Managing the security policy of an email service

Find out how to manage the security policy of your email service

Last updated 22nd April 2022

Objective

With OVHcloud email services, you can create professional email addresses. In order to secure this environment, you can manage the global security settings of your email accounts.

Find out how to manage the security policy of your email service.

Requirements

Instructions

The security policy management of your email service has four aspects:

  • enhancing email account security when users try to log in
  • adding complexity to the security of your email account passwords
  • strengthening the verification of incoming messages on our servers and to your email addresses (for Exchange accounts only)
  • configuring how so-called “unwanted” messages will be displayed in your inbox (for Exchange accounts only)

To access the security policy of your email service, log in to your OVHcloud Control Panel and make sure you are in the Web Cloud section.

Emails and Email Pro Exchange
Click on Emails or Professional Email , then click on the solution you want to manage. Click on the More tab, then on Manage security policy. Click on Microsoft, then on Exchange, and select the solution you want to manage. Click on Security.
exchangesecurity exchangesecurity

If you do not see the More tab appear in the control panel of your Emails service, this means that you are on a legacy MXplan offer. There is no security policy management on the legacy MXplan solution.

Continue to the aspect(s) you want to modify.

Enhance connection security

This allows you to set whether email accounts should lock after a number of unsuccessful log-in attempts.

To make this change, enter the information listed in the table below:

  • Lockout threshold: Set the number of unsuccessful log-in attempts before the account locks. Enter "0" to not apply a lockout threshold.
  • Lockout counter reset time: This field will only appear if a lockout threshold has been set. Specify the time it takes for the failed connection attempt counter to reset.
  • Account lockout duration: This field will only appear if a lockout threshold has been set. Specify the time period during which the Exchange account will remain locked if the lockout threshold has been reached.

Once this information has been entered, you can save these changes for Email and Email Pro solutions by clicking on Next, then Confirm. For the Exchange solution, click Save changes.

Add complexity to the security of passwords

This allows you to set a complexity requirement, as well as rules for changing passwords.

To make this change, enter the information listed in the table below:

  • Complexity requirements: Allows user to set rules regarding the complexity of passwords:
    - not contain all or part of the user’s account name
    - be at least 6 characters long
    - contain uppercase and lowercase letters, non-alphabetic characters (! or $ for example), and numbers.
  • Prevent password change: Allows to enforce a minimum lifetime for your Exchange accounts’ passwords. This means that users will have to wait a certain number of days before they can change their passwords.
  • Maximum password duration: Allows to enforce a maximum lifetime for your Exchange accounts’ passwords. This means that users will be forced to change their passwords once this time limit is reached.
  • Keep password history: This field will only appear if a maximum lifetime has been set. Specify whether previous passwords can be reused again, and if so, for how long.
  • Minimum password length: Allows to set a minimum size for password length when a user wants to change it.

Once this information has been entered, you can save these changes for Email and Email Pro solutions by clicking on Next, then Confirm. For the Exchange solution, click Save changes.

Strengthen the verification of incoming messages (Exchange only)

This allows you to specify whether our servers should check if the messages received in your email accounts come from a legitimate source (DKIM and/or SPF checks).

To set this, tick the desired boxes listed in the table below:

  • Activate DKIM signature verification: Define whether our servers should check the DKIM signature of the messages you receive on your Exchange accounts. This action guarantees the authenticity of the sending domain and the integrity of the message, making it possible to identify non-legitimate mailings, which will then be marked as spam.
  • Activate SPF protection verification: Define whether our servers must verify that the source of the messages you receive is present in the SPF record of the sender domain. This verification can identify illegitimate mailings, which will then be marked as spam.

Once you have made your choice, confirm these changes by clicking Save changes.

Define the display of unwanted messages (Exchange only)

This allows you to define whether unwanted messages you receive on your email accounts should be tagged to identify them, or automatically moved to the trash.

To set this, tick the respective boxes listed in the table below:

  • Identify SPAM email: Specify whether our servers should add a tag to identify received messages that are considered "unwanted" as spam.
  • Move SPAM to junk: Specify whether our servers should automatically move any "unwanted" messages to the trash.

Once you have made your choice, confirm these changes by clicking Save changes.

Go further

Join our community of users on https://community.ovh.com/en/.


Did you find this guide useful?

Please feel free to give any suggestions in order to improve this documentation.

Whether your feedback is about images, content, or structure, please share it, so that we can improve it together.

Your support requests will not be processed via this form. To do this, please use the "Create a ticket" form.

Thank you. Your feedback has been received.


These guides might also interest you...

OVHcloud Community

Access your community space. Ask questions, search for information, post content, and interact with other OVHcloud Community members.

Discuss with the OVHcloud community

In accordance with the 2006/112/CE Directive, modified on 01/01/2015, prices incl. VAT may vary according to the customer's country of residence
(by default, the prices displayed are inclusive of the UK VAT in force).