 |
 |
|
|
The implementation of ‘Graph’ as an email protocol has allowed us to offer a new ‘Exchange online’ mode of operation. This new mode removes the previous reliance on email journaling, which is specifically of benefit to customer using Microsoft 365.
Before creating an Exchange online path, you must first create an Azure active directory graph application and enter the required configuration settings in Global settings > Email. This provides the authentication necessary to access Microsoft 365 resources. Please refer to the guide above on how to create a graph application.
A new ‘Exchange online’ menu option has been added under Email settings.
Only one Exchange online path can be created. If you attempt to create a second Exchange online path, then the following message will be displayed, and you will be redirected to edit the existing path.
Unlike existing journaling-based configurations, for Exchange online paths, Email director needs to maintain a list of mailboxes to be polled.
The ‘Mail account sync’ option determines which mailboxes are included in that polling:
‘Invu DM users’ will use the contact email address of each currently active user. Inactive users will not be included.
‘All 365 users’ will include all accessible mailboxes within the Microsoft 365 tenancy.
‘Azure active directory group users’ enables selection of a group (Microsoft 365 group, Security group, Distribution group) the member of which will determine the mailboxes included.
Aside from the configuration above, the ultimate ability of Email director to successfully process a given mailbox is determined by both the security scope of the Azure active directory application and the licencing status of the mailbox with Microsoft 365.
Upon saving changes to an Exchange online path, an automatic re-sync of the mailbox list will be performed. If required, the ‘re-snc’ button can be used to perform a manual synchronisation at any time.
In existing journaling-based scenarios, the journal configuration would be responsible for determining whether internal emails are included for Email director processing. For exchange online paths, this configuration is now managed in email director itself, alongside the related ‘Process sent items’ checkbox which determines if sent items are included in the processing.
The Internal/External Email Processing option configures which emails are to be processed by the email path:
An Internal email is defined as either:
An External email is defined as either:
Internal domains can be defined in Global Settings > Email Settings.
When operating in Exchange Online mode, Email Director prevents duplicate processing of identical emails. Where an identical email is received into multiple mailboxes, only one copy of the email will be indexed.
If you have configured the Exchange Online path to process “All” emails, enabled the Sent Items checkbox and then send an email containing both internal and external recipients, you should expect two copies of the email to be indexed (one sent email and one received email).
Processing options remain largely the same for Exchange Online paths as for existing journal based paths, with the following exceptions:
For security reasons, when using Exchange Online paths, only the current user’s mailbox can be accessed for either rules testing or maintenance purposes. The current user must therefore have a valid contact email address within their IDM user account and that email address must also be included within the security scope of the Azure Active Directory Application.
When testing rules, a new option has been added that allows the user to select the required folder (or sub folder) to be used for testing purposes.
