Messageware for
Exchange Server Security

Messageware Exchange Protocol Guard (EPG) provides on-premises Microsoft Exchange with enhanced security through real-time collection of logon information, analysis, threat detection, and security controls for six of the most widely used messaging protocols.

Empty tab. Edit page to add content here.

Messageware Exchange Protocol Guard (EPG) provides advanced logon intelligence and control for Microsoft Exchange Servers by monitoring potential risks from attacks through a variety of Exchange Services, including real-time monitoring of Outlook Web, EWS, ActiveSync and AutoDiscover. These services are usually left unprotected, even if you are using 2FA / 2-Factor Authentication like DUO. Hackers use these exploitable Exchange Services to probe your security with attacks such as brute force password guessing, password spraying, and Denial of Service (DoS) that can lock out your users and create havoc in your support center, not to mention the risk of stolen credentials.

Logon protection and user and system alerts, combined with EPG’s in-depth analytical reporting, provide a complete Exchange Services security intelligence solution. With EPG, Enterprises have the tools and up-to-date information needed to ensure the integrity of users’ accounts and corporate data. IT administrators and security professionals can immediately analyze, customize, and refine their security policies. Armed with information, companies are able to identify and defend against a multitude of modern-day threats to their Exchange system.

EPG offers advanced Exchange Server security to protect organizations from a variety of logon and password attacks, in addition to extensive real-time reporting and alerts of suspicious logon activity. EPG is uniquely designed to protect key Exchange Services and Outlook (web, desktop, mobile). EPG includes a sophisticated set of access controls and real-time monitoring of potential risks. EPG is a complete Exchange Server security intelligence solution.

Block Threats

Multifactor Factor Solutions do not protect all messaging protocols. Combine 2FA with EPG and secure all key protocols.

Detect suspicious activity

Continuous monitoring and alerts combined with the analysis tools to investigate suspicious activity and quickly respond to security threats.

Lock down what 2FA leaves vulnerable

Many popular Multifactor Factor Solutions, such as DUO, do not protect Exchange Services such as EWS, ActiveSync and AutoDiscover. By combining 2FA and EPG, all key Exchange Services will be secured.


For organizations who are not using a 2FA, EPG provides Dynamic OWA CAPTCHA. Dynamic CAPTCHA for Outlook Web becomes active for an individual user based on configurable security triggers.

Reporting / Analytical Services

Trace usage patterns and detect, evade, and analyze threats. Provides a full range of out of the box services to help you create, deploy, and manage your organization’s security data. Quickly determine the extent and impact of the security incident.

Generate automatic alerts

Event time notification identifies and reports suspicious behavior. A delay in detection and response can be costly.

Reduce the load on your Support Desk

EPG maintains a lockout system independent of active directory. This eliminates the need for constant password resets that can occur during brute force and password spray attacks.

Customizable logon policies and security checks

Configure EPG to comply with individual corporate security plans.