Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the.

Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the content relevant to the engagement  A Table of Contents was designed to make customization and navigation easier for the presenter  The Table of Contents slide links will only work in presentation mode  The “Slides” column in the Table of Contents will take you directly to the slides chosen  The presenter can use this feature to customize the presentation, hide slides, etc.  The “Presentation” column in the Table of Contents will take you to a custom slideshow that will only present that section of slides  This will help the presenter perform segmented presentations and reduce the need to cut slides out for specific parts of the engagement or switch between multiple presentations. 1 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

2 Slide #SlidesPresentation 3-13Exchange Planning KickoffExchange Planning Kickoff 14-24Exchange Planning Summary 25-39Exchange Online ProtectionExchange Online Protection 40-53EOP Requirements vs. Feature Mapping 54-66EOP Kickoff Presentation 67-79EOP Assessment of the Environment 80-167EOP Technical ReviewEOP Technical Review 168-191EOP Deployment PlanningEOP Deployment Planning 192-202Exchange DLP Kickoff PresentationExchange DLP Kickoff Presentation 203-216DLP Understanding the EnvironmentDLP Understanding the Environment 217-225DLP Requirements Gathering 226-271DLP Technical Review 272-280DLP Req. vs. Feature MappingDLP Reg. vs. Feature Mapping 281-283DLP Deployment Scenarios

Exchange Deployment Planning

4  Partner MUST customize prior to delivery Software Assurance Planning Services 4 Speaker:Add info here Title of presentation:Technical Kickoff Presentation Length of presentation: Add info here Audience:Customer IT Pro Sales Cycle Alignment: Engagement Desired Outcomes:  Kickoff Planning Services engagement  Introductions  Review agenda Modular Outline:Add more info here Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Notes to Presenter:  Slide to inform PS partner presenter on how to use and/or customize this deck.  This deck contains slide notes on how to the slide. Remove the slide notes if you plan on leaving this presentation with the customer.  Modify the deck as necessary for your presentation 5 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange Deployment Planning Engagement Kick Off Software Assurance Planning Services

Agenda 7  Introductions  Project Team  Engagement Overview / Agenda  Q&A

Team {Partner} 8 NameRole {Partner} Account Team Account Executive Microsoft Exchange Technical Specialist Services Executive {Partner} Services Team Engagement Manager Architect Consultant Technical Account Manager Customer Sponsor Customer IT Pros Business Stakeholders Management Customer Project Lead Customer Project Manager {Partner} Sponsor Engagement Manager Consultant

Team {Customer} 9 NameRole / Focus area {CUSTOMER} Core Team Executive Sponsor Project Manager {CUSTOMER} Technical subject matter experts (SMEs) Engagement Manager Architect Consultant Technical Account Manager Customer Sponsor Customer IT Pros Business Stakeholders Management Customer Project Lead Customer Project Manager {Partner} Sponsor Engagement Manager Consultant NameRole / Focus area Product specific roles Role 1 Role 2 Role 3 Role 4

Participation expectations  Keep to the schedule  Be present  Interact  Ask when things don’t add up What you get 10  Recommended practices  A plan to get started  Get your questions answered What we expect

Day 1 Agenda Deployment Planning Services Agenda 11 TimeTopicDescription 9:00 AMIntro/Kick-off A review of the workshop and our goals. 9:30 AMModule –Describe Module 10:45Break 11:00 AMModule –Describe Module 12:00 PMLunch 1:00 PMModule –Describe Module 1:30 PMLab/Demo –Describe Lab 2:30Break 2:45Lab/Demo –Describe Lab 3:15 PMLab/Demo –Describe Lab 4:00Review/Next Steps

Thank you 13

14  Partner MUST customize prior to delivery Software Assurance Planning Services 14 Speaker:Add info here Title of presentation:Planning Services Engagement Summary and Plan of Action Length of presentation: Add info here Audience:Customer TDM and IT Pros Sales Cycle Alignment: Engagement wrap-up Desired Outcomes:  Outline the outcomes of the engagement  Plan next actions for client  Deliver Proposals for ongoing consulting Modular Outline:Add more info here Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Notes to Presenter:  Slide to inform PS partner presenter on how to use and/or customize this deck.  This deck contains slide notes on how to use the slides. Remove the slide notes if you plan on leaving this presentation with the customer.  Modify the deck as necessary for your presentation 15 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange Deployment Planning Engagement Summary Presenter Name, Title Date Software Assurance Planning Services

Agenda 17  Findings  Recommendations  Next Steps

Where we are today 18  What did we do?  What did we find?  What’s next? Assessment Findings Validate Design Pilot / Production Deployment Architecture Design

 Findings Problem and Solution Statement Recap Notable Current State Items Found Requirements Assumptions Constraints Issues / Risks What did we find? 19

 Recommendation 1  Recommendation 2  Recommendation 3… What do we recommend? 20

 Partner – insert Solution Concept diagram here Be prepared to discuss the architecture Solution Concept Diagram 21

 Next step 1  Next step 2  Next step 3… Next Steps 22

 Full Exchange 2013 Architecture Engagement  Proof of Concept  Production Pilot  Production Deployment Migration: Connect to our Offerings 23

Thank you 24

Exchange Data loss Prevention & Exchange Online Protection

Copyright© Microsoft Corporation Speaker:Engagement Consultant Title of presentation:Exchange Online Protection Deployment Planning and Pilot Requirements Gathering Length of presentation: 60 minutes Audience:{Customer BDM/TDM/IT Pro} Sales Cycle Alignment: Post-sales Deployment Desired Outcomes: All customer requirements are gathered. Modular Outline:Customer requirements are gathered and documented. Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange Online Protection Deployment Planning and Pilot

Business Requirements #Requirement BR01 BR02 BR03 BR04

Mail Routing Requirements #Requirement MRR01 MRR02 MRR03 MRR04

Policy/Compliance Requirements #Requirement PCR01 PCR02 PCR03 PCR04

Anti-Spam Requirements #Requirement ASR01 ASR02 ASR03 ASR04

Anti-Malware Requirements #Requirement AMR01 AMR02 AMR03 AMR04

Reporting Requirements #Requirement RR0 1 RR0 2 RR0 3 RR0 4

Administration Requirements #Requirement AR01 AR02 AR03 AR04

Copyright© Microsoft Corporation Speaker:Delivery Consultant Title of presentation:Exchange Online Protection Requirements Mapping Length of presentation: 75 minutes Audience:Customer TDM/IT Pro Sales Cycle Alignment: Post-sales Deployment Desired Outcomes: Requirements are mapped against EOP features and settings. Modular Outline:Recap of requirements discussion, technical features and deployment options. Map the requirements with EOP capabilities. Document the discussions Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

EOP Deployment Planning and Pilot

Business Requirements #RequirementYes/No/Parti al EOP Feature/Setting BR0 1 BR0 2 BR0 3 BR0 4

Mail Routing Requirements #RequirementYes/No/Parti al EOP Feature/Setting MRR0 1 MRR0 2 MRR0 3 MRR0 4

Policy/Compliance Requirements #RequirementYes/No/Parti al EOP Feature/Setting PCR0 1 PCR0 2 PCR0 3 PCR0 4

Anti-Spam Requirements #RequirementYes/No/Parti al EOP Feature/Setting ASR0 1 ASR0 2 ASR0 3 ASR0 4

Anti-Malware Requirements #RequirementYes/No/Parti al EOP Feature/Setting AMR01 AMR02 AMR03 AMR04

Reporting Requirements #RequirementYes/No/Parti al EOP Feature/Setting RR01 RR02 RR03 RR04

Administration Requirements #RequirementYes/No/Parti al EOP Feature/Setting AR01 AR02 AR03 AR04

54 Partner MUST customize prior to delivery Software Assurance Planning Services 54 Speaker:Add info here Title of presentation:EOP Deployment Planning and Pilot Kickoff Presentation Length of presentation: 15 minutes Audience:IT Professionals, IT Managers, CIO, CTO Sales Cycle Alignment: Engagement Desired Outcomes:  Kickoff Planning Services engagement  Team introduction  Set Agenda for the engagement Modular Outline: Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

 Use of this template is recommended, but not a mandatory requirement for the planning services engagement  Use the time during this presentation to set the context, know the team members participating in the engagement and set expectations about the output.  Please add/remove information as appropriate. Notes to Presenter: 55 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange Online Protection Engagement Kick Off Software Assurance Planning Services

Team {Partner} 58 NameRole {Partner} Account Team Account Executive Microsoft Technical Specialist/Architect Services Executive {Partner} Services Team Engagement Manager EOP Technical Consultant {Partner} SponsorEngagement ManagerConsultant

Team {Customer} 59 NameRole / Focus area {CUSTOMER} CoreTeam Executive Sponsor Project Manager {CUSTOMER} Technical subject matter experts (SMEs) IT Manager IT Pro

Participation expectations  Keep to the schedule  Be present  Interact  Ask when things don’t add up What you get 60  Recommended practices  End to end view  Limited production pilot  Get your questions answered What we expect

Deployment Planning and Limited Pilot 3-Day Agenda 61

Day 1 Agenda Deployment Planning and Limited Pilot 62 TimeTopicDescription 9:00 AM Intro/Kick-offA review of the workshop and our goals. 9:15 AM Understanding the environment Understand the solution environment and review the responses to the pre-engagement questionnaire. 10:00 AM Requirements gathering 11:00 AM Break 11:15 AM EOP technical overview Understand the core technical features of EOP 12:30 PM Lunch 1:15 PM EOP Technical overview (continued..) 3:00 Break 3:15 PM Deployment planning. Discuss the various deployment options and identify the one most suitable for the customer. 4:45 PM Solution alignment discussion Ensure that customer requirements are correctly mapped to various EOP features.

Day 2 Agenda Deployment Planning and Limited Pilot 63 TimeTopicDescription 9:00 AM Preparing findings and recommendations Deliverable to the customer 12:00 Noon Debrief Discuss the findings and recommendations with the customer 12:30 PM Lunch 1:15 PM Limited production pilot Deploy EOP in production environment for a limited set of users. 5:30 PM Pilot status check Review by customer and partner resources to check the status of the limited production pilot.

Day 2 Agenda Deployment Planning and Limited Pilot 64 TimeTopicDescription 9:00 AM Preparing findings and recommendations Deliverable to the customer 12:00 Noon Debrief Discuss the findings and recommendations with the customer 12:30 PM Lunch 1:15 PM Limited production pilot Deploy EOP in production environment for a limited set of users. 5:30 PM Pilot status check Review by customer and partner resources to check the status of the limited production pilot.

Thank you 66

Copyright© Microsoft Corporation Speaker:Engagement consultant Title of presentation:Assessment of the Environment Length of presentation: 45 minutes Audience:Customer BDM/TDM/IT Pro Sales Cycle Alignment: Post-sales Deployment Desired Outcomes:Partner to have a firm understanding of the current secure email gateway solution and the challenges faced by the customer. Modular Outline:Discussion on the current status of the messaging environment, secure email gateway solution and challenges. Document the findings. Partner MUST customize prior to delivery Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange Online Protection Planning Services

Platform Exchange 2XXX Lotus Domino XXX Exchange Hybrid Office 365 Architecture Mail flow Network locations Firewall rules DirSync with Azure AD

Copyright© Microsoft Corporation Domains Number of authoritative domains List of authoritative domains Usage Bulk mailing within the organization Recent incidents of spam Recent incidents of virus outbreak

Platform Product/service used Online components On-premises components Use of DKIM Configuration Scanning of outbound and inbound flow Anti-virus rules Anti-spam rules Allow/block IP list Safe user list Handling of quarantined messages

Copyright© Microsoft Corporation Management Administration tools Reporting Notifications to administrators and end users Managing quarantined messages Add-Ons E-mail encryption TLS domains TLS users Address rewrite Content filtering

Partner MUST customize prior to delivery Software Assurance Planning Services 80 Speaker:Engagement Consultant Title of presentation:EOP Technical Overview Length of presentation: 180 minutes Audience:IT Professionals, IT Managers Sales Cycle Alignment: Engagement Desired Outcomes:  Audience understands the capabilities of EOP. Modular Outline:Explanation of technical capabilities and how they are useful in business. Live demonstrations. Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

 Use of this template is recommended, but not a mandatory requirement for the planning services engagement.  Have your demo environment ready before starting this presentation.  Use the time during this presentation to explain the technical features of EOP and how they are useful in solving real world challenges.  Include as many live demonstrations as possible.  Please add/remove information as appropriate. Notes to Presenter: 81 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

Comprehensive protection Multi-engine anti-malware protection Continuously evolving anti-spam protection Enterprise class reliability Geographically load-balanced datacenters Queuing capabilities to help ensure no mail is lost Live Phone Support Streamlined administration console Office 365 integration Detailed reporting

Verify prerequisites Validate domains Configure mail flow Customize spam and policy settings Enable mail flow Monitor and fine tune

Copyright© Microsoft Corporation Username and password of Office 365 Global Admin and Exchange Organization Administrator. Domain names to be protected by EOP. Inbound and outbound public IP addresses. Open firewall port 25 to Exchange Online Protection IP Addresses. Modern web browser.

Custom Mail Flow – Connector Scenarios ScenarioDescription Outbound Smart Hosting Outbound mail is redirected to an on-premises server that applies additional processing before delivering mail to its final destination. Regulated Partner with Forced TLS Forced inbound and outbound transport layer security (TLS) is used to secure communication with a partner. Conditional Mail Routing A connector associated with a transport rule routes mail to a specific site. HybridWhen configuring hybrid deployments manual steps are not recommended for creating connectors. The Office 365 team has created tools to automate the setup process and make it much easier.

Copyright© Microsoft Corporation Change the MX record. After 72 hours restrict on- premises firewall to accept port 25 traffic only from EOP. Create send connector with EOP as smart host in the on-premises server for Internet bound emails.

DEMO Connector Configuration 97

Copyright© Microsoft Corporation Users Users are the recipients within your EOP managed domains. Transport rules can be applied to users. Users can be assigned management roles. Users with management role group privileges can access the Exchange admin center (EAC). Contacts Contacts represent recipients outside of the EOP managed domains who can be displayed in the address book. Contacts can be used when creating transport rules. Can be used with transport rules. They can’t sign in to the EAC.

Copyright© Microsoft Corporation Synchronized Recommended when company has existing user accounts in an on-premises Active Directory. Microsoft Azure AD Directory Sync tool is required. Recipients can be viewed as read only in EAC. Manual Add and manage users in EAC Created and managed directly in Office 365 admin center. These recipients are not viewable in the EAC.

Directory Synchronization 100 Automated user/group management Ideal solution for organizations with on-premises Active Directory. Easier creation of rules based on user addresses. Allows for use of security group membership for configuration and rules. Synchronize Outlook safe/blocked sender lists. On-premisesExchange Online Protection Microsoft Azure Directory Sync

DEMO Managing Recipients 101

Feature Permissions EOP FeatureRole Group Membership Required Anti-malwareOrganization ManagementOrganization Management,Hygiene ManagementHygiene Management Anti-spamOrganization ManagementOrganization Management,Hygiene ManagementHygiene Management DomainsOrganization ManagementOrganization Management,View-Only Organization ManagementView-Only Organization Management Inbound and Outbound connectors Organization Management Message traceOrganization ManagementOrganization Management, View-Only Organization ManagementView-Only Organization Management Organization configurationOrganization Management Quarantine Organization ManagementOrganization Management, View-Only Organization Management, Hygiene ManagementView-Only Organization ManagementHygiene Management Users, Contacts, and Role Groups Organization ManagementOrganization Management,View-Only Organization Management,Hygiene ManagementView-Only Organization ManagementHygiene Management View reportsOrganization ManagementOrganization Management, View-Only Organization ManagementView-Only Organization Management

DEMO Managing Admin Role Groups 104

Purpose of Reports Help meet regulatory, compliance, and litigation requirements. Help troubleshoot configuration and security related issues. Types of Reports The administrator role group report lets you view when a user is added to or removed from membership in an administrator role group. The administrator audit log records any action, based on an Exchange Management Shell cmdlet, performed by administrators or users who have been assigned administrative privileges.

DEMO Auditing Reports Administrator Audit Log 108

Copyright© Microsoft Corporation  Regulatory requirements and company policies require applying of messaging restrictions, content filtering, disclaimers etc. on emails. 109 Transport rules are created. Emails are inspected by transport rule agent. If a message fits any of the transport rule condition an action is taken.

Block or redirect messages. Modify messages. Enforce TLS encryption. Route messages through specific connectors.

DEMO Manage transport rules. Domain based safe sender and blocked sender list using transport rules. 114

EOP Inbound Filtering Email is routed to Microsoft DC based on MX record resolution (Contoso-com.mail.protection.outlook.com) IP-based edge blocks Reputation blocks Malware Scanning Content Filtering Safe Sender/Recipient Policy Enforcement Custom Rules Content scanning and Heuristics Bulk Mail Filtering SPF & Sender ID Filter Quarantine International Spam Additional ASF Options Customer Feedback False Positives and False Negatives Customer Feedback False Positives and False Negatives Spam Analysts Corporate Network EOP Network AV Engine 1 AV Engine 2 AV Engine 3 Regular Expression blocks URL blocks Connection & Sender-Recipient Filtering

EOP Network Outbound Pool EOP Outbound Filtering High Risk Delivery Pool High Score Outbound Pool Low Score Spam Protection Content Scanning and Heuristics Advanced Spam Management Malware Scanning Policy Enforcement Custom Rules Quarantine Spam Analysts Corporate Network Bulk Delivery Pool Bulk Mail Internet AV Engine 1 AV Engine 2 AV Engine 3

Copyright© Microsoft Corporation When an email goes through the spam filtering process it is assigned a score known as the Spam Confidence Level (SCL) rating. Based on the SCL rating, the EOP service takes actions upon the messages.

SCL Ratings and Default Actions 120 SCL Rating Spam Confidence InterpretationDefault Action Non-spam coming from a safe sender, safe recipient, or safe listed IP address (trusted partner) Deliver the message to the recipients’ inbox. 0, 1 Non-spam because the message was scanned and determined to be clean Deliver the message to the recipients’ inbox. 5, 6Spam Deliver the message to the recipients’ Junk Email folder. This can be changed. 9High confidence spamDeliver the message to the recipients’ Junk Email folder. This can be changed. Note: In order to ensure that the Move message to Junk Email folder action will work with on-premises mailboxes, you must configure two Exchange Transport rules on your on-premises servers to detect spam headers added by EOP

Anti-Spam Policies 122 Connection Filtering Based on the reputation of an IP address or a range of IP addresses. This policy can be customized by adding IP addresses to Allow and Block lists. The “Enable safe list” option prevents missing email from certain well-known senders. Content Filtering Filters inbound messages with inappropriate content. Can be customized to filter messages based on languages and countries of origin. Advanced spam filtering (ASF) options give administrators the ability to inspect various content attributes of a message.

Anti-Spam Policies 123 Bulk Mails By default all Bulk Mails are marked as spam. To allow incoming bulk emails, add the SMTP MAIL FROM address to a safe sender list. Outbound Filtering Always enabled and cannot be changed. Outbound mails identified as spam are routed via high-risk delivery pool. Spamming users are added to blocked list. Service request is required for removal. Email notifications can be sent when suspicious or blocked messages have been identified.

EOP will begin supporting inbound validation of DKIM DKIM support will start with IPv6, later IPv4 as well The results of a DKIM-Signature validation will be stamped in the Authentication- Results header Customers will be able to write Exchange Transport Rules (ETRs) on the results of a DKIM validation to filter or route messages as needed. For example: Authentication-Results: contoso.com; dkim=pass (signature was verified) header.d=example.com; In a future release, we will also provide DKIM signing.

DEMO Connection filtering – customization Content filtering – custom policy Outbound filtering – editing default policy. Managing Safe Sender Lists for Bulk Mailers 128

DEMO Quarantine features for administrators and end users. 132

DEMO Configuring end-user spam notifications. 136

Copyright© Microsoft Corporation Delete messages. Delete attachments. Robust, customizable notifications. Custom policies can be created to change the scope (user, group, or domain) and priority. Sender notifications Admin notifications

DEMO Configuring anti-malware policies 139

DEMO Mail Protection Reports Using the Excel Reporting Workbook 148

Follows email messages as they travel through EOP. Tracks delivery status and actions taken on specific messages. Visibility up to 90 days in the past. An efficient tool to troubleshoot issues related mail flow and policy changes without contacting Microsoft technical support. 149

DEMO Running a message trace. 150

152 Synchronize Recipients using DirSync. Restrict on- premises server to accept emails only from EOP. Add SPF record DNS. Set up on- premises outbound connector to send <50 messages. Make use of anti- spam options. Fine tune anti- malware options. Create transport rules for custom rules required for business. Use reporting tools for troubleshooting.

DLP policies are simple packages that contain sets of conditions, which are made up of transport rules, actions, and exceptions. Helps to identify, monitor, protect sensitive data through deep content analysis. Anti-spam, anti-malware and DLP controls integrated into the Exchange admin center and Office 365. DLP is a premium feature requiring Exchange Online Plan 2 subscription or Exchange Enterprise Client Access License (CAL)

Transport rule conditions DLP specific action – Policy Tip Exceptions DLP specific condition Transport rule actions

Send Encrypted Mail to Anyone! Customize with Your Brand Simplified Administration Easy-to-use User Experience

Scenario ContosoPharma wants to encrypt any message sent outside the organization, that contain health care information about patient. Sanjay, a practitioner sends an email that contains the sensitive information to John, who is outside the ContosoPharma organization. Photo

Plan Requires Price Office 365 Message Encryption is included with Microsoft Azure Rights Management (MARM) Office 365 E3, E4 Office 365 E1, K1 Office 365 Exchange Online Plan 2, Plan 1, Kiosk Office 365 SharePoint Plan 2, Plan 1 Office 365 Midsize Business Exchange on-premises Microsoft Azure Rights Management (MARM) $2 PUPM <Included

Copyright© Microsoft Corporation Secure version of MIME Secure/Multipurpose Internet Mail Extensions is a standard for public key encryption and signing of MIME data (an email message) Allows the possibility of sending and/or receiving email encrypted Only intended recipient can read the message Recipient knows that the message came from the apparent sender Recipient knows that the message was not changed on route SecrecyAuthentication Integrity

168 Partner MUST customize prior to delivery Software Assurance Planning Services 168 Speaker:Engagement Consultant Title of presentation:Exchange Online Protection Deployment Planning Length of presentation: 90 minutes Audience:IT Professionals, IT Managers. Sales Cycle Alignment: Engagement Desired Outcomes:  Customer is educated on various deployment options. Modular Outline:Various deployment options are discussed. Help customer decide the right architecture for them. Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

 Use of this template is recommended, but not a mandatory requirement for the planning services engagement  Use the time during this presentation to discuss the various deployment scenarios for EOP.  Help the customer identify the right architecture for them.  Document the decisions and make them part of the Findings and Recommendations document.  Please add/remove information as appropriate. Notes to Presenter: 169 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

EOP Standalone Deployment Suitable for customer or Microsoft partner hosted messaging solutions Works with on- premises deployment of Exchange or any other SMTP based messaging solution. EOP with Exchange Online Suitable when an organization hosts all it’s mailboxes in Exchange online (Office 365). Enabled by default for all mailboxes EOP Hybrid Deployment Suitable when an organization distributes mailboxes between on-premises and online (Office 365) Exchange servers. Choice of routing mails through EOP or on-premises servers.

Set Expectations There is no on-premises version available for EOP. Customers may see a change in email patterns such as less false positives but more grey mail. Every product needs to be tuned to customers environment. Features may function differently. Porting Configuration Irrespective of the source platform, the process for switching to EOP is similar. EOP with default settings meets most of the requirements. Good opportunity to trim old safe/block lists. Content filtering rules may not be needed.

Copyright© Microsoft Corporation Allow and Block IP Lists List of IP addresses allowed/blocked to send emails may need to be copied over to EOP. Accepted Domains List of all domains that you own need to be reconfigured in EOP. Do you send bulk mails? By default all bulk emails are disabled. Connector Settings Smart host IP address. Any conditional routing requirements. Partner domains requiring TLS Users and Groups Directory Synchronization. Manual creation. Safe/Blocked Senders List DirSync can preserve this list. PowerShell based scripting can automate this task (requires Exchange Online).

192 Partner MUST customize prior to delivery Software Assurance Planning Services 192 Speaker:Engagement Manager / Delivery Consultant Title of presentation:Exchange DLP Deployment Planning and Pilot Kickoff Presentation Length of presentation: 15 minutes Audience:IT Professionals, IT Managers, Project stakeholders Sales Cycle Alignment: Engagement Desired Outcomes:  Kickoff Planning Services engagement  Team introduction  Set Agenda for the engagement Modular Outline: Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

 Use of this template is recommended, but not a mandatory requirement for the planning services engagement  Use the time during this presentation to set the context, know the team members participating in the engagement and set expectations about the output.  Please add/remove information as appropriate. Notes to Presenter: 193 Internal Only – REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange DLP Deployment Planning and Pilot Engagement Kickoff Software Assurance Planning Services

Team {Partner} 196 NameRole {Partner} Account Team Account Executive Microsoft Technical Specialist/Architect Services Executive {Partner} Services Team Engagement Manager Exchange DLP Technical Consultant {Partner} SponsorEngagement ManagerConsultant

Team {Customer} 197 NameRole / Focus area {CUSTOMER} CoreTeam Executive Sponsor Project Manager {CUSTOMER} Technical subject matter experts (SMEs) IT Manager IT Pro

Participation expectations  Keep to the schedule  Be present  Interact  Ask when things don’t add up What you get 198  Recommended practices  End to end view  Limited production pilot  Get your questions answered What we expect

Deployment Planning and Limited Production Pilot Agenda 199

Engagement Agenda 200 TimeTopicDescription 9:00 AMIntro/Kick-off A overview of the workshop and pilot. Setting goals and expectations. 9:15 AMUnderstanding the environment Understand the solution environment and review the responses to the pre-engagement questionnaire. 9:45 AMRequirements gathering Understand the business, technical, operational, compliance, security and other requirements. 10:45 AMExchange DLP Technical OverviewUnderstand the core technical features of Exchange DLP. 12:45 PMLunch 1:45 PMSolution alignment Ensure that customer requirements are correctly mapped to various DLP features and capabilities. 2:45 PMDeployment planning Discuss the various deployment strategies. Discussion on how to formulate various DLP policies, rules,policy tips, document fingerprints, reports etc. 3:45 PMLimited production pilotDeploying one DLP policy in production environment. 5:00 PMDebrief and conclusionPreparing Findings and Recommendations document and presenting the same to the customer team.

Thank you 202

Copyright© Microsoft Corporation Speaker:Engagement delivery consultant. Title of presentation:Understanding the Environment Length of presentation: 30 minutes Audience:Customer BDM/TDM/IT Pro Sales Cycle Alignment: Post-sales Deployment Desired Outcomes:Delivery consultant will have a firm understanding of customer’s messaging environment and factors driving the deployment of Exchange DLP. Modular Outline:Discussion on the current messaging environment, assessment of the environmental readiness to deploy Exchange DLP, review of pre-engagement questionnaire. Partner MUST customize prior to delivery Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange DLP Deployment Planning and Pilot

Current Challenges 215

Copyright© Microsoft Corporation Speaker:Engagement delivery consultant Title of presentation:Requirements gathering Length of presentation: 60 minutes Audience:{Customer BDM/TDM/IT Pro} Sales Cycle Alignment: Post-sales Deployment Desired Outcomes: All customer requirements are gathered and documented. Modular Outline:Business, operational, technical Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange DLP Deployment Planning and Pilot

Business Requirements #Requirement BR01 BR02 BR03 BR04

Operational Requirements #Requirement OR01 OR02 OR03 OR04

Technical Requirements #Requirement TR01 TR02 TR03 TR04

What causes a breach? System glitches Malicious intentOops! 39% 24% 37% 97% avoidable! Online Trust Alliance: 2013 Data Protection and Breach Readiness Guide

Protect communications

DLP policies are simple packages that contain sets of conditions, which are made up of transport rules, actions, and exceptions. Helps to identify, monitor, protect sensitive data through deep content analysis and document fingerprinting. Policy tips to proactively inform users about violations. Easy management using Exchange admin center and Exchange management shell.

Obtain the appropriate license for Exchange. Have at least one sender mailbox.

Copyright© Microsoft Corporation Caution! You should enable your DLP policies in test mode before running them in production environment. During such tests, it is recommended that you configure sample user mailboxes and send test messages that invoke your test policies in order to confirm the results. Use of DLP policies does not ensure compliance with any regulation. After testing is complete, make the necessary configuration changes in Exchange so the transmission of information complies with your organization's policies.

Get content Spencer Badillo Visa: 4111 1111 1111 1111 Expires: 2/2012 Regular Expression Analysis 4111 1111 1111 1111 -> a 16- digit number is detected Functional Analysis 4111 1111 1111 1111 -> matches checksum 1234 1234 1234 1234 -> doesn’t match Corroborative Evidence Keyword Visa is near the number. A regular expression for a date (2/2012) is near the number. Verdict There is a regular expression that matches a checksum. Additional evidence increases confidence

A policy can be in one of the three modes EnforceTest DLP policy with Policy Tips Test DLP policy without Policy Tips

Transport rule conditions DLP specific action – Policy Tip Exceptions DLP specific condition Transport rule actions

Demo  Create DLP policy from a template  Create a custom DLP policy without any existing rule.

File types not supported by Exchange transport rules cannot be used for fingerprinting. If ETR cannot crack open the password protected files, they cannot be inspected by document fingerprinting agent. Files that contain only images cannot be checked for document fingerprinting. Documents that don’t contain all the text from the original form used to create the document fingerprint flows undetected. Optional Slide

Demo  Creating document fingerprint.  Creating a DLP policy with document fingerprint.

Demo  Create a notify-only Policy Tip.  Create a block-message Policy Tip.  Create a block-unless-override Policy Tip.  Create a custom Policy Tip notification.

Audit data Classification Rule details

Demo  DLP reports in Office 365 admin center.  Using EAC to view DLP reports.  Excel based reports

Resources Exchange 2013 DLP introduction http://blogs.technet.com/b/exchange/archive/2012/09/28/introducing-data-loss-prevention-in-the-new-exchange.aspx http://technet.microsoft.com/en-us/library/jj150527.aspx DLP policy templates http://technet.microsoft.com/en-us/library/jj657730 Managing DLP policies http://technet.microsoft.com/en-us/library/jj673559 OOB DLP policy templates http://technet.microsoft.com/en-us/library/jj150530 Policy tips in Exchange 2013 http://technet.microsoft.com/en-us/library/jj150512 Supported file types http://technet.microsoft.com/en-us/library/jj674307 MessageStats Quick Guide http://mbidemo.quest.com/Insights/#page/home

Copyright© Microsoft Corporation Speaker:Engagement delivery consultant Title of presentation:Exchange Data Loss Prevention Deployment Planning and Pilot Length of presentation: 60 minutes Audience:{Customer BDM/TDM/IT Pro} Sales Cycle Alignment: Post-sales Deployment Desired Outcomes: Customer requirements are mapped against Exchange DLP features and capabilities. Any requirement that cannot be met is clearly called out. Modular Outline:Add more info here Instructional slide to Partner: REMOVE BEFORE PRESENTING TO CUSTOMER

Exchange DLP Deployment Planning and Pilot.

Business Requirements #RequirementYes/No/Parti al Exchange DLP Feature/Setting BR0 1 BR0 2 BR0 3 BR0 4

Operational Requirements #RequirementYes/No/Parti al Exchange DLP Feature/Setting OR01 OR02 OR03 OR04

Technical Requirements #RequirementYes/No/Parti al Exchange DLP Feature/Setting TR01 TR02 TR03 TR04

Copyright© Microsoft Corporation Exchange and DLP Online Requires Plan 2 subscription. No installation required. Exchange and DLP On- Premises Requires Exchange Enterprise CAL. Requires Exchange Server 2013 or later* Exchange On- Premises and DLP Online Required Exchange Enterprise CAL with services. Suitable for prior version of Exchange server. Exchange Hybrid and DLP Online Exchange Enterprise CAL with services required. DLP works in the cloud.

Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the.

Similar presentations

Presentation on theme: "Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the."— Presentation transcript:

Similar presentations

About project

Feedback

Log in

Auth with social network:

Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the.

Similar presentations

Presentation on theme: "Notes to Presenter:  This slide deck was designed to consolidate the relevant content into a single location  Use the Sections to find and present the."— Presentation transcript:

Similar presentations

About project

Feedback