Configuring Microsoft Defender for Office 365

Question 1

What is Exchange Online Protection (EOP) used for?

Answer 1

EOP is used to protect Exchange Online mailboxes and on-premises mailboxes with a standalone EOP subscription from spam.

Question 2

Can admins delete the default anti-spam policy in EOP?

Answer 2

No, admins cannot delete the default anti-spam policy, but they can create custom anti-spam policies.

Question 3

How can admins control the order in which multiple custom anti-spam policies are processed?

Answer 3

Admins can change the priority of the policies to control the processing order.

Question 4

What features does Defender for Office 365 offer for anti-phishing protection?

Answer 4

Defender for Office 365 provides anti-phishing policies, campaign views, and the attack simulator.

Question 5

What can be configured in anti-phishing policies?

Answer 5

Anti-phishing policies allow you to create custom policies, configure anti-impersonation settings, mailbox intelligence settings, and adjust advanced phishing thresholds.

Question 6

How does Campaign Views help protect against phishing attacks?

Answer 6

Campaign Views uses machine learning and intelligence to identify messages involved in coordinated phishing attacks.

Question 7

What is the purpose of the Attack Simulator in Defender for Office 365?

Answer 7

The Attack Simulator is used to create and send fake phishing messages to educate users about phishing attacks.

Question 8

What does an anti-malware policy in Defender for Office 365 consist of?

Answer 8

An anti-malware policy consists of a malware filter policy and a malware filter rule.

Question 9

What does the malware filter policy specify in an anti-malware policy?

Answer 9

The malware filter policy specifies recipient notification settings, sender and admin notification, ZAP, and Common Attachment Types Filter settings.

Question 10

Can the default anti-malware policy be deleted?

Answer 10

No, the default anti-malware policy called “Default” cannot be deleted, but custom policies can be created with higher priority.

Question 11

What is the purpose of Safe Links in Defender for Office 365?

Answer 11

Safe Links provides URL scanning and rewriting in inbound email messages, verifying and protecting against bad URLs and links at the time of click.

Question 12

Where is Safe Links protection available?

Answer 12

Safe Links protection is available in email messages, Microsoft Teams, and Office 365 apps.

Question 13

Are there default Safe Links policies in place?

Answer 13

No, there are no default Safe Links policies defined, so at least one policy needs to be created for protection against bad links and emails.

Question 14

How can Safe Links be configured for Teams?

Answer 14

Safe Links policies can be created to protect against bad links in Teams conversations, group chats, and channels.

Question 15

How is Safe Links protection configured for Office 365 apps?

Answer 15

Safe Links protection for Office 365 apps is configured using global settings separate from Safe Links policies.

Question 16

What is the purpose of Safe Attachments in Defender for Office 365?

Answer 16

Safe Attachments provides additional protection for email attachments by checking them before delivery to recipients.

Question 17

Are there default Safe Attachments policies in place?

Answer 17

No, there are no default Safe Attachments policies defined, so at least one policy needs to be created for attachment protection.

Question 18

How does Safe Attachments complement existing protection measures?

Answer 18

Safe Attachments adds an extra layer of protection to anti-malware, anti-phishing, and anti-spam measures already in place.