Skip to main content

Using Quarantine Manager in Google Apps

Fairly recently Quarantine Manager was introduced to Google Apps. This is a tool that works alongside SPAM filtering, objectionable content and content compliance rules you may have setup. Essentially the Quarantine Manager holds messages that fall into the categories you have defined for administrators to view before approving or rejecting the messages.

We have used this to block all SPAM messages going to students. This is a brief look at how to set it up.  Please note, it is very important to have authenticated email setup - this prevents things like group notifications every ending up in SPAM.

Step 1 - define some Quarantine Names

Head to email settings. You will find 'Manage Quarantines' below 'Authenticated email' near the bottom:
Click on 'ADD' - top left
Give the quarantine a name and description of what it is going to do. Decide if you just want to drop the message or send a rejection email. See example below:
This in itself does nothing - you have to link it to a compliance rule.

Step 2 - link to a compliance rule

Next go to 'User Setting' in the Gmail admin console. Select the sub-OU you want to apply the rule to and the type of compliance. In the example below I'm defining a SPAM policy - but it could be content compliance or objectionable content. 
Select edit:
Click the box at the bottom and choose the Quarantine you created. Click save and save again (appears bottom right).

This will Quarantine all SPAM (or whatever messages you set up) from this point on. Messages received prior to the rule being set up are not affected. However, SPAM folders are automatically cleared every 30 days - so within that time frame users SPAM folders will always be empty.

Step 3 - Review Quarantined messages

There you can select all the Quarantines you have set up - and allow messages if appropriate.

I've blanked out the usernames - but you can see the typical rubbish people get. These few steps prevent them from ever seeing any of it. The messages also still appear in Vault if you ever need to find them.




Popular posts from this blog

Delete a specific email using GAM

If a user send an inappropriate email to a loads of people or get stung by some sort of email exploit you can quickly delete the email from all of the recipients using a GAM command.
Step 1 - get the email header Go into Google Vault and search for the offending user or someone known to have got the message.
Click show details and grab the email ID. This will be a long string of characters followed by @mail.gmail.com
Step 2 - find out who has the email Go into Google Vault and find the original message sent by the offending user. Look at the details to see who got it. Copy the list and dump it into a spreadsheet. Clean up to just a list of emails with a column header 'mail'. Save as a csv file.
Step 3 - delete messages with GAM Put your CSV file in your GAM folder - this e.g. assumes its called mail.csv
Run:
gam csv mail.csv gam user ~mail delete messages query rfc822msgid:MESSAGEIDHERE doit

The alternative nuke option is:
gam all users delete messages query rfc822msgid:MESSAGEI…

How to push bookmarks to users in Chrome via the management console

With the release of Chrome and ChomeOS 37 an update to the management console has arrived that allows you to push bookmarks to users.

Under Device Management > Chrome > User Settings > User Experience you will now find the option to add managed bookmarks.


In the example above, the bookmarks are applied to the sub-OU of 'students' - so all our students will get these bookmarks. Simply add your url and the bookmark name, click the + and save. These will appear in a folder called 'yourdomain bookmarks' - see below:



Be aware that to get these bookmarks applied on a Windows/OS-X device the user must be signed into Chrome. Update: if you install the latest group policy template you can push the bookmarks via policy on PCs - details are given here.
Video Guide:

ClearOS 7.1 as a Windows Domain Controller

I've been a long time user of ClearOS for gateway, DNS,DHCP, backup and a variety of other services. It is a Linux distro that is backed up with a marketplace of great apps that can be easily managed via a web config (although you can drop into cli whenever you want more control). The new samba directory app allows ClearOS to behave as a full on Windows Domain controller and file server without the cost of Windows Server.

So this is a demo from installation to a working DC and files server. Its about 40 mins for the full job - so skip though bits - gives you an example of what you can do. Please note the the Samba Directory App is currently in beta - but I've not spotted any bugs in a my test setup yet.