I. Intro
Who can perform these steps: Primary administrators or administrators with Email permissions.
To prevent information leakage and block malicious emails, you can set data protection rules to scan incoming and outgoing emails.
II. Steps
- Set a data protection rule
Enter the Feishu Admin Console and go to Product Settings > Mail > Security and Anti-spam > Data Protection. Then, click New Rule in the upper-right corner.
250px|700px|reset
Name and scope
Enter the rule name, description, and application scope.
250px|700px|reset
For rules applicable to a specified range, select one or more options, including Departments or members, Public mailbox, and Mailing list.
250px|700px|reset
1.2 Trigger conditions and actions
Select the event and condition of a trigger rule. Currently, the following four trigger events are supported.
- Receive external emails
- Send to external mailboxes
- Receive internal emails
- Send to internal mailboxes
When an email account within the scope of application triggers a corresponding event, the email will be checked based on the rule.
You need to set the rule-triggering conditions separately. Currently, four conditions are supported.
- Email body. Check whether the email body contains/does not contain/is equal to the corresponding keywords.
- Email subject. Check whether the email subject contains/does not contain/is equal to the corresponding keywords.
- Sender. Check whether the sender contains/does not contain/is equal to the corresponding email addresses.
- Recipient, CC or, BCC. Check whether the recipient or the cc'd (or the bcc'd) contains/does not contain/is equal to the corresponding email addresses.
Note: Is equal to refers to actions that occur when the triggering conditions are all met.
250px|700px|reset
After you've filled in the trigger events and conditions, you can set the action after a rule is triggered. Currently, five actions are supported.
- Reject email: An email that has triggered a rule will be quarantined and rejected for sending (or receiving).
- Quarantine email: An email that has triggered a rule will be quarantined and handled by the administrator.
- Redirection: When the email triggers the rule, the intended recipient will not receive the email, and the email will be sent to the specified email address by default.
- CC: When the email triggers the rule, the email will be cc'd to the specified email address by default.
- BCC: When the email triggers the rule, the email will be bcc'd to the specified email address by default.
Note:
- The recipient can't see the redirected/cc'd bcc'd email addresses.
- Addressees that receive redirected / cc'd/bcc'd emails will see a prompt before seeing the email body.
250px|700px|reset
Fill in the above content and click Confirm to create a new data protection rule.
Note:
- You can create up to 10 rules for each trigger event and up to 10 conditions for each rule.
- When rules are conflicting or reoccurring, then the rule with the earlier creation date is prioritized.
- View data protection rules
Go to the Data protection rules list, and click on a rule to view its details.
250px|700px|reset
To modify a rule, click Edit. Enable or disable a rule using the toggle switch in the Data protection rules list or the details page.
250px|700px|reset
- Quarantine area
Emails that have triggered a quarantine action will be stored in the Quarantine Area, and will be reviewed by the administrator.
250px|700px|reset
Administrators can query emails under quarantine in 3 ways:
- Query by time frame.
250px|700px|reset
- Query by email status including In quarantine, Passed and Rejected.
250px|700px|reset
- Query by keywords in email subject or body text.
250px|700px|reset
Click on a quarantined email to view its details, including its content and the rule triggered.
250px|700px|reset
The administrator can select Rejected or Pass to decide the outcome.
Note: An email will only be sent or received if it's passed.
250px|700px|reset
III. Related