Prior to the popularity of email archiving systems, Microsoft Personal Folders (PST) files were often used as a form of email archiving. In fact, Microsoft Outlook has a feature that will automatically move mail out of a user's mailbox and into a PST file.
For specific reasons, PST files may be of use for an Exchange administrator. One reason would be to provide a mechanism to move email data between two Exchange Server systems. Another reason would be to deliver requested email data to opposing counsel in the case of litigation. However, if you have or are implementing an email archiving system, there is no good reason to allow end users to employ PST files.
This article will explore the disadvantages of using PSTs, ways to incorporate existing PST files into an email archiving system, and methods for blocking future PST file usage.
At first glance, PST files might seem like a useful feature, but PST-based archiving and storage can introduce potential legal issues as well as assorted headaches. The use of PST files often results in lost or misplaced data due to a variety of reasons:
A fairly common issue that arises as a result of PST usage stems from the fact that users can password-protect a PST file; if they forget the password, a third-party utility or data recovery service will be required to retrieve the data. The password-protection feature often gives users a false sense of security because they don't realize that the feature can be disabled and sensitive data can be compromised.
In addition, the PST file was never intended for or designed to store large amounts of data; thus, data is not efficiently stored in PST files. Message bodies stored in PST files are stored twice; once in the ASCII text format and once in rich text. This duplication can result in PST files consuming a considerable amount of disk space. Also, Outlook 2002 and earlier PST files are limited to a maximum size of 2GB. Corruption will occur at 2GB, but the file's performance declines before that limit is reached. And Unicode PST files cannot be read by Outlook 2002 and earlier or the ExMerge program.
One of the biggest headaches for Exchange administrators is that email that is moved into a PST file is no longer centrally managed. Therefore, it is difficult and expensive to collect data for eDiscovery because the task of locating widely distributed PST files is challenging. PST files can be an easily hidden form of data leakage, as a disgruntled employee can quickly and easily transfer many gigabytes of mail data to PST files, transfer those files to a USB thumb drive, and walk out with the data.
Given these downsides to PST files, mail administrators are looking for ways to eliminate PSTrelated support calls. This article focuses on the additional benefits realized by eliminating the need for PST files. Your email archival system can allow nearly limitless email storage for a user's historical data while keeping the amount of email on the production mail server at a minimum.
Don't discount the importance of end-user education regarding the elimination of PST files. Recently, I was working on a customer site that was both upgrading to Exchange Server 2007 and deploying an email archive system. The customer was implementing the archive system in order to reduce the total amount of mail storage required to make the actual migration run much faster.
This organization had always enforced mailbox limits for their users, and expected users to "self police" based on mailbox limitations. Users were routinely instructed on how to create PST files when their mailboxes were full.
During the upgrade and deployment process, one of the organization's email archive system operators discovered a user's home folder that contained a PST file for each quarter of each year since 1997. These files ranged from 350MB to 1.5GB in size. When this user first learned that her PST data would be moved out of her home folder and into the new email archive system, she was panicked about losing the PST files. However, once she understood that the new interface would allow her to have a full-text index of all her imported PST files and current data, she gladly gave up her PST files.
Most email archive solutions provide a console program or tool that allows either an operator or end user to import PST files into the archive. As soon as your archive system is functional, begin the process of importing all PST files for all active employees. Doing so serves multiple purposes:
Beware of email archiving systems that require PST file data to be first imported back to users' mailboxes before being moved into the archive. This task adds considerable extra work and will dramatically increase the size of the Exchange Server databases.
Once you have an email archiving system in production, the next step is to prevent users from creating or moving content into PST files. There are a few ways to ensure that you harvest all PST files, prevent users from crating new files, and completely eliminate PST-based mail storage:
The simplest and most effective of these approaches is to use Group Policy to restrict PST use. To do so, you need the Group Policy Administrative (ADM or ADMX) templates for the versions of Office that you support. You can download these from the Microsoft Office Web site (to find them, simply search the site for the text "ADM"). Once you have the ADM templates, create or edit an existing GPO, and add the appropriate templates to the Group Policy. Figure 1 shows a sample of the PST settings available in a GPO.
Figure 1: PST settings in a GPO.
The two settings that are enabled in the figure—Prevent users from adding PSTs to Outlook profiles and Prevent users from adding new content to existing PST files—are the ones you need to enable to prevent users from adding PSTs to Outlook and to prohibit users from adding new content to existing files. Keep in mind that not all PST restrictions will be available in older versions of Office/Outlook.
PST files are often the result of mailbox storage limitations placed on users: Users require more email data storage than they are allowed, so they create PST files to move data off the Exchange Server. As discussed earlier, the spread of PST files across local hard drives and home folders, the lost data (or at the very least, misplaced data) that ends up in these PST files, corrupted PST files, and data that may now escape a mandatory legal eDiscovery are all good reasons to eliminate PSTs. Doing so will not only reduce Help desk calls but also aid with an organization's compliance and discovery requirements, simplify users' access to older email, and reduce the storage burden on home folders or local hard disk drives. With an email archive system, users no longer need to create PST files.
Before the deployment of an email archiving system, begin planning your PST eradication strategy. Important steps that you should consider immediately include:
The implementation of an email archive system is the best way to ensure the eradication of PST files because it will inhibit users from ever needing to move data to PSTs while still allowing users the capacity necessary to store virtually unlimited historical email.