Learn more about Attachment Sandboxing step 1 of 3

In place of the default policy, you may use a custom policy to specify in much more detail which inbound messages and attachment types are processed by Attachment Sandboxing.

Because the default policy for Sandboxing always takes precedence over a custom policy, you must first ensure the default Sandboxing policy is disabled.

Step 1. Disable the default Sandboxing policy

1. Select Service Settings > Attachment Sandboxing
2. If enabled, de-select Enable Attachment Sandboxing Default Policy

Email Security will display a notification confirming the change.

Step 2. Create the custom Sandboxing policy

A custom policy allows for filtering of messages based on group, domain, mailbox, as well as multiple levels of rule sets and actions.

1. Navigate to Policies > Advanced Policies
2. Select the For Inbound Mail tab
3. Click Create Policy and give the policy a name
4. For Applies to, select Incoming Messages
5. For Enabled for, choose the domains, groups, or mailboxes this policy should act on
6. Create your rules. You must create at least one rule for Attachment Count | is greater than | 0 | number
7. Add your actions. Be sure that
   • No actions stop the message before the final action
   • The final action is Send to sandbox. Any actions after Send to sandbox will be ignored
8. Click Create Policy

Email Security will display a notification confirming the policy has been created. The new custom policy is automatically enabled.

If you disable your custom Attachment Sandboxing policy, be sure to enable the default policy again, or Attachment Sandboxing will not process any messages.