Policy Guide › Whose Policy Is Applied? › Email Activity

Email Activity

CA Data Protection associates emails with users depending on how and where CA Data Protection detected the email (the ‘capture source’).

• Email endpoint agents: When CA Data Protection detects emails in Outlook or Notes, it associates the user’s Windows logon credentials with a matching CA Data Protection user account and applies that user’s policy. That is, CA Data Protection can identify the user sending (or receiving) an email and apply that user’s policy to the email.

  The synchronization between Windows accounts and CA Data Protection accounts is created in the CMS database during an Account Import job or, less commonly, by using Microsoft Windows user authentication to automatically generate new user accounts.

• Email server agents: For emails detected as they pass through Exchange, Domino or Sendmail servers, CA Data Protection first determines whether the sender’s email address matches an internal address pattern. If it does and the sender corresponds to an existing CA Data Protection user account, that user’s policy gets applied.

  If no matching CA Data Protection user can be found, or if the sender is deemed to be external, then CA Data Protection applies either the ‘unknown internal sender’ policy or the ‘external sender’ policy. These are CA Data Protection user accounts set up specifically for this purpose.

• Network Appliance: For emails sent across your corporate network to or from the Internet, passing through the CA Data Protection Network Appliance, CA Data Protection tries to map the sender’s email address to a CA Data Protection user account.

  However, because the Network Appliance typically targets messages sent from private Webmail accounts, in many cases it will not be possible to map the sender’s address to a CA Data Protection account. In this situation, CA Data Protection applies either the ‘unknown internal sender’ policy or the ‘external sender’ policy.