Click the Tasks button at the upper side of the table and choose Exchange Scan

A configuration window will appear.

6. Configure the scan options:

● General. Enter a suggestive name for the task.

For large databases, the scan task may take a long time and may impact the server performance. In such cases, select the check box Stop scan if it takes longer than and choose a convenient time interval from the corresponding menus.

● Target. Select the containers and objects to be scanned. You can choose to scan mailboxes, public folders or both. Beside emails, you can choose to

scan other objects such as Contacts, Tasks, Appointments and Post Items.

You can furthermore set the following restrictions to the content to be scanned:

– Only unread messages – Only items with attachments

– Only new items, received in a specified time interval

For example, you can choose to scan only emails from user mailboxes, received in the last seven days.

Select the Exclusions check box, if you want to define scan exceptions. To create an exception, use the fields from the table header as follows:

a. Select the repository type from the menu.

b. Depending on the repository type, specify the object to be excluded:

Object format Repository type

Email address Mailbox

Folder path, starting from the root Public Folder

The database identity Database

Note

To obtain the database identity, use the Exchange shell command:

Get-MailboxDatabase | fl name,identity

You can enter only one item at a time. If you have several items of the same type, you must define as many rules as the number of items.

c. Click the Add button at the upper side of the table to save the exception and add it to the list.

To remove an exception rule from the list, click the corresponding Delete button.

● Options. Configure the scan options for emails matching the rule:

– Scanned file types. Use this option to specify which file types you want to be scanned. You can choose to scan all files (regardless of their file extension), application files only, or specific file extensions you consider to be dangerous. Scanning all files provides the best protection, while scanning only applications is recommended for a quicker scan.

Note

Application files are far more vulnerable to malware attacks than other types of files. For more information, refer to“Application File Types” (p.

309).

If you want to scan only files with specific extensions, you have two alternatives:

● User defined extensions, where you must provide only the extensions to be scanned.

● All files, except specific extensions, where you must enter only the extensions to be skipped from scanning.

– Attachment / email body maximum size (MB). Select this check box and enter a value in the corresponding field to set the maximum accepted size of an attached file or of the email body to be scanned.

– Archive maximum depth (levels). Select the check box and choose the maximum archive depth from the corresponding field. The lower the depth level is, the higher the performance and the lower the protection grade.

– Scan for Potentially Unwanted Applications (PUA). Select this check box to scan for possibly malicious or unwanted applications, such as adware, which may install on systems without user’s consent, change the behavior of various software products and lower the system performance.

● Actions. You can specify different actions for the security agent to automatically take on files, based on the detection type.

The detection type separates the files into three categories:

– Infected files. These files match a malware signature in the Bitdefender Malware Signature Database.

– Suspect files. These files are detected as suspicious by the heuristic analysis. Because B-HAVE is a heuristic analysis technology, Bitdefender Endpoint Security Tools cannot be sure that the file is actually infected with malware.

– Unscannable files. These files cannot be scanned. Unscannable files include but are not limited to password-protected, encrypted or over-compressed files.

For each detection type, you have a default or main action and an alternative action in case the main one fails. Though not recommended, you can change these actions from the corresponding menus. Choose the action to be taken:

– Disinfect. Removes the malware code from infected files and reconstructs the original file. For particular types of malware, disinfection is not possible because the detected file is entirely malicious. It is recommended to always keep this as the first action to be taken on infected files. Suspect files cannot be disinfected, because no disinfection routine is available.

– Reject / Delete email. On servers with Edge Transport role, the detected email is rejected with a 550 SMTP error code. In all other cases, the email is deleted without any warning. It is advisable to avoid using this action.

– Delete file. Deletes the attachments with issues without any warning. It is advisable to avoid using this action.

– Replace file. Deletes the files with issues and inserts a text file that notifies the user of the actions taken.

– Move file to quarantine. Moves detected files to the quarantine folder and inserts a text file that notifies the user of the actions taken.

Quarantined files cannot be executed or opened; therefore, the risk of getting infected disappears. You can manage quarantine files from the Quarantine page.

Note

Please note that the quarantine for Exchange Servers requires additional hard-disk space on the partition where the security agent is installed. The quarantine size depends on the number of items stored and their size.

– Take no action. No action will be taken on detected files. These files will only appear in the scan log. Scan tasks are configured by default to ignore suspect files. You may want to change the default action in order to move suspect files to quarantine.

– By default, when an email matches the rule scope, it is processed exclusively in accordance with the rule, without being checked against any other remaining rule. If you want to continue checking against the other rules, clear the check box If the rule conditions are matched, stop processing more rules.

7. Click Save to create the scan task. A confirmation message will appear.

8. You can view and manage the task on the Network > Tasks page. For more information, refer to“Viewing and Managing Tasks” (p. 130).

Install

To protect your computers with the Bitdefender security agent, you must install it on each of them.

Important

In isolated networks that do not have direct connectivity with the GravityZone appliance, you can install the security agent with Relay role. In this case, the communication between the GravityZone appliance and the other security agents will be done through the Relay agent, which will also act as a local update server for security agents protecting the isolated network.

Once you have installed a Relay agent, it will automatically detect unprotected computers in the same network.

Note

It is recommended that the computer on which you install the Relay agent to be always on.

Note

If no Relay agent is installed in the network, the detection of unprotected computers can be done manually by sending a Network Discovery task to a protected endpoint.

The Bitdefender protection can then be installed on computers remotely from Control Center.

Remote installation is performed in the background, without the user knowing about it.

Warning

Before installation, be sure to uninstall existing antimalware and firewall software from computers. Installing the Bitdefender protection over existing security software may affect their operation and cause major problems with the system. Windows Defender and Windows Firewall will be turned off automatically when installation starts.

To run a remote installation task:

1. Connect and log in to Control Center.

2. Go to the Network page.