IMPORTANT NOTICE: Since Microsoft rolled out the "Secure by Default" standard in October 2021, the required method of allowlisting has changed. To correctly allowlist in Exchange and Office 365 environments, please see our article Allowlisting via Microsoft Advanced Delivery.
Should your recipients use the Microsoft 365 report as phishing feature on one of Phishing Tackle's simulated phishing emails, it can cause a false-positive click to appear in the platform. Naturally, this would be counted as a failure on the recipient's part even though they never clicked the link, so we want to prevent this from happening.
To do this we'll need to disable the junk email and phishing email reporting feature via Exchange PowerShell. The simple steps below will guide you through this process.
NOTE:
We recommend using the Phish Hook button where possible to report phishing emails (simulated or real) as it allows for simpler management with a single point of reference within the platform.
Use Exchange Online PowerShell to disable the Microsoft 365 "Report as Phishing" feature
- Open Exchange PowerShell then run the following command to locate the relevant policy:
Get-OwaMailboxPolicy | Format-Table Name,ReportJunkEmailEnabled - Set the policy to false, as in the example below:
Set-OwaMailboxPolicy -Identity "OwaMailboxPolicy-Default" -ReportJunkEmailEnabled $false - To verify the changes, check a recipient's Outlook on the web account and select the Mark as phishing option from the drop-down menu, as below:
Once the feature has been disabled, recipients will still see the option, however, when it is clicked the message will not be reported and the "successful reporting" message will not display.
Should you have any questions on this or any other aspect of the platform, please contact our support team.