Cisco Cisco Content Security Management Appliance M160 Guía Del Usuario
7-15
AsyncOS 8.3.6 for Cisco Content Security Management User Guide
Chapter 7 Spam Quarantine
Configuring Spam Management Features for End Users
Related Topics
•
•
•
•
LDAP Authentication Process
1.
A user enters his or her username and password into the web UI login page.
2.
The spam quarantine connects to the specified LDAP server either to perform an anonymous search
or as an authenticated user with the specified “Server Login” DN and password. For Active
Directory, you will usually need to have the server connect on the “Global Catalog port” (it is in the
6000s) and you need to create a low privilege LDAP user that the spam quarantine can bind as in
order to execute the search.
or as an authenticated user with the specified “Server Login” DN and password. For Active
Directory, you will usually need to have the server connect on the “Global Catalog port” (it is in the
6000s) and you need to create a low privilege LDAP user that the spam quarantine can bind as in
order to execute the search.
3.
The spam quarantine then searches for the user using the specified BaseDN and Query String. When
a user’s LDAP record is found, the spam quarantine then extracts the DN for that record and attempts
bind to the directory using the user records’ DN and the password they entered originally. If this
password check succeeds then the user is properly authenticated, but the spam quarantine still needs
to determine which mailboxes’ contents to show for that user.
a user’s LDAP record is found, the spam quarantine then extracts the DN for that record and attempts
bind to the directory using the user records’ DN and the password they entered originally. If this
password check succeeds then the user is properly authenticated, but the spam quarantine still needs
to determine which mailboxes’ contents to show for that user.
4.
Messages are stored in the spam quarantine using the recipient's envelope address. After a user's
password is validated against LDAP, the spam quarantine then retrieves the “Primary Email
Attribute” from the LDAP record to determine which envelope address they should show
quarantined messages for. The “Primary Email Attribute” can contain multiple email addresses
which are then used to determine what envelope addresses should be displayed from the quarantine
for the authenticated user.
password is validated against LDAP, the spam quarantine then retrieves the “Primary Email
Attribute” from the LDAP record to determine which envelope address they should show
quarantined messages for. The “Primary Email Attribute” can contain multiple email addresses
which are then used to determine what envelope addresses should be displayed from the quarantine
for the authenticated user.
Related Topics
•
IMAP/POP Authentication Process
1.
Depending on your mail server configuration, a user enters their username (
joe
) or email address
(
joe@example.com
) and password into the web UI login page. You can modify the Login Page
Message to tell your users whether they should enter a full email address or just their username (see
).
2.
The spam quarantine connects to the IMAP or POP server and uses the entered login (either
username or email address) and password to try to log into the IMAP/POP server. If the password
is accepted then the user is considered authenticated and the spam quarantine immediately logs out
of the IMAP/POP server.
username or email address) and password to try to log into the IMAP/POP server. If the password
is accepted then the user is considered authenticated and the spam quarantine immediately logs out
of the IMAP/POP server.
3.
Once the user is authenticated, the spam quarantine lists email for the user, based on the email
address:
address:
–
If you have configured the spam quarantine to specify a domain to append to bare usernames
(like
(like
joe
), then this domain is appended and that fully qualified email address is used to search
for matching envelopes in the quarantine.
–
Otherwise, the spam quarantine uses the entered email address to search for matching
envelopes.
envelopes.
For more information about IMAP, see the University of Washington web site: