With Exchange 2013, do we need to install exchange aware antivirus on machine for scanning, are built-in mechanisms are enough. is there any alternative for third party antivirus software. Reason behind query is with Windows server 2012 i guess we can deploy antivirus software using System center. So by this dependency on other third party product reduces for easy management & all integrated approach.

Only you or the decision makers in your organization can decide what's enough. Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

yes agree but can we consider builtin spam scanning with Exchange 2013 as a complete alternative to third party exchange aware scanning products.

Of course you can consider it. It all depends on your organization's requirements. It's probably best for you to determine what's important before ruling in or out specific products.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Of course you can consider it. It all depends on your organization's requirements. It's probably best for you to determine what's important before ruling in or out specific products.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Hello, Below is some reading material to help you through the decision making process: http://technet.microsoft.com/en-us/library/jj150481.aspx Miguel Fra | Falcon IT Services, Miami, FL www.falconitservices.com | www.falconits.com | Blog

Hello, Below is some reading material to help you through the decision making process: http://technet.microsoft.com/en-us/library/jj150481.aspx Miguel Fra | Falcon IT Services, Miami, FL www.falconitservices.com | www.falconits.com | Blog

Hello, Below is some reading material to help you through the decision making process: http://technet.microsoft.com/en-us/library/jj150481.aspx Miguel Fra | Falcon IT Services, Miami, FL www.falconitservices.com | www.falconits.com | Blog

I don't know what your environment is, how many messages a day you might receive and how much spam you might receive, but one thing to consider, besides the intrinsic value of the Exchange 2013 antispam features, is the workload of having the mailserver process all that incoming spam. If you have a separate server on the perimeter (like an Edge server) processing this, that would be better in that respect. Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

I don't know what your environment is, how many messages a day you might receive and how much spam you might receive, but one thing to consider, besides the intrinsic value of the Exchange 2013 antispam features, is the workload of having the mailserver process all that incoming spam. If you have a separate server on the perimeter (like an Edge server) processing this, that would be better in that respect. Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

currently we use trend micro product for gateway level scanning. We experience daily around 70-80 thousands incoming outgoing mails & statistics shows 20-25% are spams. Also with this we are able to run custom reports, policies,qurantine etc. So i think inbuilt antispam with Exchange 2013 would not a better option to consider complete alternative for third party softwares.

If you already have licensed Trend for gateway scanning, you can probably put it on your Exchange servers as well. Ask them whether your license permits that.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Hello, From the bit I have looked at the MS EX2013 AV, I looks quite simpler than most 3rd party solutions. Also, as LePivert mentioned, having an edge server with your 3rd party solution or a dedicated appliance might be better since you seem to have quite a workload to consider with 80K e-mails daily.Miguel Fra | Falcon IT Services, Miami, FL www.falconitservices.com | www.falconits.com | Blog

I see some important limitations to the built-in antivirus and spam solution of Exchange 2010. Regarding antivirus the engine being used is the Microsoft AV one, which is pretty good and can be found in several other MS security products. The biggest issue I see is that you can't configure anything, the only thing you van configure is the update frequency and the text of the notification mail. When malware is detected, Exchange will delete it. There's no option to quarantaine the message or the attachment and once detected, there's no option to release it again because it's deleted. So no quarantaine. If this meets you needs, go for it becasue it's free. If it doesn't, have a look at the third party vendors to check if their product is ready for Exchange 2013. For antispam you can enable the antispam agents on the Exchange 2013 Mailbox role server, similar with Exchange 2007 and 2010. Unfortunately with Exchange 2013 you can't use the Connection Filtering agent on the MB role, this means you can't use a realtime blocklist like Spamhaus. This makes the antispam agents pretty much useless because a RBL is great to keep 90% of the spam outside. In other words, you still need an SMTP gateway, wheter this is an external solution, an Exchange 2010 Edge Transport server or another SMTP gateway.Did my post help? Please use "Vote As Helpful", "Mark as answer" or "Propose as answer". Thank you!

Thanks Jetze. any third party application you would recommend me as mail gateway which will be light weight & efficient with reporting capability.

I see some important limitations to the built-in antivirus and spam solution of Exchange 2010. Regarding antivirus the engine being used is the Microsoft AV one, which is pretty good and can be found in several other MS security products. The biggest issue I see is that you can't configure anything, the only thing you van configure is the update frequency and the text of the notification mail. When malware is detected, Exchange will delete it. There's no option to quarantaine the message or the attachment and once detected, there's no option to release it again because it's deleted. So no quarantaine. If this meets you needs, go for it becasue it's free. If it doesn't, have a look at the third party vendors to check if their product is ready for Exchange 2013. For antispam you can enable the antispam agents on the Exchange 2013 Mailbox role server, similar with Exchange 2007 and 2010. Unfortunately with Exchange 2013 you can't use the Connection Filtering agent on the MB role, this means you can't use a realtime blocklist like Spamhaus. This makes the antispam agents pretty much useless because a RBL is great to keep 90% of the spam outside. In other words, you still need an SMTP gateway, wheter this is an external solution, an Exchange 2010 Edge Transport server or another SMTP gateway.Did my post help? Please use "Vote As Helpful", "Mark as answer" or "Propose as answer". Thank you!

Good point by Jetze Mellema on delete only. Every once in a while, you hear about some company's antivirus definitions having a false positive problem and the AV starts detecting all your .doc or .xls files (or whatever...) as a virus. If they are deleted - better have a good backup (which you should have anyway for other reasons) If they are quarantined - easier to recover.Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.