Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 4 subscribers
  • Views 7314 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Additional Email addresses after AD/SSO integration.

DavidCook

After AD/SSO membership: Def & Users->Auth Svcs->Advanced->AD Grp Bkgnd Sync "Y", Prefetch Enble Sync on Login "Y", my user's Additional Email addresses gets wiped out.

Should this not sync from AD  otherMailbox field? How do I manage these additional addresses now?

We have setup unique aliases for each vendor so we can better handle those who abuse email privileges but dropping an alias entirely if necessary. The additional addresses in Sophos allowed all aliases to roll-up into a single Quarantine Report which is exactly what we need.

Now after AD integration has wiped that field, we get a Quarantine Report for each alias that has received spam.



This thread was automatically locked due to age.
Parents
  • 0

    Hi, David, and welcome to the UTM Community!

    Instead of adding the aliases in the UTM, add them in the respective AD accounts.

    Cheers - Bob

  • 0 in reply to BAlfson

    Bob, we are managing the aliases externally and putting them in AD (otherMailbox array) is where I believe they should go.

    This works fine for the actual email but messes up the Quarantine Reports.

    UTM doesn't know fred@example.com, fred_alias1@example.com and fred_alias2@example.com are the same person. If each addresses receives spam today, Fred will get 3 Quarantine Reports - one for each address.

    If all the aliases get populated in Sophos Users, Additional Email address array, then UTM knows to roll up all that spam into 1 consolidated Quarantine Report for Fred.

    So to be clear we are not managing the aliases in UTM, but we must populate the list there in order for a seamless Quarantine Report/Email Manager experience.

    This worked famously until we did AD/SSO integration. Now AD wipes the UTM Additional Email list when it syncs! (We have some users with 100+ aliases making this a big deal on the integration front).

    There should be a properly integrated way to do this. For the time being I created a cron that checks the api for one of the known address to see if it has any aliases. If there are none, I know the AD sync has run and wiped them again. It them loops through my users and uses the api to re-populate those aliases. This can work, but is certainly not the best design or implementation method.

Reply
  • 0 in reply to BAlfson

    Bob, we are managing the aliases externally and putting them in AD (otherMailbox array) is where I believe they should go.

    This works fine for the actual email but messes up the Quarantine Reports.

    UTM doesn't know fred@example.com, fred_alias1@example.com and fred_alias2@example.com are the same person. If each addresses receives spam today, Fred will get 3 Quarantine Reports - one for each address.

    If all the aliases get populated in Sophos Users, Additional Email address array, then UTM knows to roll up all that spam into 1 consolidated Quarantine Report for Fred.

    So to be clear we are not managing the aliases in UTM, but we must populate the list there in order for a seamless Quarantine Report/Email Manager experience.

    This worked famously until we did AD/SSO integration. Now AD wipes the UTM Additional Email list when it syncs! (We have some users with 100+ aliases making this a big deal on the integration front).

    There should be a properly integrated way to do this. For the time being I created a cron that checks the api for one of the known address to see if it has any aliases. If there are none, I know the AD sync has run and wiped them again. It them loops through my users and uses the api to re-populate those aliases. This can work, but is certainly not the best design or implementation method.

Children