Targeted Threat Protection - URL Protect - Policy Configuration

Updated

This article describes configuring a Targeted Threat Protection: URL Protect policy. This requires that you have a previously configured Targeted Threat Protection: URL Protect definition. See the Configuring URL Protect Definitions page for full details.

Configuring a URL Protection Policy

To configure a URL Protect policy:

  1. Log on to the Mimecast Administration Console.
  2. Select the Gateway | Policies menu item.
  3. Click on URL Protection.
  4. Either select the:
      • Policy to be changed.
      • New Policy button to create a policy.
  1. Complete the Options section as required:
Field / Option Description
Policy Narrative Describe the policy to allow you to identify it easily in the future.
Select Option Select a URL Protect Definition from the drop-down list.
  1. Complete the Emails From and Emails To sections as required:
Field / Option Description
Addresses Based On

Specify the email address characteristics the policy is based on, available only in the Emails From section. The options are:

  • The Return Address (Mail Envelope From): This default setting applies the policy to the SMTP address match based on the message's envelope or true address (i.e., the address used during SMTP transmission).
  • The Message From Address (Message Header From): This policy applies based on the masked address used in the message's header.
  • Both: Applies the policy based on the Mail Envelope From or the Message Header From, whichever matches. When both match, the specified value of the Message Header From will be used.
Applies From / To

Specify the Sender characteristics the policy is based on. You should apply multiple policies from the most to the least specific. The options are:

  • Everyone: Includes all email users (i.e., internal and external). This option is only available in the Emails From section.
  • Internal Address: Includes only internal organization addresses.
  • External Address: Includes only external organization addresses. This option is only available in the Emails From section.
  • Email Domain: This enables you to specify a domain name to which this policy is applied. The domain name is entered in the Specifically field.
  • Address Groups: This enables you to specify a directory or local group. If this option is selected, click the Lookup button to select a group from the Profile Group field. Once a group has been selected, click the Show Location field to display the group's path.
  • Address Attributes: This enables you to specify a predefined Attribute. The attribute is selected from the Where Attribute drop-down list. Once the Attribute is specified, an attribute value must be entered in the Is Equal To field. This can only be used if attributes have been configured for user accounts.
  • Individual Email Address: This enables you to specify an SMTP address. The email address is entered in the Specifically field.
  1. Complete the Validity section as required:
Field / Option Description
Enable / Disable Use this to enable (default) or disable a policy. Disabling the policy allows you to prevent it from being applied without having to delete or backdate it. Should the policy's configured date range be reached, then it is automatically disabled.
Set Policy as Perpetual Specifies that the policy's start and end dates are set to Eternal, meaning the policy never expires.
Date Range Specify a start and end date for the policy. This automatically deselects the Eternal option.
Policy Override Select this to override the default order that policies are applied. If there are multiple applicable policies, this policy is applied first unless more specific policies of the same type have also been configured with an override.
Bi-Directional If selected, the policy also applies when the policy's recipient is the sender and the sender is the recipient.
Source IP Ranges (n.n.n.n/x) Enter any required Source IP Ranges for the policy. These only apply if the source IP address used to transmit the message data falls inside or matches the range(s) configured. IP ranges should be entered in CIDR notation.
  1. Click on the Save and Exit button.

See Also...

Related to

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.