In this article we look at way to secure an Ms Exchange Server implementation and explore means to protect the data stored in it.
No matter what application you may be using, the security of that application is always a concern, especially if the application is used for storing crucial data. MS Exchange email server contains lots of important emails, conversations and contacts it is one of those implementations which needs to be well protected against all possible security threats. The most common security issues all users have to deal with are, virus and malware, sent through emails and direct attacks at compromising data. To stay protected against security threats and secure the MS Exchange Server, follow these security tips:
1. Wisely Select Certificates
For securing your Internet communications, a digital certificate is a must. A lot of things, including the cost, need to be considered while deciding which certificate to take. You cannot have just one certificate and relax; certificates are required for all the hostname you are using. A low – cost solution can be making use of self signed certificates. The 2007 and later editions of MS Exchange can provide you with self signed certificates, instead of expensive commercial certificates. It is advisable to make use of self signed certificates for internal use, and commercial certificates for external use, mainly network connections. You can also make use of wildcard certificates if you wish.
2. Network Perimeter Should Not Hold the Client Access Server
Client Access Server should not be placed on the network perimeter. Microsoft recommends users to store Client Server Access in Private Network, which is protected by the Network Perimeter. If you place a client access server on the network perimeter, it is important to open firewall ports, so that communication with private network is possible.
3. Use Edge Transport Server
This was first launched in the 2007 edition with the aim of protecting your Exchange account from virus and spam right at the network perimeter. Although Exchange already comes with multiple other filtering services, making use of Edge Transport will only help, because no other feature can do it as good as Edge Transport Server. It is aware of all the mail recipients with mailbox on the same mailbox server as yours. This not only helps in performance, but also prevents denial of service attacks. To always keep spam and virus away from your mailbox, it is recommended to use Edge Transport along with a third party filtering service.
4. For Protecting Exchange Server, Use Forefront Security
While buying an anti – virus for Exchange Server, ask yourself the following questions:
- How frequently does the vendor publish the anti – virus definition updates?
- Is the product good enough for Exchange Server?
In-case of an infected Exchange server, repairing the infection won’t work, your priority should be to do away with it all together, and prevent it from spreading further to someone else’s mailbox. It is advisable to use different anti – virus for workstation and exchange servers, to protect both.
Despite your best efforts, the data contained in an Ms Exchange Server can get compromised and messed up due to security threats. So always be prepared with an Exchange recovery strategy to deal with contingencies.
Van Sutton is a data recovery expert in DataNumen, Inc., which is the world leader in data recovery technologies, including outlook recovery and bkf recovery software products. For more information visit www.datanumen.com
Leave a Reply