microsoft exchange 2013 archiving, e discovery, compliance and data loss prevention
DESCRIPTION
Microsoft Exchange 2013 archiving, e discovery, compliance and data loss preventionTRANSCRIPT
Preserve Discover
In-Place Archive with secondary quota Available on-prem, online, or EOA
Storage Management
Capture deleted & edited messages
Preservation
Automated time-based criteria to delete or move to archiveSet policies at item or folder level – admin or user
Data Governance
Search primary, archive, & recoverable itemsDe-duplication & Search statistics
eDiscovery
The new Office
Lync Archives into ExchangeSearch across Primary & Archive – OLK & OWA
Time-Based In-Place HoldQuery-Based In-Place HoldIn-Place Hold across Ex, SP, Lync
Consistent MRM OWA UI
eDiscovery Center for Ex, SP, Lync Case ManagementIn-Place previewExport search results
An integrated In-Place Archive enables users to save time by managing their archive as they do their mailbox
Outlook OWA
Retain folder hierarchy
• Quickly find new or historical email wherever you are with new, faster search technology
• Single Search in OWA and Outlook returns results from Primary & Archive Mailboxes
Search everywhere at once
Integrated search
Combined conversation view
• Automate the deletion and archiving of email and other Exchange data to meet data retention requirements
• Assign personal tags to system folders in Outlook and OWA
• View default mailbox policy
Single menu for policies
Retention policy and expiry details
Assign to an individual item, folder, or all email
Delete Policy
Archive Policy (mailbox management)
Identify and Preserve
Search and Process Review Produce
In-Place eDiscovery Model
Select users & sites to preserve
Select mailboxes & DGs to preserve
Query of what to preserve
Turn on Hold
KQL based searches – including proximity search
Instant statistics
Litigation Hold (Legacy)
Time-Based In-Place Hold
In-Place Hold (Indefinite)
Query-Based In-Place Hold
eDiscovery Center
Exchange Admin Center
Exchange Management Shell
Variants Management Options
User A Mailbox
Recoverable Items
Deletions
Inbox
Purges
Versions
Audits
Deleted Items
…
DiscoveryHold
Calendar Logging
(6a) Messages purged by DIRW Policy (or maintained for Litigation Hold)
(5) Message Edited
(3) Message deleted
(4a) Message “purged” by user (Litigation Hold / Single Item Recovery)
Lifecycle of mailbox items
(4b) Message “purged” by user (In-Place Hold)
(6c) MFA evaluates item against hold queries set on mailbox
(6b) Mailboxes with SIR and In-Place Hold enabled have expired messages moved
(1) Message delivered
(2) Message moved to Deleted Items
Lync archives content into Exchange mailboxes when user is on In-Place Hold
Includes instant messaging and meeting content
In-Place Hold, eDiscovery, MRM of Lync data consolidated to Exchange tools
Lync 2010 Exchange 2010
Compliance
Archive
Compliance
New Lync New Exchange
Single In-Place data store for Exchange & Lync compliance
User A Mailbox
Recoverable Items
Deletions
Deleted Items
Inbox
Versions
Purges
DiscoveryHolds
Server side archiving
All Lync modalities captured (PC, mobile, web, OWA)
User A on hold
Enable or modify quickly
Fully HostedCloud Archive (EOA)
Hybrid*
ARCHIVE
PRIMARY
ARCHIVE
PRIMARY
ARCHIVE
ARCHIVE
PRIMARY
PRIMARY
Rapidly evolving external threats
Potential loss of sensitive data
Keeping email safe without impacting users
24
Exchange Online Protection works to block spam and viruses before they enter the networkBasic level of anti-malware built into Exchange Server
Scan Exchange transport for sensitive content with Data Loss Prevention (DLP) feature in the cloud or on-premisesGranular control on email using RMS
25
26
27
28
Transport rulesData Loss PreventionRights Management
29
ConditionsActionsExceptions
Conditions
Actions
Exceptions
30
New options
New filters
New actions
31
DLP helps to identifymonitorprotect
sensitive data through deep content analysis
Empower users to manage their compliance
Contextual policy education
Doesn’t disrupt user workflow
Can work even when disconnected
Admin-customizable text and actions
33
34
• Content to monitor• User action• Mail flow actions
contains• Credit cards• EU debit cards
Defines the policy objectivesto help meet regulatory requirementsfor identified contentContains data type definitionsto help identify sensitive content
35
Predefined rules targeted at sensitive data typesAdvanced content detection Combination of regular expressions, dictionaries, and internal functions (e.g., validate checksum on credit card numbers)Extensibility for customer and ISV-defined data types
36
Conditions
Actions
Exceptions
37
38
Microsoft Windows Azure™ Active Directory Rights ManagementDefault TemplatesCompany ConfidentialCompany Confidential Read Only Do not forward (Works across tenants)
Preview configuration: Configure Exchange Online Preview to use Windows Azure AD Rights Management
39
Audit dataClassification
Rule details
41
Comprehensive view of DLP policy performanceDownloadable Excel workbookDrill into specific departures from policy to gain business insights
42
Education experience in Outlook Preview
Available in Exchange Server and Office 365
Out-of-the-box DLP policy templates
Predefined sensitive content types
Support for third party–defined DLP policy templates
DLP administration in Exchange Admin Center
Rich reporting43
Protect communications
Enforce policy
Simplify management