Exchange 2010 & 2007 Standard Journaling

Document created by user.oxriBaJeN4 Employee on Sep 14, 2015Last modified by user.oxriBaJeN4 Employee on Mar 27, 2017
Version 6Show Document
  • View in full screen mode

This guide details the steps involved in configuring SMTP Journaling for Exchange 2010 or 2007 Standard (database) and the requirements and steps to make it work within the Mimecast ecosystem.

If your Mimecast subscription includes the Journaling feature, and your service was provisioned after the 26th March 2015 you will find a Journal Connector has already been created for you, including an internal journal domain and journal address.

  • The Journal Domain is automatically created as journal.domain.com, where domain.com is the domain your organization provided as your primary mail domain.
  • The Journal Contact is automatically created as journaling@journal.domain.com.

 

Use this address as the mail attribute for the external contact you create in Exchange to send journal messages to.

 

If your Mimecast service was provisioned before this date, or you want to add an additional journal connector you will need to manually add a journal domain, journal address, and journal connector as detailed below.

Create a Journal Definition In Mimecast

 

The first step in configuring Journaling is to create a Journal Definition within the Administration Console.

 

To accomplish this, do the following:

  1. Sign into the Mimecast Administration Console.
  2. Navigate to Administration | Services | Journaling.
  3. Click on the New Journal Service Definition button:
    journalDef2.png
  4. Under Journal Service Properties in the Description field, enter a relevant name for the definition:
    journalDef3.png
  5. In Transport Type pull-down, select SMTP:
    journalDef4.png
  6. Under Connection Properties enter a Service Email Address using the following format:  journaling@journal.domain.com (where domain.com is the primary SMTP domain):

    You'll be using the Service Email Address throughout the rest of the Journal configuration process.

    journalDef5.png
  7. In the Additional Source IP Ranges field, provide the IP Addresses from which Mimecast will receive Journaled messages. Theses are typically the external IPs of the Transport Service in the environment:
    Authorized Outbound IP addresses are automatically allowed, therefore this field can be left blank. This also applies to hosted environments sharing IP addresses or ranges.
    journalDef6.png
    This field is expecting the IP Address with a CIDR mask, so ranges can be added in a single line. The proper syntax for a single address is /32.
    Other configurable values on the page are:

    FieldDescription
    DisabledAllows journal services to be taken offline without removing the Journal Service Definition.  Using the disabled option will result in the journal service being suspended, and any error conditions related to the connection will be reset.  This is useful if a journal mailbox is going to be offline for an extended period of time. When the journal mailbox is once again available, be sure to enable activity before removing the check.

    Any changes made to this checkbox are recorded in the event log.

    Use SMTP AuthenticationCan be enabled for enhanced security features. Once checked, this produces an additional field where a password should be entered. This password, along with the journal email address will be used as the SMTP-AUTH credentials.

    In order to make use of the authentication option, an SMTP Send Connector is required on the Exchange server for SMTP Journaling.

    Initial Process DelayAdvanced configuration options that should be left as the default values (default = 0), unless working on a Journaling issue with Mimecast Support.  Determines the time to wait before attempting to match a message to the archive
    Delivery Wait AttemptsAdvanced configuration options that should be left as the default values (default = 3), unless working on a Journaling issue with Mimecast Support. Determines the number of tries the system attempts to match a message before it is archived
    Period of Inactivity AllowedDefines how long the SMTP connector is allowed to be inactive without receiving any messages, before it is reported as being "down" (default = 180 minutes). Consider the setting carefully according to your Exchange Server environment. For example, if you operate in an environment with low email volumes, the connector is likely to handle a small Exchange database.  Therefore, you can set this value to a much higher value than the default to cater for quiet periods (e.g. overnight) and/or smaller email databases
    Journal Type

    Specify the Journal type as either Exchange Envelope Journaling (EEJ) or Standard EML

    Mimecast supports Journaling of emails (EML) in standard MIME format (without the EEJ wrapper), and emails journaled in EEJ format.  Standard emails (EML) files can only be assigned to mailboxes based on the message headers (which may not be reliable, and does not include BCC recipients).  Exchange Envelope Journal emails are the preferred option in terms of accuracy when determining the recipients for an email.

     

    An additional feature of the Exchange Envelope Journaling service is that it “steps down” to handle incorrectly enveloped messages in an EEJ mailbox.  On occasions, journal mailboxes may receive non-envelope journaled emails. These messages would normally cause the journal service to fail. Mimecast auto-detects these malformed messages and absorbs them as normal emails, even though the journal mailbox is set to EEJ.

    EncryptedThis checkbox is selected by default, but is not required. If checked, Mimecast will only accept Journal messages over TLS. Journal messages not sent over TLS will be rejected.
    Prefer Clear Text VersionEnable this option for Active Directory Rights Management Services protected journal items.
    Journal Non Internal AddressesWhen enabled, items processed by the Journal Connector that do not hold any internal addresses will be archived.
    Journal Unknown Internal Addresses

    When enabled, items processed by the Journal Connector that are sent from or sent to unknown internal addresses will be archived.

  8. Once completed, click Save and Exit:
    journalDef7.png

This concludes the steps involved in creating a Journal Definition in Mimecast.

 

Create a Journal Sub Domain in Mimecast

 

Now that the journal.domain.com email address is set in Mimecast, you'll need to add the journal sub domain to Mimecast.

 

To accomplish this:

  1. Navigate to Administration | Directories | Internal Directories.
  2. Click the Register New Domain button from the top of the page. This displays a three stage wizard process:

    addDomain.png
  3. Review the information displayed, then type the name of the new Domain in the appropriate field:

    addDomain1.png
  4. Click the Get Verification Code button to continue:

    addDomain2.png
  5. You'll notice that step two is skipped because your parent domain already exists:

    addDomain3.png

This concludes the steps involved in creating the Journal Sub Domain in Mimecast. If you need to edit the sub domain, see Email Domains.

 

Configure an External Contact in Exchange 2010 or 2007 Standard

 

The next step is to create an External SMTP Contact. This is the journaling address that was created in the Administration Console (step 6 in "Create a Journal Definition in Mimecast" in this document), and should be in the following format: journaling@journal.domain.com

 

To accomplish this, do the following from within your Exchange 2010 or 2007 environment:

 

  1. In the Exchange Admin Console (EAC), navigate to Microsoft Exchange on-premise>Organization Configuration>Recipient Configuration>Mail Contact and then either right-click in the open space  and select New Mail Contact or under Actions on the right-hand side, select New Mail Contact:

    exCon1.png
  2. The New Mail Contact Wizard appears. Under Create a mail contact for: select the New Contact radio button and then click Next:

    exCon2.png
  3. Complete the Contact Information popup fields similar to below:

    exCon3.png
  4. Add an External email address by clicking the Edit button:

    exCon4.png
  5. In the Email address field, enter the external contact address and then click OK:

    This is the journaling address that was created in the Administration Console  in step 6 of the Create a Journal Definition in Mimecast section of this document, and should be in the following format: journaling@journal.domain.com

    exCon5.png
  6. Click Next:

    exCon6.png
  7. Verify the settings and the page should look similar to the one below. When completed, click New:

    exCon7.png
  8. Click Finish when completed:

    exCon8.png

This concludes the steps involved in creating an External Contact in Exchange 2010 or 2007.

 

Configure Exchange 2010 or 2007 Standard Send Connector

 

The next step in this process is to configure the Exchange 2010 or 2007 Standard Send Connector from within the 2010 or 2007 Exchange environment. This will enable archiving internal and external emails to the External SMTP contact created above.

 

To accomplish this, do the following from the Exchange 2010 or 2007 environment:

  1. Open the Exchange 2010 or 2007 Administration Console (EAC).
  2. In the EAC, navigate to Microsoft Exchange on-premise>Organization Configuration>Hub Transport and then either click the Send Connectors tab and right-click in the open space and select New Send Connector or under Actions on the right hand side, select New Send Connector:

    sendConn2.png
  3. The New Send Connector Wizard launches. Enter a Name for the connector, for example: Mimecast Journaling Send Connector. Under Select the intended use for this Send Connector click the pull-down and select Custom. When completed click Next:

    sendConn3.png

  4. Specify the address space to which the connector will route mail by clicking + Add... and selecting SMTP Address Space...:

    sendConn4.png
  5. The SMTP Address Space pop-up appears, in the Address space field, enter the journaling sub domain name for the connector:

    This is the journaling sub domain name that was created in the Administration Console in the Create a Journal Sub Domain in Mimecast section of this document, and should be in the following format: journal.domain.com


    sendConn5.png
  6. Make sure Include all subdomains is checked then set the Cost field to 1. Click OK when completed:

    sendConn6.png
  7. Click Next:

    sendConn7.png
  8. Under Network settings select the Route mail through the following smart hosts: radio button then click the + Add... button to add the Smart Hosts:

    sendConn8.png
  9. The Add smart host pop-up appears. Click the Fully qualified domain name: radio button. Depending on your geographical location, use the table below to enter your regions Primary and Secondary Smart Hosts in the FQDN field. Click OK when completing each entry:

    Primary Smart Host
    sendConn9a.png
    Secondary Smart Host

    sendConn9b.png

    RegionHostname
    North America

    us-smtp-journal-1.mimecast.com

    us-smtp-journal-2.mimecast.com

    Europe and Australia

    eu-smtp-journal-1.mimecast.com

    eu-smtp-journal-2.mimecast.com

    South Africa

    za-smtp-journal-1.mimecast.co.za

    za-smtp-journal-2.mimecast.co.za

    Australia

    au-smtp-journal-1.mimecast.com

    au-smtp-journal-2.mimecast.com

    Off Shore

    je-smtp-journal-1.mimecast-offshore.com

    je-smtp-journal-2.mimecast-offshore.com

  10. When the Smart Hosts have been entered, click Next:

    sendConn10.png
  11. Under Configure smart host authentication settings, select the None radio button and then click Next:

    sendConn11.png
  12. Associate the connector with the HUB Transport server by clicking the + Add... button:

    sendConn12.png
  13. Select the HUB Transport server(s) that will associate with this Send Connector and then click Ok:
    If running an environment with Edge Transport Servers, you'll need to push the Send Connector to those Edge Transport Servers. Click on this link on the Microsoft website for instructions on how to accomplish this.
    sendConn13.png
  14. Click Next:

    sendConn14.png
  15. Review and then Click New to continue:

    sendConn15.png
  16. Click Finish when completed.

 

This concludes the steps involved in creating a Send Connector in Exchange 2010 or 2007 Standard.

Check the Send Connector's properties to ensure there are no size limits set. By default, a 10mb size limit is set on the connector. This can cause larger messages to build up in your queues.

send_connct_prop.png

Enable Exchange 2010 or 2007 Standard Journaling

 

You're almost there. Lastly you'll need to enable Journaling from the Exchange 2010 or 2007 environment.

Standard Journaling is allowed using the default Client Access Licenses from Microsoft.

To accomplish this, do the following from within Exchange 2010 or 2007:

  1. In the Exchange Admin Console (EAC), navigate to Microsoft Exchange on-premise>Organization Configuration>Mailbox and under Database Management select the Mailbox Database and then right-click the mailbox database and select Properties or under Actions>Mailbox on the right-hand side, select Mailbox Database Properties:

    standRules1.png


  2. The Mailbox Database Properties dialog pop-up appears. Select the Maintenance tab and select the Journal Recipient checkbox. Then click Browse and select the journaling contact configured earlier: In Exchange 2007 Standard, you will navigate to the General tab in the Mailbox Database Properties dialog pop-up.

    standRules2.png


  3. Click OK to finalize the setup:
    standRules3.png

This concludes the configuration process.

 

Verify Exchange 2010 or 2007 Standard Journaling

 

Now that all the Journaling configuration is complete. It's time to verify that the connections are working.

 

To accomplish this, do the following from the Mimecast Administration Console:

  1. Log into the Mimecast Administration Console.
  2. Navigate to Administration | Services | Journaling:

    journalDef1.png
  3. Note the Service Status of the Journaling connector:

    journalVerify1.png

    IconService StatusDescription
    Pending.gifService Awaiting Initial RunOn initial configuration, the status icons for SMTP journal connectors will be orange, with a service status of Service Awaiting Initial Run
    Successful.gifService OKOnce the first message is received by the connector, the icon will change, and the status updated to Service Enabled
    Failed.gifService ErrorIf Mimecast cannot connect to the Journal connector and retrieve emails, the status will change to Service Error

    If the connector configuration is not successful, please see the Troubleshooting Journaling article.
  4. View the current list of Journaling items by clicking the Queue Details button:
    journalVerify2.png
    For Exchange Envelope Journal Format (EJF), the actual recipient is displayed as the sender and the journal address as the recipient.

Now that journaling has been configured and working for Exchange 2007 POP3, you can move on to step 5 in the connect process; Connect

3 people found this helpful

Attachments

    Outcomes