Cisco Cisco Email Security Appliance C160 Mode D'Emploi
42-6
User Guide for AsyncOS 9.7 for Cisco Email Security Appliances
Chapter 42 Centralizing Services on a Cisco Content Security Management Appliance
About Centralizing Policy, Virus, and Outbreak Quarantines
•
Centralized quarantines can be backed up using the standard backup functionality on the Security
Management appliance.
Management appliance.
For complete information, see the user guide or online help for your Security Management appliance.
Restrictions and Limitations of Centralized Policy, Virus, and Outbreak Quarantines
•
On each Email Security appliance, either all policy, virus, and outbreak quarantines must be
centralized or all must be stored locally.
centralized or all must be stored locally.
•
Because scanning engines are not available on Security Management appliances, you cannot
manually test messages in policy, virus, or outbreak quarantines for viruses.
manually test messages in policy, virus, or outbreak quarantines for viruses.
Requirements for Centralized Policy, Virus, and Outbreak Quarantines in Cluster Configurations
You can enable centralized policy, virus, and outbreak quarantines at any level for clustered appliances.
Requirements:
•
Before you enable centralized policy, virus, and outbreak quarantines on an Email Security
appliance at a particular level (machine, group, or cluster), all appliances that belong to the same
level must first be added to the Security Management appliance.
appliance at a particular level (machine, group, or cluster), all appliances that belong to the same
level must first be added to the Security Management appliance.
•
Content and message filters and DLP message actions must be configured at the same level and not
overridden at any level below that level.
overridden at any level below that level.
•
Centralized policy, virus, and outbreak quarantines settings must be configured at the same level and
not be overridden at any level below the configured level.
not be overridden at any level below the configured level.
•
Ensure that the interface to be used for communications with the Security Management appliance
has the same name on all appliances in the group or cluster.
has the same name on all appliances in the group or cluster.
For example:
If you want to enable centralized policy, virus, and outbreak quarantines at the cluster or group level, but
an Email Security appliance which is connected to the cluster has these settings defined at the machine
level, you must remove the centralized quarantines settings configured at the machine level before you
can enable the feature at the cluster or group level.
an Email Security appliance which is connected to the cluster has these settings defined at the machine
level, you must remove the centralized quarantines settings configured at the machine level before you
can enable the feature at the cluster or group level.
About Migration of Policy, Virus, and Outbreak Quarantines
When you centralize policy, virus, and outbreak quarantines, existing policy, virus, and outbreak
quarantines on your Email Security appliance migrate to the Security Management appliance.
quarantines on your Email Security appliance migrate to the Security Management appliance.
You will configure migration on the Security Management appliance, but migration occurs when you
commit the change enabling centralized policy, virus, and outbreak quarantines on the Email Security
appliance.
commit the change enabling centralized policy, virus, and outbreak quarantines on the Email Security
appliance.
As soon as you commit this change, the following occur:
•
Local policy, virus, and outbreak quarantines on the Email Security appliance are disabled. All new
messages entering these quarantines will be quarantined on the Security Management appliance.
messages entering these quarantines will be quarantined on the Security Management appliance.
•
Migration of existing non-spam quarantines to the Security Management appliance begins.
•
All local policy, virus, and outbreak quarantines are deleted. If you configured a custom migration,
any local policy quarantines that you chose not to migrate are also deleted. For effects of deleting
policy quarantines, see
any local policy quarantines that you chose not to migrate are also deleted. For effects of deleting
policy quarantines, see
.