Compliant Email Archive Quick Start Guide

Updated 4 weeks ago by admin

This guide is designed to help configure the Compliant Email Archive product.

Before you begin ensure the following prerequisites have been completed:

  1. Your service provider has assigned the Compliant Email Archive product license to your account
  2. Email domain(s) have been configured in Products / Email Security / Product Configuration / Domains.
  3. Contact your service provider to activate SMTP Authentication on your account. You will need the username and password for this guide.

It is recommended that you follow all of the steps in this article to configure the Compliant Email Archive product. The last three steps are optional but recommended to familiarise yourself with the product and its capabilities.

Accessing the Compliant Email Archive

To access the Compliant Email Archive (CEA) navigate to Products, then Email Security and then select Compliant Email Archive. This will open a new browser tab or window and log in automatically to the the administration section of the Compliant Email Archive.

This option is only available to administrator users

Configure Domains and Alerts

Click on Basic Configuration and then Outbound Email & Alerts.

  1. Ensure that the Use System-wide SMTP Service option is unchecked
  2. In the MailServer Address field, enter the correct outbound server hostname for your region:

    Outbound Server Hostname

    Region

    smtp.scanscope.net

    UK & Europe

    smtp1.us.scanscope.net

    United States, RoW

    smtp1.uae.scanscope.net

    United Arab Emirates

    Ensure that TLS is selected and the port is set to 25.
  3. Ensure that Authorization Required is checked.
  4. Enter the username and password provided to you by your service provider when SMTP Auth was activated
  5. Add each of your email domains to the Email Domains list.
The domain list should match the domains configured in the Email Security product, found under Products, Email Security, Product Configuration and then Domains.
  1. Click Save to confirm the changes.

Configure Data Guardians

It is recommended that a minimum of two Data Guardians are configured. Read the article on Understanding Data Guardians before you continue.

To add a Data Guardian, click on Basic Configuration and then Data Guardians.

  1. In the Data Guardians text box, enter the email address of each person who has been designated a data guardian for your organisation.
  1. Click Add to register the email address as a data guardian.

Configure Local Accounts

Click on Basic Configuration and then Local User Accounts.

Configure at least one local admin account ensuring you use the suffix _admin.

Repeat the process to create at least one local privileged account using the prefix _priv. If the privileged user is the same account as the admin user (as determined by the primary email address) you can optionally set the authentication type to “no Direct Access” so as multiple passwords do not have to be maintained.

The Compliant Email Archive product also supports single sign on with Office 365.
The article on Configuring Local User Accounts provides more detailed information and the use of local accounts.

Configuring Journaling Rules

The simplest way of sending emails from your email server to the CEA product is via Journaling. Journaling rules can be configured to continually send live incoming, outgoing and internal mail to the CEA product.

Before enabling journaling on the email platform, you can test the CEA product will accept emails and import them correctly. To do this send an email to <companytag>@archive.clouduss.com . To find your company tag, navigate to Basic Configuration, Company Settings and then Company Tag.

You can then view the result of the test by navigating to Monitor & Reports and then reviewing the Repository Status panel.

The Current Hour section should show a count of the number of test emails that were sent and confirm that they were also imported.

To configure the journaling rule, please refer to the following guides:

Journal reports can be sent to <companytag>@archive.clouduss.com

To find your company tag, navigate to Basic Configuration, Company Settings and then Company Tag.

Ingesting Mail (optional)

This step is optional.

To ingest historic email messages that exist in an Office 365 or Exchange environment, please follow the article on Ingest Mail via Mailbox Reader.

A prerequisite for the Mailbox Reader is the configuration of an impersonation account. See the article on creating an impersonation account first.

To ingest emails from another supported format such as .PST, .eml, etc or from another archiving platform please contact your service provider for assistance.

Configuring Single Sign on (optional)

This step is optional.

It is recommend that you follow the steps earlier in this guide to create a local administrator and local privileged account. These serve as a backup in case Office 365 authentication is unavailable due to a failure.

To configure single sign on:

Accessing End User Archive portal (optional)

This step is optional.

End users can access the portal via a browser and unique URL based on the CEA company tag.

To find your company tag, navigate to Basic Configuration, Company Settings and then Company Tag.

https://archive.clouduss.com/uss/<companytag>

Access to the end user portal can also be enabled via an Outlook Enabled Web folder. Download the script from the link in the unique end user portal URL and follow the article on how to enable web folders within Outlook.

In addition, an Email Archive End User Guide which explains how to use the system for live and archived email can be distributed to end users to help with training.


How did we do?