exchange online protection. about speaker prabhat nigam microsoft mvp: exchange server mcse:...
TRANSCRIPT
Exchange Online
Protection
Exchange Online
Protection
About SpeakerAbout Speaker
Prabhat NigamMicrosoft MVP: Exchange Server MCSE: Messaging 2013, MCITP 2010/2007, MSEx – Microsoft Exchange PSS EmployeeBlog: MSExchangeguru.com & MVP CommunitySpeaker: LAEXUG, NJUCUG, TechStravaganza, NetCom Learning, NYEXUG & MicrosoftAuthor: Kaplan and Opsgility
RELEASEDRELEASED
CHECK MY BLOGS HERE:HTTP://MSEXCHANGEGURU.COM/?S=%22EXCHANGE+SERVER+2016%3A+ALL%22
HTTP://BIT.LY/1JSYCNF
CHECK MY BLOGS HERE:HTTP://MSEXCHANGEGURU.COM/?S=%22EXCHANGE+SERVER+2016%3A+ALL%22
HTTP://BIT.LY/1JSYCNF
Survey 1Survey 1
Have you tested Exchange 2016 or deployed in Production as TAP?No one tested yet.Share your Feedback and Concerns to me
AGENDAAGENDA
• Overview• Benefits of EOP • EOP Architecture• EOP Mailflow • EOP Challenges• EOP Connectors • Demo• Best Practice for EOP• Other Options• Summary
Survey 2Survey 2
Are you using any Spam Guard? SpamHeroIronportBarracudaEOP
How many of you already using EOP?1
Benefits of Exchange Online Protection Benefits of Exchange Online Protection
• Outage Protection: Power |Internet | SAN |Virus
• High-Availability – Multiple servers and Datacenter
• Multi Engine Antivirus & Antispam Protection• Data Loss Prevention and Encryption • International Spam Protection• All New Spam definitions added• Only EOP Possible – No Office 365 Mailbox
required• Connect using PowerShell• Detailed Reporting and 24x7 Support• Mail queue capability• Based on Azure AD & Exchange 2013 or 2016
EOP ArchitectureEOP Architecture
Office 365 EOP
EOP with Office 365 Service is being used
EOP Deployment 1EOP Deployment 1
EOP Deployment 2EOP Deployment 2 Only EOP
Only EOP service is being usedMailboxes are in On Premise Messaging
SystemMessaging System can be any.
EOP Deployment 3EOP Deployment 3 Hybrid EOP
1. Receive and Send Via EOP in Hybrid Exchange setup
Hybrid Setup
Both On Premise and Office 365 are using EOP
Hybrid EOP
2. Receive and Send Via On Premise to EOP-Hybrid Setup-On Premise device/server receive and send the email then forward to EOP for Spam filtering. -Then receive by Office 365 or On Premise-Same Route for Office 365 sending-On Premise sends out directly
EOP Deployment 4EOP Deployment 4
Hybrid EOP
3. Receive via EOP and Send Via both EOP & On Premise
-MX record is pointing to EOP-SPF has both EOP & on-Prem
EOP Deployment 5EOP Deployment 5
EOP Deployment 6EOP Deployment 6 Hybrid EOP
4. Receive via EOP then Forwarded to On Premise
On Premise send back to Office 365
EOP Mailflow InboundEOP Mailflow Inbound Inbound Filtering
EOP Mailflow OutboundEOP Mailflow OutboundOutbound Filtering
EOP SLA & COSTEOP SLA & COST
SLA
• 100% known virus detection• 99% spam detection rate• 99.999% uptime for only EOP Customers• Average email delivery time of less than 1
minute for only EOP customers• Cost $1 Per User Per Mailbox
Exchange Online Protection ChallengesExchange Online Protection Challenges
• Updates deployment will be done as per Microsoft policy• Reporting Timeline
– Summary Data – 180 Days– Detailed resulted for only last 7 days available on web view– Detailed resulted for only last 90 days available to download or
need to wait for the support to send via email• False Positive is possible• Proper configuration and details required• Deployment of reporting excel file is requiredhttp://msexchangeguru.com/2014/04/28/office-365-download-reports/• Transport Rule search may require script. http
://msexchangeguru.com/2014/07/03/office-365_search-transport-rule/
• Bulk quarantine require Powershell• Transport Rule limit is 100. It may be extendable which depends on
the customer agreement level
EOP Mailflow & Connectors
EOP Mailflow & ConnectorsMailFlow
Steps to move to EOP.
1. Add your domain via the Office 365 portal.
2. Create inbound and outbound connectors.1. Inbound connector is a Receive connector
2. Outbound connector is a Send connector
3. Change your domain’s MX record to point to Office 365.
DEMO - LABDEMO - LAB
Survey 3Survey 3
How many of you will be going for EOP or recommending EOP now?+1
Exchange Online Protection Best Practice Exchange Online Protection Best Practice
• Educate yourself• Configure Connectors correctly• Configure Connection filtering• Configure DLP• Configure Transport Rules in correct order• Complete the Testing• Do the cut over to change the mailflow• Report all false positive• Don’t forget to open a ticket with Microsoft from EOP
Portal• Messaging header should show the following else EOP
will run spam check for your On prem to office 365 email X-MS-Exchange-Organization-AuthAs: Internal http://msexchangeguru.com/2014/04/28/o365-all-emails-quarantined/
Other OptionsOther Options• Proofpoint• Websense• Mimecast• Symantec Message Labs• McAfee MxLogic• Google Apps (Postini)• Baracuda• Ironport• Exchange – Edge Transport• Others• On Premise Solutions
SUMMARYSUMMARY
• EOP Benefits• EOP Architecture• EOP Challenges• Best Practices• Demo • Blog on EOP http://msexchangeguru.com/?s=EOP
• EOP Benefits• EOP Architecture• EOP Challenges• Best Practices• Demo • Blog on EOP http://msexchangeguru.com/?s=EOP
LOS ANGELES
EXCHANGE USER GROUP
LAEXUG
LOS ANGELES
EXCHANGE USER GROUP
LAEXUG
Next Big Thinghttps://meetup.com/LAExUG
Launch – 09.09.2015
Next Big Thinghttps://meetup.com/LAExUG
Launch – 09.09.2015
Connections For MoreConnections For More
• Feedback: [email protected]• Blog: http://MSExchangeGuru.com
Twitter: #MSExchangeGuru Facebook: @MSExchangeGuru YouTube: MSExchangeGuru Channel LinkedIn: Microsoft Exchange Server
Microsoft Exchange Server 2013
Facebook: Microsoft Exchange 2016LinkedIn: Microsoft Exchange Server 2016
go raibh maith agat
σας ευχαριστώधन्यवा�द
Merci mulțumesc
thank you