Security for Microsoft Exchange Servers | Kaspersky Lab IN

Kaspersky Security for Microsoft Exchange Servers

Email is one of the main channels through which crypto-lockers, malware and spam are distributed. Cyber criminals can launch complex, targeted attacks from a single email opened by a single user (e.g. your accountant) – which, once opened, is a doorway into your company’s confidential information.

To avoid exposing your business to this kind of risk and protect the entire company infrastructure, you need an effective Mail Server security solution.

Kaspersky Security for Microsoft Exchange delivers world-class anti-malware and anti-spam protection of your Microsoft Exchange mail servers with a powerful anti-malware engine, comprehensive anti-malware scanning capabilities and intelligent spam detection. With the content-aware DLP module* and Kaspersky Private Security Network support, you can prevent all sensitive business data leakages.



*Licensed separately



By protecting your mail servers, Kaspersky Security for Microsoft Exchange protects your entire corporate network, freeing you up to focus on core business operations with confidence.

  • Highlights

    • Powerful anti-malware and anti-spam engines

      Powerful technologies enable increased scanning speed with reduced system resource consumption.

    • Complete protection

      The application offers complete protection of Microsoft Exchange Server and is compatible with DAG (Database Availability Group).

    • Flexible settings

      Kaspersky Security for Microsoft Exchange offers flexible, user-friendly settings to ensure spam and anti-malware protection that meets your business security goals.

    • Multi-language support

      The application carries out anti-spam scanning of messages written in different languages, including Asian language sets.

    • Data leakage prevention

      Outgoing emails are analyzed and messages or attachments that contain personal, confidential corporate data or sensitive information are automatically registered – and can also be automatically blocked even if the message or attachment was scanned and sent as an attached image or pdf. The DLP module contains predefined glossaries for all the main compliance regulations, including HIPAA and PCI DSS.

    • High performance

      The engine ensures increased performance and stability with minimum memory requirements.

    • Flexible licensing

      You can choose from flexible monthly licensing with scalable and pay-as-you-go options or fixed annual licensing. For Managed Service Providers, it’s easy to manage security remotely for multiple clients using the multi-tenant console.

    Effective anti-spam protection through intelligent detection

    • Intelligent spam recognition technologies

      The application scans all messages for spam based on formal attributes such as the sender's email and IP address, the size of message and message header. In addition, the content of messages and attachments is analyzed using intelligent technologies including unique graphical signatures which detect spam in the form of images. Kaspersky Security for Exchange includes integration with Kaspersky Security Network (KSN) – to access Kaspersky’s cloud-based database and obtain real-time information about new spam.

    • Reputation filtering

      You now have the option of using Reputation Filtering — an additional anti-spam scanning service that increases the accuracy of spam detection and reduces the probability of Anti-Spam false positives.

    • Additional message scanning

      For additional protection against spam, messages are scanned using DNSBL lists of spammers' addresses and SURBL technology which detects spammer URLs in the message.

    • Message classification

      As administrator, you can configure separate processing rules for each category of unsolicited mail to prevent any loss of information. For instance, messages that are known to be spam can be blocked; suspicious mail can be directed straight to the Unwanted Mail folder; and formal messages such as message delivery and message read confirmations can go directly to the Inbox.

    • White and black lists

      There is a facility for individual users to create their own trusted (white) and black lists by sender's SMTP or IP address. A white list can also be created using the receiver's SMTP address. Any message received from a white-listed sender is not scanned and is delivered straight to the recipient. However, if the address is black-listed the message it will be tagged with a special heading and processed according to the rules configured by you, the administrator.

    Powerful protection against malware

    • Real-time scanning

      Kaspersky Security for Microsoft Exchange detects and removes every type of malware, worms, Trojans and other malicious objects from the stream of incoming and outgoing messages, including attachments in almost any format. It detects and removes not only known malware but also potentially dangerous programs and emails with macros inside the MS Office documents.

    • On-demand and on-schedule background scanning

      All folders and messages stored on the server are subject to background scanning to ensure that all objects are processed using the latest version of the antivirus databases. Set up a flexible background schedule or run on-demand scanning for any specific mailbox at any time. All with minimal impact on server load and business productivity.

    • Backup copying

      Before deleting messages, the application makes backup copies so that it is possible to restore important information if attempts to treat an object result in failure or if a message was incorrectly categorized as spam. A wide range of search parameters make it easier for you to find objects in the backup storage area.

    Comprehensive data protection

    • Detection of confidential information in emails

      In addition to detecting specific types of data – such as personal details and payment card data – the application also scans emails for words or phrases that are contained in a range of pre-installed, themed glossaries, including ‘Finance’, ‘Administration Documents’ and ‘Offensive & Obscene Vocabulary’. This can be a valuable tool in helping businesses to protect sensitive information and achieve regulatory compliance.

    • Custom glossaries

      Each of the standard glossaries is regularly updated. However, administrators can also set up their own custom glossaries that contain keywords and phrases that are relevant to their business or to specific projects. The application will then block outgoing emails that contain any of these words. Glossaries can also be created using query language.

    • Deep analysis of email content

      Structured data can also be used as a search object. This enables the blocking of any message that contains a combination of specific data types – or the blocking of messages that contain data in complex arrays, such as customer databases.

    Flexible administration

    • Centralized management and monitoring

      A single administrative console with centralized reporting and backup helps to control all your Exchange servers. Kaspersky Security for Microsoft Exchange is integrated with Kaspersky Security Center, enabling you to monitor the protection status, important events and consolidated statistics for you entire organization in a single console. 

    • Customized configuration

      You can configure the application based on your company's IT security policy and hardware capabilities. For example, you can exclude certain file types from scanning or configure the spam intensity level. You can also configure antivirus and anti-spam processing scenarios for different message categories, create white and blacklists by senders' or receivers' addresses, etc.

    • Database updates

      Updates to antivirus databases are available on demand or can be completed automatically according to a schedule. You can either download updates directly from the Kaspersky Lab website or from a local server. If required, you can update antivirus and spam recognition databases separately.

    • Convenient administration

      The administrative interface is based on the popular Microsoft Management Console with remote administration being an option.

    • Detailed reports

      You can monitor the operation of the application and the antivirus protection status using the detailed HTML reports or by viewing the Windows event log. You have complete control over the frequency with which reports are generated and the information to be included in them. All reports can be stored on the hard drive or sent via email.

    • Sophisticated notification system

      As the administrator, you can receive notifications about any critical events in the application's operation, either by email or by viewing the Windows event log.

    • Reports attempts to email confidential data

      Whenever the application detects confidential information within an outgoing email or attachment – and blocks the message – the email sender’s manager will receive an alert about the potential breach of security. Administrators can also access detailed information about each email blocking incident.

    • Role-based access

      Security management and the management of confidential information distribution can be assigned to different personnel or job roles.

    • Mail server

      The product supports the following versions of Microsoft Exchange Server:

      • Microsoft Exchange Server 2016
      • Microsoft Exchange Server 2013 SP1
      • Microsoft Exchange Server 2010 SP3
    • Security server

      Operating systems:

      The server must be running one of the following versions of Microsoft Windows:

      • Microsoft Windows Server 2016 Standard or Datacenter
      • Microsoft Windows Server 2012 R2 Standard or Datacenter
      • Microsoft Windows Server 2012 Standard or Datacenter
      • Microsoft Windows Small Business Server 2011 SP1 Standard
      • Microsoft Windows Server 2008 R2 SP1 Standard, Enterprise or Datacenter.
    • Administration console

      Operating systems:

      The server must be running one of the following versions of Microsoft Windows:

      • Microsoft Windows 10
      • Microsoft Windows 8.1
      • Microsoft Windows 8
      • Microsoft Windows 7 SP1 Professional, Enterprise or Ultimate
      • Microsoft Windows Server 2016 Standard or Datacenter
      • Microsoft Windows Server 2012 R2 Standard or Datacenter
      • Microsoft Windows Server 2012 Standard or Datacenter
      • Microsoft Windows Small Business Server 2011 SP1 Standard
      • Microsoft Windows Server 2008 R2 SP1 Standard, Enterprise or Datacenter

      For installation and operation of the Administration Console, you will need Microsoft .NET Framework 4.5 and Microsoft Management Console 3.0 installed.

      To install the administration plug-in, you must have Kaspersky Security Center 10 Service Pack 2 Maintenance Release 1

    • Additional requirements

      The product requires SQL Server installed locally or remotely. The supported versions of Microsoft SQL Server are:

      • Microsoft SQL Server 2016 Express, Standard, or Enterprise;
      • Microsoft SQL Server 2014 Express, Standard or Enterprise
      • Microsoft SQL Server 2012 Express, Standard or Enterprise
A part of

Not sure which Security Solution is right for your business?