Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5613
Views
5
Helpful
3
Replies

Cisco ESA, BCC all incoming and outgoing emails

Go to solution
jonathan_magay
Level 1
Level 1

‎03-16-2016 11:49 PM

Good Day Everyone,

 

I'm new to Cisco ESA, Just want to ask a question for Silent BCC or Always CC. Silent BCC is a way to BCC every outgoing/incoming emails to  two or many administrator's email from the company users email without senders notice. Always CC is to CC outgoing/incoming emails to two or administrator's email with senders notice.


The purpose is to easily monitor any incoming, outgoing and backup also all the emails in redundant way. Is it possible to make this feature to Cisco ESA?

 

Any suggestions and ideas commented is highly appreciated. thanks in advance.

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
exMSW4319
Level 3
Level 3

‎03-17-2016 07:01 AM

If you're just starting then a content rule is probably best:

Incoming-Trace: if (rcpt-to == "@your-domain$") { bcc ("archive@your-domain", "$subject"); }

archive@your-domain is your internal mailbox you want to archive the mail to.

View solution in original post

3 Replies 3

Go to solution
exMSW4319
Level 3
Level 3

‎03-17-2016 07:01 AM

If you're just starting then a content rule is probably best:

Incoming-Trace: if (rcpt-to == "@your-domain$") { bcc ("archive@your-domain", "$subject"); }

archive@your-domain is your internal mailbox you want to archive the mail to.

Go to solution
Michael Gioia
Level 1
Level 1
In response to exMSW4319

‎01-10-2018 11:07 PM - edited ‎01-10-2018 11:40 PM

Is this still the case in AsyncOS 10.0 ?

Will all other engines (AV, etc) get evoked still and this 'content rule' will be processed last in the workflow ? That's the goal for me anyhow... I need to not evoke a 'BCC ALL', but logic comprising of,

// 'if email is cleaned with existing engines/signatures, then evoke BCC' //

0 Helpful

Go to solution
Paul Cardelli
Level 1
Level 1

‎03-17-2016 07:42 AM

Also you may want to just CC to a Policy Quarantine or a shared mailbox. One issue I found with silent CC/BCC. Is that they are only as silent as when you don't have an Out of Office Notification turned on. "True Story"

Also best practice internally is to setup Email Archiving with a journaling mailbox. This will accomplish what you needs, then just give access to the archive. Less storage, and impact on your system. More scalable.

0 Helpful
Customers Also Viewed These Support Documents