Continuity - Prerequisites

Overview

Step 1 -  Ensure your Contact Information is Correct

You must ensure that the contact information that Mimecast has for you is kept up-to-date so that SMS alerts or email notifications can be sent.

Step 2 - Check your Continuity Functionality and Permissions

• You have Continuity as part of your Mimecast subscription.
• You need to have a role of Basic Administrator or higher for the Mimecast Administration Console.
• If you're using a custom role, this must have Write access to the following Mimecast Administration Console menu items:
  • Account | Settings, in order to navigate to System Notification Options | SMS Attribute. See Mimecast Account Settings.
  • Users & Groups | Internal Directories. See Managing Internal Domains.
  • Users & Groups | Applications. See Configuring Application Settings.
  • Integrations | Connectors. See Managing Connectors.

You will need to grant the following permissions to complete the setup:

• • Services | Continuity.
  • Users & Groups | Directory Synchronization. See Directory Synchronization Overview.
  • Archive | Exchange Services. See Exchange Tasks.
  • Services | SMS Dashboard. See SMS Dashboard.
• Global Administrator access in Microsoft 365.

Step 3 - Check your Microsoft Exchange Settings

• Ensure that you have enabled Cached Exchange Mode in Outlook Exchange Account Settings.
• If you have a Microsoft Exchange Web Services On-Premises deployment, ensure you have:
  • Set it up to allow inbound HTTPS access from Mimecast to your organization's Client Access Server (/ews/exchange.asmx). This will need to be done in your environment; follow a process similar to that detailed in Microsoft's Application Security Groups article. 
  • Shared the credentials of a mailbox with the Application Impersonation management role with Mimecast.
• If you have a Microsoft 365 Standalone or Hybrid Environment, a Continuity Connector is required to securely link your Microsoft 365 Tenant to Mimecast.

Step 4 - Configure Mimecast Service Monitor

Ensure you have configured the Mimecast Service Monitor, which can be used to monitor email services and issue SMS/email alerts when configured mail flow thresholds are breached.
It is also used by our Support teams as an alternate method of contact, in the event of a severe outage.
See Service Monitor - Monitoring Services and bookmark Mimecast Service Status, which provides the latest service information.

Step 5: Configure Cloud Password for Administrator Authentication

Ensure that you have set up an Administrator email address(es) that has a Cloud password, to ensure Mimecast services (e.g., Mimecast Administration Console) can be logged into during a Continuity event.

• Managing User Email Addresses explains how to set up a Cloud password for users via the Mimecast Administration Console.
• Enabling Cloud Authentication explains the complexity rules when setting up Cloud passwords.
• Logging in & Setting your Password explains how to set up your Cloud password via the Mimecast Personal Portal.

Step 6 - Ensure End Users Can Authenticate

If you use Network Directory Authentication, you need to consider how your end users will be able to access Mimecast services if there are connection failures and Directory unavailability.

We recommend that when configuring your Directory Integration via Directory Synchronization, you ensure that the selected Connector has an Alternate Host specified, as a fallback.
If possible, you should set up a secondary Directory Integration instance as a backup. This means that if the primary instance is unavailable, authentication will continue to work seamlessly.

It may be necessary to upload a spreadsheet to import Cloud passwords. See Spreadsheet Import.
Once complete, these passwords will need to be communicated to the users. As email communication will be unavailable, another method should be considered to issue these passwords to users.
Alternatively, it is possible to configure the Cloud passwords beforehand and issue them to the user before Continuity events.

• Enabling Cloud Authentication explains how to enable Cloud Password Authentication using Mimecast for your users. 

You will need to change the Authentication Profile settings to remove Single Sign On enforcement and allow Cloud passwords.

• Logging in & Setting your Password explains how your users can set up, or reset, a Cloud password with an SMS verification code, via the Mimecast Personal Portal. 
  See Cloud Password Reset for setting up Cloud password reset for your users.
• You should ensure the attribute used to define your end users’ cell phone numbers is configured using the SMS Dashboard and that you have cell phone numbers set up for your users, ensuring that they have first provided consent by opt-in.
  See Subscribing to SMS User Notifications.
• SMS Continuity Services explains how SMS Continuity Services work.

Step 7 - Configure and Enable End User Tools

You should consider which End User Applications and services you wish to have available to your End Users during a Continuity event.
All End User applications can be controlled from the Mimecast Administration Console, via Services | Applications, which can be applied to specific sets of users, or all users simultaneously.

• Mimecast Personal Portal: Permission may be required to access this webmail service. For ease of use, you could add a Desktop shortcut to the Mimecast Personal Portal for your users.

You should also check that several users can successfully log into the Mimecast Personal Portal to confirm that the settings are correct.

• Mimecast for Outlook: This Windows service integrates seamlessly with Microsoft Outlook to provide email Continuity and Archive Search services natively in the application. It is also possible to activate Continuity Mode manually.

• Mimecast for Mac: This application allows your Mac users to continue to send and receive emails during a Continuity event, and view Archived Folders.
• Mimecast for Mobile: This application allows your Android and iOS users to continue to send and receive emails during a Continuity event, and view Archived Folders.

The Mimecast Synchronization Engine or Sync & Recover offers features that enhance the end-user experience with Continuity.

• Sync & Recover and Mimecast Synchronization Engine provide features that can greatly enhance the end-user continuity experience for unavoidable occasions when the corporate Microsoft Exchange server is unavailable, or users cannot access the corporate network.
• Mailbox Folder Replication: Exchange mailbox folders greatly affect how end users organize and find important emails and attachments. Mailbox Metadata Synchronization (Folder Replication) provides the ability to replicate emails in the same folder structure that end users are familiar with to Mimecast.

If using Folder Replication in your environment, Exchange Folders Live View is available via the Mimecast Personal Portal. This gives end users a view of the messages stored within their archive in the same familiar folder structure used in their Exchange mailbox. They can find, view, reply to, and forward emails using this Live View, just like when using their standard Exchange mailbox.

• Calendars: Exchange calendars are an extensively utilized feature of Microsoft Outlook, allowing end users to track important meetings and activities.
  Using calendar replication, end users logging onto the Mimecast Personal Portal have read-only access to this data during a Microsoft Exchange outage.
• File Archive: If enabled, Mimecast can provide users with access to files stored in user home drives and shared network drives. The files are accessible through Mimecast for Outlook and Mimecast Personal Portal.

Step 8 - Configure connections to Mimecast Data Centers

 It is important to ensure that you allow connections to the appropriate ports from the entire Mimecast Regional IP Ranges, and that they are mapped to the correct destination on your network. See Data Centers & URLs.

Step 9 - Ensure Journaling is Configured

If you already have a journal connector configured and your organization is journaling to Mimecast using SMTP to capture your messages, you do not need to make any changes to this configuration.
Messages will queue as per your SMTP configuration. Make sure you have the capacity to queue emails for a sufficient period. See Configuring Journaling for more inforation.