Using an Exchange Server to Configure Security

First, if the users are working in an Exchange environment (or your application will be used with an Exchange Server), you have the capability to configure the Administrative Options Package for Exchange Server to allow mails to be sent automatically without security dialog boxes. The package allows users to permit programmatic sending of e-mail through configuration of a public folder and custom form stored on the Exchange Server. The advantage of this system is that you don't need to touch the client machines at all. Once the form is installed in the public folder on the server, all you need to do is decide which types of programmatic access are needed. This package provides options to access the address book, use the Send method, and a variety of other types of settings (such as attachment blocking). The major disadvantage to this method is that unless you're writing code within a COM add-in for Outlook, allowing programmatic sending is an all-or-nothing proposition. That is, if you allow one application to send e-mails without discretion, you allow all applications using the Outlook Object Model to send e-mail without security warnings. Enabling these features on Exchange removes security restrictions that block potential viruses that propagate via e-mail sent from Outlook, so it is important to be extremely careful when choosing to modify the Exchange Server security settings. If you choose to use the Administrative Options package, make sure that users have virus software for both the client machines and the Exchange Server machine.

0 0

Post a comment