ExchangeDefender for Service Providers is the top level of administrative control over ExchangeDefender. With the single login, Service Providers can manage all of their companies, departments, and users’ settings from a single interface.
This secure site is located at:
Login credentials and invitation would be sent from the Own Web Now Corp portal at https://support.ownwebnow.com when the Service Provider enrolled in the service.
Navigation through the ExchangeDefender User Interface (UI) is simple with a tool bar across the top management sections/links on the left. The rest of the UI contains the main functionality for whichever section you’re currently managing. Almost all pages will also have a tabbed interface for additional settings, ability to export the current view into a csv/pdf, and search/paging functions.
Each ExchangeDefender role (Service Provider, Domain/Organization, and User) will see its own customized dashboard upon login.
Service Provider – Managing Domains/Organizations.
ExchangeDefender for Service Providers can manage and add new domains and organizations by clicking on the Management tab.
To add a new domain simply click on the New Client Wizard button.
To manage existing domains and organizations, locate them in the list on the management screen. Each organization can have multiple (alias) domains. The first domain in the organization is displayed in the header row and all actual domain configuration is managed below.
Actions for Domain Management are as follows:
- Login – Login to the domain as the administrator of that organization to directly manage users and settings.
- Report – Get a glance of recent domain activity.
- Security Reset – Quickly lock down the domain by resetting credentials.
- Secure IP – Configure IP address restrictions for portal and service access.
- Change Configuration – Quickly adjust popular configuration items for a single domain.
- Add Domain Alias – Add a new domain to this organization.
- Delete – Delete the domain and all users/configuration related to it.
Service Provider – Security Reset
This screen is located under ExchangeDefender Service Provider > Management > Domain > Security Reset
ExchangeDefender for Service Providers enables service providers to quickly lock down the entire organization by mass resetting access security credentials. Security reset will provide you with the domains in the organization, mailbox totals for each domain and present you with options for New Password, User Notification, and Security Override.
ExchangeDefender allows you to pick and set the same password for all users in your organization “I want to pick the password”, or allow the service to randomly assign passwords for each user “Allow ExchangeDefender to automatically pick a new password for each user”. Picking the same password for all users is convenient for smaller organizations where you can direct everyone to reset their password – but it comes at a cost of security and privacy because now users know each other’s passwords and can use them to maliciously access mailboxes they aren’t authorized to access.
ExchangeDefender can either notify each user on your behalf. If you select “Do not notify”, ExchangeDefender will reset all security credentials but the user will not be notified. If you select “Send a password reset link to every user” the security credentials will be reset and the user will be sent a link to configure their new password.
ExchangeDefender Security Override is designed for service providers that want to keep a roster of all users and their security credentials. By checking this box, you will be directed to the new page where all email addresses and passwords will be printed before they are applied to the database. Please note that even though this page is encrypted and secure, if your endpoint isn’t this is a huge security compromise and ExchangeDefender does not recommend using it.
Service Provider - Secure IP Range
This screen is located under ExchangeDefender Service Provider > Management > Domain > Secure IP Range.
ExchangeDefender for Service Providers enables service providers to quickly set up IP restrictions in the event of a breach or compromise. The same setting is available on the Domain/Organization level.
By default, ExchangeDefender is accessible from anywhere. If the client has a known IP range and is primarily managing their ExchangeDefender service from an office with a Static IP address, you can restrict access to just that range by selecting “Allow access only from these IP ranges:”
By checking the box labeled “Send me an email notification every time a login attempt is made from an unauthorized IP” you can get a notice when someone is attempting to hack or compromise your account. If you do not wish to receive an email, there is also a log in the User control panel that allows you to review recent authentication failures.
Service Provider – Change Configuration
Inbound IP Address – Inbound IP address (or hostname) is where ExchangeDefender delivers inbound mail that has been processed and scrubbed.
Outbound IP Address – Outbound IP address is the address from which we will allow outbound relay for outgoing email.
ExchangeDefender supports advanced routing for both Inbound and Outbound routes, allowing for complex configurations such as accepting mail from an entire subnet or multihomed routing for small businesses with multiple IP addresses from multiple ISPs (but no BGP).
While technical support for this feature is not available, it is relatively simple to configure an MX record to configure failover and redundancy in ExchangeDefender delivery to multiple IP addresses. Simply create a new MX record (with as many ISP IP addresses as you have assigned to you) and provide that hostname here.
ExchangeDefender will look up the MX record, resolve IP addresses, and proceed to attempt email delivery based on the weight of each record found. If one IP does not answer on port 25, ExchangeDefender will move on to the next one in seconds.
Service Provider – Change Configuration
SPAM Life – Number of days that ExchangeDefender will keep SPAM messages and make them available for review/release.
SPAM Action – ExchangeDefender has 3 options when it comes to handling SPAM messages.
- Tag & Deliver – When ExchangeDefender classifies a message as SPAM, it will append [SPAM] to the subject and deliver the message to the client.
- Quarantine – When ExchangeDefender classifies a message as SPAM it will quarantine the message on our network. Users can get a daily SPAM and intraday SPAM report that gets emailed to them, or through the admin portal at https://admin.exchangedefender.com , or through Outlook add-in, or through Windows Desktop client. ExchangeDefender Essentials can only access their quarantined messages via the portal. Once a message is quarantined it can be accessed, previewed, printed, replied to or forwarded, and it can also be released down to the client’s mail server on demand.
- Delete – When ExchangeDefender classifies a message as SPAM it will delete the message. Please note that this action is not reversible , the message is discarded before being stored on any of our servers so there is no way to recover the message once it’s been deleted.
SureSPAM Action – ExchangeDefender has the same three options for handling SPAM. SureSPAM is a classification for SPAM messages that we have a 99.9% confidence that the message is SPAM based on its origin, patterns, and advanced SPAM detection.
Service Provider – Change Configuration
Report Options – ExchangeDefender Pro allows users to receive up to two daily SPAM reports that contain a list of messages that ExchangeDefender quarantined as SPAM or SureSPAM. From that email report users can quickly see all the SPAM ExchangeDefender has caught and can whitelist or release the message just by clicking on a link in the email.
- Disable email reports – Do not send users quarantine reports at all.
- Enable daily email report – Send user a single daily email containing all the SPAM caught in the past 24 hours.
- Enable daily and intraday email report – Send users a single daily email containing all the SPAM caught in the past 24 hours and send an intraday report that contains all the SPAM caught since the daily report was generated. Intraday reports are meant for sales and executive personnel that needs to be reminded to check SPAM quarantines more often.
- Generate Daily report at – The time at which the SPAM report is generated. We recommend giving at least 30-60 minutes prior to the time you wish to receive the report. For example, if you want to be sure that the Daily SPAM report is in your Inbox by 9:00 AM, set the report time to 8:00 AM.
- Generate Intraday report at – The time at which the intraday SPAM report is generated.
Report Contents – The following settings determine if we sent the SPAM report and what sort of information it contains. For clients with lots of aliases it’s best to select Report quarantines only for email addresses that have SPAM in them.
- Report quarantines for all email addresses – ExchangeDefender SPAM report will report SPAM for every mailbox that is protected for every given user. If there is no SPAM to report, the alias/mailbox in the report will simply say “No SPAM to report”.
- Report quarantines only for email addresses that have SPAM in them – ExchangeDefender SPAM report will only be generated and sent if ExchangeDefender caught any SPAM during the past 24 hours (or the amount of time since the Intraday report).
Time Zone – The following settings determine the time zone for the client for SPAM generation purposes. Each user can override this setting if the organization has offices in different time zones.
Service Provider – Configuration - Terms of Service
ExchangeDefender enables service providers to link in their own Terms of Service (disclaimers, notices, etc) that are presented to each user the first time they login to ExchangeDefender.
This mechanism is used alongside with ExchangeDefender’s Terms of Service, Acceptable Use Policy, and Service Level Agreement. Without accepting the Service Provider Terms of Service, user cannot proceed to manage or configure the service giving service providers a way to protect their legal interests.
Service Provider – Configuration – Notifications
Activation Message – Activation Message is sent to the user when the domain administrator first adds the email address to ExchangeDefender. This is simply a service provider template that is copied as the default Activation Message in the domain/organization-level. Domain administrator can modify this message in their own portal.
Domain Welcome – Domain Welcome message is sent to the domain administrator when a new domain/organization is added to the ExchangeDefender.
Announcement – Some ExchangeDefender Portals (encryption.exchangedefender.com, admin.exchangedefender.com, etc) feature an announcement section either on the dashboard or on the login screen.
Text Signature – Default service provider signature block that is applied to every new domain. Domain administrators can modify this message and setup their own branding. This signature is applied to every text outbound message the users send.
HTML Signature – Default service provider signature block that is applied to every new domain. Domain administrators can modify this message and setup their own branding. This signature is applied to every HTML outbound message the users send.
Service Provider – Reporting – Security Audit Log
ExchangeDefender features extensive logging, security audit reports, and searchable mail/web logs that can help service providers troubleshoot ExchangeDefender and mail delivery.
Reporting section features several tabs for Authentication Logs, Activity Logs, and Security Report.
Security Audit Log – on the service provider level the security audit log by default provides recent login activity related to the service provider account.
Service Providers also have the ability to search events by Domain or User, all from the same interface.
Service Provider – Reporting - Mail Log
ExchangeDefender enables service providers to search through the email transaction and message logs.
ExchangeDefender separates email logs by domain and by service (inbound/outbound) and enables you to see the actual SMTP transaction logs as well as ExchangeDefender internal analytics, routing, and SPAM sorting. By looking at individual mail logs you can address any delivery failures, delivery delays, or SPAM filtering activity in real-time.
Service Providers – Settings – Secure IP Range
ExchangeDefender for Service Providers supports IP restrictions, allowing you to restrict access to the portal to known IP addresses. By designating secure IP addresses from which your service provider account can be accessed from, hackers from remote locations will not be able to access the portal even if they knew your password.
We strongly encourage you to enable this setting, if technically possible.
Service Providers - Announcements
ExchangeDefender for Service Providers enables service providers to display messages to users and domain administrators as they interact with the service. These announcements are displayed prominently on the login page for all of our major services such as the admin portal, Encryption Portal, Corporate Encryption, LiveArchive, Compliance Archive, and Web File Server.