Cisco Cisco Content Security Management Appliance M1070 Mode D'Emploi
Chapter 9 LDAP Queries
9-10
Cisco IronPort AsyncOS 7.2.0 for Security Management User Guide
OL-21768-01
To consolidate messages to a primary email address, create a query to search for
a recipient’s alternate email aliases, and then enter the attribute for the recipient’s
primary email address in the Email Attribute field.
a recipient’s alternate email aliases, and then enter the attribute for the recipient’s
primary email address in the Email Attribute field.
For Active Directory servers, the default query string is
(|(proxyAddresses={a})(proxyAddresses=smtp:{a}))
and the default email
attribute is
mail
. For OpenLDAP servers, the default query string is
(mail={a})
and the default email attribute is
mail
. You can define your own query and email
attributes, including multiple attributes separated by commas. If you enter more
than one email attribute, Cisco IronPort recommends entering a unique attribute
that uses a single value, such as
than one email attribute, Cisco IronPort recommends entering a unique attribute
that uses a single value, such as
mail
, as the first email attribute instead of an
attribute with multiple values that can change, such as
proxyAddresses
.
To create the query in the CLI, use the
isqalias
subcommand of the
ldapconfig
command.
Sample Active Directory Alias Consolidation Settings
This section shows sample settings for an Active Directory server and the alias
consolidation query. This example uses anonymous authentication for the Active
Directory server, a query string for alias consolidation for Active Directory
servers, and the
consolidation query. This example uses anonymous authentication for the Active
Directory server, a query string for alias consolidation for Active Directory
servers, and the
mail
email attribute.
Table 9-3
Example LDAP Server and Spam Quarantine Alias Consolidation Settings: Active
Directory
Directory
Authentication Method
Anonymous
Server Type
Active Directory
Port
3268
Base DN
[Blank]
Connection Protocol
Use SSL
Query String
(
|(mail={a})(mail=smtp:{a}))
Email Attribute
mail