Messageware EPG for
Exchange Server Security

Messageware Exchange Protocol Guard (EPG) provides on-premises Microsoft Exchange with enhanced security through real-time collection of logon information, analysis, threat detection, and security controls for nine of the most widely used messaging protocols.

Empty tab. Edit page to add content here.

Stop AD Account Lockouts

Password attacks across all Exchange protocols are intelligently identified and automatically stopped, preventing legitimate user accounts from being locked or passwords guessed. Simultaneously, it isolates incoming attack sources putting a stop to any additional malicious activity.

Ban Countries and Hackers

Restrict access based on countries and geographical locations. Utilizing EPG’s real-time threat feeds, devices recognized as malicious are immediately banned. But, why wait and permit potentially harmful connections from geo-locations where your organization lacks offices or employees? Effortlessly choose and implement geographic banning rules for your Exchange Servers.

Protect against High-Volume Attacks (HVA)

Identify and stop brute force attacks. Brute forcing triggers mass Active Directory lockouts that prevent all affected users from logging on. Brute forcing steals logon credentials that are then used in attacks on the whole network.

Protect against Low-Volume Attacks (LVA)

Identify and stop targeted persistent password guessing attacks. LVA-ATP attacks evade traditional detection by attacking below Active Directory lockout thresholds. LVA-ATP attacks steal high-value logon credentials to target critical systems and data.

Anti-Probing & Real-time Threat Data Feeds

Threat data feeds provide highly accurate, real-time data to ensure connections are not from malicious sources, vulnerability probing, or compromised users. Verify the legitimacy of all connection requests and ensure only legitimate corporate users are connecting.

Advanced security intelligence

Teams of resources would be needed to match the automated data collection and intelligent analysis. Simplified alerts, reports, and tools make it easy to identify and investigate suspicious activity and respond to threats.

Lock down 2FA vulnerabilities

Many popular Multifactor Factor Solutions, such as DUO, do not protect Exchange Services such as EWS, ActiveSync and Autodiscover. By combining 2FA and EPG, all key Exchange Services will be secured.


For organizations without multi-factor for OWA , EPG provides Dynamic CAPTCHA. With configurable security triggers, Dynamic CAPTCHA enhances Outlook Web and ECP logon pages to challenge users and bots.

Reporting Services

Fully integrated with SQL reporting, built-in and custom reports provide high-level views of  all connections to the Exchange Server. Easily drill down to raw data to investigate the health of the system and the impact of any security incidents.

Automatic alerts

Password failure alerts, blocked connections digests, and summary reports can be configured to automatically provide the security team with key data to proactively manage the environment. Delays in detection and response are costly.

Reduce help desk support load

EPG maintains a lockout system independent of active directory. This eliminates the need for constant password resets that can occur during brute force and password spray attacks.

Security policies and enforcement

Configure EPG to comply with and enforce corporate security policies.

Video Demo

High Volume Attacks On Exchange Servers

Enhance Microsoft Exchange Server Protection

  • Advanced Logon Intelligence: EPG monitors and controls logon activities, identifying potential risks from attacks against nine unprotected Exchange Server Services.
  • Protection Against Various Attacks: Guards against brute force, password spraying, and Denial of Service (DoS) attacks that threaten corporate networks.
  • Real-time Reporting and Alerts: Offers extensive, real-time insights and alerts on suspicious connections to prevent unauthorized access.
  • Sophisticated Access Controls: Includes a comprehensive set of access controls to safeguard key Exchange Services and Outlook platforms (web, desktop, mobile).
  • Complete Security Intelligence Solution: Designed as a full-fledged Exchange Server security intelligence solution with real-time monitoring for enhanced protection.
Messageware provides Exchange Server Security by protecting multiple protocols that 2FA leaves vulnerable