|
|
|
What can I do here?
Use this window to configure exceptions to Threat Emulation and Threat Extraction.
|
Getting Here - Security Policies > Threat Prevention > Policy > Threat Tools > Profiles > Profile > Mail > Exceptions |
You can exclude specific email addresses from the Threat Emulation or Threat Extraction protections.
To exclude emails from Threat Emulation:
Emails and attachments that are sent to these recipients will not be sent for emulation.
Emails and attachments that are received from these senders will not be sent for emulation.
Note - You can use a wildcard character to exclude more than one email address from a domain.
Note - If you want to do emulation on outgoing emails, make sure that you set the Protected Scope to Inspect incoming and outgoing files.
To exclude emails from Threat Extraction:
Click the + button to exclude specific recipients, users, groups or senders.
Click the Add button to exclude specific User Groups, Recipients or Senders.
Examples:
A user is an object that can contain an email address with other details.
A group is an AD group or an LDAP group of users
A recipient is an email address only.
Important: In the main SmartConsole menu > Global Properties > User Directory, make sure that you selected Use User Directory for Security Gateways.
Signed emails are not encrypted, but the mail contents are signed to authenticate the sender. If the received email differs from the email that was sent, the recipient gets a warning, and the digital signature is no longer valid.
Clean replaces the original attachment with an attachment cleaned of threats, or converts the attachment to PDF form. Both actions invalidate the digital signature. If the attachment does not include active content, the mail remains unmodified and the digital signature valid.
Allow does not change the email. The digital signature remains valid. Select this option to prevent altering digital signatures.
