McAfee Security for Microsoft Exchange 8.5.0

What's new in this release

McAfee Security for Microsoft Exchange has increased its protection profile to provide the best protection for your Microsoft Exchange servers.

Here is a list of new features included with this release of the product:

Feature Description
Protection from malicious URLs

When enabled, MSME scans each URL in the email body, gets the reputation score of the link, compares the score to the defined threshold, and takes appropriate action according to the configuration.

Exchange server support

Support for Microsoft Exchange Server 2013 SP1.

No dependency on anonymous logon permission

MSME does not require anonymous logon permission anymore in exchange receive connector for notification.

Additional communication channels to quarantine the detected items

In addition to the existing quarantine mechanism (local database and RPC channels), MSME provides HTTP and HTTPs channels to communicate with McAfee® Quarantine Manager (MQM) server. These stateless connections make sure that the software communicates with the MQM server seamlessly.

DLP rules in all supported locale

Allows you to define DLP rules in all supported locales. You can also view and edit the dictionaries of other supported locales. The supported locales are Chinese Simplified, English, French, German, Japanese, and Spanish.

Management of on-demand (MSMEODUser) user account

Allows you to modify the on-demand user password credentials and synchronize them with the LDAP server using the interface.

Exclusion of subfolders and public folders from scanning

Provides the option to exclude mailbox subfolders and public folders from on-access scanning (VSAPI scanning).

You can also configure these exclusions from ePolicy Orchestrator.

IP whitelisting Provides the option to whitelist the known legitimate IP address that is refused by the IP reputation threshold settings.
Monitoring the scanner process to avoid high RPC issue

Uses the watch process approach to monitor the high RPC issue that happens due to additional time taken to scan specific sample files. Corrective action is taken according to the policy settings.

Mail size filtering Allows you to configure the mail size filtering for On-Access policy and Gateway policy separately.
Restricted files in .zip format Provides option to allow or block restricted files such as .exe files that come as a password-protected .zip file.
Scan failure scenario Allows you to configure actions for scan failure due to generic failure or product failure.
Proxy server Allows you to configure proxy servers to get IP reputation, message reputation, and URL reputation database.
Support for 7-Zip archive file scanning Supports 7-Zip file scanning on all scanners and filters.
Compatibility with ePolicy Orchestrator FIPS (Federal Information Processing Standard) mode

Compatible with ePolicy Orchestrator, which is installed in FIPS mode. You can use the same ePolicy Orchestrator to manage MSME.

Viewing on-demand scan status in ePolicy Orchestrator

View the status of scheduled on-demand scan tasks in ePolicy Orchestrator. For managed systems, on-demand scanning events are generated with the details such as start time, end time, number of items scanned, and number of items quarantined. Events are generated whether the on-demand scan is initiated by the local system or initiated from ePolicy Orchestrator.

Viewing on-demand scan completion percentage in ePolicy Orchestrator View the percentage of the on-demand scan task completion status in ePolicy Orchestrator, when the scanning is initiated from ePolicy Orchestrator.

You can view the on-demand scanning percentage in the Threat Event Log page in the Threat source URL column.

Purge old DAT using scheduled tasks from ePolicy Orchestrator Allows you to purge the old DAT files from managed systems using scheduled tasks.
McAfee stack upgrade
Bundled with newer versions of these components:
McAfee Agent
McAfee Content Scanning Engine
McAfee Anti-Spam Engine
PostgreSQL 9.3 database
When upgrading the PostgreSQL database, your existing data is migrated to 9.3 supported schema. Depending on the database size, the installer might take additional time to complete the update.
Enhanced alert notification for detected items Categorizes the detected items based on the reason for blocking, instead of repeating the reason for each item.
Browser enhancements
Support for new browsers:
Microsoft Internet Explorer 8.0, 9.0, 10.0, and 11.0
Mozilla Firefox 29.x and 30.x
Google Chrome 35
Make sure that you disable the pop-up blocker in the browser settings to access the product web interface.