Journaling - Exchange Appliance Journaling

Updated

This article details the steps in configuring SMTP Journaling for Exchange 2013 - 2019 to work with the Mimecast platform. The process works for standard and premium journaling, as the process is very similar. The only difference is the steps to enable journaling in your Exchange environment.

Mimecast Configuration

The following configuration is required inside the Mimecast Administration Console:

A Journal Sub-Domain must be added to your internal domain. See the "Adding an Internal Sub-Domain" section of Configuring Internal Domain / Subdomains page for full details.

  •  The Email Security Setup Wizard journal connector step creates a default (Journal Service Definition) on your Mimecast account, including the following internal journal domain and journal address: Journal Domain: journal.domain.com (where domain.com is the domain you selected in the Domain drop-down menu) Journal Address: journaling@journal.domain.com.
  • You can skip the Mimecast Configuration step if using The Email Security Setup Wizard journal connector to configure Journaling.

Exchange 2013 - 2019 Configuration

Configuring an External Contact

The first step is to create an External SMTP Contact in Exchange 2013-2019, using the following format: journaling@journal.domain.com (where domain.com is the primary SMTP domain).

To configure an External Contact:

  1. Log on to the Exchange Admin Console (EAC).
  2. Navigate to the Recipients menu item on the left of the page.
  3. Select the Contacts link.
  4. Click on the + Icon followed by Mail Contact.
  5. Complete the New Mail Contact fields as follows:
    Field / Option Description
    First Name Enter a first name for the journaling contact (e.g., SMTP).
    Initials This field is not required and can be left blank.
    Last Name Enter a last name for the journaling contact (e.g., Journaling).
    *Display Name These fields display a continuation of the First Name and Last Name fields and can be left with the default values. If the above examples are used, the display name is "SMTP Journaling".
    *Name
    *Alias Enter an alias for the contact (e.g., Journaling).
    External Email Address Enter the journaling address created in the Administration Console (e.g., journaling@journal.domain.com).
    Organizational Unit By default, the path to the Users container is displayed under Organizational Unit (OU). To modify this field, click Browse and select the required OU.
  6. Click on the Save button.

 

Configuring the Send Connector

If your Mimecast subscription includes Journaling and your service was provisioned after March 26, 2015, a Journal Connector has been created automatically for you, including an internal journal domain and journal address.

  • The Journal Domain is created as journal.<domain.com>, where <domain.com> is the domain your organization provided as your primary mail domain.
  • The Journal Contact is created as journaling@journal.<domain.com>, where <domain.com> is the domain your organization provided as your primary mail domain. Use this address as the mail attribute for the external contact you create in Exchange to send journal messages.

If your Mimecast service was provisioned before this date, or you want to add a journal connector, you must manually add a journal domain, address, and connector, as detailed below.

This step enables archiving internal and external emails to the External SMTP Contact created above. To configure the Send Connector:

  1. Log on to the Exchange Administration Center.
  2. Navigate to the Mail Flow | Send Connectors menu item.
  3. Click the + Icon.
  4. In the Name field, enter a name for the Send Connector (e.g., "Journal Send Connector to Mimecast").
  5. For Type, select "Custom" and click the Next button:
  6. Select the Route Mail Through Smart Hosts option under Network Settings. When completed, click on the + Icon to add the smart hosts.
  7. Use the table below to enter the Primary / Secondary Smart Hosts:
    Region Hostname
    Europe (Excluding Germany) eu-smtp-journal-1.mimecast.com
    eu-smtp-journal-2.mimecast.com
    Germany de-smtp-journal-1.mimecast.com
    de-smtp-journal-2.mimecast.com
    United States of America us-smtp-journal-1.mimecast.com
    us-smtp-journal-2.mimecast.com
    United States of America (B) usb-smtp-journal-1.mimecast.com
    usb-smtp-journal-2.mimecast.com
    Canada ca-smtp-journal-1.mimecast.com
    ca-smtp-journal-2.mimecast.com
    South Africa za-smtp-journal-1.mimecast.co.za
    za-smtp-journal-2.mimecast.co.za
    Australia au-smtp-journal-1.mimecast.com
    au-smtp-journal-2.mimecast.com
    Offshore je-smtp-journal-1.mimecast-offshore.com
    je-smtp-journal-2.mimecast-offshore.com
    USPCOM uspcom-smtp-journal-1.mimecast-pscom-us.com
    uspcom-smtp-journal-2.mimecast-pscom-us.com
  8. Click on the Save button.
  9. Click on the Next button.
  10. Select the None button under Smart Host Authentication.
  11. Click on the Next button.
  12. Specify the Address Space the connector should route mail through:
      • Click on the + Icon.
      • Click on Add a Domain.
      • Complete the Add Domain dialog as follows:
        Field / Option Value
        *Type SMTP
        *Full Qualified Domain Name (FQDN) journal.<domain.com> (where <domain.com> is the domain your organization provided as your primary mail domain.
        *Cost 1
  1. Click on the Save button.
  2. Click on the Next button.
  3. Click on the + Icon.
  4. Select the Transport Servers that will be associated with this connector.
  5. Click on the Add button to add the server(s).
  6. Click on the OK button.

    If running an environment with Edge Transport Servers, you must push the Send Connector to Edge Transport Servers. Visit the Microsoft Website for further instructions.

  7. Click on the Finish button.

    Check the Send Connector's properties to ensure there are no size limits set, as shown in the image below. By default, a 10 MB size limit is set on the connector. This can cause more significant messages to build up in your queues.

Enabling Exchange Journaling

The next step is to enable journaling from your Exchange 2013-2019 environment. Follow the instructions in the subsections below for either Standard or Premium journaling.

Standard journaling is allowed using the default Client Access Licenses from Microsoft. Premium journaling requires Enterprise CALs from Microsoft.

Standard Journaling

To enable Standard journaling:

  1. Log on to the Exchange Administration Center.
  2. Navigate to the Servers section.
  3. Click on the Databases tab.
  4. Select a Database.
  5. Click on the Edit Icon to display the database properties. 
  1. Select the Maintenance tab.
  2. Click on the Browse button next to the "Journal Recipient" field.
  3. Select the Mail Contact created earlier and click OK.
  4. Click on the Save button to enable Journaling for that database.
  5. Repeat the process for the other mailbox databases.

    Public Folder Databases cannot be journal enabled.

Premium Journaling

To enable Premium journaling:

  1. Log on to the Exchange Administration Center.
  2. Navigate to Compliance Management.
  3. Select the Journal Rules tab.
  4. Click the + Icon to create a Journal Rule.
  5. Enter the following information in the fields:
    Field / Option Value
    Send Journal Reports To Provide your journaling address (e.g., journaling@journal.<domain.com>.).
    Name Name the new journal rule (e.g., Mimecast Journaling).
    If the Message is Sent To or Received From Select the "Apply to All Messages" option.
    Journal the Following Messages Select the "All Messages" option.
  6. Click on the Save button.

Verifying Standard or Premium Journaling

After Journaling is configured, the next step is to verify that the connections are working. To verify Exchange 2016 or 2013 Journaling:

  1. Log on to the Mimecast Administration Console.
  2. Select the Services | Journaling menu item.
  3. Note the Service Status of the Journaling Connector:
    Icon Service Status Description
    Service Awaiting Initial Run On initial configuration, the status icons for SMTP journal connectors will be orange, with a service status of Service Awaiting Initial Run.
    Service OK Once the connector receives the first message, the icon will change, and the status will be updated to Service Enabled.
    Service Error If Mimecast cannot connect to the Journal Connector and retrieve emails, the status will change to Service Error.

    If the connector configuration is not successful, see the Troubleshooting Journaling article.

  4. Click on the Queue Details button to view the current list of Journaling items.

For Exchange Envelope Journal Format (EJF), the actual recipient is displayed as the sender and the journal address as the recipient.

Now that Standard or Premium Journaling is configured and working for Exchange 2013-2019, you can move to step 5 in the Connect Process Steps.

Related to

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.