Exchange Online Everything a Transport Rule should do and cannot

Discussion in 'Exchange Server Questions' started by Brian Murphy, Apr 29, 2017.

  1. Brian Murphy

    Brian Murphy

    New Member
    There is an actual question here or more like a challenge. There is what it can do and what I think it should do when we need to meet customer needs and the requests are too simple to merely ignore.

    Maybe I'm just missing something and need a second pair of eyes but I've looked at Rights Management, Compliance and Security, SPAM, basically anything that will allow me to create a "profile" for a precise domain name and when someone@domain.com sends to my customer they get a professional response back that says "Hi, we had to change our email domain and we are now this if you have any questions give us a call at this". And, the intended recipient cannot get the email or it breaches the legal agreement made. And to provide confidence to that user you need to minimum send them a message stating “we blocked the mail but it came from here and the disclaimer went out. This benefits the customer in many ways. Next, this must all get logged although it technically never is transported to the mailbox. We need the ability to produce a report that shows our customer and a court that we blocked the mail and sent the required message.


    Cannot be done with transport rule. At best, you can respond to an incoming mail from domainA and kick back a very limited response.


    There are ways or products where you can enforce corporate signatures across an organization. Think about the number of scenarios where being able to respond to an entire domain whether because of rebranding, just changing primary SMTP, corporate mergers, and list goes on.


    I know how to do this with simplest approach but I'm hoping to do better than what I have for options such as Transport Rule and a very limited response ability with Exchange or in this case Exchange Online. I have a customer where I'm presently in the middle of an Office 365 Migration. Hybrid Mode. 52 registered domains. One Tenant. One business unit in that tenant is domaina.com and due to litigation reasons cannot use that domain starting in one week but the agreement reached is they could keep the domain registration and managed DNS until year end. This is important to keep the MX record pointing to Exchange Online so we can let external customers know to update their first.last@domainA.com to first.last@domainB.com


    But, none of that mail can get delivered. Only dropped and a response back which my customer wants to look something like this:


    Your email was not delivered. The email address you are trying to reach has changed. Please update the contact email to reflect our new domain, domaina.com, and resend your message.


    For example, if you are trying to reach john.doe@domainA.com, the new email address is now john.doe@domainB.com.


    If you have any questions, contact our office at (866) 555-5555


    Which I agree is more professional and should be possible, by now. And given all the tools I have with Office 365 and this customer having E3 licensing, Azure Premium, Intune and so forth I'm hoping to meet this deliverable as asked but would like to bring additional value if possible. I would like the mail to terminate at the tenant, deliver that message above, and extrapolate out the sender information and forward a notification to the original intended recipient that they received a mail from XYZ and in a professional style that makes the customer feel all warm and cozy because I feel this brings additional value add.


    I'm always looking to improve or prove the value of technology or perception of technology. The transport rule gives me a lot of options, not complaining. I can do this simply with a transport rule - not sure about the last item to notify the customer - but that field to reply is limited to 4096 characters?


    There must be a way to pull this off but where the mailbox already resides in the cloud. I think there are third party tools out there for on-prem but this mail never goes to on-prem. I have a third-party cloud provider in front of incoming mail. There are other third-party providers that I can put in front of Office 365 or Exchange that are cloud or appliances on-premesis that I would be interested to know of the ones that could do all what is requested above – but doesn’t help right now.


    So, that is not an option to use that where it comes in initially then hits 365 Cloud, then the mailbox in the cloud.


    Outlook autoresponse for entire domain is not an option although if I had that functionality in Exchange Online it would fix that 1st issue with the professional response in Outlook format email response.


    Basically CodeTwo Exchange Rules but for Exchange Online, but better. And custom reporting that I can generate automatically to myself and the managers of that entity how well we are doing our job.


    I've googled and cannot seem to hit the right combination of keywords. Forums. Blogs. Powershell options where somethings things are “hidden”.


    Of all the things that must be accomplished to add a domain to an Exchange Organization, with AD and Exchange On-Prem but running in Hybrid-Mode, mailboxes already migrated to the cloud, new UPN, new SMTP alias, domain registration, managed DNS, adding the domain to Office 365, TXT records, SRV records (Skype for Business), then swapping out the existing primary to secondary, taking the secondary of first.last@newdomain.com, and on set date except mail from original primary SMTP domain, don’t deliver it, drop it, respond with a message. I have most of that scripted. That is the easy part.


    So, in full transparency I am looking to improve that process and create more value for my customers. It just makes more sense to me that you should drop the mail, send a notification that is not NDR but a message that the domain has changed instead of something generic giving false impression that user has been fired, instead a customer message providing correct information then notifying the intended recipient “we got this just letting you know, signed… IT”, automated report end of day to all the managers saying “we got this, just letting you know, here is what happened today. Signed IT” – is my minimal standard?


    If this does exist, great. If it doesn’t, maybe we can use this opportunity to make it exist and I’ll reward points accordingly.


    I’m going to make this happen one way or another. Anyone else interested?


    Technically, the question is stated as above. That is what needs to be done for starters and it can’t. And I would love to be proved wrong or join the challenge and stop reading now is also a choice.
     
  2. Diane Poremsky

    Diane Poremsky

    Senior Member
    The only option would be Mail Flow in Office 365 Exchange.

    It can do most of what you need - reject the message, create an incident report - although possibly not as well as you'd like. But is there a reason why messages need to be dropped/bounced instead of dropping into the user's domainb.com mailbox? User could autoreply that the address changed and all replies would be from domainb.
     
Loading...

Share This Page