Data That Will Be Migrated

All settings in IMSS or IMSVA will be migrated to Trend Micro Email Security completely or partially except those listed in Data That Will Not Be Migrated. Among the settings that are partially migrated, some are modified to adapt to Trend Micro Email Security due to the feature differences between IMSS or IMSVA and Trend Micro Email Security. Therefore, you need to confirm or fix these settings according to the on-screen instructions after migration.

The following table lists some examples of the settings that will be partially migrated and describes the feature differences.
Note:

For details about all the settings that are completely or partially migrated, see the data migration report downloaded from the Trend Micro Email Security administrator console when the migration completes.

Navigation in IMSS or IMSVA

Source Settings

Navigation in Trend Micro Email Security

Destination Settings

Feature Differences

Policy > Policy List

The following settings on the Step 1: Select Recipients and Senders screen:
  • Sender
  • Recipient
  • Sender to recipient exception

The following submenus under the Inbound Protection and Outbound Protection menus:

  • Virus Scan

  • Spam Filtering
  • Content Filtering

  • Data Loss Prevention (DLP)

The following settings in the Senders section of the Recipients and Senders tab:
  • Sender
  • Recipient
  • Sender to recipient exception

LDAP users in IMSS or MISVA are migrated as static email addresses in Trend Micro Email Security.

Condition match settings on the Step 2: Select Scanning Conditions screen

  • Inbound Protection > Content Filtering

  • Outbound Protection > Content Filtering
Condition match settings in the Advanced section of the Scanning Criteria tab

Only content filtering supports all condition matched (AND).

True file type settings in the Attachment section of the Step 2: Select Scanning Conditions screen

  • Inbound Protection > Content Filtering

  • Outbound Protection > Content Filtering

True file type settings in the Advanced section of the Scanning Criteria tab

Trend Micro Email Security does not support MSI, PNG, 7-Zip, or Microsoft Windows shortcuts.

Policy > Approved List

The settings of the following approved lists:
  • DKIM approved list
  • Web reputation approved list
  • URL keyword list
  • Inbound Protection > Domain-based Authentication > DomainKeys Identified Mail (DKIM) Verification (Ignored peers of the Default domain)

  • Administration > Policy Objects > Web Reputation Approved List

  • Administration > Policy Objects > URL Keyword Exception List

The settings of the following approved lists:
  • DKIM approved list
  • Web reputation approved list
  • URL keyword exception list

None

Policy > Policy Objects > Address Groups

Name and address settings of an address group

Administration > Policy Objects > Address Groups

Name and address settings of an address group

Trend Micro Email Security supports wildcard domains (for example, *@*.example.com) in hybrid address groups, and does not support wildcard domains in internal address groups.

If an address group is used as senders (or sender exceptions) in outbound policies or recipients (or recipient exceptions) in inbound policies and the group contains email addresses from unmanaged domains, Trend Micro Email Security will create a copy of the address group, delete those email addresses from the copy, and suffix the copy name with " - internal".

Policy > Policy Objects > Keywords & Expressions

Match settings of a keyword or expression

Administration > Policy Objects > Keywords and Expressions

Match settings of a keyword or expression

None

Policy > Policy Objects > Policy Notification

Variables list in the settings of a policy notification

Administration > Policy Objects > Notification

Variables list in the settings of a policy notification

Trend Micro Email Security does not support the following variables:
  • %RULETYPE%

  • %ENTITY%

  • %QUARANTINE_PATH%

  • %QUARANTINE_AREA%

  • %PROTOCOL%

  • %HOSTNAME%

  • %MAILCHARSET%

  • %SUSPICIOUS_URL%

Sender Filtering > Approved List

The following settings of an approved list:
  • IP addresses

  • Groups of computers

Note:

Trend Micro Email Security migrates IP addresses and groups of computers from IMSVA only if the Email Reputation and IP Profiler check box to the right of Apply to is selected. This restriction does not apply to IMSS.

Inbound Protection > Connection Filtering > IP Reputation > Approved IP Addresses

IP address settings in the IP addresses section

Trend Micro Email Security does not support the following settings:
  • IP addresses resolved from domains

  • Private IP addresses

  • IP addresses in disabled approved lists

Sender Filtering > Blocked List

The following settings of a blocked list:
  • IP addresses

  • Groups of computers

Note:

Trend Micro Email Security migrates only IP addresses and groups of computers whose Action is Block Permanently.

Inbound Protection > Connection FilteringIP Reputation > Blocked IP Addresses

IP address settings in the IP addresses section

Trend Micro Email Security does not support the following settings:
  • IP addresses resolved from domains

  • Private IP addresses

  • IP addresses in disabled blocked lists

Sender Filtering > DMARC

DMARC settings

Note:

DMARC settings are available only in IMSVA.

Inbound Protection > Domain-based Authentication > Domain-based Message Authentication, Reporting and Conformance (DMARC)

DMARC settings

Trend Micro Email Security does not support DMARC exception lists in the format of IP addresses.

Administration > IMSVA Configuration > DKIM Signature

Advanced settings of DKIM signatures

Note:

DKIM signatures are available only in IMSVA.

Outbound Protection > DomainKeys Identified Mail (DKIM) Signing

Advanced settings of DKIM signatures

Trend Micro Email Security does not support exempt domains.