Secure email servers on Exchange, Office 365 or both

Last updated:July 2015

Article

Survey says: Exchange at risk for security attacks

Exchange is vulnerable to attacks. A recent survey found four main areas to address for secure, available and resilient Exchange environments, so it's important for admins to know the basics to protect their organization's data. Read Now

Editor's note

No matter where your organization's email system resides, you need to secure email servers, the network those servers use and -- as much as possible -- the end users. You must take on a number of tasks on a regular basis, sometimes daily, to make sure your servers are secure.

If your organization has on-premises Exchange Server, you know that servers aren't immune to attacks that can lead to data breaches or worse. If your organization moved its email messaging service to Office 365, you aren't entirely absolved of security administration duties. Microsoft has been pushing IT shops to move to the cloud since it introduced its "cloud-first" approach for delivering future updates and features. But even with this cloud focus, many organizations still use on-premises Exchange for their email needs. With a mix of email services on-premises and in the cloud, you have to stay on top of securing two different platforms with two different architectures.

Each Exchange setup requires a different method of keeping a secure email server. Use this guide to learn about the features and tools in each deployment mode that can help you keep your organization safe from attacks.

1Security for Office 365

Office 365 features offer heightened security against attacks for enterprises that have moved their messaging systems into the cloud. Methods to control email access range from login security to client policies.

2Security for hybrid Exchange

Hybrid Exchange and Office 365 messaging setups reduce your on-premises workload, in terms of management and capital expense. At the same time, hybrid means securing two email platforms, monitoring users and attack potential on two architectures -- and can be twice the headaches if you're not properly prepared.

Essential Guide

Article

Survey says: Exchange at risk for security attacks

Editor's note

Article

Office 365 features offer heightened security against attacks for enterprises that have moved their

Article

Boost Office 365 security with the AD FS extranet lockout feature

Article

Control access with the Client Access Policy Builder

Article

Outlook app worth a second look

Article

Better Exchange Online access controls available

Article

Cracks in the security armor

Article

Neglected servers introduce vulnerabilities

Article

Push users out of encryption

Article

IT seeks security-minded hosting provider

Article

One click away from disaster

VMware product overview: Virtualization and end-user computing

Compare Docker vs. Podman for container management

5 open source software applications for virtualization

The cloud shared responsibility model for IaaS, PaaS and SaaS

Microsoft's Azure Arc reaches GA milestone

Top 6 complexity challenges of operating a cloud at scale

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

Evaluate if Chromebooks are secure enough for business use

Set up Windows Remote Desktop on a Mac device

Microsoft Endpoint Manager gets better Mac, iPad management

Solve the mystery of VDI licensing

Monitor VDI with these top tools

VDI testing checklist: Key steps to test a VDI deployment