This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 76%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECB%3C/text%3E%3C/svg%3E)
Where specifically within the admin center(s) linked to the Exchange Online product can you review whether all suggested phishing protections have been enabled for your users/mailboxes? And do Microsoft have a list of suggesting phishing protections that tenants should enable to check the settings align with best practice and that there are no gaps? If Microsoft do not offer such guidance, are there any suggested phishing protections that can be enabled within the system that we can check?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYS%3C/text%3E%3C/svg%3E)
Hi @crib bar,
I am writing to see how everything is going on with this thread. If the replies below are helpful, do you mind accepting it as answer? This can be beneficial to others who read this thread. If you still have further concern on this, please feel free to let us know.
Hi
Exchange Online Protection is the addon that enable more phishing protection. The below chart summarize what plan got it.
To configure or view the policy, please see that document, it's inside the Defender's portal.
Hi @crib bar
Where specifically within the admin center(s) linked to the Exchange Online product can you review whether all suggested phishing protections have been enabled for your users/mailboxes?
As far as I know, there's no such a place in the admin centers where you can check whether all the suggested phishing protections have been enabled in your tenant.
And do Microsoft have a list of suggesting phishing protections that tenants should enable to check the settings align with best practice and that there are no gaps?
You could review the official document below which lists all the anti-phishing protection features in Exchange Online Protection (EOP) and Microsoft Defender for Office 365, and check them in your own tenant.
Anti-phishing protection in Microsoft 365
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in [our documentation] to enable e-mail notifications if you want to receive the related email notification for this thread.
