Network Integration Guide › Configuring the NBA › Quarantined Emails › Set Up NBA Quarantining

Set Up NBA Quarantining

To enable the NBA to quarantine and release emails, set up the following configuration:

Quarantine Manager

First, set up a ‘QM domain user’ with rights to log in to your email server. Finally, after installing the Quarantine Manager, edit its registry to configure how it handles quarantined emails.

This setup procedure is the same as the general Quarantine Manager setup. For full details, see the Deployment Guide; search the index for ‘Quarantine Manager’.

Socket API

If a policy engine applies a ‘Quarantine with Notification’ control action to an email, the Socket API generates the notification email and sends it to a designated SMTP server.

The Socket API setup for sending ‘quarantine notification’ emails is the same as the setup for sending ‘blocking notification’ emails. In particular, you need to edit the NotificationFromAddress and SMTPDNSHostName registry values.

For full details, see the Archive Integration Guide; search for ‘Socket API, configuring’.

NBA policy

When the Quarantine Manager releases an email that was quarantined by the NBA, the released email is routed through the NBA a second time on its way to the intended recipient. Likewise, ‘quarantine notification’ emails may also be routed through the NBA if the original email was sent using a web-based service such as Hotmail.

To ensure that released emails and notification emails can pass through the NBA without being reprocessed (and quarantined again!), edit the NBA policy so that it can recognize emails that are sent by the Quarantine Manager and the Socket API. To do this, edit the <enterprisednslist> policy tag in nbapolicy.xml so it specifies the following domains:

• The Domain of the Quarantine Manager host machine. This ensures that emails released from quarantine are ignored when they pass through the NBA, and
• The Domain that is specified by the Socket API registry value, SMTPDNSHostName. This ensures that ‘quarantine notification’ emails are ignored when they pass through the NBA.
• <enterprisednslist> is described in the section for Settings tags.

For an overview of how the NBA is able to ignore notification emails, see NBA ignores already-processed emails.

User policy triggers

Edit the user policies for your ordinary users, setting up the Outgoing Email control triggers and a control action to detect unauthorized emails and webmails, and apply a ‘Quarantine Quietly’ or ‘Quarantine With Notification’ control action.

In the control trigger, edit the 'Message to Users' to indicate that the sent email has been quarantined. Otherwise users may attempt to send the email again, believing the email has been blocked.

More information:

Settings Tags

NBA Ignores Already-Processed Emails

User Policy Changes