If you want the email user to authenticate using an external authentication server, select the type of the authentication profile (SMTP, POP3, IMAP, RADIUS, LDAP, or LOCAL for server mode).

Note: In addition to specifying an authentication server for SMTP email messages that this policy governs, configuring “Authentication profile” also allows email users to authenticate when accessing their per-recipient quarantine using HTTP or HTTPS. For more information, see “How to enable, configure, and use personal quarantines”.

Select an existing authentication profile to use with this policy.

Enable to allow the SMTP client to use the SMTP AUTH command, and to use the server defined in “Authentication profile” to authenticate the connection.

Disable to make SMTP authentication unavailable.

This option is available only if you have selected an “Authentication profile”.

Note: Enabling this option allows, but does not require, SMTP authentication. To enforce SMTP authentication for connecting SMTP clients, ensure that all access control rules require authentication. For details, see “Configuring access control rules”.

Enable to allow email users matching this policy to use POP3 to retrieve the contents of their personal quarantine. For more information, see “How to enable, configure, and use personal quarantines”.

This option is available only if you have selected a profile in Authentication profile.

Note: This option is for POP3 access only. Email users cannot access their personal quarantine through IMAP.

Enable to allow email users matching this policy to use FortiMail webmail (HTTP or HTTPS) to retrieve the contents of their personal quarantine. For more information, see “How to enable, configure, and use personal quarantines”.

This option is available only if you have selected a profile in “Authentication profile”.