3.6	Creating email archives

GFI MailEssentials includes an archiving feature which enables the retention of historical records related to your email communications. Since GFI MailEssentials is an anti spam solution, the built-in archiving feature is not intended to replace/replicate the functionality provided by comprehensive email-archiving solutions such as GFI MailArchiver.

Archiving requires database technology. GFI MailEssentials supports both Microsoft Access and Microsoft SQL server.

Important notes

1. Internal email is not archived.

2. For larger networks Microsoft SQL Server is recommended.

3. Using Microsoft Access limits the size of the database to 2 GB. MSDE and SQL Server Express are limited to 2 and 4 gigabytes respectively.

4. When a Microsoft Access database reaches 1GB, an email is sent to the administrator recommending to switch to a Microsoft SQL server.

3.6.1

Enable archiving

1. From the GFI MailEssentials configuration console right click Email Management ► Mail Archiving and select Properties.

2. Click Mail Archiving tab and select whether to archive inbound and/or outbound emails.

3. Select and configure the archival method:

•	Archive emails to a text file – Archives inbound and outbound emails to separate inbound and outbound text files. Email attachments are not archived when this option is selected.

•	Archive emails to a database – Archives all email to a Microsoft Access or SQL/SQL Server Express/MSDE database. This feature enables the archival of email attachments.

4. To exclude archiving of emails received by certain users, select the Exceptions tab, tick Do not archive emails where the sender or recipient is in the list below, click Add button and add user email address in the Email list.

5. Click OK button to finalize your configuration.

3.6.2

Enabling Archive Web Interface access from GFI MailEssentials

Important notes

GFI MailEssentials Archive Web Interface is not supported on 64bit Operating Systems.

Installing GFI MailEssentials Archive Web Interface (AWI) on Microsoft IIS 7.0 (x86 systems)

To install AWI on Microsoft IIS 7.0, you need to:

•	Install the IIS Web Server Role Services.

•	Configure the IIS Web application which will be used by AWI.

AWI requires the following IIS Web Server Role Services in order to work correctly:

•

ASP

•	Windows Authentication

To install IIS Web Server Role Services on Microsoft Windows 2008:

1. Open the ‘Server Manager’.

2. Expand the Roles node and select Web Server (IIS).

3. From the right pane, click on the Add Role Services button.

4. Select the ‘ASP’ and the ‘Windows Authentication’ role services and click Next.

5. Click on the Install button to install the role services.

Configure the IIS Web application to be used by AWI on IIS 6.0

1. Start up Internet Services Manager, right click on the Website node, and from the popup menu select New ► Virtual Directory. The Virtual Directory Creation Wizard is displayed. Click Next to continue.

2. Enter an alias for the virtual directory. In this case it is AWI, but you can enter whatever name you like, as long as it follows the folder naming conventions used in Microsoft Windows.

3. You now need to enter the path where the content is located. Click Browse, and folder AWI\wwwroot folder in the GFI MailEssentials installation path.

Screenshot 9 - Setting permissions

4. Next you need to set the access permissions. Check the Read and Run Scripts (such as ASP) checkboxes only. Make sure all the other checkboxes are unchecked. Click Next and on the finish page click Finish to finish the Virtual Directory Creation Wizard.

5. Right click on the newly created virtual directory, located under the web root of your website server and select Properties from the context menu.

Screenshot 10 - Setting Virtual Directory properties

6. In the Virtual Directory tab of the Properties dialog, check the Read, Log Visits and Index this resource checkboxes. Make sure that all the other checkboxes are unchecked. In the Execute Permissions list box, select Scripts only.

7. Access the Documents tab. Remove all the default documents except for default.asp.

8. Access the Directory Security tab and click on the Edit button in the Authentication and access control group.

NOTE: Since the Archive Web Interface provides access to all the emails archived by GFI MailEssentials, it is important to setup proper authentication and security for this web server and virtual directory. There are three ways to secure the Search Interface. These are Basic Authentication, Digest and Integrated Windows Authentication. Integrated Windows Authentication is the preferred choice in an Active Directory environment, because it makes the authentication process seamless, since initially it does not prompt the users for their username or password information. Rather, it uses the current Windows user information on the client computer for authentication. If you are installing GFI MailEssentials in a DMZ, use Basic authentication.

Screenshot 11 - Select authentication method

9. Check the Integrated Windows authentication checkbox (recommended if installed on the internal network) OR Basic Authentication checkbox (if installed in the DMZ). Ensure that the Enable anonymous access checkbox is unchecked.

NOTE 1: If using Integrated Windows authentication, then authentication will occur against Active Directory. This means you do not need to configure additional users. If you use basic authentication, authentication will occur against the local user database on the machine. In this case create usernames and passwords on that local machine. For more information on securing IIS, please review the IIS documentation.

NOTE 2: Be sure you do NOT allow anonymous access.

10. Click OK to finalize your configuration.

Configure the IIS Web application to be used by AWI on IIS 7.0

To configure AWI on IIS 7.0:

1. Open ‘Administrative Tools’.

2. Enter the ‘Internet Information Services (IIS) Manager’.

3. Right-click on the website under which will host AWI web interface and click Add Application.

4. Enter ‘AWI’ as the Alias and enter the path to the AWI ‘wwwroot’ folder located at <GFI\MailEssentials\AWI\wwwroot>.

Screenshot 12 - Internet Information Services (IIS) Manager: Add application

5. Click OK to create the new Application.

6. Click on the ‘AWI’ application which was just created and double click the Authentication icon in the right pane.

Screenshot 13 - Internet Information Services (IIS) Manager

7. Right click on the Anonymous Authentication option and select Disable.

8. Right click on the Windows Authentication option and select Enable.

3.6.3

Accessing the Archive Web Interface

1. Launch internet explorer.

2. Key in: http://<machine_name>/<awi_virtual_folder_name>.

•	Example: http://master-domain.com/awi/

Screenshot 14 – Archive Web Interface (AWI) search page

The AWI will load the search page. Click on the Full Archive link in the top right corner to access the full archive page.