Skip to main content Link Menu Expand (external link) Document Search Copy Copied
TechWorkshop L300 Understanding XDR

Task 06: Configure Anti-phishing / Impersonation

  1. In the leftmost pane, select Email & collaboration > Policies & rules.

  2. Select Threat policies.

  3. Under the Policies section, select Anti-phishing.

    Containment-34.png

  4. Select + Create.

    Containment-35.png

  5. Name the policy AP-Impersonation-VIPs, then select Next.

    Containment-36.png

  6. Under Users, search for and select your account (or target users) to apply protection, then select Next.

    Containment-37.png

  7. On Phishing threshold & protection, under Impersonation, select Enable users to protect, then select select Manage 0 sender(s).

    julk8wub.jpg

  8. In the flyout pane, select Add user.

  9. Under Email, search for and select your account, then select Add.

    4fv0i04r.jpg

  10. At the bottom of the flyout pane, select Add, then select Done.

    ojwmj60v.jpg

  11. Back on the Phishing threshold & protection step, select Next.

  12. On the Actions step, under If a message is detected as user impersonation, select the dropdown menu, then select Quarantine the message, then select Next.

    Containment-39.png

  13. Select Submit, then Done. Confirm the policy is active.

    Containment-40.png
    Containment-41.png
    Containment-42.png