Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
27-45
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 27 LDAP Queries
Spam Quarantine Alias Consolidation Queries
Spam Quarantine Alias Consolidation Queries
If you use spam notifications, the spam quarantine alias consolidation query consolidates the email
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
To consolidate messages to a primary email address, create a query to search for a recipient’s alternate
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
If you want the Spam Quarantine to use an LDAP query for spam notifications, check the “Designate as
the active query” check box. If there is an existing active query, it is disabled. When you open the System
Administration > LDAP page, an asterisk (*) is displayed next to the active queries.
the active query” check box. If there is an existing active query, it is disabled. When you open the System
Administration > LDAP page, an asterisk (*) is displayed next to the active queries.
For Active Directory servers, the default query string is
(|(proxyAddresses={a})(proxyAddresses=smtp:{a}))
and the default email attribute is
mail
. For
OpenLDAP servers, the default query string is
(mail={a})
and the default email attribute is
mail
. You
can define your own query and email attributes, including multiple attributes separated by commas. If
you enter more than one email attribute, Cisco recommends entering a unique attribute that uses a single
value, such as
you enter more than one email attribute, Cisco recommends entering a unique attribute that uses a single
value, such as
mail
, as the first email attribute instead of an attribute with multiple values that can
change, such as
proxyAddresses
.
To create the query in the CLI, use the
isqalias
subcommand of the
ldapconfig
command.
Related Topics
•
•
Sample Active Directory Alias Consolidation Settings
This section shows sample settings for an Active Directory server and the alias consolidation query. This
example uses anonymous authentication for the Active Directory server, a query string for alias
consolidation for Active Directory servers, and the
example uses anonymous authentication for the Active Directory server, a query string for alias
consolidation for Active Directory servers, and the
mail
email attribute.
Connection Protocol
[Blank]
Query String
(uid={u})
Email Attribute(s)
mail,mailLocalAddress
Table 27-12
Example LDAP Server and Spam Quarantine End-User Authentication Settings:
OpenLDAP
OpenLDAP
Table 27-13
Example LDAP Server and Spam Quarantine Alias Consolidation Settings: Active
Directory
Directory
Authentication Method
Anonymous
Server Type
Active Directory
Port
3268
Base DN
[Blank]