In a server cluster, if you enable the Symantec Encryption Web Email Protection service on a few servers, define a mail policy that uses Web Email Protection as the default Key Not Found (KNF) action, and enable message replication on all servers, the message storage quota is not enforced. This allows external users to receive emails in excess of their assigned quota without triggering any notifications.
Symantec has provided a script (offline_quota.sh) to enforce the message storage quota in Symantec Encryption Web Email Protection. The script file is created in the /usr/bin directory after you install or upgrade to Symantec Encryption Management Server 3.3.2 MP1.
The script automatically detects when to update or read the quota cache, or when to enable or disable itself. If Web Email Protection is enabled, the script removes any offline quota from that particular server, caches usage data, and then replicates the cache to the other servers in the cluster.
However, if the Web Email Protection service is disabled, the script installs the offline quota schema and reads the combined cached quota data.
Applying the workaround
To apply the workaround, perform the following steps:
The purge argument removes stale message data that is more than 7 days old from the database to conserve disk space on each server.
Uninstalling the workaround
To uninstall the workaround, perform the following steps on each of the servers in the cluster:
Note: You can choose to perform this procedure on only the local server, without affecting the functionality of the workaround on the remaining servers in the cluster.
Verifying the installation status of the workaround
In the command line shell, enter the following command to perform a diagnostic test to verify the installation status of the offline quota schema:
Scheduling a cron job
To schedule a cron job, perform the following steps:
Deleting a cron job
To delete a cron job, perform the following steps:
This issue applies to clustered servers on which Symantec Encryption Management Server 3.3.2 MP1 is installed.