For customers who use HENNGE Email DLP and Microsoft 365.
The emails sent from the Microsoft 365 (Exchange Online) to outside of your organization go through the HENNGE Email DLP.
1. After this connection, the transmission route will change. Therefore, carefully consider the affected area and working hours.
2. This article is based on the content of the product of March 2019, may be revised without prior notice.
Detailed Procedure/ Explanation
1. Add SPF record
2. Confirmation of influence on email route
If you already have settings in the following part of [Exchange Administration Center], please send us a screenshot showing the settings before connecting to us.
・[ Mail Flow ] → [Rule ]
・[ Mail Flow] → [ Connector ]
・[Compliance Management] → [ Journal Rule]
3. Setting Value Preparation
Please prepare the material HENNGE One connection setting sheet.xlsx provided by us in advance.
1. Create send Connector
1.1. Click [Admin], and Access the [ Exchange admin center] → [ mail flow] → [ connectors ]--> [ + ].
1.2. Select the send connector
You'll be prompted to select a mail flow from [Microsoft 365] to [Partner organization].
Click [Next] to continue.
1.3. Input "HENNGE Email DLP" as a name.
For [ What do you want to do after connector saved?], check [ Turn it on ].
Then, click [ Next ] to continue.
1.4. Check the [Only when I have a transport rule set up that redirects messages to this connector]. Then, click [ Next] to continue.
Later in step 2, set the transmission rule that uses this connector.
1.5. Check [Route email through these smart hosts ].
1.6. Click the add button [ + ], add the smart host, and save it.
The FQDN of the smart host has the following value.
1.7. Enable TLS protection when connecting to HENNGE Email DLP from Microsoft 365.
Click [Always use Transport Layer Security (TLS) to secure the connection (recommended)].
Also, confirm that the [Any digital certificate, including self-signed certificates]is selected.
Then, click [ Next ] to continue.
1.8. Check the settings.
Once confirmed, click [ Next ] to proceed.
1.9. Verify the Connector.
Click the [Validate] button after entering your email address.
Please wait, the verification will be completed soon.
If the verification does not complete successfully, try several times until it succeeds.
Please contact us if the problem persists.
2. Create Transport Rule
2.1. Add [ Rules ].
Select [ Exchange admin center] → [mail flow] → [ rules ] → [ + ] → [ Create a new rule].
2.2. Click [ More options ].
2.3. Specify the conditions when the recipient is [ Outside of the organization ].
Specify [ Name] as " HENNGE Email DLP Rule ".
Select [ *Apply this rule if... ] → [ The recipient... ] → [ is external / internal ] → [ Outside of the organization ].
2.4. Select the connector created in the [ 1. Create Send Connector]
Select [ * Do the following ] → [ Redirect the message to ] → [ The following connector ] → [ HENNGE Email DLP ], and Save.
2.5. Add exception Settings.
Add an exception setting to prevent the notification email received from HENNGE Email DLP from looping in the corresponding Microsoft 365 (Exchange Online) by the preset email forwarding on Microsoft 365 (Exchange Online).
2.5.1. Select [Except if...] → [message header] → [include any of these words].
2.5.2. Select [*Enter text...], enter "From" and Save.
2.5.3. Next, select[*Enter words], enter "firstname.lastname@example.org", and Save.
2.6. Add a second exception setting.
This setting adds an exceptional setting that the confirmation message does not go through the HENNGE Email DLP.
2.6.1. Select [add exception], and select [The message propoties] → [include the message type].
2.6.2. Select "Read receipt", and click [OK].
2.7. After confirming the settings, select [Save].
2.8. Adjust the Priority.
If there are multiple rules, click the rule which priority you want to change, and use the [↑] [↓] buttons to change the priority.
3. Check the connection
3.1. Check if the connection completed normally.
Check the connection status according to the following article below.