Cisco Cisco Email Security Appliance X1070 User Guide
9-44
AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide
Chapter 9 Using Message Filters to Enforce Email Policies
Message Filter Rules
For example, Alice signs a message with her two certificates. Bob signs the message with his single
certificate. All certificates are issued by a single corporate authority. After the message passes the
S/MIME scan, the extracted data contain three items:
certificate. All certificates are issued by a single corporate authority. After the message passes the
S/MIME scan, the extracted data contain three items:
The
$CertificateSigners
variable expands to:
Examples
The following example inserts a new header if the certificate issuer is from the US:
The following example notifies an administrator if the signer is not from example.com:
[
{
'issuer': 'CN=Auth,O=Example\, Inc.',
'signer': ['alice@example.com', 'al@private.example.com']
},
{
'issuer': 'CN=Auth,O=Example\, Inc.',
'signer': ['alice@example.com', 'al@private.example.com']
},
{
'issuer': 'CN=Auth,O=Example\, Inc.',
'signer': ['bob@example.com', 'bob@private.example.com']
}
]
"alice@example.com, al@private.example.com, bob@example.com, bob@private.example.com"
Issuer: if signed-certificate("issuer") == "(?i)C=US" {
insert-header("X-Test", "US issuer");
}
NotOurSigners: if signed-certificate("signer") AND
signed-certificate("signer") != "example\\.com$" {