Setting up Microsoft Office 365

Similar documents
How to Configure Esva for Office365

Office 365 Inbound and Outbound SMX configuration. 4 th January 2018

How to Configure Office 365 for Inbound and Outbound Mail

Office 365 Standalone Security

Office 365 Integration Guide Software Version 6.7

You should not have any other MX records for your domain name (subdomain MX records are OK).

McAfee Firewall Enterprise

You can find more information about the service at

Connecting to Mimecast

Microsoft Office 365 TM & Zix Encryption

Using Trustwave SEG Cloud with Cloud-Based Solutions

Configuring Gmail (G Suite) with Cisco Cloud Security

Using Trustwave SEG Cloud with Exchange Online

To create a few test accounts during the evaluation period, use the Manually Add Users steps.

Integrating Trend Micro Hosted Security with Google Gmail

Scanner setup procedure for Kyocera MFP devices on Windows

Microsoft Exchange Online

Deploying the hybrid solution

Step 2 - Deploy Advanced Security for Exchange Server

Step 1 - Set Up Essentials for Office 365

Archiving Service. Exchange server setup (2013) AT&T Secure Gateway Service

McAfee Web Gateway

Product Guide Revision A. McAfee Client Proxy 2.3.2

Exchange 2010 Smtp Error Code Unable To Relay

Microsoft. Designing and Deploying Microsoft Exchange Server 2016 (beta)

Appliance Installation Guide

WeCloud Security. Administrator's Guide

GFI MailSecurity 2011 for Exchange/SMTP. Administration & Configuration Manual

Secure Messaging Crypto-Gateway Configuration for Office 365

Workshare Protect Server 3.8. Solutions Guide

Virtru Microsoft Protection

Step 1 - Set Up Essentials for Office 365

McAfee Web Gateway

Enterprise Vault.cloud Journaling Guide

McAfee Firewall Enterprise epolicy Orchestrator Extension

MAILGUARD AND MICROSOFT EXCHANGE 2013

Amazon Virtual Private Cloud. Getting Started Guide

Step 4 - Choose Your Deployment

AccessEnforcer Version 4.0 Features List

How-To Configure Message Routing Between Cisco Security in the Cloud and Microsoft Office 365

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

How-To Configure Message Routing Between Cisco Cloud Security and Office 365

Connect the Appliance to a Cisco Cloud Web Security Proxy

Life After Webmail Reference Guide

McAfee Web Gateway

Important Information

SR L09 - Messaging Gateway, Encryption and Data Loss Prevention: Three Great Things Even Better Together Hands-On Lab

Workshare Protect Server 3.9 on Microsoft Azure. Admin Guide

McAfee Web Gateway

Quest Collaboration Services 3.6. Installation Guide

Comendo mail- & spamfence

Mail Assure. Quick Start Guide

SOLUTION MANAGEMENT GROUP


vcloud Director User's Guide

Exchange 2007 Journaling Guide

Christensen Software Exchange Server Configuration Guide

Configure Exchange 2003 Server

TrendMicro Hosted Security. Best Practice Guide

NSE6_FML exam.14q

Configure Outlook to use port 587 with authentication

WORKSHARE PROTECT SERVER 3.6 SOLUTIONS GUIDE

McAfee Web Gateway

McAfee Data Protection for Cloud 1.0.1

McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

SonicWall Security 9.0.6

Architectural Overview INSIGHT Remote Monitoring Platform

McAfee Host Intrusion Prevention 8.0

Office 365: Secure configuration

McAfee MVISION Endpoint 1811 Installation Guide

Aloaha FindMail.

Managing SonicWall Gateway Anti Virus Service

Norman Online Protection - How To Set Up. This manual gives step-by-step instructions on how to install your Norman Online Protection service.

Product Guide. McAfee Plugins for Microsoft Threat Management Gateway Software

Trustwave SEG Cloud Customer Guide

Lotus Protector Interop Guide. Mail Encryption Mail Security Version 1.4

SMTP Scanner Creation

Firewall Enterprise epolicy Orchestrator

User Manual Zultys Outlook Communicator V.2

WHITEPAPER Rewrite Services. Power365 Integration Pro

Cisco Systems, Inc IronPort

Advanced encryption and message control to complement and enhance your security investment in ZixDLP.

Vendor: Cisco. Exam Code: Exam Name: ESFE Cisco Security Field Engineer Specialist. Version: Demo

Cisco Cloud Web Security

Reference Guide Revision B. McAfee Cloud Workload Security 5.0.0

Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.

ACCURATE STUDY GUIDES, HIGH PASSING RATE! Question & Answer. Dump Step. provides update free of charge in one year!

Test-king q

McAfee Data Loss Prevention 9.3.3

BUSINESS CLOUD FAX By Northland Communications

McAfee Complete Endpoint Threat Protection Advanced threat protection for sophisticated attacks

Set Up with Microsoft Outlook 2013 using POP3

Integrate Microsoft Office 365. EventTracker v8.x and above

Mail Assure Quick Start Guide

McAfee Web Gateway

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

CSC Network Security

vcloud Director User's Guide 04 OCT 2018 vcloud Director 9.5

Postini Message Security Using Postini with Google Apps Education Edition

Understanding the Pipeline

Transcription:

Integration Guide Revision G McAfee SaaS Email Protection Securing Exchange Online in Microsoft Office 365 Setting up Microsoft Office 365 Use this guide to configure Microsoft Office 365 and Microsoft Exchange Online for use with McAfee SaaS Email Protection. Perform these steps at a time when the volume of email traffic is low to minimize the impact on your users. Also, follow your standard maintenance procedures and notify your users ahead of time of potential interruptions in service. About Microsoft Office 365 Microsoft Office 365 is a cloud-based service that offers online mail hosting and productivity software, including hosted Microsoft Exchange (Exchange Online). Securing Exchange Online with McAfee SaaS Email Protection provides superior threat protection, spam filtering, and the latest encryption, DLP, and click-time technologies. Securing inbound mail flow To secure inbound mail flow, configure your MX Records and inbound servers in Email Protection. Then, create rules in Exchange Online to restrict email flow to your hosted server. How inbound email is routed The MX records for your domain determine the email server that is responsible for accepting inbound email for your users. With Office 365, the MX records point to the Exchange Online service in the cloud. However, when you secure Office 365 with Email Protection, your MX records point to the 1

McAfee SaaS service. McAfee SaaS then filters and relays inbound email to Exchange Online and your users. The following examples explain each process. Inbound mail without McAfee SaaS Email Protection Figure 1 Inbound mail with Microsoft Office 365 1 Someone sends an email to an Exchange Online recipient. 2 Their email server performs an MX Record lookup and determines that Exchange Online is the destination for the message. Exchange Online receives and stores the email in the cloud. 3 The recipient's email client communicates with Exchange Online so that the user can access their email. The recipient opens the email using Microsoft Outlook or the Outlook Web Application (OWA). Inbound mail with Microsoft Office 365 secured by Email Protection Figure 2 Inbound mail with Microsoft Office 365 secured by Email Protection 1 Someone sends an email to an Exchange Online recipient secured by McAfee SaaS Email Protection. 2 An MX record lookup determines that McAfee SaaS Email Protection is the destination for the message. 2

3 McAfee SaaS Email Protection scans the email and then forwards it to Exchange Online. 4 The recipient's email client communicates with Exchange Online so that the user can access their email. The recipient opens the email using Microsoft Outlook or the Outlook Web Application (OWA). Set up inbound servers in SaaS Email Protection Add an inbound server in Email Protection so that filtered email is routed to Exchange Online. Before you begin Add or migrate all your domains to Office 365. Make sure you can access your DNS provider's administrative application. Repeat this process for each of your domains. Task 1 Locate and copy the MX record for the domain in Office 365. Microsoft generates MX records for your domains when you set them up in Exchange Online. a Log on to your Microsoft Office 365 account as an administrator. b Select Admin Office 365. c d e In the left pane, click Domains. Select the domain, click Manage DNS. Under Exchange Online, find the MX row in the table and copy the value from the Points to address column. Figure 3 Exchange Online MX record Use this value in the next step. 3

2 Go to the Control Console and configure an inbound server using the value you copied in the SMTP Host Address field. a Select Email Protection Setup Inbound Servers. Figure 4 Inbound Servers Setup b Click Add New Host. A new row appears. c In the SMTP Host Address field, paste the value you copied in Office 365. d e f g In the Port field, enter 25 (default value). In the Preference field, enter 10 (default value). Select Active to enable the inbound server. Click Save. The inbound server is now setup and active, and filtered email is relayed to Office 365. However, no email will flow through Email Protection until the next step. 4

3 Determine the MX records to use for your region. a In the Control Console, select Email Protection Setup MX Records. Figure 5 MX records setup page with sample values b Select your preferred region. The page refreshes with the recommended MX records for your region. Have this information ready for the next step. 5

4 Configure your DNS provider's administrative application. a In a separate window, open your DNS provider's administrative application. b Copy and paste the recommended MX records found in the Control Console as the MX values in your DNS provider's administrative application. Your MX record setup is complete. Email is now flowing through Email Protection to Office 365 and Exchange Online. However, due to DNS caching, some DNS servers might not recognize the change for up to three days or longer. Configure the default connection filter Update the default connection filter settings to more efficiently bypass spam filtering in Exchange Online. Before you begin Allow 72 hours for your MX records to update before activating rules in Office 365. Copy the CIDR /24 Notation values from the Lock Down section of the MX Records Setup page in SaaS Email Protection. Access your Exchange Online Protection (EOP) Console. Task 1 Log on to your Microsoft Office 365 account. 2 From the home page, select the menu icon and click Admin. Figure 6 Office 365 menu The Office 365 admin center page opens. 6

3 From the menu options, select Admin Exchange Figure 7 Office 365 admin center The Exchange admin center page opens. 7

4 In the left navigation, click protection. Select connection filter. Figure 8 protection connection filter 5 In the Name list, select Default and click the edit icon. The edit spam filter policy window opens. 6 In the left navigation, click connection filtering. 8

7 Under IP Allow list, add your IP address ranges using /24 notation. Figure 9 edit spam filtering policy a Click the add icon. The Allowed IP Address window opens. b c Enter an IP address range using /24 notation. Click OK. Repeat for each IP address range. 8 Click Save. Office 365 takes a few minutes to update your settings. When the page refreshes, you can see that the IP Allow list settings are now configured. Add a mail flow rule to lock down Microsoft Exchange Online Create a mail flow rule that only accepts email from SaaS Email Protection. This change ensures that spammers cannot bypass the service. Before you begin Allow 72 hours for your MX records to update before activating rules in Office 365. Copy the CIDR /21 Notation values from the Lock Down section of the MX Records Setup page in SaaS Email Protection. Access your Exchange Online Protection (EOP) Console. 9

Task 1 Log on to your Microsoft Office 365 account. 2 From the home page, select the menu icon and click Admin. Figure 10 Office 365 menu The Office 365 admin center page opens. 10

3 From the menu options, select Admin Exchange Figure 11 Office 365 admin center The Exchange admin center page opens. 11

4 In the left navigation, click mail flow. Select rules. Figure 12 mail flow rules 5 Click the pull-down menu for the add icon and select Restrict messages by sender or recipient... 12

6 In the Rule window, complete the required fields. Figure 13 New rule Option Name Apply this rule if Instructions Enter a name for the rule. For example, Only accept inbound mail from SaaS Email Protection. 1 Select The sender is located. 2 In the select sender location window, select Outside the organization. 3 Click OK. Do the following Audit this rule with severity level Choose a mode for this rule Select Delete the message without notifying anyone. Deselect. Select Enforce. You have completed the basic form requirements. The rule as it is written blocks all incoming email. 13

7 Add an exception to allow email flow from SaaS Email Protection. Figure 14 New rule Except if specify IP address ranges a Click More options. New fields appear. b Under Except if, click add exception. A new menu appears. c d e f Select The sender... IP address is in any of these ranges or exactly matches. In the specify IP address ranges window, enter the /21 IP address range. This value is the range you copy and paste from the Lock Down section of the MX Records Setup page in the Control Console. Click the add icon for each range. Click OK. The window closes and the new exception logic appears in the Except if field. 8 Click Save. The rules list updates with the new rule. You can review the rule logic in the right side of the page. 14

Securing outbound mail flow To secure outbound mail, configure your outbound servers in the Control Console and add an outbound connector in Exchange Online. The outbound mail setup process is optional. Follow these steps if you have purchased outbound service. How outbound mail is routed To secure your outbound mail, relay your email through the McAfee SaaS service using an outbound connector in Exchange Online. The following examples explain each scenario. Outbound mail without McAfee SaaS Email Protection Figure 15 Outbound mail with Microsoft Office 365 1 You send an email to an external recipient using the Microsoft Outlook desktop application or the Outlook Web Application (OWA). 2 Office 365 performs an MX lookup and sends the email to the recipient's email server. 3 The recipient opens the email in their email client. Outbound mail with Exchange Online secured by McAfee SaaS Email Protection Figure 16 Outbound mail with Microsoft Office 365 secured by McAfee SaaS Email Protection 15

1 You send an email using the Microsoft Outlook desktop application or the Outlook Web Application (OWA). 2 Office 365 uses the outbound connector to route all outbound messages through Email Protection. 3 Email Protection performs the MX lookup and sends the email to the recipient's email server. 4 The recipient opens the email in their email client. Set up outbound servers in SaaS Email Protection In the Outbound Server Setup page, allow Email Protection to filter email from Microsoft Office 365. Repeat this process for each of your domains. Before you begin Outbound server configuration is region aware. Before adding outbound servers, select your region by going to Setup MX Records. Task 1 In the Control Console, select Email Protection Setup Outbound Servers. Figure 17 Outbound Server Setup Office 365 2 If necessary, use the domain link in the upper right to change domains. 3 Click More Options... 4 Under Allow filtering email from, select Microsoft Office 365. 5 Click Save. Wait at least 30 minutes for your new settings to take effect. 16

Add an outbound connector to set up your outbound server Configure Microsoft Office 365 to route outbound email to Email Protection. Before you begin Set up your Outbound Servers in Email Protection before configuring Office 365. Copy the host name (in bold text) from the Outbound Servers Setup page in Email Protection. Figure 18 Copy the host name displayed in bold text Task 1 Log on to your Microsoft Office 365 account. 2 From the home page, select the menu icon and click Admin. Figure 19 Office 365 menu The Office 365 admin center page opens. 17

3 From the menu options, select Admin Exchange Figure 20 Office 365 admin center The Exchange admin center page opens. 18

4 In the left navigation, click mail flow. Select connectors. Figure 21 mail flow connectors 5 Click the add icon. 6 In the New Connector window, complete the setup process. Table 1 Option definitions Option Select your mail flow scenario Definition 1 In the From drop-down list, select Office 365. 2 In the To drop-down list, select Partner Organization. 3 Click Next. New connector 1 In the Name field, enter a name for the connector. For example, Relay outbound mail to McAfee SaaS. 2 In the Description field, enter a short comment that the describes the purpose of the connector. For example, Relays all outbound email from all domains on Office 365 to all recipient domains through McAfee SaaS Email Protection. 3 Select Turn it on (selected by default). 4 Click Next. 19

Table 1 Option definitions (continued) Option When do you want to use this connector? Definition 1 Select Only when email messages are sent to these domains. 2 Click the add icon. 3 In the add domain window, enter * to specify all domains. 4 Click OK to close the window. 5 Click Next. How do you want to route email messages? 1 Select Route email through these smart hosts. 2 Click the add icon. 3 In the add smart host window, enter the host name that you copied from the Outbound Servers Setup page. 4 Click Save to close the window. 5 Click Next. How should Office 365 connect to your partner organization's email server? Confirm your settings 1 Deselect Always use Transport Layer Security (TLS) to secure the connection (recommended). 2 Click Next. 1 Review your selections. 2 Click Next. Validate this connector 1 Click the add icon. 2 In the add email window, enter the email address you want to use to test the connector. 3 Click OK to close the window. 4 Click Next. Use the results of the validation to troubleshoot any problems in the connector settings. 7 Click Save. The page updates to display the new connector. Congratulations You have completed the installation process. McAfee SaaS Email Protection is now protecting Office 365. 20

Copyright 2015 McAfee, Inc. www.intelsecurity.com Intel and the Intel logo are trademarks/registered trademarks of Intel Corporation. McAfee and the McAfee logo are trademarks/ registered trademarks of McAfee, Inc. Other names and brands may be claimed as the property of others. 21

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback