Cisco Cisco Email Security Appliance C160 Mode D'Emploi

The 

$CertificateSigners

 variable expands to:

The following example inserts a new header if the certificate issuer is from the US:

The following example notifies an administrator if the signer is not from example.com:

The following example adds a header if the message has an X.509 certificate:

The following example adds a header if the message’s certificate does not have a signer:

  },

  {

    'issuer': 'CN=Auth,O=Example\, Inc.',

    'signer': ['bob@example.com', 'bob@private.example.com']

  }

]

"alice@example.com, al@private.example.com, bob@example.com, bob@private.example.com"

Issuer: if signed-certificate("issuer") == "(?i)C=US" {

    insert-header("X-Test", "US issuer");

}

NotOurSigners: if signed-certificate("signer") AND

      signed-certificate("signer") != "example\\.com$" {

    notify("admin@example.com");

}

AnyX509: if signed-certificate ("issuer") {

    insert-header("X-Test", "X.509 present");

}

NoSigner: if not signed-certificate ("signer") {

    insert-header("X-Test", "Old X.509?");

}