Chapter 14 - Using e-mail notifications

Applies to: Microsoft Antigen

E-mail notifications are critical in keeping e-mail users informed about changes that occur to their attachments due to virus cleaning and file filtering, or informing users of infections that exist when a virus is detected and not cleaned. E-mail notifications are also important to administrators who prefer to have information delivered directly to their mailbox instead of continually checking logs for activity.

Sending notifications

Antigen for SMTP Gateways utilizes SMTP messaging for notification purposes, placing the message in the SMTP services Pickup folder and resolving the recipient name with the Active Directory® directory service in Windows Server 2003 and Windows 2000 Server. By default, the server profile used for this purpose is: Antigen**_**Server_Name. An example is: Antigen_SMTP_Server1. To change the server profile, you must modify the FromAddress registry value.

To change the FromAddress registry value in Windows Server 2003 or Windows 2000 Server

1. Open the registry editor and navigate to the following registry value:

   HKEY_LOCAL_MACHINE\SOFTWARE\SybariSoftware\Notifications\FromAddress

2. Change the default value to the sender name you would like. Alphanumeric characters are acceptable. You can also use the at sign (@) or a period (.), but these characters cannot be the first or last character. Any illegal characters will be replaced with an underscore (_).

3. You must restart the SMTP and Antigen services for this change to take effect.

Configuring notifications

There are various types of notification messages and each can be individually configured.

To configure notifications

1. Select Notification in the REPORT shuttle. The Notification Setup work pane appears.

   The top pane of the Notification Setup work pane contains the list of default notification roles. Each role can be customized, as well as enabled or disabled. For more information about each of the roles, see About notification roles.

2. Enable those notifications that are to be in effect. For more information, see Enabling and disabling a notification.

   Note

   Scan job configurations control whether a scan job will send any enabled notifications.

3. Make the desired changes to the notifications that are to be enabled. For more information, see Editing a notification.

4. Click Save.

About notification roles

The following list describes the various notification roles. Typically, each notification is used for reporting the who, what, where, and when details of the infection or the filtering performed, including the disposition of the virus or the attachment.

Configuring Antigen for internal addresses

Internal addresses must be identified in Antigen for SMTP Gateways so that the proper notifications can be sent to senders and recipients. Internal addresses are configured in the General Options pane or in an external text file. For information about configuring internal addresses, see Chapter 4 - Antigen Administrator.

Enabling and disabling a notification

The Enable and Disable buttons in the Notification Setup work pane allow you to selectively enable or disable any selected notification. The current status of each notification is displayed in the list in the top pane, under the State column. A change made to the status of a notification takes effect as soon as you click Save.

Editing a notification

The changes that are made to the lower portion of the Notification Setup work pane apply to the notification role currently selected in the notification list. If no changes have been made to the selected notification, the Save and Cancel buttons appear dimmed. Making any change to the configuration activates these buttons. If you make a change to a notification and try moving to another notification role or shuttle icon, you are prompted to save or discard your changes. All changes take effect immediately upon saving them.

The following are the fields that can be edited.