Home » MailStore Cloud Help » Cloud Concepts: Journaling

Concept

Email journaling is the process of capturing and storing email communications for compliance, regulatory, legal, and archival purposes.

It involves recording all inbound and outbound email messages. This includes not only the email content but also metadata such as sender, recipient, date, and time stamps.

As emails are sent or received, they are automatically copied and sent to the journaling system. This happens in real-time or near-real-time to ensure no email is missed.

MailStore Cloud’s Journaling Endpoints are the destination for such journaling processes. For more information, see the Journal Endpoints article.

Configuration

Microsoft 365 Push Journaling

Journaling from Microsoft 365 is used to push emails directly into the MailStore archive.

Create a Journaling Endpoint

To create a Journaling endpoint in MailStore AdminAccess:

Create a Journaling Endpoint in MailStore Cloud

1. AdminAccess -> Journal Endpoints -> Add journal endpoint
2. Give a name
3. Select a journaling mailbox. You should create a new mailbox in MailStore cloud only used for journaling. You can create a new mailbox directly from the “Select Mailbox” dialog by clicking on the + button.

Click on “Save”. After save the dialog will stay open and show a “SMTP Address” entry which can be copied: This will be used in the next step.

 

Configure Journaling in Microsoft Pureview

1. Navigate to the Microsoft Pureview Compliance portal: https://compliance.microsoft.com/
2. On the Compliance Portal, navigate to Solutions and Data lifecycle management.
3. From there, click on Journal rules and then New rule.
4. Paste the “SMTP Address” value copied from the AdminAccess into the “Send journal reports to” field
5. Enter a name in the Journal rule name text field.
6. Select a preference for Journal messages sent or received from.
7. Select a preference for Type of message to journal.
8. Click Next to review and submit the configuration in the next step.

Emails sent and received from now on should be redirected and archived automatically to MailStore Cloud. To archive already existing emails, you need to configure Mailbox archiving and run it once.

Note: If Non-Delivery Reports (NDRs) containing the X-MS-Exchange-Message-Is-Ndr mail header are sent to a journal endpoint, only the attached mail will be archived.

 

Exchange 2019 Journaling Method 1: Standard Mailbox Journaling

Create a journaling user and mailbox

1. Log on to the Exchange admin center of your Microsoft Exchange environment as an Exchange administrator.
2. Choose the recipients menu item.
3. In the mailboxes section, click on + (New) and choose User mailbox.
4. Enter a valid Alias (e.g. journal).
5. Select the option New user.
6. Enter the necessary data to create a new user.
7. Click on More options…
8. Click on Browse to select a mailbox database.
9. Click on save. The new user as well as the corresponding mailbox are created.

In MailStore Cloud you need to re-run the Directory Service Synchronization to add the new created user and mailbox.

Configure Journaling

1. Back to the the Exchange admin center of your Microsoft Exchange environment
2. Select the servers menu item.
3. On the databases tab, doubleclick on the mailbox database for which you want to set up journaling.
4. Select the maintenance tab.
5. Click on browse… next to the Journal recipient: box.
6. Select the user that was created in step 1 from the recipient list and confirm with OK.
7. Click on save to confirm the changes.

Create a Secret in MailStore AdminAccess

1. In MailStore Cloud create a secret to login to the journal mailbox
2. AdminAccess -> Secrets -> Add secret
3. Type: Basic Credentials
4. Enter a meaningful description
5. Enter username and password of the user created for the journaling previously
6. Click on save to confirm the changes.

Create an Archiving Profile in MailStore AdminAccess

1. AdminAccess -> Archiving Profiles -> Add archiving profile
2. Type: Exchange Server
3. Enter a name
4. Select “Single mailbox”
5. Select the mailbox previously created for journaling
6. Enter the exchange server’s hostname
7. Select the Credentials created in the previous step
8. The timeout can be left empty to use the default
9. Click on save to confirm the changes.

In the Archiving Profiles list, click on the “clock” icon on the previously created archiving configuration.

Select the recurrence: Archiving the Journal Mailbox should run periodically.

Save the configuration

Note: If Non-Delivery Reports (NDRs) containing the X-MS-Exchange-Message-Is-Ndr mail header are archived from a mailbox, for NDRs containing a journal report only the journal report will be archived, while for all other NDRs the whole NDR will be archived unchanged.

 

Exchange 2019 Journaling Method 2: Premium (Push) Journaling

Premium Journaling is used to push emails from the mailing system (in this case Exchange Server) directly into the archive

Notice: Premium journaling requires Exchange Enterprise CALs.

Create a Journaling Endpoint in MailStore Cloud

1. AdminAccess -> Journal Endpoints -> Add journal endpoint
2. Give a name
3. Select a journaling mailbox. You should create a new mailbox in MailStore cloud only used for journaling. You can create a new mailbox directly from the “Select Mailbox” dialog by clicking on the + button.

Click on “Save”. After save the dialog will stay open and show a “SMTP Address” entry which can be copied: This will be used in the next step.

Configure Journaling in Exchange 2019

1. Log on to the Exchange admin center of your Microsoft Exchange environment.
2. Select the compliance management menu item.
3. On the journal rules tab, click on + (New).
4. Enter a name for the journal rule, e.g. MailStore Journaling
5. In the If the message is sent to or received from… section select whether the rule should apply to all messages or to specific users or groups.
6. Under Journal the following messages…, choose whether to capture all messages, internally sent messages only, or only those messages with an external sender or recipient.
7. Paste the “SMTP Address” value copied from the AdminAccess into the “Send journal reports to” field
8. Click on save to activate the rule.

Please keep in mind that in complex Microsoft Exchange environments it may take several minutes until the new rule becomes effective.

 

Google Workspace Journaling

Create a Journaling Endpoint in MailStore Cloud

1. AdminAccess -> Journal Endpoints -> Add journal endpoint
2. Give a name
3. Select a journaling mailbox. You should create a new mailbox in MailStore cloud only used for journaling. You can create a new mailbox directly from the “Select Mailbox” dialog by clicking on the + button.

Click on “Save”. After save the dialog will stay open and show a “SMTP Address” entry which can be copied: This will be used in the next step.

Configure Journaling in Google Workspace

1. Log on to your Google Workspace domain as an administrator.
2. Navigate to Apps > Google Workspace > Gmail .
3. Click on Advanced settings on the Settings for Gmail page.
4. In the General Settings tab, scroll down to Routing.
5. Click Configure or Add Another to create a new routing rule. A new window appears.

1. Enter a name and enable all checkboxes in the Messages to affect section.
2. Under Also deliver to, activate the Add more recipients option and Add an additional delivery recipient.
3. Select Advanced from the drop-down list.
4. Activate the Change envelope recipient option.
5. Enter the SMTP email address created in the previous step into the Replace recipient field.
6. Activate the Do not deliver spam to this recipient option if desired.
7. Activate the Suppress bounces from this recipient option.
8. Activate the Add X-Gm-Original-To header option.
9. Click on Save further down the window and then on Add setting for a new rule or Save when modifying an existing rule.
10. Click on Save in the footer bar.