2. Select the recipients, delivery schedule, and release methods of the quarantine report. For details, see “Configuring protected domains” for quarantine report settings that are domain-specific, or “Configuring global quarantine report settings” for quarantine report settings that are system-wide.

3. If email users will release/delete email from their quarantine by sending email, configure the user name portion (also known as the local-part) for the quarantine control email addresses. (The domain-part will be the local domain name of the FortiMail unit.) For details, see “Configuring the quarantine control accounts”.

4. For gateway mode or transparent mode, configure authentication profiles that will allow email users to authenticate when accessing their per-recipient quarantine. Alternatively, if email users require only HTTP/HTTPS access, you may configure PKI user accounts.

5. Enable quarantine reports in each email user’s preferences. Both FortiMail administrators and email users can do this. For details, see “Configuring user preferences”, or the online help for FortiMail webmail and per-recipient quarantines.

6. If the FortiMail unit is operating in server mode and you want to enable web release/delete, configure resource profiles in which “Webmail access” is enabled.

7. Enable the Personal quarantine and Send quarantine report option in incoming antispam and/or content profiles. If you want to allow email users to release and/or delete email from their quarantine by email or web release/delete, also enable Email release and Web release.

8. Select the antispam and/or content profiles in incoming recipient-based policies. If you configured a resource profile in step , also select the resource profile.

9. Either email users or FortiMail administrators can manage email in the per-recipient quarantines. For details, see “Managing the personal quarantines” and “Releasing and deleting email via quarantine reports”.