Active Directory

You can configure PureMessage for Microsoft Exchange to integrate with Microsoft Active Directory to create message policies based on users and groups already configured in the directory server. Active Directory can also be used for recipient validation, for example to filter messages addressed to users not present in the directory server.

Click Configuration > Users and groups, and then click Active Directory.

To connect to Active Directory, click Detect Active Directory. The fields in the Active Directory panel are filled in automatically.

Enter your user name and password in the Logon Credentials pane if you are synchronizing with an instance of AD LDS or if you are synchronizing with the Active Directory Global Catalog Server. Otherwise, PureMessage for Microsoft Exchange will log on using the SophosPureMessage service account.

Click Verify settings to connect to Active Directory. PureMessage for Microsoft Exchange will attempt to log on using the credentials you supplied. If the credentials are correct, a popup appears confirming this. Click OK to continue.

Synchronize with Active Directory

For performance reasons, PureMessage for Microsoft Exchange keeps a local copy (cache) of the users and groups from Active Directory. Ensure the Synchronize with Active Directory checkbox is checked. You can then configure PureMessage to synchronize with Active Directory (refresh its local copy) automatically or periodically.

Click Synchronize now to start the synchronization process instantly.

A popup may appear saying that the configuration changes need to be saved. Click OK to continue.

Note If you have selected Automatic synchronization and if a change is made to an entity in Active Directory, it may take about 15 minutes for the change to reflect in PureMessage for Microsoft Exchange.

To configure directory server settings when using AD LDS, refer to Appendix B: Configuring PureMessage for Microsoft Exchange with AD LDS (using AdamSync).