Configuring a Mimecast Synchronization Engine Site

Document created by user.oxriBaJeN4 Employee on Nov 24, 2015Last modified by user.oxriBaJeN4 Employee on Apr 2, 2019
Version 18Show Document
  • View in full screen mode

The site configuration utility is used to configure and view information about your Mimecast Synchronization Engine (MSE) site.


Configuring the Microsoft Mailbox


The Microsoft Mailbox defines the user context that MSE uses when connecting to your Microsoft infrastructure. The account entered must have the relevant permissions for each feature. For full details on these requirements read the following:


To set the Microsoft mailbox:

  1. Open the Site Configure utility on the server where MSE is installed.
  2. Click the Accounts tab.
  3. Complete the tab as follows:
    Field / OptionDescription
    SMTP AddressEnter the primary email address of the user you want to use to access your environment.
    PasswordEnter the password of the primary email address entered in the "SMTP Address" field.
    Use Exchange ImpersonationSelect this option to allow the user to impersonate other users in your organization to perform tasks on their behalf.
    Directory Type

    The option to specify in this drop down is controlled by the type of deployment you are using. Refer to the table below for the value to select:

    Target EnvironmentDirectory Type
    Microsoft Exchange (On-Premises)Microsoft Active Directory
    Microsoft Active Directory (On-Premises)Microsoft Active Directory
    Microsoft Office 365 (Hybrid)Microsoft Active Directory
    Microsoft Office 365 (Standalone)Microsoft Office 365 Directory
    Changing the Directory Type affects where group / address resolution occurs. This is will either be the On-Premises Active Directory, or Microsoft Office 365.
    Requires AuthenticationSelect whether authentication is required.
  4. Click the Apply button.
  5. Start the Site Bind process described below.


Binding a Site


In the context of the MSE, a binding is a security association between the application and Mimecast. The binding is created when a user with the required permissions successfully authenticates using the site Bind process on the server where the MSE in installed. Binding is required for you to view the MSE site in the Administration Console, and start applying scheduled tasks.


To successfully create a binding you'll need:

  • Outbound connectivity using HTTPS (port 443) from the server where the MSE is installed to Mimecast.
  • Access to the server where the MSE is installed.
  • The email address and password for the Mimecast account. See the Mimecast Synchronization Engine: Synchronization Engine Administrator Role page for a suitable role for this account with minimal permissions for day to day operational requirements.
  • The user account used must have the "Synchronization Engine Administrator" role.


Bind Process v4To bind an MSE site:

  1. Open Mimecast Synchronization Engine.
  2. Configure the Accounts tab.
  3. Clicking on the Apply button. The site bind process starts.
  4. Provide the Mimecast Credentials in the Validation dialog as follows:
    • Email Address: Enter the email address of the user assigned to the Synchronization Engine Administrator role, as specified in the "SMTP Address" field in the "Configuring the Microsoft Mailbox" section above, and visible in the Connect Application. The email address / account must meet the following requirements:
      • Be different to the Mimecast Synchronization Engine email address created by Mimecast for your administration account.
      • The user account properties must have application impersonation. If both Office 365 and Exchange are used, application impersonation must be available on both platforms. See the Configuring Application Impersonation page for details.
      • The associated user account must be mail enabled and have auto discovery set up.
    • Password: Specify the password of the user with the Synchronization Engine Administrator role.
    • Authentication Type: Set the Authentication Type to Cloud. 
      Failure to provide correct credentials for the authentication type, or using a user with insufficient permissions, results in the site bind failing.
  5. Click on the Bind button. A validation dialog displays a confirmation on whether the site bind was a success or failure.
  6. Click on the Close button on the validation dialog.
  7. Click on the Close button on the Mimecast Synchronization Engine dialog.


Changing the MSE Connection Settings


If required, the MSE can be configured to use a proxy server for connections from the host server to Mimecast:

  1. Open the Site Configure utility on the server where MSE is installed.
  2. Click the Connection tab.
  3. Complete the tab as follows:
    Field / OptionDescription
    Use ProxySelect this option to enable you to enter your proxy connection settings.
    Proxy HostEnter your proxy host.
    Proxy PortEnter the port number of your proxy host.
    Requires AuthenticationSelect this if your proxy server requires authentication for outbound connections.
    UsernameIf the "Requires Authentication" option is selected, enter a user that has permission to connect outbound mail to Mimecast in the format that your proxy server expects.
    PasswordIf the "Requires Authentication" option is selected, enter the password for the user entered in the "Username" field.
  4. Click the Apply button.
  5. Start the Site Bind process described below.

Displaying Your MSE Site Configuration


You can display the configuration of your MSE site:

  1. Open the Site Configure utility on the server where MSE is installed.
  2. Click the Site tab. The tab displays the following configuration details:
    Field / OptionDescription
    Server NameThis is automatically populated with the server's hostname.
    Display NameBy default, this is set to the server's hostname. You can change this by clicking in the field, entering the required value, and clicking the Apply button.
    Site CodeThis is populated by an automatically generated code to uniquely identify the site.
    RegionThis is automatically detected based on the region that your Mimecast account is hosted.
    CompanyThis is automatically populated once your site is bound with the company name registered to your Mimecast account.
    VersionDisplays the application's version.
5 people found this helpful