Message Archiving™ Microsoft Exchange Journaling Configuration Guide For Exchange Server 2007 and 2010 • • Google Message Discovery Postini Message Archiving
Google, Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043 www.google.com Part number: PMAE2K7-10JCG_628_8 February 3, 2012 © Copyright 2009 Google, Inc. All rights reserved. Google, the Google logo, Google Message Filtering, Google Message Security, Google Message Discovery, Postini, the Postini logo, Postini Perimeter Manager, Postini Threat Identification Network (PTIN), Postini Industry Heuristics, and PREEMPT are trademarks, registered trademarks, or service marks of Google, Inc.
This software is provided “AS IS.” The copyright holders disclaim all warranties, either express or implied, including but not limited to implied warranties of merchantability and fitness for a particular purpose, with respect to this code and accompanying documentation. Although their code does not appear in gd 1.8.4, the authors wish to thank David Koblas, David Rowley, and Hutchison Avenue Software Corporation for their prior contributions.
Contents About This Guide................................................................................................. 7 What This Guide Contains..................................................................................... 7 Audience................................................................................................................ 7 Related Documentation ......................................................................................... 8 How to Get Support ..................
Troubleshoot Exchange Server Journaling Setup ............................................... 30 Troubleshooting Steps .................................................................................30 Bounced Journaled Messages ..................................................................... 30 Chapter 3: Monitoring Journaling Performance ............................................. 31 Use the Storage Overview report in Message Archiving .....................................
About This Guide What This Guide Contains The Microsoft Exchange 2007 and 2010 Journaling Configuration Guide provides information about: • How Microsoft Exchange Server 2007 and 2010 journaling works • Setting up Microsoft Exchange Server 2007 and 2010 to send copies of email messages to your archive in Postini Message Archiving. This guide is a supplement to the Message Archiving Administration Guide. It assumes that you are familiar with Postini Email Security.
Related Documentation For additional information about Message Archiving and your Message Security service, refer to the following related documents, which are available on the Postini Support Portal. For details, see “How to Get Support” on page 8.
https://support.postini.com Note: Postini Customer Care does not provide technical support for configuring mail servers or third-party products. Please contact Postini Professional Services Services (postini-professionalservices@google.com) for consulting services. Disclaimer for Third-Party Product Configurations This guide describes how our products work with Microsoft Exchange Server 2007 and 2010 and the configurations that we recommend.
Chapter 1 Introduction to Microsoft Exchange Server 2007 and 2010 Journaling Chapter 1 What Is Microsoft Exchange Server Journaling? Microsoft Exchange Server journaling lets you record a copy of, or journal, email communications in your organization and send them to a dedicated mailbox on an Exchange Server. The process of journaling is different from archiving. Journaling is simply a means of recording your users’ messages.
Notes • For messages sent to internal mailing lists, Exchange Server adds the expanded list of recipients to the journaled message. However, Exchange Server cannot expand external mailing lists. • Due to non-compliance issues, Message Archiving does not support journaled messages that are addressed to public folders. • Generally, for messages sent to or received by multiple recipients, one copy of the message is journaled and archived.
What Are the System Requirements for Microsoft Exchange Journaling? Ensure that your Exchange messaging environment includes the following components: • Microsoft Exchange Server 2007 or 2010 Standard or Enterprise Edition • Journaling agents configured on the appropriate Hub Transport servers • For premium journaling, you also need the Exchange Enterprise Client Access License (CAL) Note: Premium journaling can be implemented on Exchange Server 2007 and 2010 Standard and Enterprise versions.
Organize Mailbox Databases and Journal Rules Journaling email messages can impact both the performance of your email server and the amount of outbound corporate traffic on your Internet connection. If you want to archive messages for only a specific set of users on your network, you can use the following options: • Standard Journaling: With Standard journaling, the Journaling agent journals all messages sent to or received from recipients and senders assigned to a particular mailbox database.
Adjust Email Storage Restrictions Because journaling email messages can increase the message load on your Exchange Server (approximately 15%, according to Microsoft), you might want to set tighter restrictions on the amount of messages users can store or the duration for which users can store messages on your Exchange Server. The performance gains from these restrictions can compensate for the additional load created by journaling.
If you set up your Exchange Server to use TLS encryption, Message Archiving will automatically accept the encrypted messages as they are forwarded by your Exchange Server, decrypt them, and then store them in your archive. You can find detailed information about setting up TLS for Exchange Server on the Microsoft Web site (www.microsoft.com).
Chapter 2 Setting Up Microsoft Exchange Journaling Chapter 2 Overview of Journaling Setup Following are the basic steps for deploying Exchange Server journaling. We recommend this configuration as it lets you to send journaled messages in plain MIME rather than encapsulated in TNEF. 1. Create an SMTP contact with the email address of your Postini archive (which appears in the Administration Console once you set up Message Archiving for journaling). 2. Set up the journaling mailbox.
The following figure is an overview of how Message Archiving works with Exchange Server journaling. WARNING: • The order of the steps in this document differs from that provided in the Microsoft documentation. Please follow the order of the steps in this document, to ensure that you set up journaling correctly for Message Archiving. • Microsoft documentation includes instructions for setting up the SMTP connector for the connection between your organization and your email archive.
How to Set Up Journaling on Microsoft Exchange Server Before completing the following steps to set up journaling and send messages to your Postini Archive, ensure that you have: • Turned on archiving for your user organizations and configured journaling for your email configuration organization on your Message Security service. For details, refer to the Message Archiving Administration Guide. • Planned your journaling deployment.
2. Right-click the organizational unit in which you want to create the contact, point to New, and then click Contact. 3. Enter the following: • First Name: Postini • Last Name: Archive • Display Name: Postini Archive. 4. Click OK. 5. Open the Exchange Management Console on the Mailbox server. 6. Expand Recipient Configuration, right-click Mail Contact, and then click New Mail Contact. 7. Click Existing Contact, browse to and select the Postini Archive contact you just created, then click OK. 8.
With this setting, journal reports are sent in MIME rather than S/TNEF. Step 2. Set Up the Journaling Mailbox Based on the number of journaling mailboxes you need, which you determined during your planning, you now need to set up the necessary journaling mailbox databases and journaling mailboxes on one or more Exchange Servers. When setting up a journaling mailbox, you must place it in a mailbox database for which you do not plan to turn on journaling.
14. Review the Configuration Summary. If you need to make changes, click Back. When you are satisfied with your configuration, click New to create the mailbox. Step 3: Create a Distribution List for Journaling You need to create a distribution list of the recipients of journaled messages. To create the distribution list for journaling: 1. In Active Directory, create a new distribution list (group), and name it Journal Recipient. 2.
To enable premium journaling: 1. Ensure that the Journaling agent is enabled on the Hub Transport server: • Issue the following command to determine whether or not the agent is enabled: Get-TransportAgent If no agent name is returned, the agent is not enabled. • To enable the Journaling agent, issue the following command: Enable-TransportAgent -Identity “Journaling agent” 2. Open the Exchange Management Console on the Hub Transport Server. 3. Expand Organization Configuration, then click Hub Transport.
Implementing the deletion of forwarded messages involves the following procedures: • Create a managed content setting for the Inbox folder. • Create a managed folder mailbox policy. • Apply the managed folder mailbox policy to the journaling mailbox. • Configure the Managed Folder Assistant to run the policy. To create a managed content setting for the Inbox folder: 1. In Exchange Management Console, expand Organization Configuration, then click Mailbox. 2.
The Select Managed Folder dialog box opens. 5. Select the Inbox folder, then click OK. 6. Click New, then click Finish. To apply the managed folder mailbox policy to the journaling mailbox: 1. In Exchange Management Console, expand Recipient Configuration, then click Mailbox. 2. In the result pane, right-click Archive Master, then click Properties. 3. Click the Mailbox Settings tab. 4. Click Messaging Records Management, then click Properties. 5.
Set-Mailbox AMaster -HiddenFromAddressListsEnabled $true Step 7: Prevent Mail from Going Directly to the Journaling Mailbox In Step 2, you set up the journaling mailbox. You now need to set up a delivery restriction for the AMaster user to prevent anyone from sending email messages directly to the journaling mailbox. To set the delivery restriction: Use the Set-Mailbox cmdlet to modify the settings for the journaling mailbox to prevent anyone from sending email messages directly to the that mailbox.
Verify Your Setup of Exchange Server Journaling After you finish setting up Exchange Server journaling, verify that everything is working as expected. Verify SMTP Contact and Journaling Mailbox 1. Open the Postini Archive contact and verify that you entered the correct email address for your archive. 2. Use the Exchange Management Console to verify that the journaling mailbox resides in its own mailbox database. Verify Journaling 1.
Note: The time it takes for a message to enter the archive can vary. If the message does not appear in the archive, try searching for it again after another 60 minutes. Setting Up Journaling in a Mixed Exchange 2003-Exchange 2007/2010 Environment If you are migrating from Exchange 2003 to Exchange 2007 or 2010, you can use a mixed journaling environment during the time you have users on both types of servers.
Pay particular attention to: “Step 1. Create SMTP Contact” on page 19, where you configure the message format settings for the SMTP contact (set Use MAPI rich text format to Never). This setting ensures that journaled messages are sent in MIME format.
Troubleshoot Exchange Server Journaling Setup Troubleshooting Steps If you cannot verify that Message Archiving is archiving email messages, do the following: Check custom SMTP recipient: In Exchange, check that the email address you specified for the custom SMTP recipient is correct. It must be the address that Message Archiving generated when you configured journaling for Message Archiving. For details, refer to the Message Archiving Administration Guide.
Chapter 3 Monitoring Journaling Performance Chapter 3 Once you have successfully deployed Exchange Server journaling, there are three easy ways to monitor journaling activity and spot potential problems: • Use the Storage Overview report in Message Archiving • Use the Inbound Archiving by Domain report in the Administration Console • Turn on journaling alerts Monitoring Journaling Performance 31
Use the Storage Overview report in Message Archiving Message Archiving administrators who have the Archive Search and Archive Reports privileges can view the Storage Overview report, which includes an up-tothe-minute view of your journaling traffic. To view the Storage Overview report, log in to Message Archiving, click the Reports tab, then click Storage Overview in the Navigation panel.
Use the Inbound Archiving by Domain report in the Administration Console You can use the Inbound Archiving by Domain report in the Message Security Administration Console to get a summary of the following data related to journaling: • Account Messages: Messages journaled for active archiving users. • Non-Account Messages: Valid journals for users who do not have archiving enabled. These journals are archived if Non-account Archiving is enabled.
Appendix A Checklist Appendix A Use the following checklist to verify that you have successfully completed all the steps necessary to set up journaling on your Exchange Server. Create an SMTP contact To forward all journaled messages in your journaling-recipient mailboxes to Message Archiving, you need to add a new contact to your Microsoft Active Directory, and specify the email address of your archive for that contact. For more information, see “Step 1. Create SMTP Contact” on page 19.
Turn on Journaling Microsoft Exchange Server 2007 and 2010 Standard and Enterprise versions each support standard and premium journaling. For more information, see “Step 4: Turn On Journaling” on page 22.
