exchange online protection. about speaker prabhat nigam microsoft mvp: exchange server mcse:...

Exchange Online

Protection

Exchange Online

Protection

About SpeakerAbout Speaker

Prabhat NigamMicrosoft MVP: Exchange Server MCSE: Messaging 2013, MCITP 2010/2007, MSEx – Microsoft Exchange PSS EmployeeBlog: MSExchangeguru.com & MVP CommunitySpeaker: LAEXUG, NJUCUG, TechStravaganza, NetCom Learning, NYEXUG & MicrosoftAuthor: Kaplan and Opsgility

RELEASEDRELEASED

CHECK MY BLOGS HERE:HTTP://MSEXCHANGEGURU.COM/?S=%22EXCHANGE+SERVER+2016%3A+ALL%22

HTTP://BIT.LY/1JSYCNF

CHECK MY BLOGS HERE:HTTP://MSEXCHANGEGURU.COM/?S=%22EXCHANGE+SERVER+2016%3A+ALL%22

HTTP://BIT.LY/1JSYCNF

Survey 1Survey 1

Have you tested Exchange 2016 or deployed in Production as TAP?No one tested yet.Share your Feedback and Concerns to me

AGENDAAGENDA

• Overview• Benefits of EOP • EOP Architecture• EOP Mailflow • EOP Challenges• EOP Connectors • Demo• Best Practice for EOP• Other Options• Summary

Survey 2Survey 2

Are you using any Spam Guard? SpamHeroIronportBarracudaEOP

How many of you already using EOP?1

Benefits of Exchange Online Protection Benefits of Exchange Online Protection

• Outage Protection: Power |Internet | SAN |Virus

• High-Availability – Multiple servers and Datacenter

• Multi Engine Antivirus & Antispam Protection• Data Loss Prevention and Encryption • International Spam Protection• All New Spam definitions added• Only EOP Possible – No Office 365 Mailbox

required• Connect using PowerShell• Detailed Reporting and 24x7 Support• Mail queue capability• Based on Azure AD & Exchange 2013 or 2016

EOP ArchitectureEOP Architecture

Office 365 EOP

EOP with Office 365 Service is being used

EOP Deployment 1EOP Deployment 1

EOP Deployment 2EOP Deployment 2 Only EOP

Only EOP service is being usedMailboxes are in On Premise Messaging

SystemMessaging System can be any.

EOP Deployment 3EOP Deployment 3 Hybrid EOP

1. Receive and Send Via EOP in Hybrid Exchange setup

Hybrid Setup

Both On Premise and Office 365 are using EOP

Hybrid EOP

2. Receive and Send Via On Premise to EOP-Hybrid Setup-On Premise device/server receive and send the email then forward to EOP for Spam filtering. -Then receive by Office 365 or On Premise-Same Route for Office 365 sending-On Premise sends out directly

EOP Deployment 4EOP Deployment 4

Hybrid EOP

3. Receive via EOP and Send Via both EOP & On Premise

-MX record is pointing to EOP-SPF has both EOP & on-Prem

EOP Deployment 5EOP Deployment 5

EOP Deployment 6EOP Deployment 6 Hybrid EOP

4. Receive via EOP then Forwarded to On Premise

On Premise send back to Office 365

EOP Mailflow InboundEOP Mailflow Inbound Inbound Filtering

EOP Mailflow OutboundEOP Mailflow OutboundOutbound Filtering

EOP SLA & COSTEOP SLA & COST

SLA

• 100% known virus detection• 99% spam detection rate• 99.999% uptime for only EOP Customers• Average email delivery time of less than 1

minute for only EOP customers• Cost $1 Per User Per Mailbox

Exchange Online Protection ChallengesExchange Online Protection Challenges

• Updates deployment will be done as per Microsoft policy• Reporting Timeline

– Summary Data – 180 Days– Detailed resulted for only last 7 days available on web view– Detailed resulted for only last 90 days available to download or

need to wait for the support to send via email• False Positive is possible• Proper configuration and details required• Deployment of reporting excel file is requiredhttp://msexchangeguru.com/2014/04/28/office-365-download-reports/• Transport Rule search may require script. http

://msexchangeguru.com/2014/07/03/office-365_search-transport-rule/

• Bulk quarantine require Powershell• Transport Rule limit is 100. It may be extendable which depends on

the customer agreement level

EOP Mailflow & Connectors

EOP Mailflow & ConnectorsMailFlow

Steps to move to EOP.

1. Add your domain via the Office 365 portal.

2. Create inbound and outbound connectors.1. Inbound connector is a Receive connector

2. Outbound connector is a Send connector

3. Change your domain’s MX record to point to Office 365.

DEMO - LABDEMO - LAB

Survey 3Survey 3

How many of you will be going for EOP or recommending EOP now?+1

Exchange Online Protection Best Practice Exchange Online Protection Best Practice

• Educate yourself• Configure Connectors correctly• Configure Connection filtering• Configure DLP• Configure Transport Rules in correct order• Complete the Testing• Do the cut over to change the mailflow• Report all false positive• Don’t forget to open a ticket with Microsoft from EOP

Portal• Messaging header should show the following else EOP

will run spam check for your On prem to office 365 email X-MS-Exchange-Organization-AuthAs: Internal http://msexchangeguru.com/2014/04/28/o365-all-emails-quarantined/

Other OptionsOther Options• Proofpoint• Websense• Mimecast• Symantec Message Labs• McAfee MxLogic• Google Apps (Postini)• Baracuda• Ironport• Exchange – Edge Transport• Others• On Premise Solutions

SUMMARYSUMMARY

• EOP Benefits• EOP Architecture• EOP Challenges• Best Practices• Demo • Blog on EOP http://msexchangeguru.com/?s=EOP

• EOP Benefits• EOP Architecture• EOP Challenges• Best Practices• Demo • Blog on EOP http://msexchangeguru.com/?s=EOP

LOS ANGELES

EXCHANGE USER GROUP

LAEXUG

LOS ANGELES

EXCHANGE USER GROUP

LAEXUG

Next Big Thinghttps://meetup.com/LAExUG

Launch – 09.09.2015

Next Big Thinghttps://meetup.com/LAExUG

Launch – 09.09.2015

Connections For MoreConnections For More

• Feedback: Prabhat@MSExchangeGuru.com• Blog: http://MSExchangeGuru.com

Twitter: #MSExchangeGuru Facebook: @MSExchangeGuru YouTube: MSExchangeGuru Channel LinkedIn: Microsoft Exchange Server

Microsoft Exchange Server 2013

Facebook: Microsoft Exchange 2016LinkedIn: Microsoft Exchange Server 2016

go raibh maith agat

σας ευχαριστώधन्यवा�द

Merci mulțumesc

thank you