This article applies to:
- SEG/MailMarshal
- Spam Quarantine Management (SQM) functionality
Question:
- Where on the network should I install SQM?
- What authentication methods are available for SQM when installed in a DMZ?
Reply:
Trustwave recommends that you install the SQM website on a server inside the trusted network. The MailMarshal Array Manager should also be inside the network. Both servers should be domain members.
If you install these servers as suggested, you can use either Active Directory or Forms (email address/password) authentication for the SQM.
If you install these servers outside the trusted network, Active Directory authentication will not be available. In this case, use Forms authentication. For example, if you install MailMarshal as a standalone server in a DMZ you should choose Forms authentication.
Notes:
- SQM logins are validated by the Array Manager service in its security context. The Array Manager must have access to Active Directory.
- SQM logins do not use information from MailMarshal Directory Connectors.