• CAS syncs new users automatically, on a daily basis during midnight. Before this is performed, a user isn’t protected by CAS.To sync up the users immediately, it is suggested to first click Click here to sync the new users before testing.

  

• CAS adopts an API-based architecture rather than a proxy-based one to provide advanced protection. It starts scanning when an email message arrives at a protected mailbox, or a file is saved to cloud storage. This unique architecture guarantees that CAS has "zero impact" on your email message delivery or file sharing, as well as commitments defined in your service level agreements.

  First, you can see the mail delivered to the inbox:

  

  After a short moment, the CAS takes action on the particular mail:

  

• If one policy is added or updated, it takes one or two minutes to synchronize the change before the updated policy takes effect.
• CAS only scans the new mail for exchange. It will not scan calendar.

• To improve the performance, CAS will not add the product tag in the mail header, after the mail is scanned.
• Mail subject doesn't support malware scanning.
• If a malware file is attached using “attach as a OneDrive file”, CAS will detect malware from OneDrive. If OneDrive protection is not active, then the file will not be detected.
• CAS has a size limitation of 150MB for mail attachment or file, while the limit on SharePoint/OneDrive/Teams files are extended to 500MB.
• Compressed file limitation:
  • The number of extracted files exceeds 9999.
  • The size of extracted files exceeds 150 MB.
  • The number of recursive compression layers exceeds 5.

CAS uses the full name to trigger the policy, which means  full name is required, or use "*" instead of the file extension.

• If the target is test.txt, put the full name "test.txt".
• If the target is for all the file which named "test" for example, add "test.*" here. The asterisk (*) will indicate all of files named "test", whatever the file extension is.

To scan the URL in attachment, check message attachments item. This setting is unchecked by default.

• CAS has a size limitation of 30 MB for DDCloud file sandbox analysis.
• CAS uses the SHA1 to query the DDCloud cache. If the file matches the SHA1, it will not resend to DDCloud instead of getting the last result directly.
• The default timeout value for DDAn is 30mins.
• DDA analysis timeout or Network timeout, or unsupported file type will present “unrate” in VA report.

• One user matches only one policy.
• The default policy is used if no other policy has been created for the user. If there is a specific policy for a user, the default policy will lose efficacy.
• If multiple policies are defined for a user, only the highest priority policy will take effect.
• The smaller the policy number is, the higher the priority is. The policy priority can be changed by dragging the policy up and down.
• If one policy is added or updated, it takes one or two minutes to synchronize the change before the updated policy takes effect.
• For sent items in Exchange Online, CAS only records the violation. It cannot take quarantine, or delete actions for the items.
• Short length keyword terms like “anal” might cause violation when matched to word “analysis” which is not an adult-sensitive word.

• Removes VA support
• Manual Scan trial control:
  • User cannot select the period larger than 1 day.
  • Limited to 25 mailboxes for exchange
  • Limited to 5 SharePoint sites for SharePoint
  • Limited to 5 users for OneDrive/Box/Dropbox/Google Drive

To send to multiple recipients use a semicolon, “;” to separate the recipients.