In my sample setup, I am choosing to have this apply to the entire domain. Choose the sections to enable the scanning of links in emails. Scroll down to “Policies that apply to specific recipients”. To set up email link filtering, click on ATP Safe Links. While this resulting URL might look suspicious, what the system is doing is sending the URL through a spam filtering service first and allowing you, the administrator, to know which user clicked on the link. You have probably seen the result of this process when someone resends an email and the URL links include an embedded reference to an Outlook web link.įor example, rather than seeing or clicking on the link you will instead see: This ensures that they are sent through a phishing filter first before the user is allowed to click on a link. Setting up policy to block How email link filtering works in Office 365Įmail link filtering in Microsoft Office 365 occurs when the system is set to scan and rewrite URLs in email. You can then choose to monitor, block or replace the message as you see fit. To enable a policy for email attachments, click the “+” to add a new policy item. Microsoftĭefault checkbox to enable protection of files In this example of a Microsoft 365 E5 deployment, you will want to turn on ATP for SharePoint, OneDrive and Teams by checking the box in the implementation. Starting with ATP Safe Attachments, enable ATP for all the platforms you have defaults for. You can now review the policies set in both ATP Safe Attachments and ATP Safe Links. In the left navigation under “Threat management”, choose “Policy”. To set up a policy to explicitly block a URL for everyone in the firm, first sign in with your admin account. You can add protection to other 365 plans for a minimal fee. ATP Safe Links features are part of Advanced Threat Protection, which is included in Office 365 Enterprise E5, Microsoft 365 Business and Microsoft 365 Enterprise. Office 365 allows you to enable this feature as well. You might have already seen this in action if you use or Hotmail. Before a user clicks on a link, the URL is rewritten to be scanned first by Microsoft scanning filters. A key recommendation to ensure a secure Office 365 implementation is to scan your Outlook implementation to check for malicious links using Office 365 ATP Safe links and Office 365 ATP safe attachments.