Configuring Policy, Virus, and Outbreak Quarantines

Before you begin

If you are editing an existing quarantine, see About Editing Policy, Virus, and Outbreak Quarantine Settings.
Understand how messages in quarantines are automatically managed, including retention times and default actions. See Retention Time for Messages in Quarantines, and Default Actions for Automatically Processed Quarantined Messages.
Determine which users you want to have access to each quarantine, and create users and custom user roles accordingly. For details, see Which User Groups Can Access Policy, Virus, and Outbreak Quarantines.

Procedure

Step 1

You can configure Policy, Virus, and Outbreak Quarantines in any one of the following ways:

[ New Web Interface Only] Choose Quarantine > Other Quarantine > View > +.
Choose Email > Message Quarantine > Policy, Virus, and Outbreak Quarantines and do one of the following:
- Click Add Policy Quarantine.
- Click a quarantine to edit.

Step 2

Enter the following information:

Keep the following in mind:

Changing the retention time of the File Analysis quarantine from the default of one hour is not recommended.
If you do not want messages in this quarantine to be processed before the end of the Retention Period you specify, even when quarantine disk space is full, deselect Free up space by applying default action on messages upon space overflow.

Do not select this option for all quarantines. The system must be able to make space by deleting messages from at least one quarantine.
If you select Release as the default action, you can specify additional actions to apply to messages that are released before their retention period has passed:

Option

Information

Modify Subject

Type the text to add and specify whether to add it to the beginning or the end of the original message subject.

For example, you might want to warn the recipient that the message may contain inappropriate content.

Note	In order for a subject with non-ASCII characters to display correctly it must be represented according to RFC 2047.

Add X-Header

An X-Header can provide a record of actions taken on a message. This can be helpful for example when handling inquiries about why a particular message was delivered.

Enter a name and value.

Example:

Name = Inappropriate-release-early

Value = True

Strip Attachments

Stripping attachments protects against viruses that may be in such files.

Step 3

Specify the users who can access this quarantine:


User	Information
Local Users	The list of local users includes only users with roles that can access quarantines. The list excludes users with Administrator privileges, because all Administrators have full access to quarantines.
Externally Authenticated Users	You must have configured external authentication.
Custom User Roles	You see this option only if you have created at least one custom user role with quarantine access.

Step 4

Submit and commit your changes.

What to do next

See Message Filters Page and Content Filters Page

If you have not yet migrated quarantines from the Email Security appliance:
You will assign these quarantines to message and content filters and DLP message actions as part of the migration process.
If you have already migrated to centralized quarantines:

Make sure your Email Security appliance has message and content filters and DLP message actions that will move messages to the quarantine. See the user guide or online help for the Email Security appliance.