ZCS Administrator's Guide 7.2.3
ZCS Administrator's Guide 7.2.3
Open Source Edition


Customizing Accounts, Setting General Preferences and Password Rules > Setting Email Policies

Setting Email Policies
You can set up security policies either by COS or for individual accounts.
Setting Password Policy
If internal authentication is configured for the domain, you can configure ZCS to impose requirements on what type of password a user can create, and to require users to periodically change their passwords.
Important: If Microsoft Active Directory (AD) is used for user authentication, you must disable the Change Password feature in their COS. The AD password policy is not managed by Zimbra.
The password settings that can be configured are listed below.
 
Setting Failed Login Policy
You can specify a policy that sets the maximum number of failed login attempts before the account is locked out for the specified lockout time. This type of policy is used to prevent password attacks.
 
Setting Session Timeout Policy
You can set how long a user session should remain open and when to close a session because the session is inactive,
Setting Email Retention Policy
The email retention policy for email, trashed and spam messages is set by COS. When the message purge function runs is set by the message purge command.
 
The server manages the message purge schedule. You configure the duration of time that the server should “rest” between purging mailboxes from the administration console, Global settings or Server settings, General tabs. By default, message purge is scheduled to run every 1 minute.
For example, when the purge interval is set to 1 minute, after mailbox1 is purged of messages that meet the message lifetime setting, the server waits 1 minute before beginning to purge mailbox2.
If the message purge schedule is set to 0, messages are not purged even if the mail, trash and spam message life time is set.
Note:
Recovering Deleted Items From the Dumpster
The dumpster feature allows users to recover items deleted from their account. When the dumpster feature is enabled by Class of Service or for individual accounts, a dumpster folder is created for each account and the Recover Deleted Items option is added to the Trash folder’s right-click menu.
Items put into dumpster no longer count against the account’s quota. Note that items in the dumpster use disk storage space outside of the account’s quota.
When users click Recover Deleted Items, users can search for the items to recover. When users recover an item from the dumpster, the item is copied to the account’s folder. The item still remains in the dumpster.
Items are put into the dumpster when
*
*
*
Users can recover items that are deleted from their Trash folder up to the number of days configured in the zimbraMailDumpsterLifetime attribute. The default is to purge items more than 30 days old.
Enable Dumpster
In the administration console, enable Dumpster folder from either the COS or from the account’s Features tab.
Configure Item Lifetime in Dumpster
*
To configure a COS, zmprov mc {cosname} zimbraMailDumpsterLifetime <#>
*
To configure an account, zmprov ma {account} zimbraMailDumpsterLifetime <#>
Delete Dumpster Items Manually
Dumpster is deleted for each account as follows
*
To delete specific items from dumpster, zmmailbox -z -m {name} dumpsterDeleteItem {item-ids}
*
To empty the dumpster, zmmailbox -z -m {name} emptyDumpster
Copyright © 2013 VMware Inc.