Cisco Cisco Email Security Appliance C680 ユーザーガイド
21-29
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 21 Automatically Remediating Messages in Office 365 Mailboxes
Performing Remedial Actions on Messages Delivered to End Users When the Threat Verdict Changes to Malicious
From the Windows PowerShell prompt, navigate to the directory containing the public key
certificate and run the following:
certificate and run the following:
$cer = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2
$cer.Import(".\mycer.cer")
$bin = $cer.GetRawCertData()
$base64Value = [System.Convert]::ToBase64String($bin)
$bin = $cer.GetCertHash()
$base64Thumbprint = [System.Convert]::ToBase64String($bin)
$keyid = [System.Guid]::NewGuid().ToString()
After running the above commands, run the following commands to extract their values:
–
$keyid
–
$base64Value
–
$base64Thumbprint
b.
Download the manifest of the application from the Azure Management Portal.
c.
Open the downloaded manifest using a text editor and replace the empty KeyCredentials property
with the following JSON:
with the following JSON:
"keyCredentials": [
{
"customKeyIdentifier" : "$base64Thumbprint_from_step_1",
"keyId": "$keyid_from_step1",
"type": "AsymmetricX509Cert",
"usage": "Verify",
"value": "$base64Value_from_step1"
}
],
In the above JSON snippet, make sure that you replace the values of
$base64Thumbprint
,
$base64Value
, and
$keyid
with the values you obtained in step
. Each value must be entered in a
single line.
d.
Save your changes and upload the modified manifest to the Azure Management Portal.
Step 5
After registering your appliance with Azure AD, note down the following details from the Azure
Management Portal:
Management Portal:
•
Client ID from the Configure tab.
•
Tenant ID from the View Endpoints > App Endpoints page. The Tenant ID is the unique value that
will available on all the URLs listed on this page. For instance, the URLs listed on this page are:
will available on all the URLs listed on this page. For instance, the URLs listed on this page are:
–
https://login.microsoftonline.com/abcd1234
-bcdd-469d-8545-a0662708cbc3/federationmetadata/2007-06/federationmetadata.xml
-bcdd-469d-8545-a0662708cbc3/federationmetadata/2007-06/federationmetadata.xml
–
https://login.microsoftonline.com/abcd1234-bcdd-469d-8545-a0662708cbc3/wsfed
–
https://login.microsoftonline.com/abcd1234-bcdd-469d-8545-a0662708cbc3/saml2
–
…
In this case, the Tenant ID is
abcd1234-bcdd-469d-8545-a0662708cbc3
.
What To Do Next