https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75403#M41966 <P>Yeah, I guess that's a good point.</P> <P>&nbsp;</P> <P>Question...What's Palo's answer to say Microsoft Office 365?</P> <P>&nbsp;</P> <P>My company with a user populous of 25k+ was an on-prem exchange enviornment. &nbsp;We've just completed an enterprise transition to Office 365.</P> <P>&nbsp;</P> <P>We're cracking SSL on this traffic so we can see inside the payload, but this traffic is no longer MAPI/SMTP as the Outlook clients actually makes a SSL connection now to a web URL.</P> <P>&nbsp;</P> <P>This seems like all those "cool" functions of wildfire WRT SMTP are now gone.</P> <P>&nbsp;</P> <P>Does anyone have any thoughts / comments / expereince with capes that exist in this type of an environment?</P> Tue, 29 Mar 2016 19:14:10 GMT Brandon_Wertz 2016-03-29T19:14:10Z https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75391#M41962 <P>The closest way to protect a SaaS email soltuion I have found is Proofpoint which has a wildfire API hook option.</P> <P>&nbsp;</P> <P>I am supprised there is no SaaS service for forwarding attechments or inline scanning of email directly from paloalto networks.</P> Tue, 29 Mar 2016 16:43:07 GMT https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75391#M41962 Tech101 2016-03-29T16:43:07Z https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75403#M41966 <P>Yeah, I guess that's a good point.</P> <P>&nbsp;</P> <P>Question...What's Palo's answer to say Microsoft Office 365?</P> <P>&nbsp;</P> <P>My company with a user populous of 25k+ was an on-prem exchange enviornment. &nbsp;We've just completed an enterprise transition to Office 365.</P> <P>&nbsp;</P> <P>We're cracking SSL on this traffic so we can see inside the payload, but this traffic is no longer MAPI/SMTP as the Outlook clients actually makes a SSL connection now to a web URL.</P> <P>&nbsp;</P> <P>This seems like all those "cool" functions of wildfire WRT SMTP are now gone.</P> <P>&nbsp;</P> <P>Does anyone have any thoughts / comments / expereince with capes that exist in this type of an environment?</P> Tue, 29 Mar 2016 19:14:10 GMT https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75403#M41966 Brandon_Wertz 2016-03-29T19:14:10Z https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75404#M41967 <P>This is exactly my point,&nbsp;Aperture support "Office 365" however only the sharepoint parts / onedrive. Which seems odd.</P> <P>&nbsp;</P> <P>Microsoft offers a sandbox&nbsp;detonation feature in their advanced filtering package and there are&nbsp;third parties that act as a front end relay to provide filtering.</P> <P>&nbsp;</P> <P>For wildfire to be most effective the payload needs to be inspected and flagged as early as possible then blocked everywhere as fast as possible.</P> Tue, 29 Mar 2016 19:20:30 GMT https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75404#M41967 Tech101 2016-03-29T19:20:30Z https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75805#M42076 <P>Well&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/24493">@Tech101</a>&nbsp;no responses yet, but this just did come out:</P> <P>&nbsp;</P> <P><A href="https://www.brighttalk.com/webcast/10903/195427?utm_medium=email&amp;utm_source=Adobe%20Campaign&amp;utm_campaign=FY16Q3%20Nagoya%2FPrevention%20Week%2005Apr16_0-1%20month" target="_blank">https://www.brighttalk.com/webcast/10903/195427?utm_medium=email&amp;utm_source=Adobe%20Campaign&amp;utm_campaign=FY16Q3%20Nagoya%2FPrevention%20Week%2005Apr16_0-1%20month</A></P> <P>&nbsp;</P> <P>I'm sure you also saw the e-mail. &nbsp;Hopefully it'll provide some good info.</P> Tue, 05 Apr 2016 17:25:02 GMT https://live.paloaltonetworks.com/t5/general-topics/no-email-protection-for-saas/m-p/75805#M42076 Brandon_Wertz 2016-04-05T17:25:02Z