Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1018
Views
0
Helpful
2
Replies

Ironport Quarantine for LDAP Users with more than one mail

darkeden82
Level 1
Level 1

‎07-07-2016 04:12 AM

Hi,

I've a problem with Ironport,

actually i've configured the ldap user-access to the quarantine and it's works like a charm for users that have only one account

so for example..

Brad Pitt - bradpitt@domainone.com  can login and checks his quarantine.everything's fine.

BUT

MelGibson  (AD user   domainone\melbigson ) has two mail addresses :
melgibson@domainone.com ( the main one )
melgibson@domaintwo.com 

The quarantine reports works fine ,the user can find two report,one in each e-mail,and using the links he can access to two different "quarantine home page".

but if he tries to login ( with melgibson@domainone.com and his password ) into the quarantine web portal he can access only to the main account.
Try to logon with the secondary mail give him an authentication error.

Actually the login quarantine query is

(mail={a})
--> mail

the alias consolidation query instead is

(mail={a})

--> proxyAddresses

If i test them from my ironport I don't receive any errors.

any ideas to solve that?

Labels:
0 Helpful
2 Replies 2

Mathew Huynh
Cisco Employee
Cisco Employee

‎07-07-2016 10:46 PM

Hello

For the ISQ consolidation; when you check both:

melgibson@domainone.com ( the main one )
melgibson@domaintwo.com 

It should yield on the results into 1 specific address.

IE: when you test the cosolidation for melgibson@domainone.com it should return melgibson@domainone.com

When testing melgibson@domaintwo.com  it should also return melgibson@domainone.com

If this is true.

Ensure you have also ticked the little check box to make this an active query (else it will not take action).

Then on your spam quarantine settings as well, for the End user notification (if enabled) tick the check box to use spam consolidation alias.

Regards,

Matthew

0 Helpful

darkeden82
Level 1
Level 1
In response to Mathew Huynh

‎07-08-2016 01:44 PM

Hi Mathew,thx for the answer.


I've rebooted my ESA and now everything works better :

melgibson@domainone.com is able to check his quarantine from web when he wants.

All quarantined mails sent to melgibson@domainone.com and melgibson@domaintwo.com are in the spam notification report delivered to  melgibson@domainone.com.

There is still a problem : 

he can't log into the quarantine from web to check mails only for melgibson@domaintwo.com.
Everytime he tries I can see a "login failed" log

The situation is better but not as the customer wants 

0 Helpful
Customers Also Viewed These Support Documents