Chat now with support
Chat with Support

Metalogix Archive Manager for Exchange 8.1.1 - Administration Guide

Getting Started Enterprise Manager Tools Manager view
Groups tab Settings tab Public folders tab Jobs tab Retention tab – Retention Categories management Post Processing tab Locations tab
Archive view Status view Toolbar icons - Description Advanced Search Appendix

Office 365 Configuration Details

Archive Manager requires specific connection configuration details to import your o365 users. This section will guide you through the steps to be completed in your o365 in order to collect the necessary data:

Organization Name in Office 365 – your organization in Office 365

Client ID – get this ID by following the process described below

Client Secret (or Key) – get this key by following the process described below

Autodiscovery Url – to get this URL, go to https://testconnectivity.microsoft.com/, select the Outlook Autodiscover option; click Next and perform the test with your details; As a result you should get the URL

Username & Password – the respective user must be Office 365 administrator

info

IMPORTANT: In case of Office 365, run the EM with the super-user under which Archive Manager has been installed (i.e. the user under which MAM services run).

info

NOTE: This sample will not work with a Microsoft account, so if you signed in to the Azure portal with a Microsoft account and have never created a user account in your directory before, you need to do that now. If you create an account and want to use it to sign-in to the Azure portal, don't forget to add the user account as a co-administrator of your Azure subscription.

1.Sign in to the Azure Management Portal.

2.Click on Active Directory in the left hand nav.
Snap1-a-o365

3.Click on the App registrations.
Snap2-a-o365

4.Click on New application registration.

Snap3-a-o365

5.Enter friendly name for the application (e.g. Archive Manager).

6.Select Web app/API as application type.

7.For the Sign-on URL, enter the base URL, which is by default https://localhost:44322/WebAppGraphAPI
Snap4-a-o365

8.Click on Create button.

9.Find your application in the list and click on it.

10.In the Settings tab click on Keys and generate a secret key.
Snap5-a-o365

Snap6-a-o365

11. cautionCAUTION: Copy and save the key value. You won’t be able to retrieve after you leave this blade.

Snap7-a-o365

12.Click on Properties and define App ID URI.

For the App ID URI enter https://<your_tenant_name>/WebAppGraphAPI, replacing <your_tenant_name> with the domain name of your Azure AD tenant  (e.g. https://www.mytenant.com/WebAppGraphAPI).

Snap8-a-o365

13.cautionCAUTION: Copy and save the Application ID value.

14.Click on Reply URLs and define Reply URL.   This URLs are used to return the authorization code returned during Authorization code flow.

info

NOTE: Both URLs (https://localhost:44322/WebAppGraphAPI & http://localhost:44322/Response ) are needed.

Snap9-a-o365

15.Click on Required permissions.

Snap10-a-o365

16.Click on Windows Azure Active Directory.

Snap11-a-o365

17.Configure and Save permissions according the figures below.

Snap12-a-o365

Snap13-a-o365

18.Click on Grant permissions.

Snap14-a-o365

Advanced Authentication

Archive Manager for Exchange supports also access to Azure AD in case when user account name and password are needed (advanced authentication) for retrieval of user accounts and groups in Azure AD. Advanced authentication is normally not required and must be configured on both Azure AD and Archive Manager for Exchange.

Advanced authentication is implemented in Archive Manager in two components:

1.Back-end is in MAM Exchange Direct Archive Error Monitoring service which contains a web application waiting for responses on location specified in registry key. It needs to match reply URL in Azure AD web application and it needs to end with character/. The URL from example above is then: http://localhost:44322/

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Metalogix\exchangePAM

Value name:

OwinAuthWebAppLocation

Value data:

http://localhost:44322/
(The first part of REPLY URL from Azure AD, the slash at the end is needed)

Value type:

string

2.Front-end is located in Enterprise Manager which authenticates a user on Azure AD server and waits for security token which is send from Azure AD server to Archive Manager back-end.

info

TIPS: If there is a problem with retrieval of security token it is recommended to restart Enterprise Manager. Also check the registry keys.

Configuration in Office365 Exchange Admin Center

It is necessary to assign Full Access permissions on behalf of Archive Manager User against all recipients you plan to archive.

This can be done in Exchange Admin Center or with Azure PowerShell.

1.Exchange Admin Center

a.Go to https://outlook.office365.com/ecp/

b.Click on Recipients > Mailboxes

c.Select Mailbox > Edit User Mailbox > Mailbox delegation > Full Access

d.Delegate Full Access permissions on behalf of Archive Manager User against all recipients you plan to archive.

 

Snap15-a-o365

2.Azure PowerShell

Set full access for all members of a distribution group to Archive Manager user:

Get-DistributionGroupMember <%NameOfDistributionGroup%> | Get-Mailbox |
Add-MailboxPermission –User <%SuMailAddress%> -AccessRights FullAccess  -InheritanceType all

Authentication with native application

1.Sign in to the Azure management portal.

2.Click on Azure Active Directory in the left hand nav.

3.Click on App registrations.

4.Click on New application registration.

z1-o365

5.Enter friendly name for the application.

6.Select Native as application type.

z2-o365

7.Redirect URI of the Native Application must be added to registry: create registry key “NativeAppRedirectUri” in path HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Metalogix\exchangePAM. The value of this key must be the Redirect URI defined in the Native Application.

8.Properties of newly created application contains the Application ID, and under Keys tab you can generate the Client secret (Key).  These values are needed in Server Wizard in Archive Manager.  If Keys tab is not available in Azure AD, then you can leave empty the Client Secret field.

z3-0365

9.In owners tab add new owner (super-user) for the Application.

z4-o365

10.In the Required permissions tab grant Windows Azure Active Directory permissions for the application.

z5-o365

11.When permissions are selected, do not forget to push the Grant Permissions button.

z6-o365

Known Issues (Office 365)

1.RESTORE operation on archived documents is sometimes unsuccessful. In such cases, please, run the operation later. This behavior can be caused by communications issues between Office 365 and Archive Manager Server.

2.In case of Office 365, operations over mailboxes (Enterprise Manager > Archive view > Mailboxes) from right-click menu do not work. However, the same operations over folder or item runs correctly. Notes for individual operations:

·Archive - works recursively

· Restore - works recursively

·Promote delay shortcuts - works non-recursively

Configuration for German tenants

1.Register and configure Native Application on Azure AD as it is described above.

2.Create 2 new registry keys in path HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Metalogix\exchangePAM

·GraphResourceId with value https://graph.cloudapi.de/

·AadInstance with value https://login.microsoftonline.de/{0}

z7-o365

3.In Archive Manager in Server wizard modify the Autodiscovery Url to: https://autodiscover-s.outlook.de/Autodiscover/Autodiscover.xml  (change .com to .de)

How to create a customized HTML shortcut template

On the Shortcut tab of the Enterprise Manager (Tools/Options/Archiving settings/Shortcut tab) you can configure Archive Manage for Exchange to create HTML shortcuts for archived emails. The appearance of the archived email in the Outlook Preview pane depends on the template which you choose on that Shortcut tab. Besides the default template for the shortcuts you can create your own templates satisfying your criteria and thus modify the design of the Outlook preview pane for archived emails.

To create your own template:

1.Go to <installdir>\ Metalogix\MAM4Exchange\Tools\Templates.

2.In the Template directory create a new folder. Its name will be the name of your new template displayed on the Tools\ Options\ Archiving settings\ Shortcut tab of Enterprise Manager (in our example the name of the template is Beautiful).

a-template

3.Copy the sampleHTMLShortcut.html file to the new template folder (in our case to Beautiful). Or copy the html file from the Default folder, if the sample is not available.

4.Rename the sampleHTMLShortcut.html to HTMLShortcut.html.

5.Now you can modify the HTMLShortcut.html file in the new folder to create your desired template. To do so, open the file in Notepad and edit the HTML code.

Important variables:

 %ATTACHMENTS% - email attachments

 %BUTTONS% - buttons

 %BODY% - message body

 %PROPERTIES% - message specific properties needed for Macintosh clients

The original HTML:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>

<meta http-equiv="content-type" content="text/html; charset=utf-8"/>

<title>

</title>

<style type="text/css">

<!--

body {

margin: 0;

text-align: center;

padding-top: 10px;

}

 

td.hlavicka {

display: block;

height: 20px;

color: white;

background-color: #6699FF;

font-family: arial;

font-size: 14px;

text-align:left;

}

 

td.hlavicka span {

font-weight: bold;

padding-left: 5px;

}

 

td.buttons {

vertical-align: bottom;

text-align: right;

padding-right: 10px;

padding-bottom: 10px;

}

 

td.buttons a {

color: #FFFFFF;

background-color: #6699FF;

font-family: arial;

font-size: 11px;

padding: 5px;

border: 1px solid #333366;

font-weight: bold;

text-decoration: none;

margin-left: 3px;

}

 

td.buttons a:hover {

font-size: 12px;

font-weight: bold;

}

 

td.prilohy {

background-color: white;

font-family: arial;

font-size: 12px;

padding: 5px 5px 5px 5px;

text-align:left;

}

 

td.prilohy a {

color: black;

margin-right: 15px;

margin-top: 15px;

font-style: normal;

}

 

td.prilohy a:hover {

text-align: center;

font-weight: bold;

}

 

td.ciara {

background-color: #333366;

width: 100%;

}

 

td.text {

display: float;

color: #2a2a2a;

text-align: center;

background-color: white;

font-family: arial;

font-size: 12px;

padding: 5px;

text-align:left;

}

 

td.stred {

border: 1px solid #333366;

}

 

td.pata {

display: block;

width: 99.9%;

height: 15px;

background-color: #6699CC;

padding-right: 0;

}

-->

</style>

 

</head>

<body>

<table width="100%" border="0" cellspacing="0" cellpadding="0">

<tr>

 <td bgcolor="white" class="stred" height="100%" >

 <table width="100%" border="0" height="10" cellspacing="0" cellpadding="0">

 <tr>

         <td height="100%" class="hlavicka"> <span>This message was archived</span></td>

 </tr>

 </table>

 

 <table width="100%" border="0" height="10" cellspacing="0" cellpadding="0">

 <tr>

         <td height="100%" class="prilohy">%ATTACHMENTS%</td>

         <td height="100%" class="buttons" nowrap>%BUTTONS%</td>

 </tr>

 </table>

 

 <table width="100%" border="0" height="2" cellspacing="0" cellpadding="0">

 <tr>

         <td bgcolor="#a0c3c9" width="100%" height="2px"></td>

 </tr>

 </table>

 

 <table width="100%" border="0" height="10" cellspacing="0" cellpadding="0">

 <tr>

         <td height="100%" class="text">

         <pre WRAP="hard">%BODY%</pre>

         </td>

 </tr>

 </table>

 <table width="100%" border="0" height="10" cellspacing="0" cellpadding="0">

 <tr>

         <td height="100%" class="pata"><b></b></td>

 </tr>

 </table>

 </td>

 </tr>

</table>

</body>

</html>

 

b-shortcuts

       Default HTML shortcut in the preview pane        Example of customized HTML shortcut

Related Documents