Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Please fill out the contact form below and we will reply as soon as possible.

  • Contact Us
  • Home
  • Pre-deployment

Manually Configuring Office 365 for mxHERO Protection (Part 2)

Transport Rule

Updated at January 27th, 2023

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

Please fill out the contact form below and we will reply as soon as possible.

  • General Information
  • Pre-deployment
  • Forwarding Address (Archiving Address)
  • Email Flow (Fusion)
  • Mailbox (Email Sync)
  • Storage
    Box Service Account OneDrive for Organizations
  • Mail2Sign
    Box Sign DocuSign
  • Login
  • mxHERO AI
  • Labs
  • Basics
  • Mail2Cloud Dashboard
  • Auto Filling
  • Drag And Drop
  • MXHERO App
+ More

Table of Contents

1) Create two transport rules Important 2) Whitelist mxHERO IPs 3) Prevent TNEF encapsulation

This is Part 2 of Configuring Office 365 for mxHERO Fusion. Part 1 can be found here.

After creating the Outbound Connector, you have to set up a Transport Rule that will in fact route messages from the Office 365 environment to mxHERO.

The steps are:

  • Office 365 will receive the incoming or outgoing email
  • Office 365 via this transport rule will route the message to the mxHERO platform
  • mxHERO will process your Mail2Cloud rules.
  • If your delivery is to your own domain, mxHero will send the email back to Office 365. Office 365 will then see that the message was already processed by mxHero (using an identification header) and will deliver it to the recipient. If your delivery is to an external domain, mxHero will deliver directly to the recipient's mail server. Please see mxHERO's Improving Delivery with SPF‍.


If the Office 365 integration is limited to a subset of users, you will need to create two transport rules, one for incoming email and another for outgoing email. If integration is for all users then only one rule is required. In this example, we are creating two rules so that we can restrict mxHERO usage to a subset of users.

Another important point to mention is the header values displayed in these examples. These are the signatures added by mxHero. mxHero support will provide a unique, domain-specific signature to be added as the header value.


1) Create two transport rules

In your Exchange administration Office 365 dashboard, access:


To limit mxHERO to a specific subset of users, create two rules (for senders and recipients) for a pre-defined Office 365 group. In the below example we have defined a group called, "POC".

For full integration of Office 365 and mxHERO simply create one rule with no conditional (i.e. "Apply this rule if...")


Delete

Important

The value of the "X-mxHero-Transport-Agent" header is unique and must be received from mxHERO support. Contact support through the contact form, or via support@mxhero.com.




2) Whitelist mxHERO IPs

Now, let's whitelist mxHERO IPs in Exchange Online:

Go to "Protection", "Connection Filter", edit "Default" and add the following entries to the "IP Allow list":

54.208.111.28
54.236.184.32
54.165.252.128
54.165.253.193
3.211.77.148
52.22.51.97
54.209.222.83
107.23.152.206


3) Prevent TNEF encapsulation

Finally, let's prevent Office 365 to generate messages with TNEF encapsulation:

Preventing TNEF encapsulation

mxhero setup office 365 configuration

Was this article helpful?

Yes
No
Give feedback about this article

Related Articles

  • Manually Configuring Office 365 for mxHERO Attachment Protection (Part 1)
  • Necessary information for your Mail2Cloud implementation
  • Using mxHero gateway selectively on Google Apps
  • Improving Delivery with SPF
astors-3-tiny.png

Company

Home

About

News

Blog

Security & Trust

Terms of Service

Privacy Policy

Service Status

Partners

Products & Papers

Data Sheets

Products

FAQ

Roadmap

Contact

Sales

Support

Videos

Japan

Report Incident

Contact Us!
  • LinkedIn

contact@mxhero.com

3x Astors Homeland Security Platinum Award for Best Email Security Solution

© 2022 mxHERO Inc.

BoxElite.png

USA

100 Pine St., Suite 1250

San Francisco, CA 94111

USA

​

Japan

105-0003

DLX Building 9F

Nishi-Shinbashi 1-13-1

Minato-ku, Tokyo

Japan

Definition by Author

0
0
Expand