Configure Google Workspace for Black Pearl Mail Within an Existing OU for a Single User

Configure Google Workspace for Black Pearl Mail Within an Existing OU for a Single User

If you have existing OU's within Google Workspace, and you only want to restrict certain users within an OU to route through Black Pearl Mail, then then please follow the steps within this article.

STEP 1 – Login and go to Gmail Settings

1) Go to your Gmail Administrator settings: http://admin.google.com/.
2) Click on the Apps icon.


3) Click on Google Workspace.


4) Click on Gmail.


STEP 2 – Set up a New Mail Route

1) Click the Hosts.


2) Click the Add Route.


In the popup, enter the following:
  1. Name: Black Pearl Mail
  2. Ensure that the Specified email server is set to single host.
  3. Hostname (case sensitive): smtp-global.blackpearlmail.com
  4. Port number: 25
  5. Ensure Require secure transport (TLS) is checked.
  6. Ensure Require CA signed certificate is checked.
  7. Ensure Validate certificate hostname is checked.


3) Click Test TLS connection and ensure it passes.


4) Click Save.


STEP 3 – Setting up Advanced Rules

1) Go Back to Settings for Gmail.


2) Scroll to the bottom of the page and click Advanced Settings.


3) Scroll down to the Routing section of the page.
4) Hover over the SMTP relay service.
5) Click on Configure or Add another that appears to the right.


6) Enter the following:
  1. Enter the description as Black Pearl Relay.
  2. Change allowed senders to Only addresses in my domain.
  3. Check Only accept mail from the specified IP addresses.
Add the following IP ranges:
  1. Black Pearl West US - 13.86.181.222
  2. Black Pearl East 1 US - 13.86.126.189
  3. Black Pearl East 2 US - 40.88.53.55
  4. Black Pearl Central US - 52.224.189.79
All other fields can be left blank.

7) Click Add Setting.
       
                  
8) Click Save.

STEP 4 – Configure Compliance Settings 

1) Go back to Settings for Gmail.


2) Scroll down to the bottom of the page and select Compliance.


3) Select the OU that the user is a member of from the left hand side.


4) Scroll down to Content Compliance and click Configure.


5) Set the description to Black Pearl Compliance.
  1. Under 1. Email messages to affect check Outbound and Internal Sending.  
  2. Under 2. Add expressions that describe the content you want to search for in each message, make sure that you have If ALL of the following match the message selected in the drop-down, then:
    1. Choose to add an expression.
    2. Select Advanced content match.
    3. Location should be set to Full headers.
    4. Match type set to not contains text.
    5. Enter X-BP to Content and Save the expression.
    6. Click Save.
            

6) Click Add to add another expression.

  1. Select Advanced content match.
  2. Select Location to Headers + Body.
  3. Select Match type to Not contains text.
  4. Enter BEGIN:VCALENDAR into the Content area.
  5. Click Save.

      
7) Click Add to add another expression.

  1. Select Advanced content match.
  2. Select Location to Envelope Sender.
  3. Select Match type to Not contains text.
  4. Enter google.com into the Content area.
  5. Click Save.


8) Click Add to add another expression.


  1. Select Advanced content match.
  2. Select Location to Full headers.
  3. Select Match type to Not matches regex.
  4. Enter (\W|^)(From:)*(<calendar-notification@google\.com>)(\W|$) into the Regex area.
  5. Click Test expression and then select Save.


9) Click Add to add another expression. This is the Regular Expression that will specify which user you want to route through Black Pearl Mail.
  1. Select Advanced content match.
  2. Select Location to Sender Header.
  3. Select Match type to Matches regex.
  4. Enter email address of the user you want to route through Black Pearl Mail into the Regex area e.g. barry@blackpearlmail.com. If you would like multiple users to route through, then each email address can be separated with a pipe e.g. barry@blackpearlmail.com|joe@blackpearlmail.com
  5. Click Test expression.
  6. In the Enter sample data field, enter the email address of the user that you specified in the regex i.e. the user that you want to route through Black Pearl Mail. 
  7. If successful, it should return a match.
  8. Now enter the address in the sample data of a user that you don't want to route through Black Pearl Mail. This should return a no match.
  9. If any of the above testing doesn't output the expected results, contact Black Pearl Mail to review.
  10. Click Save.



9) Scroll to If the above expressions match do the following.
  1. Under Headers - Check “Add X-GM-Original-To header”.
  2. Under Route - Check “Change Route”.
  3. Select Black Pearl Mail from the dropdown.

      
10) Click Save.


That completes the settings needed in Google Workspace to restrict certain users in existing OU's to route through Black Pearl Mail. We strongly advise that you send some tests emails from multiple users to ensure that mail is flowing correctly. If there are any issues, then disable the Content Compliance rule you created and contact Black Pearl Mail support.