Exchange Online
Protection
About Speaker
Prabhat Nigam
Microsoft MVP: Exchange Server
MCSE: Messaging 2013, MCITP 2010/2007, MS
Ex – Microsoft Exchange PSS Employee
Blog: MSExchangeguru.com & MVP Community
Speaker: LAEXUG, NJUCUG, TechStravaganza,
NetCom Learning, NYEXUG & Microsoft
Author: Kaplan and Opsgility
RELEASED
CHECK MY BLOGS HERE:
HTTP://MSEXCHANGEGURU.COM/?S=%22EXCHANGE+SERVER+2016%3A+ALL%22
HTTP://BIT.LY/1JSYCNF
Survey 1
Have you tested Exchange 2016 or
deployed in Production as TAP?
No one tested yet.
Share your Feedback and Concerns to me
AGENDA
•
•
•
•
•
•
•
•
•
•
Overview
Benefits of EOP
EOP Architecture
EOP Mailflow
EOP Challenges
EOP Connectors
Demo
Best Practice for EOP
Other Options
Summary
Survey 2
Are you using any Spam Guard?
SpamHero
Ironport
Barracuda
EOP
How many of you already using
EOP?
1
Benefits of Exchange Online Protection
•
•
•
•
•
•
•
•
•
•
•
Outage Protection: Power |Internet | SAN |Virus
High-Availability – Multiple servers and Datacenter
Multi Engine Antivirus & Antispam Protection
Data Loss Prevention and Encryption
International Spam Protection
All New Spam definitions added
Only EOP Possible – No Office 365 Mailbox required
Connect using PowerShell
Detailed Reporting and 24x7 Support
Mail queue capability
Based on Azure AD & Exchange 2013 or 2016
EOP Architecture
EOP Deployment 1
Office 365 EOP
EOP with Office 365 Service is being used
EOP Deployment 2
Only EOP
Only EOP service is being used
Mailboxes are in On Premise Messaging System
Messaging System can be any.
EOP Deployment 3
Hybrid EOP
1. Receive and Send Via EOP in Hybrid Exchange setup
Hybrid Setup
Both On Premise and Office 365 are using EOP
EOP Deployment 4
Hybrid EOP
2. Receive and Send Via On Premise to EOP
-Hybrid Setup
-On Premise device/server receive and send the email then forward to EOP for Spam filtering.
-Then receive by Office 365 or On Premise
-Same Route for Office 365 sending
-On Premise sends out directly
EOP Deployment 5
Hybrid EOP
3. Receive via EOP and Send Via both EOP & On Premise
-MX record is pointing to EOP
-SPF has both EOP & on-Prem
Hybrid EOP
EOP Deployment 6
4. Receive via EOP then Forwarded to
On Premise
On Premise send back to Office 365
EOP Mailflow Inbound
Inbound Filtering
EOP Mailflow Outbound
Outbound Filtering
EOP SLA & COST
SLA
100% known virus detection
99% spam detection rate
99.999% uptime for only EOP Customers
Average email delivery time of less than 1
minute for only EOP customers
• Cost $1 Per User Per Mailbox
•
•
•
•
Exchange Online Protection Challenges
• Updates deployment will be done as per Microsoft policy
• Reporting Timeline
– Summary Data – 180 Days
– Detailed resulted for only last 7 days available on web view
– Detailed resulted for only last 90 days available to download or need to
wait for the support to send via email
• False Positive is possible
• Proper configuration and details required
• Deployment of reporting excel file is required
http://msexchangeguru.com/2014/04/28/office-365-download-reports/
• Transport Rule search may require script.
http://msexchangeguru.com/2014/07/03/office-365_search-transport-rule/
• Bulk quarantine require Powershell
• Transport Rule limit is 100. It may be extendable which depends on the
customer agreement level
EOP
Mailflow
&
Connectors
MailFlow
Steps to move to EOP.
1. Add your domain via the Office 365 portal.
2. Create inbound and outbound connectors.
1. Inbound connector is a Receive connector
2. Outbound connector is a Send connector
3. Change your domain’s MX record to point to
Office 365.
DEMO - LAB
Survey 3
How many of you will be going
for EOP or recommending EOP
now?
+1
Exchange Online Protection Best Practice
•
•
•
•
•
•
•
•
•
•
Educate yourself
Configure Connectors correctly
Configure Connection filtering
Configure DLP
Configure Transport Rules in correct order
Complete the Testing
Do the cut over to change the mailflow
Report all false positive
Don’t forget to open a ticket with Microsoft from EOP Portal
Messaging header should show the following else EOP will run
spam check for your On prem to office 365 email
X-MS-Exchange-Organization-AuthAs: Internal
http://msexchangeguru.com/2014/04/28/o365-all-emails-quarantined/
Other Options
•
•
•
•
•
•
•
•
•
•
•
Proofpoint
Websense
Mimecast
Symantec Message Labs
McAfee MxLogic
Google Apps (Postini)
Baracuda
Ironport
Exchange – Edge Transport
Others
On Premise Solutions
•
•
•
•
•
•
EOP Benefits
EOP Architecture
EOP Challenges
Best Practices
Demo
Blog on EOP
http://msexchangeguru.com/?s=EOP
SUMMARY
LOS ANGELES
EXCHANGE
USER GROUP
LAEXUG
Next Big Thing
https://meetup.com/LAExUG
Launch – 09.09.2015
Connections For More
• Feedback:
• Blog:
Prabhat@MSExchangeGuru.com
http://MSExchangeGuru.com
Twitter:
Facebook:
YouTube:
LinkedIn:
#MSExchangeGuru
@MSExchangeGuru
MSExchangeGuru Channel
Microsoft Exchange Server
Microsoft Exchange Server 2013
Facebook:
LinkedIn:
Microsoft Exchange 2016
Microsoft Exchange Server 2016




Merci
धन्यवाद
σας
ευχαριστώ
mulțumesc