|Become a Columnist Microsoft Exchange Site Microsoft Support SiteMSDN Exchange Site|
One of the new spam mitigation features in Exchange 2007 is quarantine support. This option enabled all messages that are not deleted or rejected to be sent to an SMTP e-mail address. Using this ability you can then configure a shared mailbox so mail administrators or help desk users, for example, can review the messages in it and forward them on if they were incorrectly blocked (false positive). This article will go over how to configure Exchange 2007, the shared quarantine mailbox, and Outlook to use this feature to its fullest potential.
Enabling anti-spam agents
First off, Exchange 2007 is required to do this; you don’t need an Edge server as long as you have the Anti-Spam agents installed on the inbound HUB transport server. So, if you haven’t done this yet, do so by following the steps below. If you have an EDGE server these steps are not needed:
1. Start the Exchange Management Shell (EMS) on your Exchange 2007 server with the HUB role installed
2. Change to the “C:\Program Files\Microsoft\Exchange Server\Scripts” folder
Note: This is the default path, change if necessary.
Run the following command:
4. Verify that all six agents show True in the Enabled column on the status screen that is shown after running the command
5. Restart the “Microsoft Exchange Transport” service
6. Open the Exchange Management Console (EMC) to verify the “Anti-Spam” tab is shown under the Organization Configuration\Hub Transport node.
For more details see http://exchangepedia.com/blog/2006/09/how-to-install-anti-spam-agents-on-hub.html
Creating the quarantine mailbox
Next, we need to create a mailbox that will store the quarantined spam, not covered in this article. Once the mailbox is created you will need to give access to the users who need to manage spam. To do this, right click on the mailbox and select “Manage Full Access Permission...” task. Then add the users or group that you want to have the ability to delete message from the quarantine. Repeat this process for “Manage Send As Permissions…” task (optional).
Note: These commands are new in E2k7 SP1.
Creating a policy for the quarantine mailbox
In order to prevent unlimited growth of the quarantine mailbox, a policy should be created to delete old mail from it. We are going to use a Manage Folder Policy to do this.
1) Navigate to the Organization Configuration\Mailbox node and click the “Managed Default Folder” tab
2) Right click on the Inbox folder and choose “New Managed Content Settings…”
a) Name the policy “Delete Items after 15 Days”
b) Confirm “All Mailbox Content” is selected
c) Enable “Length of retention period (days)” and enter 15
d) Confirm “When delivered…” is selected for the “Retention period starts:”
Change “Action to take…” to “Permanently Delete”
f) Click Next
g) Click Next at the Journaling options tab
h) Click New to create the policy
3) Click the “Managed Folder Policies” tab
a) Click “New Managed Folder Mailbox Policy”
b) Name it “Spam Quarantine”
Click Add and choose the Inbox folders
d) Click New
4) Next we need to apply the policy to the Spam quarantine mailbox
a) Open the mailbox and goto the “Mailbox Settings” tab
b) Double click “Message Records Management”
Click Browse and choose the “Spam Quarantine” policy
d) Click OK, OK, and OK
Disclaimer: Your use of the information contained in these pages is at your sole risk. All information on these pages is provided "as is", without any warranty, whether express or implied, of its accuracy, completeness, fitness for a particular purpose, title or non-infringement, and none of the third-party products or information mentioned in the work are authored, recommended, supported or guaranteed by Stephen Bryant or Pro Exchange. OutlookExchange.Com, Stephen Bryant and Pro Exchange shall not be liable for any damages you may sustain by using this information, whether direct, indirect, special, incidental or consequential, even if it has been advised of the possibility of such damages.
Copyright Stephen Bryant 2008