Cisco Cisco Email Security Appliance C190 Guía Del Usuario
3-65
Cisco IronPort AsyncOS 7.5 for Email Advanced Configuration Guide
OL-25137-01
Chapter 3 LDAP Queries
Spam Quarantine Alias Consolidation Queries
If you use spam notifications, the spam quarantine alias consolidation query
consolidates the email aliases so that recipients do not receive quarantine notices
for each alias. For example, a recipient might receive mail for the following email
addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient
receives a single spam notification at a chosen primary email address for
messages sent to all of the user’s aliases.
consolidates the email aliases so that recipients do not receive quarantine notices
for each alias. For example, a recipient might receive mail for the following email
addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient
receives a single spam notification at a chosen primary email address for
messages sent to all of the user’s aliases.
To consolidate messages to a primary email address, create a query to search for
a recipient’s alternate email aliases, and then enter the attribute for the recipient’s
primary email address in the Email Attribute field.
a recipient’s alternate email aliases, and then enter the attribute for the recipient’s
primary email address in the Email Attribute field.
If you want the IronPort Spam Quarantine to use an LDAP query for spam
notifications, check the “Designate as the active query” check box. If there is an
existing active query, it is disabled. When you open the System Administration >
LDAP page, an asterix (*) is displayed next to the active queries.
notifications, check the “Designate as the active query” check box. If there is an
existing active query, it is disabled. When you open the System Administration >
LDAP page, an asterix (*) is displayed next to the active queries.
For Active Directory servers, the default query string is
(|(proxyAddresses={a})(proxyAddresses=smtp:{a}))
and the default email
attribute is
mail
. For OpenLDAP servers, the default query string is
(mail={a})
and the default email attribute is
mail
. You can define your own query and email
attributes, including multiple attributes separated by commas. If you enter more
than one email attribute, IronPort recommends entering a unique attribute that
uses a single value, such as
than one email attribute, IronPort recommends entering a unique attribute that
uses a single value, such as
mail
, as the first email attribute instead of an attribute
with multiple values that can change, such as
proxyAddresses
.
To create the query in the CLI, use the
isqalias
subcommand of the
ldapconfig
command.
Query String
(uid={u})
Email Attribute(s)
mail,mailLocalAddress
Table 3-12
Example LDAP Server and Spam Quarantine End-User
Authentication Settings: OpenLDAP
Authentication Settings: OpenLDAP