Руководство Пользователя для Cisco Cisco Content Security Management Appliance M1070
7-8
AsyncOS 8.2 for Cisco Content Security Management User Guide
Chapter 7 Managing the Spam Quarantine
Configuring Spam Management Features for End Users
•
•
•
Note
You can configure some but not all of these features. For example, to provide access only upon request
or only to specified users, you might configure end user access, but not spam notifications.
or only to specified users, you might configure end user access, but not spam notifications.
Configuring End User Quarantine Access
You can allow email users to manage their own messages in the Spam Quarantine.
Procedure
Step 1
On the Security Management appliance, choose Management Appliance > Centralized Services >
Spam Quarantine.
Spam Quarantine.
Step 2
Click the Edit Settings in the Spam Quarantine Settings section.
Step 3
Scroll down to the End-User Quarantine Access section.
Step 4
Check the Enable End-User Quarantine Access check box.
Step 5
Specify the method to authenticate end users when they attempt to view their quarantined messages. You
can use mailbox authentication, LDAP authentication, or none.
can use mailbox authentication, LDAP authentication, or none.
•
Mailbox authentication: For sites without an LDAP directory for authentication, the quarantine
can validate users’ email addresses and passwords against a standards-based IMAP or POP server
that holds their mailboxes. When logging in to the web UI, users enter their full email address and
mailbox password. The quarantine uses this information to log in to the mailbox server as the user.
If the login is successful, the user is authenticated and the quarantine logs out of the mailbox server
without making any changes to the user’s Inbox. Mailbox authentication is recommended for sites
that do not use an LDAP directory. However, mailbox authentication cannot provide a user with
quarantined messages that were sent to multiple email aliases.
can validate users’ email addresses and passwords against a standards-based IMAP or POP server
that holds their mailboxes. When logging in to the web UI, users enter their full email address and
mailbox password. The quarantine uses this information to log in to the mailbox server as the user.
If the login is successful, the user is authenticated and the quarantine logs out of the mailbox server
without making any changes to the user’s Inbox. Mailbox authentication is recommended for sites
that do not use an LDAP directory. However, mailbox authentication cannot provide a user with
quarantined messages that were sent to multiple email aliases.
Select the type of mailbox server (IMAP or POP). Specify a server name and whether or not to use
SSL for a secure connection. Enter a port number for the server. Supply a domain (for example,
company.com) to append to unqualified user names.
SSL for a secure connection. Enter a port number for the server. Supply a domain (for example,
company.com) to append to unqualified user names.
If the POP server advertises APOP support in the banner, then for security reasons (namely, to avoid
sending the password in the clear) the appliance uses APOP only. If APOP is not supported for some
users, then the POP server should be reconfigured so that it does not advertise APOP.
sending the password in the clear) the appliance uses APOP only. If APOP is not supported for some
users, then the POP server should be reconfigured so that it does not advertise APOP.
–
LDAP: If you do not have an LDAP server or an active end user authentication query set up,
choose Management Appliance > System Administration > LDAP to configure your LDAP
server settings and end user authentication query string. For information about configuring
LDAP authentication, see
choose Management Appliance > System Administration > LDAP to configure your LDAP
server settings and end user authentication query string. For information about configuring
LDAP authentication, see
.
–
None: You can allow end user access to the Spam Quarantine without enabling authentication.
In this case, users can access the quarantine by clicking a link in the notification message, and
the system does not use mailbox or LDAP authentication.
In this case, users can access the quarantine by clicking a link in the notification message, and
the system does not use mailbox or LDAP authentication.
Step 6
Specify whether or not to display message bodies before messages are released from the quarantine.