What is the difference between MetaDefender Email Security 3.X vs 4.X?

If you are running a previous version of MetaDefender Email Security, OPSWAT recommends upgrading to the latest released version whenever it is practically possible. For users who may be using MetaDefender Email Security 3.X, there are significant architectural differences when upgrading to the latest version. To help with the upgrade, the table below compares the functionality between the two generations of the product and provides links to any relevant documentation.

Feature

MetaDefender Email 3.X

MetaDefender Email Security 4.X

3.X Documentation

4.X Documentation

MetaDefender Core compatibility

CORE V3

CORE V4.7.0+

 

2.1.2 System requirements

 

 

 

 

 

Licensing

BUNDLED INTO CORE

STANDALONE

 

2.4 MetaDefender Email Security licensing

Based on count of recipient email addresses

NO

YES

 

2.4.3 Maximum number of email addresses

 

 

 

 

 

Security

 

 

 

 

Accountability

SINGLE ACCOUNT

PER USER ACCOUNT

 

3.3 User management

Human Authentication

GROUP PASSWORD

PER USER PASSWORD

 

3.3 User management

Machine Authentication

API KEY

API KEY

 

3.3 User management

Inbound SMTP TLS version negotiation

TLS 1.0 ONLY

NEGOTIABLE

 

 

TLS version customization

NO

YES

 

Via OS configuration (Use https://www.nartac.com/Products/IISCrypto) to easily configure

TLS cipher customization

NO

YES

 

Via OS configuration (Use https://www.nartac.com/Products/IISCrypto) to easily configure

Inbound SMTP over TLS

NO

YES

 

 

 

 

 

 

 

Access control

EXPLICIT

RBAC

 

3.3 User management

Role based access control

NO

YES

 

 

User management

NO

YES

 

 

Active Directory integration

NO

YES

 

 

 

 

 

 

 

User interface

BUNDLED INTO CORE

STANDALONE

 

 

Dashboard

BUNDLED INTO CORE

OWN

 

4.1 Dashboard

Dashboard auto-refresh

NO

CONFIGURABLE

 

Dashboard

images/download/attachments/37404565/image2019-5-27_9-28-17.png

Email history

YES

YES

Email History

4.4 Email history

Scan details in email history

NO

YES

 

4.4 Email history (Email details)

Email history cleanup

NO

YES

 

Audit > Email History / CLEANUP

images/download/attachments/37404565/image2019-5-27_9-29-19.png

Configuration history

NO

YES

 

4.11 Config history

Configuration diffs

NO

YES

 

4.11 Config history

History auto cleanup

YES

YES

Configuration From Config File (MetaDefender.Engine.History.dll.config
> HistoryEntryExpireSpan)

3.4 General settings (Data retention)

History custom date filtering

NO

YES

 

Audit > Email History images/download/attachments/37404565/image2019-5-27_9-32-45.png

Audit > Refused Emails images/download/attachments/37404565/image2019-5-27_9-32-52.png images/download/attachments/37404565/image2019-5-27_9-31-7.png

Audit > Config History / FILTER BY DATE

images/download/attachments/37404565/image2019-5-27_9-31-44.png

Search keys

NAME

MULTIPLE

Not documented

4.10 Search.html

Full-text search

NO

YES

 

4.10 Search.html

Policy

PARTIAL

YES

Single workflow

4.2 Security rules

Inventory

NO

YES

 

3.7 Server profiles

Web-based configuration settings

PARTIAL

YES

Some global settings configurable via UI or REST API, others via config files

3.4 General settings

Batch operations

PARTIAL

YES

 

 

 

 

 

 

 

Resource management

 

 

 

 

Core load balancing

YES

YES

Configuration From Config File (MetaDefender.Scanner.dll.config)

3.7 Server profiles

3.7.1 MetaDefender Core specific inventory properties

Core high availability

YES

YES

Configuration From Config File (MetaDefender.Scanner.dll.config)

3.7 Server profiles

3.7.1 MetaDefender Core specific inventory properties

SMTP relay load balancing

NO

YES

 

3.7 Server profiles

SMTP relay high availability

YES

YES

Configuration From Config File (MetaDefender.Email.Engine.Generic.Agent.dll.config > EmailRelayOutHosts)

3.7 Server profiles

 

 

 

 

 

Workflow

 

 

 

 

Security rules

IMPLICIT

YES

 

4.2 Security rules

Workflow

SINGLE

PER RULE

Email Processing Workflow (MetaDefender Core)

4.2 Security rules

Email filtering

NO

PER RULE

 

4.2 Security rules

Email routing

SINGLE

PER RULE

 

4.2 Security rules

Override Core results

NO

PER RULE

 

4.2 Security rules

Bypass Core

NO

PER RULE

 

4.2 Security rules (Advanced scan settings)

Core rule selection

SINGLE

PER RULE

 

4.2 Security rules

 

 

 

 

 

Email processing

 

 

 

 

Scan emails and attachments

YES

YES

Email Processing Workflow (MetaDefender Core)

4.2 Security rules

Sanitize emails and attachments

YES

YES

 

 

Block emails and attachments

ATTACHMENTS ONLY

YES

 

 

Disclaimers

SINGLE

PER RULE

Customizing Disclaimers

Infection Email Notification

Sanitized Email Notifications

4.2 Security rules

Merge fields

PARTIAL

YES (LIMITED)

Infection Email Notification

Sanitized Email Notifications

 

Subject rewriting

PARTIAL

PLANNED

Infection Email Notification

Sanitized Email Notifications

 

Custom email headers

SINGLE

PER RULE

Custom Email Headers

4.2 Security rules

Scan information headers

YES

YES

Custom Email Headers

 

Retry mechanism

YES

YES

Requires manual monitoring of notifications and folders

3.4 General settings (Retry settings)

Handling permanent failures

MANUAL

YES

Manual reprocessing of failed items

4.4 Email history (Failed emails)

Handling refused emails

NO

YES

 

 

Support for password-protected attachments

NO

YES

 

 

 

 

 

 

 

Quarantine

 

 

 

 

Quarantine location

BUNDLED INTO CORE

OWN

 

4.3 Quarantine

Quarantine original copy

GLOBAL

PER RULE

Quarantine Email

4.2 Security rules

Email details

YES

YES

 

 

Operations (Download, Release, Forward, Delete)

PARTIAL

YES

Not documented

4.3 Quarantine

Batch operations

GENERAL

YES

2.6. Quarantine Management

 

External quarantine

YES

YES

Quarantine Email On Another Mail Server

3.6.1 Quarantine emails on another mail server

Quarantine reports

YES

YES

Quarantine Reports

3.6 Quarantine configuration

Quarantine report contents

GENERAL

SPECIFIC

 

3.6 Quarantine configuration (Quarantine reports)

Custom quarantine report schedule

NO

NO

 

 

 

 

 

 

 

Notification emails

 

 

 

 

Email threat alerts

YES

YES

Infection Email Notification

4.2 Security rules (Actions for emails with blocked contents)

Service status alerts

YES

YES

Error Email Notification

3.5.1 Configuration

 

 

 

 

 

SMTP relay

BUNDLED INTO CORE

STANDALONE

 

 

Email flow direction (per deployment)

ONE-WAY

BIDIRECTIONAL

Configuring Incoming Threat Protection

Configuring Outgoing Threat Protection

4.2 Security rules

TLS configuration

EXTERNAL TOOL

BUILT-IN

TLS support (Incoming/Outgoing emails)

3.2 Configuring TLS

SPF lookups

YES

YES

Enable Sender Policy Framework (SPF) Lookup

3.4 General settings (Sender Policy Framework lookup)

HELO/EHLO domain customization

NO

YES

 

3.1.2 Windows Registry configuration

 

 

 

 

 

Integration

 

 

 

 

Microsoft Exchange plugin

YES

YES

4. Onsite Microsoft Exchange Deployment

3.10 Onsite Microsoft Exchange deployment

Cloud (AppRiver, Google Apps, Office 365)

YES

YES

3. Cloud Deployment

3.9 Cloud deployment configuration

 

 

 

 

 

Operation

 

 

 

 

Monitoring

LIMITED

ADVANCED

Dashboard / Mail Agent

4.1 Dashboard

General audit logs

YES

YES

Email Event Log

 

Configuration audit logs

NO

INTEGRATED

 

4.11 Config history

Syslog integration

LIMITED

YES

Logging Configuration

3.5.1 Configuration

Multiple log destinations

YES

YES

Apache log4net

3.5.1 Configuration

Unique message ID

NO

YES

 

 

This article pertains to MetaDefender Email Security v4.0.0 or above
This article was last updated on 2019-10-09
VM