and the Junk Mail folder Two rules Two rules need to be added to the on premise environment if you would like spam moved to the junk mail folder. Set-OrganizationConfig –SCLJunkThreshold 4 New-TransportRule "NameForRule" -HeaderContainsMessageHeader "X-Forefront-Antispam- Report" -HeaderContainsWords "SFV:SPM" -SetSCL 6 New-TransportRule "NameForRule" -HeaderContainsMessageHeader "X-Forefront-Antispam- Report" -HeaderContainsWords "SFV:SKS" -SetSCL 6 End users need to be educated about the use of the Junk Mail folder in Outlook

Spam and policy customization (ESN)

End user access to quarantine

Enable mail flow DNS changes MX record (domain-suffix.mail.protection.outlook.com) SPF record (v=spf1 include:spf.protection.outlook.com –all) Do not change CNAME DNS entries for stand alone customers On-premise changes Create smart host from on premise environment to EOP Restrict on premises firewall to only accept port 25 traffic from EOPEOP

Monitor and fine tune Goals Is the service operating as expected? Make adjustments to rules or settings as needed Evaluate effectiveness of spam settings Tools Reports (Office 365 Portal or Mail Protection Reports for Office 365) Submitting spam and false positive messages to Microsoft Junk Mail Reporting ToolJunk Mail Reporting Tool for Outlook

Exchange Server 2013 Exchange Online EOP Stand Alone

Do this Use a test domain, subdomain or low volume domain for trying different service features Create O365 connectors before adding domains Disable EOP inbound connector (type is on-prem) until you are ready to use it Use the Remote Connectivity Analyzer to troubleshootRemote Connectivity Analyzer Restrict inbound SMTP access to allow ONLY from EOP IP rangesEOP IP ranges Enable Microsoft’s IP Safe List in the Connection Filter When creating safe / black lists, use IP first, and if not possible, then use the domain Don’t do this Daisy chain services Use EOP for sending bulk mail Enable all Content Filter Advanced Options out of the box Safe list your own domain

Existing environment Office 365 directory sync Secure mail flow Exchange Online ProtectionOn-premises

Telnet is your friend Telnet can be used to test mail flow from EOP to your on-prem environment. This allows verifying mail flow will work before doing the MX cutover. You do/type thisServer responds with this telnet tenantDomainMXRecordHere helo your_sending_server_fqdn250 mail from: Sender OK rcpt to: Recipient OK data followed by the enter keyServer provides directions on how to enter data. subject: Enter the subject and hit enter twice Enter the body text. To finish the message, type a period on a line by itself and hit enter. 250 Message queued for delivery. Quit221 Service closing transmission channel

Quarantine Online viewer only supports up to 500 messages More can be viewed via PowerShell Get-QuarantineMessage CmdletGet-QuarantineMessage Can only release in bulk through Release-QuarantineMessage CmdletRelease-QuarantineMessage Limits Max message size for EOP delivering to stand-alone customers is 150 MB Max message size for EOP delivering to Office 365 hosted mailboxes is 35 MB Max 100 Transport Rules per tenant – DLP policies consume part of this quota Max of 900 domains per tenant EOP outbound connectors use round robin for delivery

Since January 2014 Extended Message trace (90 days) Directory Based Edge Blocking & Match sub-domains Remote PowerShell for customers without hosted mailboxes (EOP stand alone) End user access to the quarantine Office 365 Message Encryption Coming Soon DKIM for inbound Support for IPv6 Future Outbound DKIM and DMARC Improvements to Bulk mail Advanced Spam Filter option

What they offer Exchange Online Protection implementation and configuration assistance up to 90 days Administrator training on Exchange Online Protection Advise customer on service best practices Single point of contact for duration of engagement Eligibility Net new customers who purchase seats EOP stand alone, O365D Exception basis for O365 Hybrid How to Engage an IPM Contact your Technical Account Manager for more information.