Jatheon PnC 100, PnC 1000, PnC 2000, PnC 200, PnC 500 Installation & Administrators Manual

8 Wellington Street East, Mezzanine Level, Toronto, Ontario, CANADA, M5E 1C5

Tel: 416.840.0418 | 1.888.JATHEON (1.888.528.4366) | Fax: 416.849.9971 | info@jatheon.com | www.jatheon.com

Installation & Administrators Guide - V 2.11

PnC 100

PnC 200

PnC 500, 1000

PnC 2000, 4000, 6000

Plug n Comply Installation Guide2

User Guide Information

The information in this User’s Guide has been carefully reviewed and is believed
to be accurate.
The vendor assumes no responsibility for any inaccuracies that may be
contained in this document, makes no commitment to update or to keep current
the information in this manual, or to notify any person or organization of the
updates.

Please Note: For the most up-to-date version of this manual, please see our web
site at www.jatheon.com.

Jatheon Technologies reserves the right to make changes to the product
described in this manual at any time and without notice. This product, including
software, if any, and documentation may not, in whole or in part, be copied,
photocopied, reproduced, translated or reduced to any medium or machine
without prior written consent.

IN NO EVENT WILL JATHEON TECHNOLOGIES INC. BE LIABLE FOR
DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL
DAMAGES ARISING FROM THE USE OR INABILITY TO USE THIS PRODUCT
OR DOCUMENTATION, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH
DAMAGES. IN PARTICULAR, THE VENDOR SHALL NOT HAVE LIABILITY
FOR ANY HARDWARE, SOFTWARE, OR DATA STORED OR USED WITH
THE PRODUCT, INCLUDING THE COSTS OF REPAIRING, REPLACING,
INTEGRATING, INSTALLING OR RECOVERING SUCH HARDWARE,
SOFTWARE, OR DATA.

Any disputes arising between manufacturer and customer shall be governed by
the laws of Ontario, Canada shall be the exclusive venue for the resolution of any
such disputes.

Manual Revision: Rev. 2.0

Release Date: June 1, 2009

Unless you request and receive written permission from JATHEON, you may not copy any part of this
document.

Information in this document is subject to change without notice. Other products and companies referred
to herein are trademarks or registered trademarks of their respective companies or mark holders.

Copyright © 2009 by JATHEON TECHNOLOGIES INC.
All rights reserved.

Printed in Canada

Plug n Comply Installation Guide 3

Contents

User Guide Information ............................................................2

Contents ....................................................................................3

Welcome ....................................................................................4

Safety .........................................................................................5

Note to User ..............................................................................6

Chassis Views ...........................................................................7

Rack Mounting ..........................................................................12

Appliance Introduction ............................................................16

Features.....................................................................................17

Features.....................................................................................18

Compatibility .............................................................................19

Integration .................................................................................20

Installation .................................................................................21

LDAP Coguration .................................................................................30

Outlook Plugin .......................................................................................34

Snifng Conguration ........................................................................... 35

Journaling Conguration ...................................................................... 35

Microsoft Exchange 2007......................................................................36

Microsoft Exchange 2003......................................................................38

Novell GroupWise .................................................................................. 46

Lotus Notes ............................................................................................ 46

Scalix ......................................................................................................46

Bloomberg .............................................................................................. 47

Support ......................................................................................50

This manual is written for professional system integrators and technicians. It
provides information for the installation of the Jatheon email archiving appliance
family.

Plug n Comply Installation Guide4

Welcome

Dear Customer,

I am pleased to welcome you as a Jatheon
customer. You have purchased a best-in-class
advanced email archiving and e-discovery
appliance.

Jatheon prides itself in being the market leader
in email archiving solutions. Our products are
manufactured to best-in-class standards using high
quality industry standard components. We stand
behind our products and encourage you to purchase
our comprehensive annual maintenance program to

ensure many years of trouble free use.

Jatheon is customer driven and we welcome your views on how we can continue
to elvove as a market leader. Many of the features you will see in our products
were requested by organizations just like yours. If you have ideas or requests on

how our products can offer your company additional benet, please contact us

and let us know.

Our support team is available to assist you in the installation and use of your
new archive. Should you need assistance please call 1-888-JATHEON in North
America or (416) 840-0418 or email us at support@jatheon.com.

On behalf of Jatheon thank you for your business.

Sincerely,

Kieron Dowling
President & CEO

Plug n Comply Installation Guide 5

Safety

Electrical Safety

General Electrical Safety Guidelines

Use the exact type of power cords as required.•
Be sure to use power cord(s) that came with safety •

certications.

The power cord(s) must be compliant with the AC •
voltage requirements in your region.
Plug the Power cord(s) into a socket that is properly •
grounded before turning on the power.
Take extra precautionary measures when working •
with high voltage components. It is not recommended
to work alone.
Before removing or installing chassis components, be •

sure to disconnect the power rst. Turn off the system

before you disconnect the power supply.

General Safety Guidelines

Warning!! Follow the guidelines below to avoid possible
damage to the system or injury to yourself:

To avoid injuries to your back, be sure to use your leg •
muscles, keep your back straight, and bend your knees,
when lifting the system.
After removing the components or chassis covers from the •
system, place them on a table for safeguard.
Avoid wearing loose clothing to preventing it from coming •
into contact with electrical circuits or being pulled into a
cooling fan.
The handles are for sliding the chassis in and out of the •
racks only. Do not carry the chassis by the handles.

Plug n Comply Installation Guide6

Note to User

An Important Note to the User:

All images and graphics shown in this manual were based upon the latest
Revision available at the time of publishing. The appliance and software images
you’ve received may or may not look exactly the same as the graphics shown in
this manual.

Product Compliance Information

Product Safety

*Canada/USA--UL60 950-CSA60 950
*European Union--EN 60 950
*International--IEC 60 950 (*Power Supply only)

Electromagnetic Compatibility (EMC)-Emissions

*European Union--EN55022: 1994
*International--CISPR 22
*USA--Title 47 CFR, Part 15

Electromagnetic Compatibility-Immunity

*European Union--EN55024: 1998
*International--CISPR 24

Power Line Harmonics/Voltage Flicker

*European Union--EN61000-3-2/EN61000-3-3

This Product should only be accessed by factory trained
technicians; there are no user serviceable parts inside.
Call Jatheon for technical support. 1-888-JATHEON or
support@jatheon.com

Plug n Comply Installation Guide 7

Chassis Views

PnC 100

Front Chassis View

Front Control Panel LED Button Descriptions

LED Button Color Condition Description

1a - Power Green On System On

Off System Off

1b - HDD Amber Blink HDD Activity

Off No Activity

1c/d -LAN 1 & 2 Green On Linked

Blink LAN Activity

Off Disconnected

1e – Overheat Red On System Over Heat

Off System Normal

Rear Chassis View

Back Panel and I/O Device Descriptions

Power Connector1.
COM Port2.
LAN Ports3.

Plug n Comply Installation Guide8

Chassis Views

PnC 200

PnC 500 / PnC 1000

Plug n Comply Installation Guide 9

Chassis Views

PnC 2000 / PnC 4000 / PnC 6000

Overview

There are several LEDs on the control panel as well as others on the drive
carriers to keep you constantly informed of the overall status of the system as

well as the activity and health of specic components. Most SC836 models are

two buttons on the chassis a control panel: a reset button and an on/off switch.
This chapter explains the meanings of all LED indicators and the appropriate
response you may need to take.

Control Panel Buttons

There are two push-buttons located on the front of the chassis. These are (in
order from left to right) a reset button and a power on/off button.

Reset: The reset button is used to reboot the system.

Power: The main power switch is used to apply or remove
power from the power supply to the server system. Turning
off system power with this button removes the main power
but keeps standby power supplied to the system. Therefore,
you must unplug system before servicing.

Plug n Comply Installation Guide10

Chassis Views

Control Panel LEDs

The control panel located on the front of the SC836 chassis has 6 LEDs. These
LEDs provide you with critical information related to different parts of the system.
This section explains what each LED indicates when illuminated and any
corrective action you may need to take.

Power Failure: When this LED ashes, it indicates a power

failure in the power supply.

Overheat/Fan Fail: When this LED ashes it indicates a fan
failure. When continuously on (not ashing) it indicates an

overheat condition, which may be caused by obstruction of

the airow in the system or the ambient room temperature
being too warm. This LED will remain ashing or on as long

as the overheat condition exists.

NIC1/2: Indicates network activity on • LAN1/2 when ashing.

HDD: Indicates IDE channel activity. SAS/SATA drive, SCSI

drive, and/or DVD-ROM drive activity when ashing.

Power: Indicates power is being supplied to the system’s
power supply units. This LED should normally be illuminated
when the system is operating.

Plug n Comply Installation Guide 11

Chassis Views

Drive Carrier LEDs

Each SAS drive carrier has two LEDs.

Blue: When illuminated, this blue LED (on the front of the drive carrier) indicates
drive activity. A connection to the SAS backplane enables this LED to blink on
and off when that particular drive is being accessed.

Red: The red LED to indicate a drive failure. If one of the SAS drives fails, you
should be referring to your system management software.

Plug n Comply Installation Guide12

Rack Mounting

Rack Mounting Instructions

This section provides information on installing the Jatheon archiving appliance
into a rack unit with the rails provided. There are a variety of rack units on the
market, which may mean the assembly procedures will differ slightly. You should
also refer to the installation instructions that came with the rack unit you are
using.

Identifying the Sections of the Rack Rails

You may have received rack rail hardware with the Jatheon appliance (Two front
inner rails may already be attached to the chassis.) This hardware consists of
two rear inner rails that secure to the chassis, one on each side just behind the

preinstalled front inner rails. Note that these two rails are left/right specic.

Installing the Rear Inner Rails

First, locate the right rear inner rail (the rail that will be used on the right side of
the chassis when you face the front of the chassis). Align the two square holes
on the rail against the hooks on the right side of the chassis. Securely attach

the rail to the chassis with M4 at head screws. Repeat these steps to install the

left rear inner rail to the left side of the chassis. You will also need to attach the
rail brackets when installing into a telco rack. Locking Tabs: Both chassis rails

have a locking tab, which serves two functions. The rst is to lock the server into

place when installed and pushed fully into the rack, which is its normal position.
Secondly, these tabs also lock the server in place when fully extended from the
rack. This prevents the server from coming completely out of the rack when you
pull it out for servicing.

Plug n Comply Installation Guide 13

Rack Mounting

Installing the Rack Rails

Place the inner rack extensions on the side of the chassis aligning the 1.
hooks of the chassis with the rail extension holes.
Slide the extension toward the front of the chassis.2.
Secure the chassis with 4 screws as illustrated.3.
Repeat steps 1-3 for the other inner rail.4.

Plug n Comply Installation Guide14

Rack Mounting

Installing the Outer Rack Rails

Outer rails attach to the server rack and hold the server in place. The outer rails
for the appliance chassis extend between 30 inches and 33 inches.

Begin by measuring the distance from the front rail to the rear rail of the 1.
rack
Attach a short bracket to the front side of the right outer rail and a long 2.
bracket to the rear side of the right outer rail.
Adjust both the short and long brackets to the proper distance so that the 3.

rail can t snugly into the rack.

Secure the short bracket to the front side of the outer rail with two M4 4.
screws and the long bracket to the rear side of the outer rail with three M4
screws.
Repeat these steps for the left outer rail.5.

Plug n Comply Installation Guide 15

Rack Mounting

Installing the Chassis into a Rack

Conrm that the inner and outer rails are installed on the rack.1.
Line chassis rails with the front of the rack rails.2.
Slide the chassis rails into the rack rails, keeping the pressure even on 3.
both sides (you may have to depress the locking tabs when inserting).
When the server has been pushed completely into the rack, you should
hear the locking tabs “click”.
(Optional) Insert and tightening the thumbscrews that hold the front of the 4.
server to the rack.

Plug n Comply Installation Guide16

Appliance Introduction

Jatheon’s Plug n Comply™ family of archiving appliances are the next generation
email archiving and data management solutions. This document provides a high
level overview of our appliance and describes the steps required for integration of
Jatheon’s Plug n Comply™ appliance into your corporate network.

Jatheon’s Plug n Comply™ appliance is responsible for data acquisition, policy
enforcement, archiving/indexing and secure web services utilized for user
interaction.

Plug n Comply Installation Guide 17

Features

High Availability - PnC 2000, 4000, 6000 Models

For high availability environments two can be congured in a redundant high

availability cluster. This setup allows for two PnC-3000 servers to act as one.

SAN and iSCSI Support - PnC 2000, 4000, 6000 Models

Jatheon’s Plug n Comply™ appliances support Storage Area Network (SAN)
interfacing through the Emulex LP9002L Host Bus Adaptor. Following is the
current list of tested SAN interfaces:

Manufacturer Type

EMC CLARiiON

EMC Symmetrix

Jatheon Plug n Comply™ appliances support iSCSI storage through the native
iSCSI HBA adapters. The following is the current list of tested iSCSI HBAs:

Manufacturer Type

QLogic QLA4050 series

Email Decryption

For the environments where security is crucial and email encryption is
implemented on the enterprise level Jatheon provides the email decryption
feature that will automatically decrypt, index and archive encrypted email.
Following are the currently supported decryption products:

Company Product

PGP Corporation PGP Encryption Platform

Echoworx Secure Email

Enterprise Edition
Privacy Platform

Plug n Comply Installation Guide18

Features

Backup Strategy

Jatheon Plug n Comply™ appliances support a full system backup through two
different methods:

Native method compresses all data for the day, month, quarter or year and 1.
automatically transfers it to the designated backup site using FTP.
Existing company backup strategy can be used as long as it supports 2.
the most current Linux Server client. If the data storage is on the SAN,
no additional software is required. If the PnC appliance is using its native
storage, then the Linux client for the existing backup solution is required.

Plug n Comply Installation Guide 19

Compatibility

Email Server Compatibility

Following is the list of supported email servers:

Server Version

Microsoft Exchange Enterprise 2000 Service Pack 3

Enterprise 2003 Service Pack 1
Enterprise 2007 Service Pack 1
* Enterprise Standard Edition
requires POP3 to be enabled for
journaling to work correctly.

Lotus Notes 7.0

Novell GroupWise 6.5.4

Kerio 6.0, 7.0

Scalix 10, 11

Bloomberg all

SMTP all

Overview

Jatheon’s Plug n Comply™ email archiving appliance can be set up to acquire

email trafc either by journaling or snifng. This conguration applies to all

versions of PnC series appliances, unless otherwise noted.

Plug n Comply Installation Guide20

Integration

Journaling

Journaling is the process by which email is forwarded from the mail server to the
Plug n Comply™ archiving appliance. This process is used to capture internal

messages or in situations where heavy email trafc is expected. Journaling
requires conguration to your message platform. Please refer to the Installation
section for information on conguring your email platform.

Snifng

Snifng is used in organizations where message services are provided by a

third party service provider or when there is a single network egress point.
Jatheon’s stealth acquisition technology allows the Plug n Comply™ appliance to

unobtrusively capture all messaging trafc in and out of the organization. Minimal
changes to the network conguration are required.

Plug n Comply Installation Guide 21

Installation

Required Information

Jatheon’s Plug n Comply™ archiving appliance requires a fully qualied domain

name resolved from your mail platform.

NOTE: For a high availability cluster conguration three real IP addresses and hostnames
are required. Each server is congured with it’s own IP and FQDN and the cluster is

congured with the third IP and FQDN.

Plug n Comply™ requires the following information for the installation of the
appliance:

PnC hostname:

LAN Domain:

PnC IP address:

If clustered, PnC2 IP:

If clustered, cluster IP:

SMTP server IP address:

SMTP server name:

Network net mask:

DNS IP address:

Default gateway IP:

Time Zone:

All domain names used within

the organization:

*Note: This information is required to successfully congure the PnC Appliance and will be
required for our technical support representative.

Plug n Comply Installation Guide22

Installation

Quick Start Guide

Rack the Jatheon Plug n Comply™ device and connect it to the LAN. 1.

Connect the keyboard, mouse and monitor to the device to congure LAN 2.
settings. Follow the Network Conguration guide below.

Add Plug n Comply™ appliance to your DNS.3.

Congure the Plug n Comply™ device through the Administrator web user 4.
interface to accept email. Follow the Web Conguration guide below.
Congure your email platform for journaling or network for snifng.5.

PnC Appliance Network Conguration

Plug n Comply™ series appliances utilize a simple console conguration user
interface for network conguration accessed through the do user login. The

terminal connected to the appliance MUST support 1024x768 resolution at

60Hz if you would like to use the graphical user interface for conguration. If the

terminal does not support the required resolution please press ALT+F2 for the
console. Once the appliance is booted, the login screen will allow you to login:

Username: do
Password: jatheonpnc

Once logged in, open the system terminal from Applications menu and type in

‘do-menu’ to start the conguration process.

Once in the conguration menu, the options are as follows:

Initial PnC Network Conguration

Congure the network interfaces of the Plug n Comply™ appliance for your

network.

Installation

Plug n Comply Installation Guide 23

Setup Mail Transport Agent

Congure the Plug n Comply™ appliance to accept email from the mail servers

on your network.

Setup Mail Relay Agent

Congure the Plug n Comply™ appliance to relay email from and to hosts on

your network.

Restart PnC Web Server

Restart Plug n Comply™ web user interface.

Change Timezone

Change system timezone.

Re-Initialize Network Interfaces and Reboot

Initialize the network cards. Plug n Comply™ appliance is shipped with network
interfaces disabled by default. This option will enable the network interfaces with

the provided conguration settings. Please do this for every new appliance.

Change Password

Change the password for the do user.

Quit

Quit the conguration utility.

Initial PnC Network Conguration

Installation

Plug n Comply Installation Guide24

IP Address

Static IP address assigned to the Plug n Comply™ appliance.

Netmask

Netmask of the local network.

Default Gateway

Default gateway of the network.

Host Name

Host name of the Plug n Comply™ appliance. NOTE: this hostname has to be a
fully qualied hostname it must be added to your local DNS server.

DNS Server

Name server IP.

Search DNS Domain

Local domain for the network the Plug n Comply™ appliance is in. Common
practice it that the appliance is installed on the local network so this entry can be
a local domain name.

Setup Mail Transport Agent

Origin

Fully qualied domain name of the Plug n Comply™ appliance.

Installation

Plug n Comply Installation Guide 25

Hostname

Fully qualied domain name of the Plug n Comply™ appliance. Please make

sure that the local DNS entry exists on your DNS server.

Destination

All the domains Plug n Comply™ appliance will accept email for. Any mail sent
from domains in this list will be treated as local mail.

Networks

All the networks Plug n Comply™ appliance will accept or relay email for.

MTA Banner

Sets the email transport banner of the Plug n Comply™ appliance.

Message Size Limit

Denes the message size limit for both accepting and relaying email.

Journalmaster Email Address

Email address on the Plug n Comply™ appliance that is used to accept all journal
email to this appliance.

Mail Relay Host

Default relay host to relay all of the email to. This option is only used if the Email
Relay is set up below. This will put the Plug n Comply™ appliance on the mail
path and act as a relay agent for all email. The mail relay host will deliver mail on
behalf of the Jatheon Appliance if the appliance is not allowed to use the internal
mail transfer agent to deliver mail directly to destinations.

Setup Mail Relay Agent

This option is only used in special circumstances where the Jatheon Plug n

Comply™ appliance is used as a gateway. In all other congurations all of the
elds here should be left blank.

Installation

Plug n Comply Installation Guide26

Relay Rules

Each relay rule species the domain to accept the relayed email for and the IP

to forward all the email to. In the example above, all of the email received for
plugncomply.com will be relayed to 192.168.1.103. A copy of each message will

be saved to the archive. Up to 9 relay rules can be congured.

NOTE: In most cases, this screen should be left blank as the Plug n Comply™ appliance is
a passive end-of-line appliance. This conguration is for extreme cases where the Plug n
Comply™ appliance is used as a mail gateway.

Web Conguration

Once you have congured Plug n Comply™ for your network you can congure

the data acquisition method and other relevant information using the web user
interface.

The Plug n Comply™ appliance segregates user access based on the user

function, hence three login screens are available. All of the system conguration

is done under the Administrator login except for user management which is done
under the Compliance Ofcer login.

Installation

Plug n Comply Installation Guide 27

Select the Administrator login by clicking on the green user icon on the login
screen and log in with the following credentials:

Username: plugncomply@jatheon.com
Password: jatheonpnc

Once logged in, the administrator is presented with the System screen from
which all of the Plug n Comply™ system services can be controlled.

Shutdown Plug n Comply

Used to shut down the server for maintenance. This will shut down the appliance
completely so the power can be disconnected.

Near-Line Port Sniffer

Controls the Plug n Comply™ stealth acquisition.

Plug n Comply Monitor

Stop processing email messages. This option is useful during the upgrade or
maintenance of the unit.

Postx SMTP Server

Stop receiving journal email. This option is used for system maintenance.

The Conguration page contains all of the congurable Plug n Comply™ options.
You need to change these options based on your installation conguration.

Installation

Plug n Comply Installation Guide28

Company Name

Your organization name, to be used in compliance related emails Plug n
Comply™ sends out.

Company Website

URL to your website, to be used for linking your name to the website.

Domains

Provide a comma separated list of domains that are considered to be part of the
organization. This list is used to determine whether the email is incoming, internal
or outgoing.

Email Address

Email address that will appear in the “From” eld for all emails sent from the

appliance.

Capture Method

Capture methods are described in the Integration section in this document. It is

either Journaling or Snifng.

Installation

Plug n Comply Installation Guide 29

SMTP Server Name

Fully qualied domain name of your mail server. It is used for Plug n Comply™ to

send all emails from the appliance.

Journaling Server

The mail platform type you are using. If your platform is not listed here, set it to
‘None’. The journaling will still work.

Journaling Recipient

Journaling has to be set to “journalmaster@<PnC FQDN>”.

Journaling Senders

Email user you set up on your mail platform to forward all email to the appliance.

Enable Virus scan

Enable/disable virus scan. Default is disabled.

Enable Password Retrieval

Enable/disable user password retrieval on the login page. Default is disabled.

Encryption Used

Enable/disable decryption of encrypted email on the Plug n Comply™ appliance.
This option is used to decrypt encrypted messages that the Plug n Comply™
appliance receives. The default is disabled.

Please make sure to click “Save Conguration” button located in the
Conguration Details window after each change.

LDAP Synchronization

Jatheon Plug n Comply™ series of appliances support integration with LDAP

directories such as Active Directory or Novell eDirectory. To congure LDAP you

need the following information:

Base DN with Organizational Unit (OU) in which the users are located1.
User DN with CN and DC 2.

On the Plug n Comply™ appliance, log in using the Compliance Ofcer login and

follow the following procedure:

Installation

Plug n Comply Installation Guide30

LDAP Conguration

Click on 1. Users button, LDAP tab and then click New button. Fill out all the

elds then click on the Save button.

Fill out all of the elds:

Connection name

This is a unique name for this connection. You can set up multiple
connections to connect to multiple OUs. This elds differentiates them.

Server Type

Select the supported server type.

Host

The fully qualied hostname of your LDAP server.

Port

Specify LDAP port we will use to connect through.

Authentication Method

Select the authentication method.

Base DN

This is the root node in which all of the users are located in. If your users are
located in multiple USs, please create multiple connections.

User DN

Username in full LDAP format that is used for connection authentication.

Password

Password used for authentication.

Installation

Plug n Comply Installation Guide 31

Once the new connection is set up, you will see the LDAP screen again. 2.
Choose the new LDAP connection and click on Connnect button.

The user list will be displayed. Select the users you want to import and the 3.
click on Import User.

The imported users can now access the Plug n Comply™ appliance.4.

Installation

Plug n Comply Installation Guide32

LDAP users or passwords are periodically updated and the changes to LDAP can
be automatically synchronized with the Plug n Comply™ appliance by setting up
the LDAP Synchronization rule on the appliance:

Click on the 1. Schedule button and select the Synchronize LDAP task, then
click on Edit button.

Click on the 2. conguration wheel in the Sub-Tasks window.

Installation

Plug n Comply Installation Guide 33

Choose the connection you created in the previous step and click on 3. Save
button.

Select 4. Enabled in the status dropdown and click on Save button.

Your LDAP conguration is now complete. Any users you imported will have

access to the Plug n Comply™ appliance immediately. Please note that the Plug
n Comply™ appliance stores only the usernames locally, the user authentication
is done via the LDAP server for each login attempt.

Installation

Plug n Comply Installation Guide34

Outlook Plugin

Jatheon provides the Outlook plug-in for Outlook 2003 and 2007 for users
that want to access the appliance from within Outlook. The plug-in creates a
folder under the Inbox in Outlook that points to the user interface on the Plug n
Comply™ appliance.

Jatheon Outlook plug-in can be used to automatically roll out the plug-in to

multiple users on the Windows network. It is packaged in a single EXE le

and does not require Outlook to be closed. The plugin is executed through the
console with the following options:

Parameters for the Jatheon Outlook plug-in

Parameter Description

-h Fully qualied hostname of the
Plug n Comply™ appliance.

-l The name of the folder to be
created under the Inbox.

-s Enable SSL connection (this is
required by default).

To access a copy of the Plug-in, log into the appliance as an administrator and
click on the plug-in tab.

NOTE: For the authentication to work well in Outlook, a certicate from a
qualied Certicate Authority is required for the appliance.

Installation

Plug n Comply Installation Guide 35

Snifng Conguration

Snifng is rarely used as most of the modern mail platforms use journaling.
Journaling and snifng can be used at the same time if desired. Snifng is done

at the network egress point, usually at the edge router or switch. The router or
switch is required to support port mirroring (or port monitoring).

Once port mirroring is enabled for the internet trafc port, the Plug n Comply™

appliances LAN 1 network card is connected to it. LAN 2 card is connected to the
internal network for web user interface access.

Journaling Conguration

Journaling is used by Microsoft Exchange mail platforms. Each version of

Exchange has a signicantly different procedure for journaling conguration.

System Requirements are as follows:

Exchange Enterprise Server 2007 Service Pack 1
Exchange Enterprise Server 2003 Service Pack 1 (requires Windows

Server 2003 Service Pack 1)
Exchange Enterprise Server 2000 Service Pack 3 with the appropriate hot

x

NOTE: Exchange Server 5.5 does not support envelope journaling, only
standard journaling is supported. Exchange Standard Server 2000 or 2003
do not support multiple mail stores and hence only support POP3 journaling.

Reference Microsoft Article ID 870540:
Availability of the August 2004 Exchange 2000 Server Post-Service Pack 3
Update Rollup

Installation

Plug n Comply Installation Guide36

Microsoft Exchange 2007

Microsoft Exchange offers a native email journaling functionality that is not
enabled by default. To enable journaling in Microsoft Exchange 2007 follow the
steps below:

Open the Exchange Management Console, click on 1. Recipient
Conguration then Mail Contact.

Installation

Plug n Comply Installation Guide 37

The new mail contact with the external email 2. journalmaster@<FQDN>. The

FQDN is the fully qualied domain name of the Plug n Comply™ appliance.

This is effectively the email that all of the journaled email from Microsoft
Exchange will be forwarded to.

Installation

Plug n Comply Installation Guide38

In the Exchange Management Console click on 3. Conguration then Hub

Transport, and click on the Journaling tab. Right click and select new
Journal Rule. Add the contact user which you created before in the Send
Journal reports to email address box.

Microsoft Exchange 2003

Microsoft Exchange offers a native email journaling functionality that is not

enabled by default. The objective is to congure and enable envelope journaling

on Microsoft’s Exchange Server and these instructions follow the recommended
steps by Microsoft. Envelope journaling differs from standard journaling in that it

preserves the original email in it’s original form. Without it enabled elds like BCC

could not be captured.

Microsoft journaling forwards all email through the journaling user mailbox to
a third party server. Journaling mailbox has to reside in a separate mail store
to prevent mail loop. The journaling user forwards all email to a SMTP Contact
using a server side rule.

Installation

Plug n Comply Installation Guide 39

The procedure outline is:

Create a new mail store1.
Create a SMTP contact2.
Create a journaling user account3.
Set up the server side rule to forward all mail from the user to the 4.
contact
Enable automatic forwarding5.
Enable envelope journaling6.
Enable standard journaling7.

Create a new mail store 1.
Use the Exchange management Console to create a new mail store.

Installation

Plug n Comply Installation Guide40

Create the journaling user 2.

Create an Exchange user in a mailbox store different from the one •
that is to be journaled:
Go to Active Directory Users and Computers. Select the special OU •

-> right click-> new-> user

Following the create user wizard , select the exchange 2003 as the •
mail server , select the mail store which you created before as this
mail user’s mail store.

Installation

Plug n Comply Installation Guide 41

Create a SMTP contact 3.

Go to Active Directory Users and Computers. Select the special OU •

-> right click-> new -> contact

In the rst • New Object - Contact dialog box, enter a name and a
display name for the custom SMTP recipient, and then click Next.
In the second • New Object - Contact dialog box, verify that the
Create an Exchange email address check box is selected, enter
an email alias in the Alias box, and then click Modify.
In the • New Email Address dialog box, select SMTP Address, and
then click OK.
In the • Internet Address Properties dialog box, on the General
tab, enter the email address of the storage solution where your
journaling messages will be stored, click OK, and then click Next.
On the last • New Object - Contact dialog box, click Finish.

Installation

Plug n Comply Installation Guide42

Setup server-side rule to forward messages: 4.

In outlook 2003 , set up the journaling user account as the •
exchange email account
In Outlook 2003, click • Tools, and then click Rules and Alerts.

On the rst page of the • Rules Wizard, select Start from a blank
rule, and then click Next.

On the second page of the • Rules Wizard, do not select any
conditions in the Select condition(s) section. Instead, click Next.
A message will prompt you to verify that the rule you are creating is
for all messages that are received in this mailbox. Click Yes.
On the third page of the • Rules Wizard, in the Select action(s)
section, select forward it to people or distribution list. In the

Installation

Plug n Comply Installation Guide 43

Edit section, click people or distribution list.
In the • Rule Address dialog box, select the custom SMTP recipient
you created earlier, click To, and then click OK.
On the third page of the • Rules Wizard, in the Select actions(s)
section, select move it to the specied folder. In the Edit section,
select specied folder, locate the Deleted Items folder, and then
click OK.

On the third page of the • Rules Wizard, click Finish

Enable automatic forwarding 5.

Start Exchange System Manager, and then click • Global Settings in
the left pane.
In the right pane, double-click • Internet Message Formats to

populate the right pane with the dened domains. By default, there

is a single domain that is the wildcard domain.
Right-click the object that represents the domain, click • Properties,
and then click the Advanced tab in the Properties dialog box.
To enable the AutoForward feature, click to select the • Automatic
forwarding check box in the Allowed Types area

Installation

Plug n Comply Installation Guide44

Enable envelope journaling 6.

Obtain the Email Journaling Advanced Conguration tool (Exejcfg.exe),

download the Exchange Server All-In-One Tools package at Exchange
Server All-In-One Tools Download. The Email Journaling Advanced

Conguration tool can be used in Exchange 2000 Server environments and

Exchange Server 2003 environments.

Note that Envelope Journaling requires Standard Journaling to be enabled

rst. Also, Envelope Journaling does not work if BCC Journaling is enabled:

Download and unzip the Email Journaling Advanced Conguration

•

tool to a directory of your choice.
Open a command prompt.•
Go to the directory where you installed exejcfg.•
Type the following command to enable envelope journaling:•
exejcfg -e •

Installation

Plug n Comply Installation Guide 45

You can use exejcfg with any of the parameters in the following
table.

Parameters for exejcfg tool

Parameter Description

-e Enables envelope journaling

-d Disables envelope
journaling

-l Lists the envelope journaling
setting—whether envelope
journaling is enabled or
disabled.

/? Provides the list of options

and a short help. If you
run the command with no
options, it defaults to this
option.

Installation

Plug n Comply Installation Guide46

Enable Standard Journaling 7.

In • Exchange System Manager, expand Servers, expand <your
Exchange server>, expand <storage group>, and then right-click
the mailbox store.
On the • General tab, select Archive all messages sent or
received by mailboxes on this store, and then click Browse
to specify a mailbox as the journaling mailbox. All journalized
messages for senders on this mailbox store are sent to the mailbox
you specify

Novell GroupWise

GroupWise mail server requires Jatheon Journaling Plug-in (JJP) to be installed

and congured on the GroupWise server. Once in place, JJP will forward both

internal and external inbound and outbound email to the Plug n Comply™
appliance.

Lotus Notes

Lotus notes mail server requires Jatheon Journaling Plug-in (JJP) to be installed

and congured on the Lotus Notes server. Once in place, JJP will forward both

internal and external inbound and outbound email to the Plug n Comply™
appliance.

Scalix

Scalix can be congured to forward a copy of every email entering the system to

a third party device. To specify the third party email every email is forwarded to
add the ARCHIVE tag to the ~/scalic/sys/general.cfg:

ARCHIVE=bcc:journalmaster@<PnC FQDN>

Because all of these settings include modications to the global conguration
general.cfg le, you must restart the service router and archiver for the changes

to take effect.

For more information about the Scalix conguration please reefer to the Scalix

Administration Guide for the version of Scalix you are using.

Installation

Plug n Comply Installation Guide 47

Kerio

Kerio can be congured to forward all email, or only outgoing mail, to a archiving

device:

Start Kerio Administration Console, and then go to the 1. Conguration
section.
Click on the 2. Archiving & Backup tab and then on Archiving.
Check the 3. Enable email archiving checkbox and Archive to remote email
address checkbox.
In the Archive to remote email address text eld provide the journalmaster 4.
email from the appliance: journalmaster@<PnC FQDN>.

Bloomberg

To setup Bloomberg email archiving on the Jatheon Plug n Comply appliance

rst activate your daily archive account through the Bloomberg administration

user interface. Bloomberg will provide to you a FTP link with a username and

password. Now you can congure the Plug n Comply device to download

Bloomberg mails with following steps:

Log in as a compliance ofcer.1.
Click into 2. Schedule -> Bloomberg Download, and then click the Edit
button.

Installation

Plug n Comply Installation Guide48

Click the “3. Congure” button beside the “Bloomberg Download” sub-task.

Fill in the Hostname, Username, and Password elds, and click 4. Save.

Installation

Plug n Comply Installation Guide 49

Set the status of this task to “5. Enabled”.

Once all of the above is done, click the 6. Save button. The system will then
start downloading Bloomberg mails everyday at 4pm.

Plug n Comply Installation Guide50

Should you require support from Jatheon our technicians are available
Monday to Friday, 9am to 5pm EST. We can be reached by emailing
support@jatheon.com or by calling 1-888-JATHEON in North America
or +1-416-840-0418 from anywhere else.

Additional user information is avaliable in Jatheon’s User Guide - this is
avaliable online at www.jatheon.com.

Support

8 Wellington Street East, Mezzanine Level, Toronto, Ontario, CANADA, M5E 1C5

Tel: 416.840.0418 | 1.888.JATHEON (1.888.528.4366) | Fax: 416.849.9971 | info@jatheon.com | www.jatheon.com