Cisco Cisco Email Security Appliance C190 Guía Del Usuario
3-26
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 3 LDAP Queries
Domain-based Queries
Domain-based queries are LDAP queries grouped by type, associated with a domain, and assigned to a
particular listener. You might want to use domain-based queries if you have different LDAP servers
associated with different domains but you want to run queries for all your LDAP servers on the same
listener. For example, the company “Bigfish” purchases company “Redfish” and company “Bluefish.”
Bigfish maintains its domain, Bigfish.com as well as domains for Redfish.com and Bluefish.com, and it
maintains a different LDAP server for employees associated with each domain. To accept mail for all
three of these domains, Bigfish creates domain-based queries. This allows Bigfish to accept emails for
Bigfish.com, Redfish.com, and Bluefish.com on the same listener.
particular listener. You might want to use domain-based queries if you have different LDAP servers
associated with different domains but you want to run queries for all your LDAP servers on the same
listener. For example, the company “Bigfish” purchases company “Redfish” and company “Bluefish.”
Bigfish maintains its domain, Bigfish.com as well as domains for Redfish.com and Bluefish.com, and it
maintains a different LDAP server for employees associated with each domain. To accept mail for all
three of these domains, Bigfish creates domain-based queries. This allows Bigfish to accept emails for
Bigfish.com, Redfish.com, and Bluefish.com on the same listener.
To configure domain-based queries, complete the following steps:
Step 1
Create a server profile for each of the domains you want to use in the domain-based queries. For each of
the server profiles, configure the queries you want to use for a domain-based query (acceptance, routing,
etc.). For more information, see
the server profiles, configure the queries you want to use for a domain-based query (acceptance, routing,
etc.). For more information, see
Step 2
Create the domain-based query. When you create the domain-based query, you select queries from each
server profile, and enable the Cisco IronPort appliance to determine which query to run based on the
domain in the Envelope To field. For more information about creating the query, see
server profile, and enable the Cisco IronPort appliance to determine which query to run based on the
domain in the Envelope To field. For more information about creating the query, see
Step 3
Enable the domain-based query on the public or private listener. For more information about configuring
listeners, see “Configuring the Gateway to Receive Mail” in the Cisco IronPort AsyncOS for Email
Configuration Guide.
listeners, see “Configuring the Gateway to Receive Mail” in the Cisco IronPort AsyncOS for Email
Configuration Guide.
Note
You can also enable domain-based queries for LDAP end-user access or spam notifications for the Cisco
IronPort Spam Quarantine. For more information, see “Configuring the Cisco IronPort Spam
Quarantines Feature” in the Cisco IronPort AsyncOS for Email Daily Management Guide.
IronPort Spam Quarantine. For more information, see “Configuring the Cisco IronPort Spam
Quarantines Feature” in the Cisco IronPort AsyncOS for Email Daily Management Guide.
Creating a Domain-Based Query
You create a domain-based query from the System Administration > LDAP > LDAP Server Profiles
page.
page.
Figure 3-10
Configuring a domain-based query
Step 1
From the LDAP Server Profiles page, click Advanced.
Step 2
Click Add Domain Assignments.
Step 3
The Domain Assignments page opens.
Step 4
Enter a name for the domain-based query.
Step 5
Select the query type.