Mail Security lets you specify the users and groups to which the rule applies. You can also specify which users and groups are exceptions to the rule.
Note: | This feature is not available for the Edge Server role. |
You can select groups from Active Directory. You can also add users based on SMTP addresses.
Table: Supported SMTP address formats shows the SMTP address formats that Mail Security supports.
Table: Supported SMTP address formats
Address | Example |
---|---|
@<domain name> | @symantecdomain.com |
*@<domain name> | *@symantecdomain.com |
<name>@<domain name> | |
<name>@<subdomain.domain name> |
Note: | Using regular expressions for SMTP addresses is not supported |
When you use the address formats from the table above, sub-domains are automatically supported. For example, when you use the address format <name>@<domain name>, Mail Security will support [email protected], as well as [email protected]
If you do not specify users, the rule applies to all senders and recipients.
If you are using Exchange 2007, and you want to specify a user or group whose domain is not in the Exchange server domain, specify the domain name in the
list.If you are using Exchange 2013/2016, and you want to specify a user or group whose domain is not in the Exchange server domain, specify the domain name in the
list.See Specifying inbound SMTP domains
Note: | You can select any Active Directory group except the Users group. Adding the Users group to Active Directory Groups list results in unintended behavior. On Exchange 2010 mailbox server role, for content filtering rules based on Active Directory group, you must add SMSMSE service account user (RBAC user) to the SMSMSE Admins Active Directory group. You can select any Active Directory group except the Users group. Adding the Users group to Active Directory Groups list results in unintended behavior. On Exchange 2013/2016 mailbox server role, for content filtering rules based on Active Directory group, you must add SMSMSE service account user (RBAC user) to the SMSMSE Admins Active Directory group. |
To specify the users and groups to which the rule applies
In the console on the primary navigation bar, click Policies.
In the sidebar under Content Enforcement, click Content Filtering Rules.
Do one of the following:
Click the Users tab.
Under Sender/Recipient Selection, do one of the following:
Under List of Users or Groups, in the SMTP addresses box, do one of the following:
Under the Active Directory groups list, to select groups from Active Directory, click Add.
In the Active Directory domains and groups window, under Available groups, select the group that you want to add and click the >> command icon.
The group that you select appears in the Selected groups list. To deselect a group in the Selected groups list, click on the group entry, and then click the << command icon.
Do any of the following:
Configure the remaining components of the content filtering rule.
See Configuring the conditions of a content filtering rule
See Specifying who to notify if a content filtering rule is violated
Click OK and then click Deploy Changes.