Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
25-44
Cisco AsyncOS 9.1 for Email User Guide
Chapter 25 LDAP Queries
Spam Quarantine Alias Consolidation Queries
Sample OpenLDAP End-User Authentication Settings
This section shows sample settings for an OpenLDAP server and the end-user authentication query. This
example uses anonymous authentication for the OpenLDAP server, the
example uses anonymous authentication for the OpenLDAP server, the
mail
and
mailLocalAddress
email attributes, and the default query string for end-user authentication for OpenLDAP servers.
Spam Quarantine Alias Consolidation Queries
If you use spam notifications, the spam quarantine alias consolidation query consolidates the email
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
aliases so that recipients do not receive quarantine notices for each alias. For example, a recipient might
receive mail for the following email addresses: john@example.com, jsmith@example.com, and
john.smith@example.com. When you use alias consolidation, the recipient receives a single spam
notification at a chosen primary email address for messages sent to all of the user’s aliases.
To consolidate messages to a primary email address, create a query to search for a recipient’s alternate
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
email aliases, and then enter the attribute for the recipient’s primary email address in the Email Attribute
field.
If you want the Spam Quarantine to use an LDAP query for spam notifications, check the “Designate as
the active query” check box. If there is an existing active query, it is disabled. When you open the System
Administration > LDAP page, an asterisk (*) is displayed next to the active queries.
the active query” check box. If there is an existing active query, it is disabled. When you open the System
Administration > LDAP page, an asterisk (*) is displayed next to the active queries.
For Active Directory servers, the default query string is
(|(proxyAddresses={a})(proxyAddresses=smtp:{a}))
and the default email attribute is
mail
. For
OpenLDAP servers, the default query string is
(mail={a})
and the default email attribute is
mail
. You
can define your own query and email attributes, including multiple attributes separated by commas. If
you enter more than one email attribute, Cisco recommends entering a unique attribute that uses a single
value, such as
you enter more than one email attribute, Cisco recommends entering a unique attribute that uses a single
value, such as
mail
, as the first email attribute instead of an attribute with multiple values that can
change, such as
proxyAddresses
.
To create the query in the CLI, use the
isqalias
subcommand of the
ldapconfig
command.
Related Topics
•
•
Table 25-12
Example LDAP Server and Spam Quarantine End-User Authentication Settings:
OpenLDAP
OpenLDAP
Authentication Method
Anonymous
Server Type
OpenLDAP
Port
389
Base DN
[Blank] (Some older schemas will want to use a specific
Base DN.)
Base DN.)
Connection Protocol
[Blank]
Query String
(uid={u})
Email Attribute(s)
mail,mailLocalAddress