How to enable, configure, and use personal quarantines
In general, to use personal quarantines, you should complete the following:
If you want to specify an alternate FQDN that will be used only by web release/delete URLs in HTML-formatted quarantine reports, see
“Web release host name/IP”. This FQDN should be globally resolvable.
3. If email users will release/delete email from their quarantine by sending email, configure the user name portion (also known as the local-part) for the quarantine control email addresses. (The domain-part will be the local domain name of the FortiMail unit.) For details, see
“Configuring the quarantine control accounts”.
4. For gateway mode or transparent mode, configure authentication profiles that will allow email users to authenticate when accessing their per-recipient quarantine. Alternatively, if email users require only HTTP/HTTPS access, you may configure PKI user accounts.
For server mode, configure the email user accounts. Email users can authenticate using this account to access their per-recipient quarantine.
5. Enable quarantine reports in each email user’s preferences. Both FortiMail administrators and email users can do this. For details, see
“Configuring user preferences”, or the online help for FortiMail webmail and per-recipient quarantines.
6. If the FortiMail unit is operating in server mode and you want to enable web release/delete, configure resource profiles in which
“Webmail access” is enabled.
7. Enable the Personal quarantine and Send quarantine report option in incoming antispam and/or content profiles. If you want to allow email users to release and/or delete email from their quarantine by email or web release/delete, also enable Email release and Web release.
8. Select the antispam and/or content profiles in incoming recipient-based policies. If you configured a resource profile in step , also select the resource profile.
If the FortiMail unit is operating in gateway or transparent mode and you want to enable web release/delete, enable Allow quarantined email access through webmail in each incoming recipient-based policy.