This article applies to:

• MailMarshal SPE

Question:

• How do I create a Connection rule for managed customers that allows the customer to maintain the list of valid email addresses?

Procedure:

You can create a rule for customers that allows them to maintain their own lists of valid email address either by Connector Agent import, or manually.

• Create a connection rule in a customer package.
• As customer packages are assigned to customers, ensure that this package is available for the customer that want to use this rule. 
• The rule must be disabled by default and the customer must be allowed to enable it. This will ensure that the rule is not processed until the customer has customized it.

1. In the Admin Console, create the following customer package Incoming connection rule.
   
   When a message arrives
   Then
   Refuse message and reply with 550 Rule imposed mailbox access for {Recipient} refused
   
   
   • NOTE: The following options MUST also be set for this rule.
     • Rule State Disabled
     • Allow customers to disable
     • Allow User Group Exception
2.  In the Customer Console, create or identify a User Group that contains valid email addresses:
   • If the Connector Agent is in use, identify the correct imported group.
   • If the Connector Agent is NOT in use, create and populate an Internal user group with the list of valid email addresses (see Policy Elements > User Groups).
3. In the Customer Console, navigate to Rules > Customer Packages and find the "access refused" rule as created above
4. Click the User Exceptions link for the "access refused" rule. 
5. Add the user group that contains valid email addresses.
6. AFTER you have added this group as an exception to the rule, enable the rule.

Note:

Ensure the exceptions group is correctly populated and the exception is correctly set. If this rule is enabled while the group is empty or the exception is not added to the rule, all mail will be refused.