Step 1 - Onboarding Exchange

You can integrate FortiMail Workspace Security with Microsoft Exchange. This enables FortiMail Workspace Security to scan all incoming mail to Microsoft Exchange.

This is the 1st step of the procedure to integrate Microsoft Exchange with FortiMail Workspace Security:

Before you begin...

Important

If you have a firewall, make sure that the IPs [shown below] are allow-listed in your firewall. The set of IPs varies depending on the environment in which your organization is located. [Open the drop-down below for details on your environment.]

  1. In FortiMail Workspace Security, go to Settings > Account.

  2. The Environment of your organization will appear under General > Info: US, EU, or AUS.

 

For US environments

For EU environments

For AUS environments

 

  • 54.227.64.76

  • 3.81.182.154

  • 3.93.155.149

  • 3.95.118.12

  • 3.95.142.181

  • 52.12.169.124 [required only if Muti-region is enabled]

  • 99.81.216.78

  • 34.249.190.60

  • 108.128.137.108

  • 99.80.189.20

  • 52.12.169.124 [required only if Muti-region is enabled]

  • 13.236.255.231

  • 54.66.125.250

  • 52.12.169.124 [required only if Muti-region is enabled]

Now let's begin...

To on-board Microsoft Exchange:

  1. Select Settings > Bundles and Channels.

  2. Under Enabled Channels, locate Email Service, and then click Email service configuration [] on the right.

  3. Click Add New Domain - if this option appears.

  4. Select the Organization - if necessary.

    Note: Make sure to select the organization in which the scanning will occur. This is typically a child organization - not a parent organization.

  5. Specify the Escalation Contacts. For details, see Escalation contacts.

  6. In Email Service, select Other.

  7. In Connection Method, select MX.

  8. Click Next.

    The next step in the wizard appears.

  9. In the Domain Name box, enter the name of the new domain - for example, acme.com

  10. Click Detect Next-Hop to the right of the domain name. This should populate the Server or Destination Mail Server field.

    This is the address to which mail will be sent after it has been scanned and marked as being clean.

    Important: Do not enter a value such as smtp.office365.com or outlook.office365.com

    The required Destination Mail Server is a server in your domain - as it appears in the MX record.

    You can perform the lookup procedure below to check that the Destination Mail Server that appears is correct:

    1. Open https://mxtoolbox.com/

    2. In Domain Name, enter your domain name - and then click MX Lookup.

      Your required SMTP server will appear under Hostname.

    If you see the error message "This is not a valid SMTP host" - and the specified server is valid, then make sure that the required IPs are allow-listed in your firewall.

    For details, see Before you begin... above.

  11. [Optional] Click Add Domain - if more than 1 domain is required - and enter the required details.

  12. Licenses > According to Reported seats: Specify the number of protected users for billing purposes.

  13. Click Next.

    The "Add TXT Records" dialog box opens.

    This dialog box includes the TXT record names and TXT record values, that you'll need in order to add and verify the TXT records for your domain - in Step 2.

    If multi-region is enabled, there will be details for TXT records in both the primary and secondary regions. For details about the multi-region functionality, see Multi-region.

You must now perform Step 2 to verify the new domains that you added above. For details, see Step 2 - Verifying your domains [Exchange].

 

See also: