MC415186 – Microsoft Defender for Office 365:Enforce Authentication to Pass on AntiSpam Allowed Domains (archived)

Microsoft Exchange Logo

check before: 2022-09-01

Product:

Defender, Defender for Office 365, Exchange, Microsoft 365 Defender

Platform:

Online, US Instances, Web, World tenant

Status:

Launched

Change type:

New feature, Admin impact

Links:

93436

Details:

We are strengthening Spoofing protection within Exchange online protection and Microsoft Defender for Office 365 Anti-Spam security policy. It will provide a way to secure your organization against spoofing attacks that may otherwise occur by allowing certain domains and senders.
Applies to:
Exchange Online Protection
Microsoft Defender for Office 365 plan 1 and plan 2
Microsoft 365 Defender
This message is associated with Microsoft 365 Roadmap ID 93436
[When this will happen:]
Standard: Rollout will begin in late September and will be completed by late November.
GCC/GCC-H/DoD: Rollout will begin in late November and be completed by late December.

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:
General Availability

Created:
2022-08-18

updated:
2022-08-27

Task Type

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS How does it affect me

XXXXXXX ... free basic plan only

MS Preperations

XXXXXXX ... free basic plan only

MS Urgency

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

linked item details

XXXXXXX ... free basic plan only

More Info URL

XXXXXXX ... free basic plan only

** AI generated content. This information is not reliable.

the free basic plan is required to see all details. Sign up here


change history

DatePropertyoldnew
2022-09-15MC prepareTo prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More:
Configure your anti-spam filter policies
Create allowed spoofed sender entries using Tenant allow block list - Spoofing
Spoof intelligence insight
Spoof detections report
ps://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entri
ps://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-polici
ps://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detecti
ps://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436
To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More:
Configure your anti-spam filter policies
Create allowed spoofed sender entries using Tenant allow block list - Spoofing
Spoof intelligence insight
Spoof detections report
https://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entries
https://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-policies
https://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detections-report
https://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436
2022-08-27MC prepareTo prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More:
Configure your anti-spam filter policies
Create allowed spoofed sender entries using Tenant allow block list - Spoofing
Spoof intelligence insight
Spoof detections report
https://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entries
https://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-policies
https://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-worldwide
https://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detections-report
https://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436
To prepare for this change it is recommended that you review the spoof intelligence report and ensure that any intra-org messages where the sender/sending domain is part of your accepted domain pass authentication as expected. Note you do not need to update items where authentication fails and that failure is expected. Review your existing Anti-Spam policies within threat policies and consider updating the list of Allowed domains / Allowed senders to allow whom you trust. We recommend updating your necessary training documents accordingly.
Learn More:
Configure your anti-spam filter policies
Create allowed spoofed sender entries using Tenant allow block list - Spoofing
Spoof intelligence insight
Spoof detections report
ps://docs.microsoft.com/microsoft-365/security/defender/microsoft-365-defender?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/allow-block-email-spoof?view=o365-worldwide#create-allowed-spoofed-sender-entri
ps://docs.microsoft.com/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-polici
ps://docs.microsoft.com/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/exchange-online-protection-overview?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/learn-about-spoof-intelligence?view=o365-world
ps://docs.microsoft.com/microsoft-365/security/office-365-security/view-email-security-reports?view=o365-worldwide#spoof-detecti
ps://www.microsoft.com/microsoft-365/roadmap?owM365RoadmapSearchInput=93436&owM365RoadmapSearchButton=&filters=&searchterms=93436

Last updated 4 months ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!