Transcription

Solution ctorySkype forBusiness ServerExchage Reporter Plus serverwww.exchangereporterplus.com

Document overviewExchange Reporter Plus is a comprehensive reporting, change auditing, and monitoring solution for ExchangeServers, Exchange Online, and Skype for Business Server. This document provides a detailed look into itsarchitecture, the purpose of each of its modules, and how these modules communicate with each other.Overall architectureWeb ClientAdmin/TechnicianExchage Reporter Plus web server (Tomcat)Port (HTTP/HTTPS): QL or MS SQL)MonitoringmoduleContent SearchmoduleData ArchiveSMS serverSMS alertsEmail serverEmail alertsExport reportsActiveDirectoryExchangeServerSkype forBusiness ServerExchangeOnlineExchange Reporter Plus modulesWeb clientExchange Reporter Plus provides a browser-based client that can be accessed by entering the IP address orhost name and port number of the Exchange Reporter Plus server as the URL. The web client can beaccessed from any machine that is connected to the Exchange Reporter Plus server.E.g.: http://testserver:8181 (or) com

ServerThe Exchange Reporter Plus Server module contains a Tomcat web server and other sub modules thatgenerate the reports. This server can be accessed through the Exchange Reporter Plus web client toconfigure Exchange servers, Skype servers, Office 365 tenants, and product-related settings. The ExchangeReporter Plus server, based on the settings enabled by the admin, collects data from the connected systems,and stores it in the database. Admins can then use the reporting, auditing, and monitoring modules togenerate reports and alerts from this data through the server, and view it using the web client. We recommendkeeping the Exchange Reporter Plus Server active at all times so that data is collected continuously and noimportant action is missed from being tracked.DatabaseExchange Reporter Plus comes built-in with a PostgreSQL database. You can also configure an external MSSQL or PostgreSQL database with the product. The database stores all the product configuration details suchas audit profiles, report profiles, technician details, and more. Further, all actions performed using ExchangeReporter Plus are recorded as audit reports, and are stored in the product’s database. To ensure security, thedatabase is password protected and sensitive information of the users, such as the default admin accountpassword, is encrypted using the bcrypt algorithm.Communication between the client, server, and databaseTo access the web client, users need to be successfully authenticated. Exchange Reporter Plussupports two forms of authentication: Exchange Reporter Plus authentication for accounts that arecreated in the product and Active Directory (AD) authentication for users imported from AD. In boththe cases, users need to enter their respective username and password to log in to the web client.Whenever a user executes an action, such as generating a report, the client sends the request to theExchange Reporter Plus server. The communication between the client and the server can be securedby enabling HTTPS after applying an SSL certificate.Based on what the user has requested, the various modules in the server—reporting, auditing,and monitoring—swing into action and fetch the data from the product database, then send itback to the client.All the actions carried out by users in Exchange Reporter Plus are recorded in an audit reportand stored in the product database.2www.exchangereporterplus.com

Exchange Server reporting, auditing, andmonitoring architectureExchange OrganizationDomainController(Event logs)Global CatalogHub Transport roleClient Access roleMailbox role(General data such asmailbox features andpermissions)(message tracking logsfor mail traffic)(IIS logs for OWA,ActiveSync, etc.)(Mailbox content,Public Folder content,Storage, etc.)Shared folderEWS/PoswerShellLDAPAdmin/TechnicianShared folderExchangeReporter PlusclientExchangeReporter PlusserverDatabase(pgSQL or MS SQL)For Exchange Server reporting, auditing, and monitoring, Exchange Reporter Plus collectsinformation from the following entities.From the AD domain controller, event logs are collected for auditing reports based on theaudit profiles created by the admin.From the Global Catalog server, data such as mailbox features, permissions, etc.,are collected using LDAP.From the server that holds the Hub Transport and Client Access roles, Exchange Reporter Pluscollects message tracking logs (for mail traffic reports), and IIS logs (for OWA, ActiveSync reports),respectively. This data is then stored in a shared folder.From the server that holds the Mailbox Server role, data related to mailbox and public foldercontent reports, mailbox storage size, advanced auditing, and monitoring reports are collectedusing Exchange Web Services and PowerShell.The collected data is then stored in the product database for further processing and analysis,and can be retrieved anytime.3www.exchangereporterplus.com

Exchange Online reporting and auditing architectureMicrosoft 365PowerShellExchangeReporter PlusclientAdmin/TechnicianExchangeReporter PlusserverDatabase(pgSQL or MS SQL)For Exchange Online reporting and auditing, Exchange Reporter Plus collects information directly from theOffice 365 tenant using PowerShell. The collected information is then stored in the database for furtherprocessing and analysis. It can be retrieved anytime.Skype for Business Server reporting architectureSkype OrganizationSkype/Lync Server(Lync serverOrganization data)(Lync configurationdetails)(Condference, IM,audio/video, and filetransfer activities)LDAPPowerShellDB queryAdmin/Technician4Lync backendMS SQLm serverGlobal CatalogExchangeReporter PlusclientExchangeReporter PlusserverDatabase(pgSQL or MS SQL)www.exchangereporterplus.com

For Skype for Business server reporting, Exchange Reporter Plus collects informationfromthe following entities.From the Global Catalog server, Skype for Business organization data is collected using LDAP.From the Skype for Business Server, configuration details of the server arecollected using PowerShell.Form the MS SQL server connected to the Skype for Business Server, various user activitiessuch as conference details, instant messaging details, audio/video calls, and file transfer detailsare collected using database query.The collected data is then stored in the product database for further processing and analysisand can be retrieved anytime.Exchange Server content search architectureAutodiscover lookupBasic authertication over SSLHTTPSSOAPXMLOAuth authorizationExchange Reporter PlusMicrosoft 365For Exchange Server content search, the solution requests information from the Exchange store to collectreal-time data from mailboxes using the Exchange Web Services (EWS) Managed API. The collectedinformation is then stored in the product database for further processing and analysis.5www.exchangereporterplus.com

Ports used by Exchange Reporter Plus6SourceDestinationPortDescriptionExchange Reporter PlusExchange Server135RPCExchange Reporter PlusActive Directory389LDAPExchange Reporter PlusActive Directory636LDAP SSLExchange Reporter PlusActive Directory3268LDAP Global CatalogExchange Reporter PlusActive Directory3269LDAP Global Catalog (SSL)Exchange Reporter PlusActive Directory53DNSExchange Reporter PlusActive Directory88KerberosExchange Reporter PlusActive Directory139NetBIOSExchange Reporter PlusExchange Server5985Windows PowerShell defaultpsSession portExchange Reporter PlusExchange Server53Windows PowerShell defaultpsSession port (SSL)Exchange Reporter PlusExchange Server80PowerShellExchange Reporter PlusExchange Server443PowerShell (SSL)Exchange Reporter PlusMS SQL connected to theSkype for Business Server1443DB queryExchange Reporter PlusMS SQL connected to theSkype for Business Server1434To find SQL instanceswww.exchangereporterplus.com

Related documentsThe table below lists some resources related to Exchange Reporter Plus that you may find useful.ResourceWhat is it about?Admin guideThis is an all-inclusive guide that covers all the aspects of theproduct and provides step-by-step instructions on how to configureand use the various settings it provides.SSL configuration guideThis guide provides step-by-step instructions on how to apply anSSL certificate in the product, and enable a secure connection(HTTPS) between the browser and Exchange Reporter Plus server.Database maintenance guideThis guide contains frequently asked questions about databasemaintenance in Exchange Reporter Plus.[E-book] Securing ExchangeThis e-book lists the best practices for securing yourwith Exchange Reporter PlusExchange environment.Reverse proxy guideThis guide provides step-by-step instructions on how to enablea reverse proxy for Exchange Reporter Plus.About Exchange Reporter PlusExchange Reporter Plus is a reporting, change auditing, monitoring, and content search tool for hybridExchange and Skype for Business. It features over 450 comprehensive reports on various Exchange objectssuch as mailboxes, public folders, and distribution lists, and also on Outlook Web Access and ActiveSync.Configure alerts in Exchange Reporter Plus for instant notifications on critical changes that require yourimmediate attention.

(Lync server Organization data) Skype/Lync Server (Lync configuration details) Lync backend MS SQLm server (Condference, IM, audio/video, and file . Reverse proxy guide This guide provides step-by-step instructions on how to enable a reverse proxy for Exchan