Security for Exchange

Bitdefender Security for Exchange provides antimalware, antispam, antiphishing, attachment and content filtering seamlessly integrated with the Microsoft Exchange Server, to ensure a secure messaging and collaboration environment and increase productivity. Using award-winning antimalware and antispam technologies, it protects the Exchange users against the latest, most sophisticated malware, and against attempts to steal users' confidential and valuable data.

Security for Exchange is designed to protect the entire Exchange organization to which the protected Exchange Server belongs. This means it protects all active mailboxes, including user/room/equipment/shared mailboxes.

Security for Exchange works by deploying Bitdefender Endpoint Security Tools with an Exchange role on Microsoft Exchange Servers with the purpose of protecting the Exchange users from email-borne threats.

Note

Bitdefender Endpoint Security Tools with an Exchange role protects both the server machine and the Microsoft Exchange solution. In addition to Microsoft Exchange protection, the license also covers the endpoint protection modules installed on the server.

This module is an add-on available with a separate license key. The Security for Exchange license capacity equals to 150% of the total number of Security for Endpoints license seats. In case the number of active mailboxes in your organization exceeds the number of mailboxes covered by the license, you will receive a notification to extend your license.

Components

Security for Exchange is dependent on the following components:

GravityZone Control Center
Security agent (Bitdefender Endpoint Security Tools installed on Windows, Linux, & Mac endpoints)

Configure and install the feature

To start using this features, follow the steps below:

Important

If your Exchange Servers already have the BEST agent deployed, you can use a Reconfigure agent task to add the module to the endpoint. If no agent is installed, you will need to use an installation package to deploy BEST on your endpoints along with all required modules.

Below we have included both procedures.

Log in to GravityZone Control Center.
Go to the Installation Packages page from the left side menu.
Click the Create button in the upper-right side of the screen.
Type in the Name and Description for the new installation package.
Select the modules you wish to deploy.
Note
Make sure you include the Exchange Protection module.
Click Save.
Select the newly created package from the list of packages and click Send download links.
Enter the email addresses of the recipients and click Send.

Policies are used to enable and configure features both on endpoints and in terms of general functionality. Apply the following changes to the policy of your choice:

Log in to GravityZone Control Center.
Go to the Policies page from the left side menu.
You can either:
- Create a new policy.
- Edit one of your existing policies.
Under Exchange Protection > General and create your user groups. You can use the groups to apply different scanning and filtering policies to different user categories.
Continue to the Settings section and finish configuring the General policy page.
Move down to the Antimalware page and configure the required settings.
Continue to the Antispam page and configure the settings.
Go to the Content Control page and finish configuring the policy.
Important
Email traffic is processed by the Security for Exchange filters in the following order:
1. Antispam filtering
2. Content Control > Content filtering
3. Content Control > Attachment filtering
4. Antimalware filtering
Save your policy.
If you created a new policy, apply it on the endpoints where the feature is deployed:
1. Go to the Network page from the left side menu.
2. Select the endpoints you want to apply the policy to.
3. Click the Assign Policy button at the upper side of the table.
4. Select the policy you want to apply.
5. Click Finish.
  Note
  For more information, refer to Assigning device policies
If you have edited an existing policy, make sure it is applied to all endpoints where the feature is deployed.

This will ensure that the feature is enabled and configured to best suit your company's needs.

Test out the new feature

Depending on your policy, Security for Exchange will redirect, reject, delete, or quarantine detected emails. You can periodically check your company's quarantine and run reports to see what emails have been detected and what actions have been taken.

Alternatively, you can set up a specific test scenario, and send an email to one of your protected email accounts.

To test out the antispam filters, send an email to one of your protected inboxes. In the body of this email, paste this string:
```
XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X
```
To test out the antimalware filters, you can attach an EICAR file to an email and send it to one of your protected inboxes. To learn more about EICAR refer to this page.
To test out the content filtering rule, you can temporarily add a content filtering rule to your policy and search for a specific keyword (for example cctest). Once saved, send an email containing the keyword (in the body or subject line of the email, depending on what modifications you made to your policy.

The email will trigger your filters, and the action selected in your policy will be taken.

Portlets provide you with security event information from your environment. You can customize the portlets and create your own, specifying the protection mechanism you would like the monitor and the time interval you would like to see in the data.

To create a portlet follow the steps below:

Log in to GravityZone Control Center.
Go to the Dashboard page from the left side menu.
Click the Add portlet button on the upper right side of the page.
Select the portlet you wish to create.
Note
You can customize the Dashboard page by dragging and dropping a portlet to the position that best suits your needs.

There is a portlet available for each report type provided by the console.

In this section:

Security for Exchange

Note

Components

Configure and install the feature

Important

Note

Note

Important

Note

Test out the new feature

Note

Note

Search results