Windows Defender Advanced Threat Protection (ATP) Support RRS feed

  • Question

  • Hi, I want to deploy Advanced Threat Protection (ATP) on my on-premise exchange server 2016, I would like to have you help on sharing the articles over the implementation of  Advanced Threat Protection (ATP),


    Do we need to have Microsoft Exchange Online Protection (EOP)  to implement the  Advanced Threat Protection (ATP)

    Thanks and regards


    Sunday, October 22, 2017 2:47 PM

All replies

  • Hi,

    To deploy Office ATP for your Exchange 2016 you need to work with EOP, that means you need to move your local MX record and all SMTP traffic to EOP.
    Once you configured your mail flow with EOP you can configure Office ATP for your Exchange environment.

    In a hybrid deployment, EOP and ATP can be configured to protect your messaging environment and control mail routing when you have a mix of on-premises and cloud mailboxes.

    In addition to Office ATP, you can enable Windows Defender ATP for your Windows Server (where Exchange 2016 located) to provide another security level for the advanced attack.



    Monday, October 23, 2017 5:27 AM
  • Thanks for your reply

    I received an email from Microsoft Online Services Support it can be used on-premise exchange server. we have only on-promise exchange 2016 and no hybrid

    • Edited by Wael_Expat Monday, October 23, 2017 6:30 AM
    Monday, October 23, 2017 6:25 AM
  • Hi,

    Even you're using only Exchange Onprem when you want to work with EOP and ATP you must create the "hybrid" just for mail flow.

    Follow the best practice for EOP, https://technet.microsoft.com/en-us/library/jj723164%28v=exchg.150%29.aspx?f=255&MSPPError=-2147217396



    Tuesday, October 24, 2017 5:26 AM