Cisco Cisco Email Security Appliance C650 Guía Del Usuario
22-27
Cisco AsyncOS 8.0 for Email User Guide
Chapter 22 LDAP Queries
Using Chain Queries to Perform a Series of LDAP Queries
Step 10
Optionally, if you use the {f} token in an acceptance query, you can add an envelope sender address to
the test query.
the test query.
Note
Once you create the domain-based query, you need to associate it with a public or private
listener.
listener.
Step 11
Submit and commit your changes.
Using Chain Queries to Perform a Series of LDAP Queries
A chain query is a series of LDAP queries that the Cisco appliance attempts to run in succession. The
Cisco appliance attempts to run each query in the “chain” until the LDAP server returns a positive
response (or the final query in the “chain” returns a negative response or fails). Chain queries can be
useful if entries in your LDAP directory use different attributes to store similar (or the same) values. For
example, you might have used the attributes
Cisco appliance attempts to run each query in the “chain” until the LDAP server returns a positive
response (or the final query in the “chain” returns a negative response or fails). Chain queries can be
useful if entries in your LDAP directory use different attributes to store similar (or the same) values. For
example, you might have used the attributes
maillocaladdress
and
mail
to store user email addresses.
To ensure that your queries run against both these attributes, you can use chain queries.
Procedure
Step 1
Create server profiles for each of the queries you want to use in the chain queries. For each of the server
profiles, configure the queries you want to use for a chain query. For more information, see
profiles, configure the queries you want to use for a chain query. For more information, see
.
Step 2
Create the chain query. For more information, see
Step 3
Enable the chain query on the public or private listener. For more information about configuring
listeners, see “Configuring the Gateway to Receive Mail” in the Cisco IronPort AsyncOS for Email
Configuration Guide.
listeners, see “Configuring the Gateway to Receive Mail” in the Cisco IronPort AsyncOS for Email
Configuration Guide.
Note
You can also enable domain-based queries for LDAP end-user access or spam notifications for the Cisco
Spam Quarantine. For more information, see “Configuring the Cisco Spam Quarantines Feature” in the
Cisco IronPort AsyncOS for Email Daily Management Guide.
Spam Quarantine. For more information, see “Configuring the Cisco Spam Quarantines Feature” in the
Cisco IronPort AsyncOS for Email Daily Management Guide.
Creating a Chain Query
You create a chain query from the System Administration > LDAP > LDAP Server Profiles page.
Procedure
Step 1
From the LDAP Server Profiles page, click Advanced.
Step 2
Click Add Chain Query.
Step 3
Add a name for the chain query.
Step 4
Select the query type.