Cisco Cisco Email Security Appliance C650 Guía Del Usuario
26-3
User Guide for AsyncOS 9.8 for Cisco Email Security Appliances
Chapter 26 LDAP Queries
Overview of LDAP Queries
•
Spam Quarantine End-User Authentication. You can configure your appliance to validate users
when they log in to the end-user quarantine. For more information, see
when they log in to the end-user quarantine. For more information, see
•
Spam Quarantine Alias Consolidation. If you use email notifications for spam, this query
consolidates the end-user aliases so that end-users do not receive quarantine notices for each aliased
email address. For more information, see
consolidates the end-user aliases so that end-users do not receive quarantine notices for each aliased
email address. For more information, see
Understanding How LDAP Works with AsyncOS
When you work with LDAP directories, the appliance can be used in conjunction with an LDAP
directory server to accept recipients, route messages, and/or masquerade headers. LDAP group queries
can also be used in conjunction with message filters to create rules for handling messages as they are
received by the appliance.
directory server to accept recipients, route messages, and/or masquerade headers. LDAP group queries
can also be used in conjunction with message filters to create rules for handling messages as they are
received by the appliance.
demonstrates how the appliance works with LDAP:
Figure 26-1
LDAP Configuration
1.
The sending MTA sends a message to the public listener “A” via SMTP.
2.
The appliance queries the LDAP server defined via the System Administration > LDAP page (or by
the global
the global
ldapconfig
command).
3.
Data is received from the LDAP directory, and, depending on the queries defined on the System
Administration > LDAP page (or in the
Administration > LDAP page (or in the
ldapconfig
command) that are used by the listener:
–
the message is routed to the new recipient address, or dropped or bounced
–
the message is routed to the appropriate mailhost for the new recipient
–
From:, To:, and CC: message headers are re-written based upon the query
–
further actions as defined by
rcpt-to-group
or
mail-from-group
message filter rules (used in
conjunction with configured group queries).
Firewall
Appliance
Sending MTA
•
Recipient email address (local)
•
Mailhost information
•
Mail routing information
•
Group information
•
SMTP AUTH
2
1
HELO
SMTP
A
3
DC=example,DC=com
with LDAP enabled