Microsoft Exchange can now preserve automatically forwarded messages if user is placed on Litigation Hold or In-Place Hold.

Over the last few years, the Information Protection team has done a great job of implementing Compliance features in Exchange (and Office 365) such as Litigation Hold and In-Place Hold to preserve messages, eDiscovery to search and reproduce messages and Data Loss Prevention to protect from leakage of sensitive information.

One of the common asks for Hold has been the ability to capture messages automatically forwarded by users or admins, where a copy of the message is not stored in the user’s mailbox. For organizations wanting to stay in compliance, the recommendation has been to disable automatic forwarding completely. See Disable automatic email forwarding in Office 365 and Exchange Server.


Figure 1: Automatic email forwarding options in Outlook Web App in Exchange Server and Exchange Online

Microsoft has just implemented the functionality to allow Exchange to capture auto-forwarded messages. Exchange transport now detects if the user auto-forwarding the message is on Litigation Hold or In-Place Hold. If the user is on hold, it saves a copy of the automatically forwarded message in the Recoverable Items folder. As a result, the message is now archived and searchable using In-Place eDiscovery (or the new Compliance Search).

The functionality is being rolled out in Exchange Online and will be available to on-premises customers in Exchange Server 2016.

Coverage for yet another Compliance scenario using In-Place Archiving further reduces the need to rely on older archiving features such as Journaling.

{ 1 comment }

Issue with Symantec Enterprise Vault and Exchange 2013 fixed in Exchange 2013 CU8

March 19, 2015

Microsoft released Exchange Server 2013 Cumulative Update 8 (CU8) yesterday. See KB 3030080: Cumulative Update 8 for Exchange Server 2013 for more details, including a list of fixes included in CU8. Symantec has documented an issue with Symantec Enterprise Vault™, Symantec’s on-premises archiving solution, and Exchange 2013 CU6 and CU7. The corresponding Microsoft KBA Symantec […]

More →

Disable automatic email forwarding in Office 365 and Exchange Server

March 2, 2015

Exchange Server and Exchange Online allow your users to automatically forward email to an external email address. Over the years, I’ve written about forwarding email to an external email address in Exchange, the risks of forwarding work email to personal email accounts and listing users with email forwarding enabled. Figure 1: Automatic email forwarding options […]

More →

Archiving in the cloud: Recover and restore Inactive Mailboxes in Exchange Online

February 18, 2015

An employee leaves the organization and your organization requires that mailboxes be preserved for a certain period, ranging anywhere from two to seven years or more, to meet business or regulatory compliance requirements, including eDiscovery. Mailbox content should be preserved and discoverable using In-Place eDiscovery during this period. Exchange Online allows you to use Inactive […]

More →

Apple OS X 10.10.2 and iOS 8.1.3 Updates

January 29, 2015

Apple has released OS X Yosemite 10.10.2 and iOS 8.1.3 which fix a bunch of Exchange and Microsoft platform issues. Interestingly, Apple has started adding an Enterprise content section to its update articles. For OS X 10.10.2: From DL1785, OS X Yosemite 10.10.2 Update: Enterprise content For enterprise customers, this update: Improves performance for browsing […]

More →

Is GoGo’s use of a fake SSL certificate a Man-In-The-Middle attack?

January 22, 2015

Adrienne Porter Felt, an engineer on Google’s Chrome security team, recently found in-flight WiFi service provider GoGo using a fake certificate for Google.com and tweeted the following, with a screenshot. hey @Gogo, why are you issuing *.google.com certificates on your planes? pic.twitter.com/UmpIQ2pDaU — Adrienne Porter Felt (@__apf__) January 2, 2015 If you’re a GoGo customer, […]

More →

Net neutrality and how ISPs can impact your email security

November 18, 2014

There was a time ISPs limited themselves to providing layer 3 connectivity. You got a connection, and if the link was up and your computer or network configured correctly for Internet Protocol (IP) communication, you could send and receive TCP/IP packets over that link. The ISP controlled the bandwidth, which is the maximum rate at […]

More →

Choosing the right ultrabook: Asus Zenbook, Microsoft Surface Pro 3 and Lenovo Yoga 3 Pro

November 11, 2014

If you spend greater part of your workday on a notebook/ultrabook, selecting your primary work tool is as important as selecting race cars is to race car drivers and selecting cameras & lighting equipment is to photographers. Some obsess over it more than others. I confess to being firmly in the latter category. I won’t […]

More →

Microsoft makes Office 365 the cloud productivity service to beat

October 29, 2014

Pushed back from its normal summer schedule to early fall, Microsoft’s last TechEd conference TechEd Europe 2014 could have been a ho hum affair. Evidently, Microsoft had different plans. In a slew of announcements at TechEd Europe 2014 in Barcelona, Microsoft has raised the bar significantly to make Office 365, the cloud-based productivity service, an almost irresistible proposition […]

More →

Synchronize your PowerShell Profile with OneDrive

September 24, 2014

I make frequent changes to my PowerShell profile and like to have the same PowerShell envirnoment on all computers that I use PS from. To accomplish this, I used to copy the PowerShell profile to a folder on OneDrive (previously known as SkyDrive) and copy it back to the WindowsPowerShell folder on other computers – […]

More →