infrastructureblog

Just another WordPress.com site

Microsoft Exchange 2010 Journaling – A Guide

Purpose of Exchange 2010 Journaling:

Exchange 2010 Journaling may aid a company to comply with permissible and mandatory auditing requirements by keeping track of all incoming and outgoing e-mail conversations. It enables a company to maintain and keep a record of its email-based informational assets.

 

Standard vs. Premium Journaling in Exchange 2010:

 

Do I need any licenses to implement Exchange 2010 Journaling?

Exchange 2010 Journaling comes in two flavors: Standard and Premium. The former needs a “Standard CAL for Exchange 2010” to work while the latter needs “Enterprise CAL for Exchange 2010”. Please note and differentiate here between the server and client access license (CAL). Exchange Server 2010 Enterprise license may or may not come with an Exchange Server 2010 Enterprise CAL license. Please refer to your Microsoft license agreement or contact your Microsoft partner or reseller for details.

 

Functionality differences between Standard vs. Premium Journaling

Standard or Per-Mailbox Database journaling enables a company to keep a copy of “all inbound and outbound messages” in a secure/safe journaling Exchange mailbox. This copy includes all the incoming and outgoing messages that are sent to and received by all the end-users that have their Exchange mailboxes hosted on a particular Exchange mailbox database specified during Journaling configuration.

Premium or Custom journaling allows more control for recording this email information asset. It allows for more scoping options. You can custom define and implement exactly what type of email communication (internal: incoming and outgoing within organization OR external: emails incoming from and outgoing to outside/foreign/external domains and organizations only OR global: both internal and external) to record and for exactly which user or users (in the form of distribution lists).

 

 

Identifying the requirements:

 

Scenario

A company XYZ is using Microsoft Exchange Server 2010. Due to a recent audit and legal compliance requirements, it wants all its external email assets to be recorded in a single mailbox that either leave or enter its premises.

–          Journaling Type: Company XYZ needs the “Premium Journaling” to be implemented

–          CAL License Type: Company XYZ needs the license “Enterprise CAL for Exchange 2010”

–          Journaling Scope: All external (entering or leaving the company) emails only will be recorded

–          Journal Recipient: Company XYZ needs the journaling for all the users that exists in all the Exchange mailbox databases

–          Journal Mailbox: All emails should be recorded in a single Exchange mailbox

–          Journaling Database: Company XYZ has already created and mounted a SAN based LUN in the Exchange Mailbox server. This is where the journaling database and logs should reside.

–          Journaling Database Name: XYZ-JOURNAL-DB

–          Journaling Mailbox Name (single mailbox): JOURNAL-MBX

–          Journaling Mailbox UPN: JOURNAL-MBX@XYZ.COM

How to implement Exchange 2010 Journaling:

Step 1: Create a new mailbox database for Journaling

–          Go to the LUN where you like to create and keep the Journaling Database, and manually create two folders called XYZ-JOURNAL DB and XYZ-JOURNAL LOG. In case, you have implemented DAG and you have other DAG mailbox member servers too, these folders will be created automatically.

–          Open Exchange Management Console (EMC) in one of your mailbox exchange servers.

–          Create a new Journaling Database by selecting “New Mailbox Database…” in the action pane. Specify the name of the Journaling Database as “XYZ-JOURNAL-DB”. Follow the wizard and identify the Database file path as DRIVELETTER:\XYZ-JOURNAL DB\JOURNAL.EDB and log folder path as DRIVELETTER:\XYZ-JOURNAL LOG. Once the wizard finishes and the database is mounted

–          Optional: Configure the database replication partner in the other mailbox servers by selecting “Add Mailbox Database Copy…” in the action pane. Specify the other Mailbox server name in the wizard. This will ensure that DAG take cares for automatic database failover in case the mounted database goes down.

–          Confirm whether the database .EDB file is now created in the XYZ-JOURNAL DB folder by going to the folder DRIVELETTER:\XYZ-JOURNAL DB\.

 

Step 2: Create and Configure Journaling Mailbox:

–          Open Exchange Management Shell (EMS) in any one of the exchange servers.

–          Create a secure password string that will be used for authenticating into the journaling mailbox, when we want to test it, by using the EMS command typed below:

$password = Read-Host “Enter password” –AsSecureString

Once you hit Enter, you will see a password prompt, provide a password, let’s say “Journal@123” here and press enter again. After you press Enter, this password will be saved by the EMS to be used in the next step.

–          Create a new Journaling mailbox, that will be used to host/record all the journaled emails, by typing the command below:

New-Mailbox -Name JOURNAL-MBX -UserPrincipalName JOURNAL-MBX@XYZ.COM -Database ” XYZ-JOURNAL-DB” -Password $password

–          Disable storage quota limits for Journaling mailbox by typing the following EMS command:

Set-Mailbox “JOURNAL-MBX” -UseDatabaseQuotaDefaults $false -IssueWarningQuota unlimited -ProhibitSendQuota unlimited -ProhibitSendReceiveQuota unlimited

–          In case, your security administrator ALEX, having AD user name ALEX would also like to monitor all these journaled emails and needs full access on this journaling mailbox, you can him grant full access permissions to this journaling mailbox by using the following EMS command:

Add-MailboxPermission -Identity JOURNAL-MBX -User ALEX -AccessRights Fullaccess -InheritanceType all


Step 3: Create and Configure Premium Journaling

–          Pre-requisites: A journaling mailbox has been created.

–          Open EMS in any one of the exchange servers and type the following:

New-JournalRule -Name “External Journal Rule” -JournalEmailAddress “JOURNAL-MBX” -Scope External -Enabled $True

Notice that in above EMS command, we created and enabled a new journaling rule called “External Journal Rule” that uses journaling mailbox called “JOURNAL-MBX” to record all the external emails only.

–          Finally set all (I am assuming we have two mailbox databases only named XYZ-MANAGEMENT-DB and XYZ-STAFF-DB) the mailbox databases in XYZ.COM exchange organization to use the JOURNAL-MBX mailbox as their journal recipient to implement journaling by using the following command:

Set-MailboxDatabase “XYZ-MANAGEMENT-DB” -JournalRecipient “JOURNAL-MBX”

Set-MailboxDatabase “XYZ-STAFF-DB” -JournalRecipient “JOURNAL-MBX”


Step 4: Test Journaling


If your company users are sending and receiving emails after the above has been implemented, you’ll notice that these emails will be journaled in the Journaling mailbox.

To view these emails, you will have to login to the outlook (OWA or Microsoft Outlook client) of the JOURNAL-MBX mailbox:

–          Username: JOURNAL-MBX@XYZ.COM

–          Password: Journal@123

Congratulations! You have successfully implemented Exchange 2010 Premium Journaling.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: