Getting Started

Getting Started

Quick Start

We strongly recommend using the Quick Start wizard in the portal.  This wizard will guide you through the steps required for a typical deployment.  As you complete each step the wizard will monitor your progress and provide an easy to read summary of your implementation stats.  To access the Quick Start wizard log into the cloud portal and browse to E-mail Security > Anti-Spam > Quick Start

1.0 Provisioning

Schedule Implementation Planning Session

We encourage you engage our Professional Services team prior to starting your implementation.  Our engineers have a decades of expertise supporting enterprise organizations and are here to help. They can help you create an implementation plan or simply provide feedback on your existing plan.

Please contact your account team to schedule your 1-hour Implementation Planning Session.

Activate Anti-Spam Trial License

To activate your Trial License, log into your management portal.  Then select Anti-Spam > Plans & Pricing.  Click Activate Trial.  Do not close your browser while the activation process is running.  The activation should take less than one minute, after which you will see additional tabs across the top.

Please contact your account team with questions or for technical assistance.  For convenience, your account team's contact information is listed at the bottom of the Plans & Pricing page.

 

 

If the activation process fails or If the additional tabs are not visible post activation, log out of your management portal and then log in again.

If you have already purchased an Anti-Spam license, no further action is required.  You will see "Paid" under Plans & Pricing.

2.0 Pre-Deployment

Create Inbound SMTP Firewall Rules

Our cloud platform will deliver incoming email to your mail server from the network ranges below.  Allow inbound TCP port 25 traffic from these network ranges:

==============================================================
Address            Netmask (CIDR)   Netmask
==============================================================
162.220.57.160     /28              255.255.255.240
192.198.203.80     /28              255.255.255.240

Create Inbound LDAP Firewall Rules

Our cloud platform can make LDAP (or Secure LDAP) queries of your user directory to create and maintain a list of active email addresses.  This list of email addresses is used for multiple services including:

  • Recipient Validation
  • Directory Harvest Attack Prevention
  • Group Based End-User Quarantine
  • Auto Whitelisting

Allow inbound TCP port 389 (LDAP) or TCP port 636 (Secure LDAP) traffic from the network ranges below.

=============================================================
Address            Netmask (CIDR)   Netmask
==============================================================
54.236.119.220     /32              255.255.255.255

Enabling Secure LDAP

Click here for step-by-step instructions on enabling Secure LDAP with Microsoft Active Directory.

Secure Cloud Connector

Our Secure Cloud Connector is an excellent alternative to allowing inbound traffic to your LDAP Directory.   Click here for step-by-step instructions on setting up the Secure Cloud Connector in your environment

Update MX Records

Type     Preference     TTL       Value
==============================================================
MX       10             86400     mx1.securolytics.io
MX       10             86400     mx2.securolytics.io

Create or Update SPF Record

Sender Policy Framework (SPF) is an anti-fraud technology that can detect email spoofing.  Our cloud platform fully supports SPF and block emails that attempt to spoof your domain name(s).  An SPF record is not required to use our cloud service, however, it is highly recommended. Additional information on SPF is available on the Sender Policy Framework Project website.

You can check to see if your domain already has an SPF Record using Scott Kitterman's SPF Record Testing Tool.


Creating an SPF Record

If your domain does not have an SPF record, you should create an SPF record as displayed below.

Type     Value
==============================================================
TXT      v=spf1 include:_spf.securolytics.io ~all


Modifying an SPF Record

If you domain has an existing SPF record, you can simply add the value below to your existing record.

Value
==============================================================
include:_spf.securolytics.io

3.0 Policy Configuration

Add Email Domain(s)

Log into your management portal. 

Select E-mail Security > Anti-Spam > Configuration. 

In the "Internet Domains" section click Add Domain. 

A single domain should be entered in the Domain field. 

Enter IP address for the mail server in the Mail Server(s) field.  Multiple mail servers can be added seperated by comma.

 

 

When a new domain is added it will automatically be set to Activation Pending.  Our support team will review and activate the new domain request within 24-hours.

 

Add LDAP Directory

In the LDAP Directories section click Add LDAP Directory.  All fields are required.  We recommend to leave the values populated by default.  Click Add to save your LDAP Directory.

  • Server(s): Enter the hostname or IP address of your directory server.
    Example: adserver01.domain.com

  • Port: Enter 389 for LDAP, 636 for Secure LDAP.  Set SSL to "No" if port 389 is used

  • Service Account: Enter the Distinguished Name for a service account with read-only access to your directory.
    Example: CN=LDAP Service Account,CN=Users,DC=domain,DC=com

  • Service Account Password: Password for the service account.

  • Base DN: Provide the Distinguished Name for your directory. You should be able to get this information for the directory admin.
    Example: CN=Users,DC=domain,DC=com

  • Alert Email Address: Enter your email address
    Example: youremail@domain.com


 

If the new directory does not appear, please refresh the page in your browser.  You can test LDAP connectivity and run your first sync by clicking Sync Now.  A green "success" bar will be displayed if the LDAP connection is successful.  Otherwise, a red "failure" bar will be displayed.

 

 

 

Enable Recipient Validation

In the Internet Domains section click Edit then set  recipient validation to Enabled each domain.

 

 

Configure Spam Policy

In the Email Quarantine section the following default values are set.  It is recommended to leave them unchanged.

 

Configure Allowed and Blocked Lists

In the Compliance Policies section you can add entries to you organization's allowed or blocked list.  Entries should be added one per line.

Only email addresses, domains and sub-domains can be added to these lists.

Examples:

user@domain.com (email address)
domain.com (domain)
blah.domain.com (subdomain only)

It is not recommended to include your own domains in the Whitelist Sending Domains section. This will allow messages with spoofed from addresses to pass through the spam filter. Please contact support if you have issues with e-mail delivery.

 

 

Configure Quarantine

Quarantine Storage

Define the number of days quarantined e-mail will be stored on the cloud platform.  Users will be able to view and release quarantined e-mail for this period of time.


Quarantine Notification Settings

Status:  Select Enabled if you want users to receive notifications of quarantined e-mail

This will enable E-mail quarantine notifications for the users that have been fetched from your LDAP Directory.

Users:  This will determine which users will receive quarantine notifications.  It is recommended to select All.

Delivery Schedule: Quarantine notification e-mails will be delivered based on this schedule

A quarantine notification will be sent to a user if there is newly quarantined e-mail since the last notification. 

Notification E-mail content:  Do not change the From address.  It is recommended to also keep the Subject and Message content unchanged.

 

Configure Attachment Policy

Select the type of files that you want to be blocked as e-mail attachments. You can see a list of the file extensions included in a particular file type category by hovering your mouse above it.

Executables and scripts are blocked by default.  It is highly encouraged to keep this enabled.

 

4.0 Install Spam Reporting Toolbar For Outlook

We encourage customers to submit potential spam and suspicious e-mail for review.  Our spam filtering engine learns what you consider spam based on these submission.  We can also update our global reputation systems, create new anti-malware signatures and update existing signatures which collectively helps to improve the level of spam and virus detection for all customers.

Click here for the Spam Reporting Toolbar Instructions

5.0 Support

Knowledge Base

The Knowledge Base available at

Engaging Technical Support

Please contact your account team with questions or for technical assistance.