Product Settings

The Product Settings tab of Exchange Reporter Plus allows you to configure various settings of the product pertaining to the connection, the security hardening measures, and the URL settings of the product.

The various settings tab that are available under the Product Settings include:

  1. Connection
  2. Security Hardening
  3. URL Settings

Connection

Using this option, you can set the HTTPS connection between the Exchange Reporter Plus server and the web browser, configure the general settings as well as to set the internal mail domains within your Exchange Organization.

To access Connection Settings, navigate to Admin > General Settings > Product Settings > Connection.

Under the connection tab, the various changes that you can perform include:

Connection Settings

  1. Beside the Exchange Reporter Plus Port field, enter your desired port number. By default, the Exchange Reporter Plus server runs on port number 8181.
  2. Select Enable SSL Port [https] to enable Secure Sockets Layer. You can also enter your desired HTTPS port number in the field next to the Enable SSL Port [https] option.

    3. Note: Changes in the port settings will reflect only after you restart the Exchange Reporter Plus server.

  3. Click the Advanced option that appears when you select HTTPS to specify the TLS versions and cipher suites of your choice. Follow the steps mentioned below to configure the advanced settings for HTTPS:
    • In the TLS drop-down menu, select the TLS version you want.
    • You can also select the cipher suites you want to use in the cipher field. We support the following cipher suites:
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
    • TLS_RSA_WITH_AES_128_CBC_SHA256
    • TLS_RSA_WITH_AES_128_CBC_SHA
    • TLS_RSA_WITH_AES_256_CBC_SHA256
    • TLS_RSA_WITH_AES_256_CBC_SHA
  4. Once you have configured the changes to the port and the Advanced Settings for the HTTPS connection, click on Apply to save your changes.

    5. Note: Changes in the port settings will reflect only after you restart the Exchange Reporter Plus server.

  5. Once you enable HTTPS, you can enable the Encrypt Keystore Password. If you enable this feature, you have to enter the keystore password which will be encrypted.
  6. Click the SSL Certification Tool link to apply the SSL certificate to the product. To know more about SSL certificates, click here.
  7. Follow the steps mentioned in this guide to apply the SSL certificate.

    8. Note: Exchange Reporter Plus is configured with a default certificate, which is not valid for an SSL connection. You have to add a valid CA-signed certificate or self-signed certificate for this purpose.

  8. Select the Session Expiry Time, the time for which the user session when the product is kept idle. You can select the time from the Session Expiry Time drop-down menu, or you can set it to Never if you don't want the idle session to expire.

General Settings

General Settings can be used for setting the logging levels, enabling usage statistics gathering, enforcing GDPR compliance, implementing automatic license management, and editing the language and logo settings.

  1. Logging Level: This option enables you to set or change the logging level for debugging information. Choose the level of logging you want from the drop-down menu corresponding to the Logging Level option.
    • Normal: Setting the logging level to Normal will store a minimal level of debugging information in the product log files.
    • Debug: Setting the logging level to Debug will store a detailed level of debugging information in the product log files.
  2. Usage Statistics Gathering: Select this option to send anonymous product usage statistics to the Exchange Reporter Plus team.
  3. Enforce GDPR compliance: By enabling this option, the IP addresses and email addresses are masked while being displayed in the product.

    4. Note: By enabling this feature in Exchange Reporter Plus, the product will be set to make necessary changes like not displaying complete log paths in the UI in order to comply with all GDPR guidelines.

  4. Auto License Management: This option enables the product to automatically manage all the mailboxes in your Exchange Organization.
  5. Language: Exchange Reporter Plus is available in English, Arabic, and Chinese languages. Apart from this, you can also set your product to present itself as per the Browser default language. You can use the Language drop-down menu to choose between English, Arabic, Chinese, or the Browser Default language.
  6. Change Logo: You can use this option to rebrand the product to match your organization's logo. Click Browse and upload an image that is less than 2MB in size and with a resolution size of less than 197x30.

Internal Mail Domains

  1. You can add internal email domains by clicking the Add Mail Domains option next to the Internal Mail Domains field.
  2. Enter one or more domain names, separated by commas, and click Save. Click the edit icon icon-edit to make edits to the domains.
  3. You can also delete already configured email domains by clicking the delete icon icon-delete corresponding to them.

Security Hardening

This option enables you to configure and manage all product security settings in one place. A dashboard on the right side displays the percentage of security hardening and it gets updated dynamically based on the security settings configured.

Security hardening alerts will be shown in the License tab located on the top-right corner, and will also be emailed to the users along with product downtime and start-up mailers. It will also be displayed in the Notification Center (the icon on the top-right corner) until the Product Security Hardening dashboard reaches 100%. For licensed customers, the alert will also be displayed after every successful login until all mandatory security configurations are completed.

Product Settings

To manage security settings individually, click the Configure > Change or Enable option corresponding to the required security setting and make the changes. Once configured, status corresponding to a setting will change to Configured or Changed as shown in the image above.

The security configurations available in Exchange Reporter Plus are

  1. Enforce HTTPS: This setting helps establish a secure connection between the web browsers used to access Exchange Reporter Plus and the Exchange Reporter Plus server. Follow the steps given here to configure this settings.
  2. Change Default Admin's Password: Use this setting to change the default admin's password after first login. Follow the steps given here to configure this setting.
  3. Enforce Two-factor Authentication: Use this setting to add an extra layer of security while logging in to Exchange Reporter Plus. Choose from the set of authentication options available like email verification, SMS verification, Google Authentication, Duo Security, and more. Follow the steps given here to configure this setting.
  4. Receive Alerts for Security Updates: Configure this setting and provide your contact details to be notified of released security patches. This ensures that you are well-informed about any security updates for the product, enabling you to update it as soon as possible.

    5. Note: You can configure this only with a primary and secondary email address, and a telephone number, that have not been previously shared with ManageEngine. This ensures that these contact details are unique and can serve as a fallback if the previously provided information becomes inaccessible.

  5. Enforce LDAP SSL: This setting enforces an SSL connection between the Exchange Reporter Plus server and Active Directory domains configured in the product. Follow the steps given here to configure this setting.
  6. Enforce GDPR compliance: Make sure Exchange Reporter Plus is aligned to all granular aspects with respect to GDPR compliance and manage your internal audits easily. Follow the steps given here to configure this setting.

    7. Note: The Enforce HTTPs, Change Default Admin's Password, Enforce Two-factor Authentication settings must be configured in Exchange Reporter Plus. Until these settings are configured or the checkbox for alerts are not enabled, you will continue to receive alerts and notifications.

Register for Security Updates

To keep your Exchange Reporter Plus instance secure, the ManageEngine security team will use the registered contact details to notify you of important security updates. By registering the contact information of your operations or security team, you can ensure timely delivery of these updates.

Previously, security updates were sent only to licensed email addresses. Going forward, they will also be delivered to registered email addresses. These updates cover both internal and external vulnerabilities and will be sent to both the primary and secondary registered email addresses.

When vulnerabilities are identified, they are resolved within defined timelines. Critical vulnerabilities are fixed within 24 hours, while high-risk vulnerabilities are typically resolved within 10 days. Administrators will be notified once each issue has been addressed. In certain cases, proactive measures taken to safeguard against potential public vulnerabilities will also be communicated to registered email addresses.

The registration process ensures that only verified contacts receive updates. For this registration, a verification link will be sent to the provided email address. This link must be confirmed within 7 days; otherwise, security updates will not be delivered. To ensure uninterrupted delivery, registered email addresses must be re-verified every 365 days. The information provided will be used exclusively for sending security updates.

With this enhancement, security updates are no longer limited to licensed email addresses but are also delivered to registered contacts. This ensures that the right teams receive timely notifications, allowing administrators to respond quickly to vulnerabilities and maintain a stronger security posture.

URL Settings

This option enables you to enter the EWS URL that defines the EWS connection endpoint of your Exchange Server organization. If this field is left empty, then the default EWS URL will be used.

To set the EWS URL:

  1. Click the Settings tab.
  2. Navigate to Admin > General Settings > Product Settings > URL Settings.
  3. Under URL Settings, enter the EWS URL of your Exchange Server.
  4. Click Save.

Product Settings

Navigate to next Previous Topic Next Topic Navigate to next

Copyright © 2024, ZOHO Corp. All Rights Reserved.