Step 1 | If your Email
Security appliance is in your DMZ and your Security Management appliance is
behind your firewall, open a port in the firewall to allow the appliances to
exchange centralized policy, virus, and outbreak quarantine data.
|
Firewall Information
|
Step 2 | On the Security
Management appliance, enable the feature.
|
Enabling Centralized Policy, Virus, and Outbreak Quarantines on the Security Management Appliance
|
Step 3 | On the Security
Management appliance, allocate disk space for non-spam quarantines.
|
Managing Disk Space
|
Step 4 | (Optional)
-
Create centralized policy quarantines on the Security Management
appliance with desired settings.
-
Configure settings for the centralized virus and outbreak
quarantines, and for the default policy quarantines.
If you configure these settings before migration, you can refer
to the existing settings on your Email Security appliances.
You can also create required quarantines while configuring
custom migration, or quarantines will be created for you during automatic
migration. All quarantines created during migration have default settings.
Local quarantine settings are not retained in the centralized
quarantine, even if the quarantine name is the same.
|
|
Step 5 | On the Security
Management appliance, add Email Security appliances to manage, or select the
Policy, Virus and Outbreak Quarantines option from the centralized services of
an already-added appliance.
-
If your Email Security appliances are clustered, all appliances
that belong to a particular level (machine, group, or cluster) must be added to
the Security Management appliance before you enable centralized Policy, Virus
and Outbreak Quarantines on any Email Security appliance in the cluster.
|
Adding the Centralized Policy, Virus, and Outbreak Quarantine Service to Each Managed Email Security Appliance
|
Step 6 | Commit your
changes.
|
|
Step 7 | On the Security
Management appliance, configure migration of existing policy quarantines from
Email Security appliances.
|
Configuring Migration of Policy, Virus, and Outbreak Quarantines
|
Step 8 | On an Email
Security appliance, enable the centralized policy, virus, and outbreak
quarantines feature.
-
Important:
If you have policy, virus, and outbreak quarantines
configured on an Email Security appliance, migration of quarantines and all
their messages begins as soon as you commit this change.
|
See the
“Centralizing Services on a Cisco Content Security Management appliance”
chapter in the documentation for your Email Security appliance, specifically
the following sections:
- “About Migration of Policy,
Virus, and Outbreak Quarantines”
- “Centralizing Policy, Virus,
and Outbreak Quarantines”
|
Step 9 | Migrate
additional Email Security appliances.
-
Only one migration process can be in progress at any time. Do
not enable centralized policy, virus, and outbreak quarantines on another Email
Security appliance until the previous migration is complete.
|
|
Step 10 | Edit
centralized quarantine settings as needed.
|
Configuring Policy, Virus, and Outbreak Quarantines
|
Step 11 | If message
filters, content filters, and DLP message actions could not be automatically
updated with the names of centralized quarantines, manually update those
configurations on your Email Security appliances.
|
See the
documentation for message filters, content filters, and DLP Message Actions in
the online help or user guide for your Email Security appliance.
|
Step 12 | (Recommended)
Specify an Email Security appliance to process released messages if the
originating appliance is not available.
|
Designating an Alternate Appliance to Process Released Messages
|
Step 13 | If you delegate
administration to custom user roles, you may need to configure access in a
certain way.
|
Configuring Centralized Quarantine Access for Custom User Roles
|