Apply ATP/Spam/Phishing protection on forwarded messages

Question

Apply ATP/Spam/Phishing protection on forwarded messages

Talha 216

Hi
we are using “Freshdesk” to provide ticket based customer support and for that we are currently forwarding all the emails which are coming to Shared mailbox support@mathieu.company .com >> Freshdesk but at time of forwarding office 365 exchange server doesn’t apply any protection policies to check the email for any phishing or spam threats.
Is there a way to first apply all the protections policies only then it will be forwarded? Do policies apply on forwarded messages? Is there any work around where I can get office365 to check email for threats before forwarding emails to our ticket system?
thank

Joyce Shen - MSFT 16,701 Reputation points

2021-12-14T08:28:21.37+00:00

Hi @Talha

Any progress about your question here?

If an Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Joyce Shen - MSFT 16,701 Reputation points

2021-12-23T08:09:49.81+00:00

Hi @Talha

Is your problem resolved now? Share your update here if any when you are free.

If an Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Prashant Pandey 0 Reputation points

2023-02-26T07:14:38.0566667+00:00

Same is the case with me, we use Salesforce which uses emails forwarded from support mailboxes to create cases. However, any scan applied in exchange runs only after forwarding the message. This allows any malicious mail ending up in Salesforce, though gets quarantined or blocked in outlook. How we can make the system scan for threats first and if OK then only forward the message to Salesforce or other systems.

2 answers

Your answer

Joyce Shen - MSFT 16,701 Reputation points

2021-12-14T08:28:21.37+00:00

Hi @Talha

Any progress about your question here?

If an Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Joyce Shen - MSFT 16,701 Reputation points

2021-12-23T08:09:49.81+00:00

Hi @Talha

Is your problem resolved now? Share your update here if any when you are free.

If an Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Prashant Pandey 0 Reputation points

2023-02-26T07:14:38.0566667+00:00

Same is the case with me, we use Salesforce which uses emails forwarded from support mailboxes to create cases. However, any scan applied in exchange runs only after forwarding the message. This allows any malicious mail ending up in Salesforce, though gets quarantined or blocked in outlook. How we can make the system scan for threats first and if OK then only forward the message to Salesforce or other systems.

Answer 1

Joyce Shen - MSFT 16,701

Hi @Talha

For inbound spam filter, you may consider the scenario for using a third-party cloud filtering service with Microsoft 365 or Office 365.

And Use Enhanced Filtering for Connectors (highly recommended): Use Enhanced Filtering for Connectors (also known as skip listing) on the Partner inbound connector that receives messages from the third-party application. This allows EOP and Microsoft 365 Defender for Office 365 scanning on the messages for a double anti-spam check.

Answer 2

Joyce Shen - MSFT 16,701

Hi @Talha

In Microsoft 365 organizations with Exchange Online mailboxes, or standalone Exchange Online Protection (EOP) organizations without Exchange Online mailboxes, all messages sent to your organization pass through EOP before your workers see them.

And we can see how EOP works:

External emails send to your shared mailbox will pass through EOP, while this will not applied to internal senders.

And if “Freshdesk” is outside your orgainization, you could refer to the Outbound spam protection in EOP

And for details for Exchange Online Protection overview

If an Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Talha 216 Reputation points

2021-12-03T15:00:58.313+00:00

so policies does apply on auto forwarded messages as well. In our case, should the inbound policies be working as you mentioned that all external emails pass through EOP? or I have to control them from outbound spam?
thanks
Joyce Shen - MSFT 16,701 Reputation points

2021-12-06T08:17:07.053+00:00

Hi @Talha

Yes, all external emails sent to your organization will pass through EOP. And like I mentioned above, if "Freshdesk" is outside your organization, the scenario is just like this: Enable External Forwarding in Microsoft 365
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.

Control automatic external email forwarding in Microsoft 365
Talha 216 Reputation points

2021-12-07T17:03:24.543+00:00

Hi, Freshdesk is outside of our org but the outbound spam is only giving me option to limit the number of messages but it not giving me option like email filtering same as inbound spam which is actually required. Our problem is not the bulk email as our support email is busy with legit inquiries. we want to filter spam emails coming into our email and forwarded. can I use inbound spam in our case or I just cant use it?

Thanks
David Gordon 0 Reputation points

2023-10-16T04:45:19.5233333+00:00

I have the same thing with Freshdesk - outbound policy does not help in this case as it does nothing with spam,
David Gordon 0 Reputation points

2023-10-16T04:46:07.3333333+00:00

Seems daft that you would forward email before checking it???

Share via

Apply ATP/Spam/Phishing protection on forwarded messages

2 answers

Your answer