Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
Chapter 3 LDAP Queries
3-192
Cisco IronPort AsyncOS 7.1 for Email Advanced Configuration Guide
OL-22164-02
For example, consider the following example LDAP entry:
Attribute
Value
mailRoutingAddress
admin\@example.com
mailLocalAddress
joe.smith\@example.com
mailFriendlyAddress
“Administrator for example.com,”
<joe.smith\@example.com>
<joe.smith\@example.com>
If this feature is enabled, an LDAP query of (mailRoutingAddress={a}) and a
masquerading attribute of (mailLocalAddress) would result in the following
substitutions:
masquerading attribute of (mailLocalAddress) would result in the following
substitutions:
Original Address (From, To,
CC, Reply-to)
CC, Reply-to)
Masqueraded Headers
Masqueraded Envelope Sender
admin@example.com
From: “Administrator for
example.com,”
<joe.smith@example.com>
example.com,”
<joe.smith@example.com>
MAIL FROM:
<joe.smith@example.com>
<joe.smith@example.com>
Group LDAP Queries
You can define a query to your LDAP servers to determine if a recipient is a
member of a group as defined by your LDAP directory.
member of a group as defined by your LDAP directory.
Configuring LDAP group queries involves three steps:
Step 1
Create a message filter that uses a
rcpt-to-group
or
mail-from-group
rule to act
upon the message.
Step 2
Then, use the System Administration > LDAP page (or the
ldapconfig
command)
to define the LDAP server for the appliance to bind to and configure a query for
a group membership.
a group membership.
Step 3
Use the Network > Listeners page (or the
listenerconfig -> edit ->
ldapgroup
subcommand) to enable the group query for the listener.