Using Trustwave SEG Cloud with Exchange Online

Similar documents
Using Trustwave SEG Cloud with Cloud-Based Solutions

Trustwave SEG Cloud BEC Fraud Detection Basics

Marshal Reporting Console Version 2.6 Installation Guide

Office 365 Inbound and Outbound SMX configuration. 4 th January 2018

Office 365 Standalone Security

How to Configure Office 365 for Inbound and Outbound Mail

How to Configure Esva for Office365

To create a few test accounts during the evaluation period, use the Manually Add Users steps.

Step 1 - Set Up Essentials for Office 365

Step 2 - Deploy Advanced Security for Exchange Server

Important Information

Step 4 - Choose Your Deployment

Microsoft PRO- Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010

Marshal Reporting Console Installation Guide

Step 1 - Set Up Essentials for Office 365

Trustwave SEG Cloud Customer Guide

Mail Assure. Quick Start Guide

Workshare Protect Server 3.9 on Microsoft Azure. Admin Guide

Setting up Microsoft Office 365

Office 365 Integration Guide Software Version 6.7

Mail Assure Quick Start Guide

Microsoft Exam

Troubleshooting IMAP Clients and ViewMail for Outlook

Important Information

Mobile MOUSe EXCHANGE SERVER 2010 CONFIGURATION ONLINE COURSE OUTLINE

Welcome to ContentCatcher 3.0! If this is your first time using ContentCatcher 3.0, here s a great way to start. We ll walk you through the essential

You can find more information about the service at

Getting Started Guide moduscloud

Microsoft Exchange Server 2013 Hybrid Deployments Documentation Help

GSX 365 Usage Usage & Compliance Reporting Collect, Analyze & Anticipate

Configuring Gmail (G Suite) with Cisco Cloud Security

Mail Assure. User Guide - Admin, Domain and Level

Assess Remediate Enable Migrate

SMTP Settings for Magento 2

Connecting to Mimecast

Christensen Software Exchange Server Configuration Guide

Configure Exchange 2003 Server

Office 365: Secure configuration

Microsoft. Designing and Deploying Microsoft Exchange Server 2016 (beta)

Integrating Trend Micro Hosted Security with Google Gmail

Microsoft Exchange Online

SOLUTION MANAGEMENT GROUP

TrendMicro Hosted Security. Best Practice Guide

WHITEPAPER Rewrite Services. Power365 Integration Pro

CLOUD MAIL End User Guide. (Version 1.0)

GLBA Compliance. with O365 Manager Plus.

[MS20347]: Enabling and Managing Office 365

Quest Collaboration Services 3.6. Installation Guide

Ciphermail Webmail Messenger Administration Guide

Version 5.2. SurfControl Filter for SMTP Administrator s Guide

Enterprise Vault 11 Whitepaper Deploying IMAP Access to Enterprise Vault

GSX 365 Usage Reports & Security Audit

provides several new features and enhancements, and resolves several issues reported by WatchGuard customers.

Instructions Microsoft Outlook 2003 Page 1

ENABLING AND MANAGING OFFICE 365

Introduction. The Safe-T Solution

Comendo mail- & spamfence

iq.suite Azure Edition

Five9 Plus Adapter for Agent Desktop Toolkit

Power365. Prerequisites. April 2018

Microsoft Office 365 TM & Zix Encryption

Instructions Microsoft Outlook 2007 Page 1

HIPAA Compliance. with O365 Manager Plus.

Sophos Mobile. super administrator guide. Product Version: 8

Using Centralized Security Reporting

On the Surface. Security Datasheet. Security Datasheet


Sophos Appliance Configuration Guide. Product Version 4.3 Sophos Limited 2017

ACCURATE STUDY GUIDES, HIGH PASSING RATE! Question & Answer. Dump Step. provides update free of charge in one year!

Integrate Microsoft Office 365. EventTracker v8.x and above

Sophos Mobile. super administrator guide. product version: 8.6

Comodo SecureBox Management Console Software Version 1.9

XG Firewall. What s New in v17. Setup, Control Center and Navigation. Initial Setup Wizard. Synchronized App Control Widget.

SMTP Scanner Creation

Sophos Mobile. installation guide. Product Version: 8.5

Instructions Microsoft Outlook 2010 Page 1

CAS Quick Deployment Guide January 2018

Enabling and Managing Office 365

Account Management. Administrator Guide. Secure Gateway (SEG) Service Administrative Guides. Revised August 2013

Scan-to- . Copytech s guide to setting up Scan-to- on Konica Minolta M FDs

Aloaha FindMail.

20347: Enabling and Managing Office hours

Office : Enabling and Managing Office 365. Upcoming Dates. Course Description. Course Outline

Comodo cwatch Web Security Software Version 1.6

IBM SmartCloud Notes (SCN) Mail Routing

Competitive Matrix - IRONSCALES vs Alternatives

Contents. Limitations. Prerequisites. Configuration

Course Content of Office 365:

Security by Any Other Name:

Comprehensive Setup Guide for TLS on ESA

Firewall XG / SFOS v16 Beta

FISMA Compliance. with O365 Manager Plus.

Security and Compliance

Admin Guide Defense With Continuity

Symantec Security.cloud

Sophos Central Admin. help

Deploy the ExtraHop Discover Appliance in Azure

Step 3 - Deploy Advanced Security and Compliance for Exchange Server

Sophos Mobile. installation guide. product version: 8.6

Instructions Microsoft Outlook 2013 Page 1

Transcription:

.trust Using Trustwave SEG Cloud with Exchange Online Table of Contents About This Document 1 1 Trustwave SEG Cloud for Anti-Malware with Exchange Online 2 2 Networking and DNS Setup 2 3 Provisioning Trustwave SEG Cloud 3 4 Configuring Exchange Online 4 4.1 Set up a connector to send outgoing messages through SEG Cloud... 5 4.2 Set up a connector to accept incoming messages from SEG Cloud... 7 4.3 Set up Connection Filter Exclusions... 10 4.4 Set up the SEG Connector Agent for Azure AD... 11 About Trustwave 14 About This Document This document is for the use of email administrators who are using Trustwave SEG Cloud to accept and filter messages from the Internet, and a cloud based solution to host user mailboxes. This document provides specific instructions for configuration with Microsoft Exchange Online. The same ideas can be used to configure other cloud-based mailbox hosting solutions. (For Google G Suite, see the separate document with detailed instructions.)

1 Trustwave SEG Cloud for Anti-Malware with Exchange Online In this scenario, the organization hosts user mailboxes on a cloud-based service such as Microsoft Exchange Online. The organization uses the Trustwave SEG Cloud service to provide filtering of spam and malware, and other policy controls for both inbound and outbound messages. Internet Trustwave SEG Cloud Cloud Mailbox Hosting Service Connector Connector User Mailboxes 2 Networking and DNS Setup 1. Configure MX records for all your local domains to point to the Trustwave SEG Cloud environment: MX 10 seg.trustwave.com Note: In most cases MX records are updated when you are ready to direct email into the new environment (after all other configuration is complete). 2. Add the SEG Cloud server to your SPF record. For example you might enter v=spf1 include:spf.seg.trustwave.com all Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 2

3 Provisioning Trustwave SEG Cloud Trustwave Provisioning or Managed Security Services must configure SEG Cloud to accept and deliver email for your domains. 1. 2. SEG Cloud will deliver email incoming for your managed domains to the cloud hosting environment. Provide the delivery details to Trustwave. For Exchange Online, use the MX endpoint of your Exchange Online environment (such as yourexampledomain-com.mail.protection.outlook.com). SEG Cloud will accept email relaying (messages sent to other domains from your managed domains) based on the configured inbound delivery addresses. For Exchange Online, to ensure that the relaying addresses are up to date, Trustwave will also configure relaying based on the SPF records published by the service. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 3

4 Configuring Exchange Online You will set up two connectors to route email between SEG Cloud and Exchange Online. To complete this step, you must have an Office 365 Administrator credential with permission to create connectors. You may find that the validation process only works with a Microsoft browser. To create a connector in Office 365: 1. From the Office home page, click Admin. 2. From the Admin left menu, click Exchange to go to the Exchange Admin Center. 3. Next, click mail flow, and then click connectors. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 4

4.1 Set up a connector to send outgoing messages through SEG Cloud 1. 2. To start the Connector wizard, click the plus symbol +. On the first screen, choose a connector as follows: From: Office 365 To: Partner Organization Click Next. 3. On the next screen, give the connector a name and a detailed description. If you want to enable this routing immediately, check the box Turn it on. Click Next. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 5

4. On the following screen (When do you want to use this connector?), select Only when email messages are sent to these domains. Click + to add recipient domains. On the Add domain window, enter * (to signify all domains), and then click Next. 5. 6. On the next screen How do you want to route email messages?, select Route email through these smart hosts. Click + to add a smart host. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 6

7. Enter the externally resolvable hostname of the Trustwave SEG Cloud server: seg-outbound.trustwave.com 8. 9. 10. On the following screen How should Office 365 connect?: The Transport Layer Security box should be selected. Ensure that your connector validates. Save the connector. 4.2 Set up a connector to accept incoming messages from SEG Cloud Note: When you set up a connector as described in this section, Exchange Online will ONLY accept incoming SMTP messages that are sent from the SEG Cloud servers at the IP addresses you specify. Messages from any other source will be refused. The steps to accept incoming messages are similar to those for outgoing messages. 1. 2. 3. 4. To start the Connector wizard, click the plus symbol +. On the first screen, choose a connector as follows (note the direction): From: Partner Organization To: Office 365 Give the connector a name and verbose description. On the screen How do you want to identify the partner organization?, select Use the sender s domain. Click + to add sender domains. On the Add domain window, enter * (to signify all domains) Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 7

5. On the screen What security restrictions do you want to apply?, select Reject email messages if they aren t sent from within this IP address range Click + to add an IP address. On the Add ip address window, enter one of the IP address ranges of the Trustwave SEG Cloud servers. Note: Because you can only enter ranges with /24 or higher, you must enter four ranges to cover the required addresses. 6. Repeat until you have added all four ranges: 204.13.200.0/24 204.13.201.0/24 204.13.202.0/24 204.13.203.0/24 Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 8

7. Choose to Reject email messages if they aren t sent over TLS. Do not require a subject name on the certificate. The connector information should appear as below: 8. Save the connector. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 9

4.3 Set up Connection Filter Exclusions Exchange Online includes a connection filtering function that limits the number of messages received from each IP address. You must exclude SEG Cloud from this filtering to ensure that all incoming messages can be delivered. To set up exclusions: 1. From the Exchange Admin Center, click protection and then connection filter. 2. Select the default filter and then click to edit. 3. On the Connection Filtering tab, in the Allowed IP Address list, add the four IP address ranges for SEG Cloud, as in the connector setup: 204.13.200.0/24 204.13.201.0/24 204.13.202.0/24 204.13.203.0/24 Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 10

4. Click Save. 4.4 Set up the SEG Connector Agent for Azure AD The Connector Agent is an optional module of SEG Cloud that allows you to retrieve information about local user groups and email addresses from your Active Directory server or LDAP server, for use in SEG SEG Cloud policy. You can use the Connector Agent with Azure AD. Tip: For full instructions about how to download, install, and configure the Connector Agent, refer to the SEG Cloud Customer Guide. If you have a workstation or server available on premises that is a domain member, you can install and configure the Connector Agent in the same way as for a premises AD installation. Refer to the SEG Cloud Customer Guide. You can also use the Connector Agent to synchronize information from Azure AD using LDAPS. To use the Connector Agent with Azure AD LDAPS: 1. Configure Secure LDAP (LDAPS) in Azure AD Domain Services. See the Microsoft documentation for this task. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 11

2. Once secure LDAP access to your managed domain over the internet is successfully enabled, the Azure AD Domain Services management site shows the external IP address that can be used to access your directory over LDAPS in the field EXTERNAL IP ADDRESS FOR LDAPS ACCESS. 3. Install the Connector Agent on any computer that has Internet access (HTTPS access to SEG Cloud, and port 636 for LDAPS access to the Azure LDAPS IP address). Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 12

4. Create a new connector, and specify a LDAP directory of type Microsoft Active Directory. 5. Enter the Azure LDAPS IP address. Specify port 636 and select Connect using SSL. Enter logon credentials. 6. 7. 8. Click Next. The Agent tests the connection. When the connection is successfully tested, continue the Wizard as described in the SEG Cloud Customer Guide. When the connector has been successfully created, you can proceed to select groups for synchronization. Using Trustwave SEG Cloud with Exchange Online - March 9, 2018 13

About Trustwave Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, Trustwave enables businesses to transform the way they manage their information security and compliance programs. More than three million businesses are enrolled in the Trustwave TrustKeeper cloud platform, through which Trustwave delivers automated, efficient and cost-effective threat, vulnerability and compliance management. Trustwave is headquartered in Chicago, with customers in 96 countries. For more information about Trustwave, visit https://www.trustwave.com.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback