Configuring Mail Settings

Configuring advanced AS/AV settings

The following procedure is part of the domain configuration process. For information about domain configuration, see “Configuring protected domains” on page 380.

  1. Go to Mail Settings > Domains > Domains.
  2. Either click New to create a new protected domain, or click an row to modify it.

A multisection dialog appears. Its options vary with the operation mode.

  1. Click the arrow to expand the section.
  2. Configure the following:
GUI item Description
Check AS/AV configuration Mark this check box to query an LDAP server for an email user’s preferences to enable or disable antispam and/or antivirus processing for email messages destined for them, then click the arrow to expand the section and select the name of an LDAP profile in which you have enabled and configured. For more information, see “Configuring LDAP profiles” on page 549
Use global Bayesian database Enable to use the global Bayesian database instead of the Bayesian database for this protected domain.

If you do not need the Bayesian database to be specific to the protected domain, you may want to use the global Bayesian database instead in order to simplify database maintenance and training.

Disable to use the per-domain Bayesian database.

This option does not apply if you have enabled use of personal Bayesian databases in an incoming antispam profile, and if the personal Bayesian database is mature. Instead, the FortiMail unit will use the personal Bayesian database. For more information, see “Configuring Bayesian options” on page 509.

Note: Train the global or per-domain Bayesian database before using it. If you do not train it first, Bayesian scan results may be unreliable. For more information on Bayesian database types and how to train them, see “Types of Bayesian databases” on page 644 and “Training the Bayesian databases” on page 645.

Sender address rate control For email users under this domain, you can configure the following rate control settings:

•      Maximum number of messages per half hour. The default value is 30.

•      Maximum data size per half hour (MB). The default value is 100 MB.

•      Maximum number of spam messages per sender per half hour. The default value is 5.

•      Send email notification upon rate control violations and select a notification profile (see “Configuring notification profiles” on page 601).

Bypass bounce

verification

Mark this check box to disable bounce verification for this protected domain.

This option appears only if bounce verification is enabled. For more information, see “Configuring bounce verification and tagging” on page 634.

Configuring domain level service settings (server mode only)

If you are a service provider (MSSP) which host multiple domains for multiple customers, for billing purpose, the super admin may want to set limits on the usage of FortiMail resources. The domain administrators are not allowed to modify these settings.

The following procedure is part of the domain configuration process. For information about domain configuration, see “Configuring protected domains” on page 380.

  1. Go to Mail Settings > Domains > Domains.
  2. Either click New to create a new protected domain, or click an row to modify it.
  3. Click the arrow to expand the Service Settings
  4. Configure the following:

GUI item              Description

Enable domain Select to enable the domain level server controls. level service settings

Email account       Specify the maximum number of email account are allowed on this limit           domain.

Max user quota Specify the maximum disk quota for each user.

(MB)

Mail access         Specify the allowed mail access protocol for the users: POP3, IMAP, or Webmail.

For webmail access, if you select Limited Service, the users will be only able to change their passwords and configure mail forwarding. All other features will not be available.

Configuring mail migration settings (server mode only)

If you enable the mail migration feature, this section will appear. For details, see “Migrating email from other mail servers (server mode only)” on page 412.

Managing the address book (server mode only)

The Mail Settings > Address Book tab lets you create and maintain a global or domain-based address book and contact groups, or to configure LDAP attribute mapping templates to retrieve existing address books in your LDAP server.

To access this part of the web UI, your administrator account’s access profile must have Read or Read-Write permission to the Others category

For details, see “About administrator account permissions and domains” on page 290.

This section contains the following topics:

  • Adding contacts (server mode only)
  • Adding contact groups (server mode only)
  • Configuring LDAP attribute mapping template (server mode only)

Adding contacts (server mode only)

Go to Mail Settings > Address Book > Contacts to add contacts to a global or domain-based address book in server mod. You can also create contact groups using the contacts. For more information, see “To add or remove users from contact groups” on page 405.

The address book contains the contacts you add, the contact groups created, and the contact list retrieved from your LDAP server based on the LDAP mapping configuration. For information on LDAP mapping configuration, see “Configuring LDAP attribute mapping template (server mode only)” on page 407.

Individual FortiMail webmail users can access the global or domain-based address books for a common set of contact information when composing email messages. For more information, log in to FortiMail webmail and click Help.

To view and edit the address book

  1. Go to Mail Settings > Address Book > Contacts.

Figure 163:The server mode Contacts tab

GUI item Description
Export

(button)

Click to download a copy of the address book in comma-separated value (.csv) or vCard (.vcf) file format.

Exporting the address book can be useful for backup purposes, or when using a spreadsheet application such as Microsoft Excel to make large numbers of changes to the address book before importing it again.

Import

(button)

Click to select a comma-separated value (.csv) or vCard (.vcf) file format. Then click Browse to import address book entries. Click OK to upload the file.

Click and select LDAP allows you to import contacts from your LDAP server. For details, see “To import contacts from the LDAP server” on page 404.

Note: An LDAP attribute mapping template must be set up before you can import contacts from the LDAP server. For details, see “Configuring LDAP attribute mapping template (server mode only)” on page 407.

Importing the address book can be useful when restoring a backup of the address book, or when importing large numbers of address book entries.

Note: To replace existing entries, first delete those entries, then import the address book file. The FortiMail unit compares the Webmail_ID value of each entry in the address book file, and will not overwrite existing address book entries.

Manage Group

(button)

Select a contact and click this button to add a contact to or remove a contact from a contact group. To do so, you must first add contact groups. For more information on managing groups, see “To add or remove users from contact groups” on page 405. For more information on adding group names, see “Adding contact groups (server mode only)” on page 405.
GUI item Description
Domain

(drop-down list)

Select System to display a contact in the global address book, or a domain to display a contact in the domain address book. For information on creating domains, see “Configuring protected domains” on page 380.
Search Enter a search value for a contact, such as the first name, last name, or email address, and click this button to find the contact from the list.
Display Name Displays the contacts display name.
First Name Displays the first name of the contact.
Last Name Displays the last name of the contact.
Email Displays the email address of the contact.
  1. Either click New to create a contact or double-click a contact to modify it.

A dialog appears.

  1. Enter information for the contact.

You must enter an email address (Email). Other fields are optional.

  1. Click Create or OK.
  2. To add additional contact information, click the Address, Custom, and Advanced

To import contacts from the LDAP server 1. Go to Mail Settings > Address Book > Contacts.

  1. Click Import and select LDAP.

A dialog appears.

GUI item Description
Select LDAP profile Select an LDAP profile that contains the configuration for the LDAP server from which you want to import the contacts. For information on creating LDAP profiles, see “Configuring LDAP profiles” on page 549.
Select LDAP mapping Select an LDAP attribute mapping template. The FortiMail unit will import the contacts from the LDAP server based on this template. For information on creating the template, see “Configuring LDAP attribute mapping template (server mode only)” on page 407.
New

(button)

Click to create a new LDAP attribute mapping template. For details, see “To view and configure an LDAP mapping list” on page 407.
Edit

(button)

Click to modify the LDAP attribute mapping template you selected in the Select LDAP mapping field.

Overwrite Select if you want to overwrite the same contacts in your current existing contacts address book with the imported contact list. This is especially useful when you want to update the imported list.

Delete nonexistent contacts Select if you want to remove the contacts that were in a previous imported list but are not available in the updated list. This is especially useful when you want to update the imported list.
  1. Select OK.

The FortiMail unit starts importing contacts from the LDAP server. When complete, a Status field appears with information on whether the import was successful.

To add or remove users from contact groups

  1. Go to Mail Settings > Address Book > Contacts.
  2. Select one or more contacts to add or delete from an existing group.
  3. Click Manage Group and do one of the following:
    • Select Add to Group from the pop-up menu to add users.
    • Select Delete from Group from the pop-up menu to remove users.

In either case, a dialog appears. Only the title varies.

  1. In Domain, select System to display all system-wide contact groups, or a domain name to display all contact groups under that domain. For information on creating domains, see “Configuring protected domains” on page 380.
  2. Whether adding or removing users, both dialogs work the same.
    • To add the users to a group or groups, select one or more groups under Available group(s) on the Add to Group dialog and click -> to move them to the Selected group(s)
    • To remove the users from a group or groups, select one or more groups under Available group(s) on the Delete from Group dialog and click -> to move them to the Selected group(s)

Users are not removed from the contacts list, just removed from a group.

  1. Click OK.

6 thoughts on “Configuring Mail Settings

  1. Viorel

    Hi,
    Do you think I could use fortimail in server mode integrated with office 365?
    Can i use this setup to be able to create email accounts in office 365 and some emails in fortimail?
    In my case I have like 140 permanent users and 30-40 users let say “temporar users”(3-4 months/year). For them I want to create emails accounts in fortimail.
    Ex: someone@testdomain.com is an office365 account, and someone2@testdomain.com to be an fortimail account.
    When an email is received I want to be able to be redirected where it belongs. If an email created in office 365 to be redirected there, if was created in fortimail should be redirected to fortimail.

    Is possible this setup?
    Thank you

    Reply
    1. Mike Post author

      I have only ever deployed a FortiMail for Office 365 utilizing Gateway mode. I’m not sure, off hand, how one would make it work in server mode.

      Reply
  2. Danny

    I have several associated domains in Fortimail, mainly for ease of administration. We currently have DKIM and SPF set up for O365 outbound mail but I’d like to start using Fortimail for outbound filtering. Will Fortimail just transparently relay the mail leaving the DKIM signature and SPF IP address unaltered and valid? Or will it strip them requiring me to use Fortimail for DKIM and its IP address in our SPF record? DKIM is so easy to set up in O365 so I would hate to have to redo it and split all our associated domains into dedicated domains.

    Reply
  3. Murat

    Hi we Have created a user in migrated user and start to migrate mailbox from exchange after couple of minutes give connection error. We sniff on cli and get an error code 500.5.3.3 can you find whats problem thanks

    Reply
  4. Conver Zafra

    I have configured the LDAP in my Outlook 2010. Is there a way to automatically sync the LDAP contacts to my local Outlook contact list, so i can search contacts even when i am offline?

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.