Phish Hook Button – Centralised Deployment in Microsoft 365

Support Desk
  • Updated
Follow

In this article, we will learn how to automatically install the Microsoft 365 (formerly Office 365) Outlook Phish Hook Button add-in for all users at once.

The Phish Hook Button add-in for Microsoft Outlook / Microsoft 365 (formerly Office 365) enables end users to report suspicious emails. This button empowers your employees to play an active role in identifying phishing and other types of malicious emails. It benefits your IT/security team by providing early warnings of potential phishing attacks, allowing them to take effective action to mitigate the risk of a security or network breach.

The Phish Hook button tracks whether users report simulated phishing emails, giving you visibility into who is engaging successfully and recognising potential threats.

NOTE: To learn how to manually install/sideload the add-in for individual users, see "Phish Hook Button - Manual Installation".

Supported Mail Servers and Clients

Supported Mail Servers:

You will need one of the following servers:

  • Microsoft 365 (formerly Office 365)
  • Exchange Server 2016, Hybrid Only - Version 15.1.544.27 or newer
  • On-Premise Exchange Server 2016 or 2013

Supported Mail Clients:

  • Outlook 2013 for Windows
  • Outlook 2016 for Windows/Mac
  • Outlook Desktop
  • Microsoft 365 (formerly Office 365) OWA
  • Microsoft New Outlook
  • Outlook (mobile app)

Download manifest and Accept Permissions

The steps below are for all support MAIL SERVERS.

Settings - PhishHook - Download Manifest.png

  1. Click "Organisation""Settings" in the Phishing Tackle portal  main menu.
  2. Click "Phish Hook Button".
  3. Check "Enabled".
  4. (Optional) Adjust the default settings to match your organisation’s needs.

  5. Download the Office® 365® Manifest File and save it in a memorable location. Note: Although the file name references Office 365, the manifest is suitable for all supported mail servers.

  6. Once downloaded, confirm permissions by selecting the button labelled ‘Click here to confirm permissions for the Phish Hook button using Microsoft Graph’. 
    Permissions.png

How to Perform a Centralised Deployment

Centralised Deployment is a feature in Microsoft 365 that allows administrators to automatically distribute add-ins such as the Phish Hook Button to all users or specific groups across the organisation.

      1. To perform a centralised deployment, visit the Integrated Apps page (https://admin.microsoft.com/#/Settings/IntegratedApps) in the Microsoft 365 Admin Portal and log in to your admin account. Click “Settings” > “Integrated apps” in the Microsoft 365 Admin Portal.

      2. Click "Upload Custom Apps".
        Admin center - settings, upload custom app.png
      3. Select the "Office Add-in" app type.
      4. Upload your previously downloaded manifest file using "Upload manifest file".
        Upload apps to deploy.png
      5. Select "Next".
      6. Select the users that you would like to assign the Phish Hook button to. 
        We recommend selecting "Entire organisation", so that all of your recipients are granted access to use it.
        Assign users.png

      7. Select "Next".
      8. If you haven't already granted permissions, you will have the opportunity to do that now. Select "Accept permissions" and you will be shown a pop up. Select "Accept".
        Accept permissions.png

      9. Review your selected settings, and if you are happy with them click "Finish Deployment".
        finish deployment.png

      10. After a few moments, the deployment should be completed.
        Deployment successful.png

11. PLEASE NOTE: It can take up to 72 hours for the Phish Hook™ button to become fully available. While it may appear within minutes, it may not be fully stable until the full 72-hour period has passed. This delay is due to Microsoft® architecture, and our support team will be unable to assist until this period is complete.

Your add-ins area should now show the Phish Hook button add-in:

Phish_Hook_button_-_Centralised_deployment_final.png

 

On-Premise Exchange 2016 & 2013 Deployment

  1. Log in to the Exchange Admin Centre (EAC).

  2. Navigate to Organisation > Add-ins (or Apps).

  3. Click + to add a new add-in.

  4. Select Add from file.

  5. Locate the previously downloaded manifest file.

  6. Click Install.

This may take some time to propagate and will then install on all connected Outlook clients.

 

Proxy Servers

If your users are behind an internet proxy, ensure they have access to the following URLs:

  • outlook.office365.com
  • outlook.office.com
  • tacklephishing.com (please note the reverse order of Phishing Tackle)

For more information regarding On-Premise Exchange Add-in management, including removal and advanced installation, please click here.

Please let us know if you require any further assistance, you can contact our support team by clicking here. Or by sending an email to support@phishingtackle.com

Related articles