Configuring the protection for Exchange Server

Provided you have the necessary licenses, you can enable the protection for Exchange Server from the Web console and apply it to any Exchange servers that you are managing.

The protection for Exchange Server supports Exchange 2003, 2007, 2010, 2013 and 2016.

The protection for Exchange Server includes four protection modules: Antivirus, Anti-spam, Content filtering and Quarantine.

Additionally, depending on the moment when Adaptive Defense 360 scans the email traffic, there are two protection modes: mailbox protection and transport protection. The table below illustrates the availability of these protection modes for the different protection modules and Exchange versions.

Mode/Module	Antivirus	Anti-spam	Content filtering
Mailbox	2003, 2007, 2010
Transport	2003, 2007, 2010, 2013, 2016	2003, 2007, 2010, 2013, 2016	2003, 2007, 2010, 2013, 2016

Mailbox protection

This protection is used on Exchange servers with the Mailbox role, and scans folders/mailboxes in the background or when messages are received and stored in users' folders.

The mailbox protection is only available in the Antivirus module for Exchange 2003, 2007 and 2010

Transport protection

This protection is used on Exchange servers with the Client Access, Edge Transport and Mailbox roles, and scans the traffic that goes through the Exchange server.

Antivirus

Adaptive Defense 360 scans for viruses, hacking tools and suspicious/potentially unwanted programs sent to the Exchange Server mailboxes.

The administrator has the option to enable/disable the mailbox and/or the transport protection by clicking the relevant checkboxes.

Mailbox protection

The mailbox protection behaves differently depending on whether the Exchange server is Exchange Server 2013-2016 or a different version.

Exchange 2013-2016 does not allow message manipulation: if a message contains a dangerous item, the entire message is moved to quarantine. In this case, the users protected with Adaptive Defense 360 will receive a message with the original subject but the message body replaced with a warning text. This text prompts the user to contact the network administrator to recover the original message.

In all other Exchange versions, Adaptive Defense 360 takes the action defined by Panda Security when a malware item is detected: disinfect the attachment if disinfection is possible, or send it to quarantine if disinfection is not possible. Therefore, the user will receive the original message with the clean attachments or, if disinfection was not possible, a replacement file called “security_alert.txt” with information about the reason for the detection.