Applies to: Exchange Server 2007 SP3, Exchange Server 2007 SP2, Exchange Server 2007 SP1, Exchange Server 2007
Topic Last Modified: 2006-09-18

This topic explains how to use the Exchange Management Shell to configure Sender ID actions. You can configure the Sender ID agent to take action when the agent detects evidence of domain spoofing or a transient error. The Sender ID evaluation process generates the following Sender ID status codes for spoofed messages or transient error messages:

Fail This Sender ID status indicates that the IP address for the purported responsible address (PRA) is in the not permitted set. This means that the IP address of the sending server is not listed as an authoritative Simple Mail Transfer Protocol (SMTP) sending server in the Domain Name System (DNS) sender policy framework (SPF) record, and the message is likely spoofed.
TempError This is a transient error, such as an unavailable DNS server.

You can configure Sender ID to take one of the following actions when Sender ID determines that a message is spoofed or when a transient error is returned:

Stamp message with Sender ID result and continue processing: This option is the default action. The Sender ID status is included in the metadata of all inbound messages to your organization. This metadata is evaluated by the Content Filter agent when a spam confidence level (SCL) is calculated. Additionally, sender reputation uses the message metadata when it calculates a sender reputation level (SRL) for the sender of the message.
Reject message This option rejects the message and sends an SMTP error response to the sending server. The SMTP error response is a 5xx level protocol response with text that corresponds to the Sender ID status.
Delete message This option deletes the message without informing the sending server of the deletion. In fact, the computer that has the Edge Transport server role installed sends a fake "OK" SMTP command to the sending server and then deletes the message. Because the sending server assumes that the message was sent, the sending server will not retry sending the message in the same session.

Before You Begin

To perform the following procedures on a computer that has the Edge Transport server role installed, you must log on by using an account that is a member of the local Administrators group on that computer.

Also, before you perform these procedures, confirm the following:

You have reviewed Anti-Spam and Antivirus Functionality to understand the general strategy for configuring all anti-spam agents so that they work together efficiently for your organization.
You have read Configuring Sender ID.

Configuring Sender ID Actions for Spoofed Messages

To set an action for instances when a message is spoofed, you can use the Exchange Management Console or the Exchange Management Shell.

To use the Exchange Management Console to configure Sender ID actions for spoofed messages

In the Exchange Management Console, click Edge Transport.
In the work pane, click the Anti-spam tab, and then select Sender ID.
In the action pane, click Properties, and then click the Action tab.
Select the action to take if the Sender ID check fails.

Note:

Stamp message by using Sender ID result and continue processing: is the default setting.
Click OK to save your changes and close the dialog box, or click Apply to save your changes without closing the dialog box.

Note:
Stamp message by using Sender ID result and continue processing: is the default setting.

To use the Exchange Management Shell to configure Sender ID actions for spoofed messages

Run the following command:
Copy Code
Set-SenderIDConfig -SpoofedDomainAction <StampStatus | Reject | Delete>
For example, to reject spoofed messages, run the following command:
Copy Code
Set-SenderIDConfig -SpoofedDomainAction Reject
Note:

StampStatus is the default value.

	Copy Code
Set-SenderIDConfig -SpoofedDomainAction <StampStatus \| Reject \| Delete>

	Copy Code
Set-SenderIDConfig -SpoofedDomainAction Reject

Note:
`StampStatus` is the default value.

Configuring Sender ID Actions for Transient Errors

To set an action for instances when a transient error is returned, you must use the Set-SenderIdConfig command in the Exchange Management Shell. You cannot set the action in the Exchange Management Console.

To use the Exchange Management Shell to configure Sender ID actions for transient errors

Run the following command:
Copy Code
Set-SenderIDConfig -TempErrorAction <StampStatus | Reject | Delete>
For example, to delete transient error messages, run the following command:
Copy Code
Set-SenderIDConfig -TempErrorAction Delete
Note:

StampStatus is the default value.

	Copy Code
Set-SenderIDConfig -TempErrorAction <StampStatus \| Reject \| Delete>

	Copy Code
Set-SenderIDConfig -TempErrorAction Delete

Note:
`StampStatus` is the default value.

For detailed syntax and parameter information, see Set-SenderIdConfig.

For More Information

For more information about how to use and configure Sender ID, see the following topics: