Messageware EPG for
Exchange Server Security

Messageware Exchange Protocol Guard (EPG) provides on-premises Microsoft Exchange with enhanced security through real-time collection of logon information, analysis, threat detection, and security controls for nine of the most widely used messaging protocols.

Empty tab. Edit page to add content here.

Messageware Exchange Protocol Guard (EPG) provides advanced logon intelligence and control for Microsoft Exchange Servers by monitoring potential risks from attacks against Exchange Server Services. These services are unprotected, even if you are using 2FA / MFA solutions. Hackers probe for exploitable Exchange Services leading to attacks like brute force password guessing, password spraying, and Denial of Service (DoS). These cause Active Directory (AD) lockouts, create havoc in your support center, and lead to stolen credentials that are used to compromise corporate networks.

EPG offers advanced Exchange Server security to protect organizations from logon and password attacks, in addition to extensive real-time reporting and alerts of suspicious connections. EPG is uniquely designed to protect key Exchange Services and Outlook (web, desktop, mobile). EPG includes a sophisticated set of access controls and real-time monitoring making it a complete Exchange Server security intelligence solution.

Messageware provides Exchange Server Security by protecting multiple protocols that 2FA leaves vulnerable

 Protect against High-Volume Attacks (HVA)

Identify and stop brute force attacks. Brute forcing triggers mass Active Directory lockouts that prevent all affected users from logging on. Brute forcing steals logon credentials that are then used in attacks on the whole network.

 Protect against Low-Volume Attacks (LVA)

Identify and stop targeted persistent password guessing attacks. LVA-ATP attacks evade traditional detection by attacking below Active Directory lockout thresholds. LVA-ATP attacks steal high-value logon credentials to target critical systems and data.

 Threat & anti-probing real-time data feeds

Threat data feeds provide highly accurate, real-time data to ensure connections are not from malicious sources, vulnerability probing, or compromised users. Verify the legitimacy of all connection requests and ensure only legitimate corporate users are connecting.

 Advanced security intelligence

Teams of resources would be needed to match the automated data collection and intelligent analysis. Simplified alerts, reports, and tools make it easy to identify and investigate suspicious activity and respond to threats.

Lock down 2FA vulnerabilities

Many popular Multifactor Factor Solutions, such as DUO, do not protect Exchange Services such as EWS, ActiveSync and Autodiscover. By combining 2FA and EPG, all key Exchange Services will be secured.


For organizations without multi-factor for OWA , EPG provides Dynamic CAPTCHA. With configurable security triggers, Dynamic CAPTCHA enhances Outlook Web and ECP logon pages to challenge users and bots.

Reporting Services

Fully integrated with SQL reporting, built-in and custom reports provide high-level views of  all connections to the Exchange Server. Easily drill down to raw data to investigate the health of the system and the impact of any security incidents.

Automatic alerts

Password failure alerts, blocked connections digests, and summary reports can be configured to automatically provide the security team with key data to proactively manage the environment. Delays in detection and response are costly.

Reduce help desk support load

EPG maintains a lockout system independent of active directory. This eliminates the need for constant password resets that can occur during brute force and password spray attacks.

Security policies and enforcement

Configure EPG to comply with and enforce corporate security policies.