This video demonstrates how to create a new anti-phishing policy in Office 365.
- Let's drop onto our demo PC and take a look at how to create a new anti-phishing policy in Office 365 Threat Management. I've already logged onto my Office 365 Security and Compliance Center. I'll click on threat management and then choose policy. And then we'll select the anti-phishing policy I'll then click create and here we can use the wizard to help create the policy. I need to give the policy a name and description, note that the policy name cannot be changed afterwards.
I then need to define a condition. In my case I want the recipients to be members of the Sales Department. I'll click add a condition. I'll select recipient is a member of and then type in Sales. Notice I can add multiple conditions if I want. I'll click next. On the review screen we can view all of the settings and modify the policy if need be. I'll click create this policy.
And now I can see the policy. Here I can edit the detail of the policy. I want to modify the default settings to focus on the impersonation ATP on the Sales team members and then enable impersonation safety tips. So I'll click edit. And then click turn on and add users from my Sales team. I'll add Adele and Debra.
Let's review the other settings we can modify in the policy. On the actions tab I want to turn on impersonation safety tips. I'll click the link and turn on all the safety tips and click save. Notice that when we create an anti-phishing policy that the mailbox intelligence is enabled by default.
I'll review my settings and then click save. I can now see that the policy will be applied to the Sales team. I've selected three users to protect from impersonation attacks and I've turned on safety tips. Let's click close. If you wanted to fine tune the policy further, perhaps adding new users, we can simply click the policy and then edit the settings. Once you have multiple policies in place you can order them so that they're applied in a specific order by selecting the policy and then increasing or decreasing the priority.
In this way, I've moved the Sales Anti-Phish policy to the top and it will be applied first.
- Implementing Office 365 ATP
- Common Office 365 threats
- Configuring security admin roles
- Creating Safe Attachments policies
- Anti-spam options and settings
- Managing advanced spoofing filters
- Using Office 365 threat intelligence features
- Using the Attack Simulator
- Leveraging ATP reports