Cisco Cisco Email Security Appliance C160 Mode D'Emploi

Spam Quarantine Alias Consolidation. If you use email notifications for spam, this query 
consolidates the end-user aliases so that end-users do not receive quarantine notices for each aliased 
email address. For more information, see 

User Distinguished Name. If you use RSA Enterprise Manager for data loss prevention (DLP), this 
query retrieves the distinguished name for senders of messages that may contain DLP violations. 
The Email Security appliance includes the distinguished name when it sends DLP incident data to 
Enterprise Manager. For more information, see 

When you work with LDAP directories, the appliance can be used in conjunction with an LDAP 
directory server to accept recipients, route messages, and/or masquerade headers. LDAP group queries 
can also be used in conjunction with message filters to create rules for handling messages as they are 
received by the appliance.

 demonstrates how the appliance works with LDAP:

The sending MTA sends a message to the public listener “A” via SMTP. 

The appliance queries the LDAP server defined via the System Administration > LDAP page (or by 
the global 

ldapconfig

 command).

Data is received from the LDAP directory, and, depending on the queries defined on the System 
Administration > LDAP page (or in the 

ldapconfig

 command) that are used by the listener:

the message is routed to the new recipient address, or dropped or bounced

the message is routed to the appropriate mailhost for the new recipient

From:, To:, and CC: message headers are re-written based upon the query

Recipient email address (local)

Mailhost information

Mail routing information

Group information 

SMTP AUTH 

HELO

 

DC=example,DC=com