Configuring mail settings : Migrating email from other mail servers (server mode only)
Migrating email from other mail servers (server mode only)
If you already have other mail servers, such as Exchange or FortiMail server, and you want to consolidate the mail user and data into one FortiMail server, you can do so by migrating the users and data to your FortiMail unit.
The email migration process involves the following procedures:
1. Preparation
a. Enable the mail migration feature using the following CLI commands.
config system global
set email-migration-status enable
end
 
By default, the email migration feature does not appear on the GUI until you enable it with the above CLI commands.
b. Define the remote mail server settings. For details, see “Defining a remote mail server for mail migration”.
c. Create a domain for the to-be-migrated users. In v5.0 release, the domain name must be the same as the users’ domain on the remote mail server. Beginning from v5.0.1 release, the domain name can be different. For details, see “Creating domains for mail migration”.
2. User migration: Because FortiMail will act as an IMAP client on behalf of the users to get their email from the remote mail server, you must import the user/password information first. To do this, you can use one of the following methods:
If you only need to migrate email for a few users and you know the users’ login credentials, you can manually enter their user name/password information by going to Mail Settings > Mail Migration > Migration Users and click New.
If you can export the user name/non-encrypted password list into a CSV file, you can import the CSV file by going to Mail Settings > Mail Migration > Migration Users and click Action > Import > .CSV File.
If the to-be-migrated users already have accounts on the FortiMail server, you can import/copy the local user list to the migration user list by going to Mail Settings > Mail Migration > Migration Users and click Action > Import > All Local Users.
If the user passwords are encrypted, you have to collect their passwords through FortiMail webmail login or SMTP client login. To do this:
i. First create an authentication profile that uses the remote mail server as the authentication server. For details, see “Configuring authentication profiles”.
ii. Create a recipient-based policy that includes the migration users as senders and also includes the authentication profile. For details, see the “Controlling email based on recipient addresses”.
iii. Use one of the following two methods to collect user passwords:
a. Through FortiMail webmail login: Inform the users to log in to the FortiMail webmail portal, using their email addresses of the remote domain (the domain part needs to match proper authentication policy) and their passwords. Upon successful login, the users will be shown an empty webmail mailbox. This is because the email data has not been migrated yet and this step is only meant to collect user passwords.
b. Through SMTP client login: Inform the users to use the FortiMail host name as their outgoing mail server.
After you have done the above, when the users try to send email, they will have to authenticate through FortiMail. Then FortiMail will record the user names and passwords into the migration user list under Mail Settings > Mail Migration > Migration Users.
3. Mail data migration: After you have migrated the users, you can start to migrate the their mail boxes from the remote server. To do this:
i. Go to Mail Settings > Mail Migration > Migration Users.
ii. From the Action dropdown list, select Migrate > Selected Users or All Users.
iii. If needed, you can click the Stop and Start button to control the migration process.
iv. After the user’s mail data is successfully migrated, you can export the user to the local user list by clicking Action > Export > Selected Users or All Users. The exported users will appear as local users under User > User.