Global#
Settings#
The settings in this page allow to configure system notifications, domain disclaimers, and how users can search for other users.
To configure notifications, provide the e-mail address that appears as the sender of the system notifications, which must be unique, and the recipients that will receive them.
The first options is to activate the domain disclaimer as a mandatory option for all domains configured. By default, the disclaimer, whose text can be configured in Section (see Disclaimer), is added at the end of each incoming and outgoing message (i.e., messages with a recipient external to the domain), unless the second option, Only allow outbound disclaimers, is enabled: in that case, the disclaimer is added only to outgoing messages
See also
Domain disclaimer can be managed from the CLI as well, please refer to Section Configuring Domain Disclaimer.
Once you change any of the options, restart amavis as the zextras
user on every Node featuring the MTA role
zextras$ zmamavisdctl restart && zmconfigdctl restart
The switch labelled Allow searching users’ information in all domains, when active, allows any user to search for other users in all other domains configured on the Carbonio infrastructure.
For example: user John with e-mail address john@example.com will be able to find user Jane jane@acme.example (which is on a different domain) only if this switch is active, otherwise Jane will not show up in the results.
If the option is not active, it will be possible to define in (See General Settings) the domains on which users will be able to search users of other domains.
Administrators#
This page is an excerpts of the Accounts () table, showing all the Global Delegates.
White-label Settings#
Global settings concern the appearance of Carbonio and allow to customise various option that will influence how the Carbonio web interface appears to the web clients.
Note
These setting are applied to all the domains configured; if you want to customise the appearance of a single domain, please change the settings under .
The description of the available options can be found in the dedicated section.
Domains#
This table lists all the domains configured on Carbonio. A click on any domain opens the General settings () of that domain. Check section Create New Domain to add a new domain.
2-Factor-Autenthication#
In this page it is possible to configure 2FA globally (i.e., for all domains configured) for the various services offered by Carbonio. To modify settings for a single domain, refer to 2-Factor-Autenthication.
Note
The global values configured are inherited by all domains, but they can be overridden by domain-specific settings.
Many services are available to configure individually. For each of them it is possible to Disable 2FA completely, allowing user access with username and password only; to Trust the IP, meaning that all client connections from a given IP address or IP range will be trusted even if they don’t use 2FA; and to Trust the device which allows an application (usually a browser) to be trusted when connecting from a given IP.
Hint
2FA applies only to those protocols or apps supporting it, for example HTTP and HTTPS but not to IMAP and SMTP.
Quarantine#
In this page appears the configuration of the special quarantine e-mail account, which holds all the messages either marked as Spam or containing viruses.
The available setting is the duration of the retention time, i.e., how long these messages are kept before being deleted forever. The quarantine account, including all the e-mail messages it contains, can be deleted and recreated by clicking the DELETE AND RE-CREATE button. At the bottom of the page the list of quarantined messages is shown. Being a system account, to view the messages you can go to , click the quarantine account, then the VIEW MAIL button to see the quarantined e-mails.
When viewing a quarantined message, the Administrator can carry out a few actions on it:
View the original message, including the score and the reason why the e-mail was marked as spam
-
Remove infected attachments from the e-mail and deliver the e-mail to the recipient (see box below).
Note
If the e-mail still has infected attachments, it will not be delivered.
Download the message and share it with the recipient
Delete the e-mail
To remove one or more attachments from an infected e–mail, hover on the name of the attachment and click the thrash bin icon
Once all the infected attachments have been removed, click the DELIVER button to complete the delivery of the e-mail to the intended recipient.
ActiveSync#
This page allows to configure the DoS protection. The Maximum of Requests Allowed and Time window for Allowed Requests options define how many attempts a Mobile device can carry out in the given amount of time: when this happens, the device is jailed (i.e., it will not be allowed to connect) for the amount of time defined in the Jail Duration.
The buttons allow to restart the jail, freeing all blocked devices and allow them to connect, and purge the ActiveSync status.
Mobile includes a dedicated DOS Filter component to improve both security and stability. The DoS filter will automatically activate whenever a device exceeds the defined connection rate over time and will forbid any connections from that device for a given period of time.
This approach improves both security, by helping to prevent DoS attacks, and stability, by blocking clients that are performing too many requests because of bugs or malfunctioning, thus saving resources for all other clients.
When the rate has been exceeded, a warning is sent via email to admin and added to server notifications.
See also
You can configure the DoS Filter from the CLI: please refer to Section Carbonio Mobile DoS Filter Configuration.