Hello All,

I understand that Exchange server needs transport aware Antivirus solution like Symantec Mail Security for Exchange or FPE (a thing of past) to be installed on Exchange 2003/2007/2010 hub transport servers for it be able to scan the emails in transport pipeline and delete emails if found to be virus emails.

In 2013, i understand that this is achieved by using malware scanning enabled on Mailbox role servers which is a feature of 2013. 

My questions:

1) Is it technically possible to enable default malware scanning enabled on mailbox servers and also install symantec mail security for exchange 2013 on mailbox servers ?

2) If technically feasible, is it recommended/is it a best practice ?

3) Lastly, is this supported by Microsoft support ?

Thanks,

Shiv

I wouldn't say the built in anti-malware feature is a replacement for a third party tool. Therefore you can install a third party tool if you wish. Whether the built in should be enabled or not is down to the third party.

It is something I have always done and it is supported.

Although I wouldn't install anything by Symantec on any Exchange server I look after.

If you have Symantec on your desktops and file system, then having it on Exchange is a waste of time, as they are all operating on the same definition set. If you want to put something on Exchange, then choose a different vendor from what you have elsewhere.

Simon.