Hi,
We’ve recently implemented an Outlook Web Access server for our internal staff to access their email on the go. The problem is that we are noticing a large number of regular “failed logins” in our security logs on this server, where it would appear that hackers are using an automatic program to try logging in with a huge number of bogus user names.
As an interim solution we have adjusted the security within Internet Service Manager to only accept traffic from known IP addresses, however this is proving to be difficult to manage as the ISP’s and locations from which staff want to access our server increases.
Does anyone have any recommendations for a best-practice solution to this problem? Are there specific technologies or products that can be put in place to minimise these types of automated attacks?
I’d be interested in hearing from anyone with suggestions on this topic!
Thanks in advance,
Brendan.
