This endpoint can be used to find rejected messages and the reasons for their rejection.
Pre-requisites
In order to successfully use this endpoint the logged in user must be a Mimecast administrator with at least the Monitoring | Rejections | Read permission.
URI
To use this endpoint you send a POST request to:
/api/gateway/get-rejections
Request Headers
The following request headers must be included in your request:
Field
Description
Authorization
Please see the Authorization guide for more information on building the Authorization header.
x-mc-req-id
A randomly generated GUID, for example,
8578FCFC-A305-4D9A-99CB-F4D5ECEFE297
x-mc-app-id
The Application ID provided with your Registered API Application.
x-mc-date
The current date and time in the following format, for example,
Tue, 24 Nov 2015 12:50:11 UTC
Request Body
{
"meta": {
"pagination": {
"pageSize": 25,
"pageToken": "String"
}
},
"data": [
{
"mailbox": "user@domain.tld",
"start": "2015-11-16T14:49:18+00:00",
"searchBy": {
"fieldName": "from",
"value": "sender@domain.tld"
},
"admin": "true",
"end": "2015-11-25T14:49:18+00:00"
}
]
}
meta
Field
Type
Required
Description
pagination
Object
Optional
An object defining paging options for the request.
Paginiation Object
Field
Type
Required
Description
pageSize
Number
Optional
The number of results to request.
pageToken
String
Optional
The value of the 'next' or 'previous' fields from an earlier request.
Data
Field
Type
Required
Description
mailbox
String
Optional
Get rejections for a given user. If admin is set to true and no mailbox is provided, will return rejections for all users. Otherwise if no mailbox is provided, then will return rejections for the authenticated account.
start
Date String
Optional
The start date of results to return in ISO 8601 format. Default value is start of the current day.
searchBy
Filter Object
Optional
Accepts search filter field and value to apply when searching.
admin
Boolean
Optional
Specifies if the request is for an admin or user-level. If set to true, the request will return messages for all users. Default value is false.
end
Date String
Optional
The end date of results to return in ISO 8601 format. Default value is the current date.
Filter Object
Field
Type
Required
Description
fieldName
String
Optional
The field to be filtered on. Possible values are all, from, to, type, info, remoteIp
value
String
Optional
The value of which the filter will be applied
Response
{
"fail": [],
"meta": {
"status": 200,
"pagination": {
"pageSize": 25,
"next": "String",
"previous": "String"
}
},
"data": [
{
"rejections": [
{
"created": "2015-11-25T14:49:18+00:00",
"remoteEhlo": "mta123.domain.com",
"detectionLevel": "relaxed",
"ipAddress": "50.30.222.300",
"description": "Manual Header Rejection",
"type": "13017",
"toAddress": "recipient@domain.tld",
"toAddressPreCheck": "recipient@domain.tld",
"manageRecipient": false,
"spamScore": "29",
"fromAddress": "sender@domain.tld",
"id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...",
"toAddressPostCheck": "toadress@domain.com",
"info": "Malware detected by AV Scan policy: Exploit.DDE-CmdCalc.Gen",
"remoteName": "mta123.domain.tld"
}
]
}
]
}
meta
Field
Type
Description
status
Number
The function level status of the request.
pagination
Object
An object containing paging information.
Pagination Object
Field
Type
Description
pageSize
Number
The number of results requested.
next
String
A pageToken value that can be used to request the next page of results. Only returned if there are more results to return.
previous
String
A pageToken value that can be used to request the previous page of results. Only returned if there is a previous page.
data
Field
Type
Description
rejections
Array of Rejection Objects
An array of rejected message objects sorted by descending timestamp
Rejections
Field
Type
Description
created
Date String
Timestamp of the message rejection in ISO 8601 format
remoteEhlo
String
The sending server's EHLO greeting
detectionLevel
String
Spam detection level. Possible values are: not_initiated, relaxed, moderate, aggressive, cluster, whitelisted_cluster or outbound
ipAddress
String
Remote IP address of the sending platform
description
String
Message rejection type description
type
Number
Internal Mimecast rejection identifier
toAddress
String
Intended recipient email address
toAddressPreCheck
String
Recipient address prior to message processing
manageRecipient
Boolean
Indicates if the rejection is due to a managed sender entry
spamScore
Number
Numerical spam score. High-confidence spam with a score above 28 will trigger a rejection
fromAddress
String
Sender address
id
String
Mimecast secure ID of the rejected message
toAddressPostCheck
String
Recipient address after message processing, which may return empty based on the rejection type
info
String
Additional detail around the message rejection
remoteName
String
Sending server greeting identifier
Sample Code
Sample code is provided to demonstrate how to use the API and is not representative of a production application. To use the sample code; complete the required variables as described, populate the desired values in the request body, and execute in your favorite IDE. Please see the Global Base URL's page to find the correct base URL to use for your account.
POST {base_url}/api/gateway/get-rejections
Authorization: MC {accesskKey}:{Base64 encoded signed Data To Sign}