Skip to main content

Office 365 Email Security Checklist

 


  • Enable mailbox auditing and unified audit log search
  • Email authentication: SPF, DKIM and DMARC (ARC Seal is enabled by default by Microsoft)
  • Eliminate legacy protocols and disable basic authentication. Instead use App Password. You can also use OAuth to configure IMAP/POP3.
For example many SharePoint developers use SharePoint Designer 2013 which don't support Office 365 Modern Authentication so you have to create App Password.

  1. Enable multi-factor authentication (admins and users alike)
  2. Disable mailbox auto-forwarding to remote domains
  3. Block sign-in for all shared mailboxes
  4. Adjust anti-spam, anti-malware and outbound spam policies
  5. Configure mobile device policies (ActiveSync or Office 365 MDM)
  6. Configure the default Alert policies
  7. Turn on Office 365 Advanced Threat Protection: Safe Links, Safe Attachments, Anti-Phish policy
  8. Protect mailboxes with a retention policy or litigation hold
  9. Configure modern device management & conditional access
  10. Block downloads from Outlook web on unmanaged devices
  11. Start using Office 365 message encryption features
  12. Configure Data Loss Prevention policy
  13. Configure Advanced alert policies in Cloud App Security
  14. OAuth notifications and review (or disable OAuth apps)
Labels:
Location: United States

Comments

Post a Comment

Popular posts from this blog

Microsoft 365 Collaboration Tools for Newbies | eBook

 A Quick Start Guide for Newbies | Office 365 #Office365 #collaboration #ebook Download here What will you learn?  This quick start ebook is compiled for newbie to get familiar with Microsoft 365 productivity tools like Outlook, Teams, SharePoint and One Drive for Business. 
Post a Comment
Read more

Let's Explore What is Microsoft Entra?

  Microsoft Entra  is new product family that encompasses all of Microsoft’s identity and access capabilities. The Entra family includes Microsoft Azure Active Directory (Azure AD), as well as two new product categories: Cloud Infrastructure Entitlement Management (CIEM) and decentralized identity. The products in the Entra family will help provide secure access to everything for everyone, by providing identity and access management, cloud infrastructure entitlement management, and identity verification. Manage permissions of any identity, across any cloud, with one unified platform Unified  Identity & Security features like  Azure Active Directory  which you are already using for many years, added new features like " Permissions Management ", " Verify ID ". Oversee all your organization’s identities in one place   As the growth of cloud continues, more workloads are moving to the cloud and new enterprise software solutions are being deployed natively in the clo
Post a Comment
Read more