Manual Integration with Office 365

Scope

 

Office 365 Integration can work in manual mode and automated mode.

In automated mode, you only need to approve the app in the Office 365 app-store on your portal and all configuration changes are applied. Additionally, any changes made to the Office 365 policies on your portal, will be automatically reflected on the Office 365 environment.

In manual mode, no changes are applied to the Office 365 environment and those changes need to be implemented manually. Furthermore, any change to the Office 365 policies on your portal, should be implemented manually on the Mail-Flow rules which are described in step #3.

This document will help you understand the interaction with Office 365 in three scenarios:

  1. You want to choose automated mode but first want to learn the configuration changes that will be automatically applied to Office 365
  2. You want to choose manual mode and need to know what the initial configuration should be
  3. You are already in monitor mode and moving to inline mode (In this case jump to Step-2 and Step-3) or already in inline mode but changing the scope of the policy – users or groups it applies to (In this case jump to Step-3)

Note that in some configurations we refer to {portal}, this is an indication of your portal name. For example, if your portal is customer-x.avanan.net, then you will need to replace ‘{portal}’ with ‘customer-x’.

Finally, if you are not sure and about to apply these changes for the first time, please contact support and we will assist you in the configuration.



Step 1: Journal Rule

The journal rule is used for the monitoring mode. The journal rule configures Office 365 to send all emails to the system.

Note: Before you create a journal rule, you must specify an account to receive journal reports that can’t be delivered to the journal destination.

Please follow these steps to configure this mailbox.

1. The journal rule should be configured as follows:




Step 2: Connectors

First Inbound connector is used to for the monitoring mode. Second Outbound connector and following step-3, are relevant only once you are ready to move to inline mode.

In step-2 you will define the inbound and outbound connectors that sends traffic to and receives traffic from the cloud. Under “Connectors”, you should have two connectors:



Create the two connectors based on the following configuration.

2. “Avanan Inbound” - should be configured as follows:



3. “Avanan Outbound” - should be configured as follows:




Step 3: Mail-flow Rule

The purpose of the mail-flow rule is to implement the inline mode for the users that need to be inline. Every time you change the scope of the inline policy (Add or remove users/groups) you will need to edit the section “Apply this rule if… The recipient is …”

4. Create “Checkpoint – Protect” rule as the first mail-flow rule with the following configurations:





Download as PDF