Step 2. Mail Configurations
Last updated
Was this helpful?
Last updated
Was this helpful?
This article section describes how to integrate the module with Google Workspace, Exchange, or Microsoft Office 365 email services. It's important to follow the steps accurately. Please contact your email server administrator if you don’t have the required permissions to make these configurations.
The Incident Responder module investigation tool can detect malicious emails in user inboxes and remove them automatically or can be removed by the admin as well.
Server-based integration with your email service provides the most comprehensive protection. While email investigations can be conducted with the Phishing Reporter plug-in, the user must have Outlook open and the plug-in active for the investigation to be successful. If the Outlook application is closed for any reason, a complete investigation can only be performed using a server-based integration.
The server-based integration has the advantage to start an investigation at any time.
Select Incident Responder > Mail Configurations from the left sidebar menu of the dashboard to create a new mail configuration or view the details of an existing configuration.
To set initial configurations, select the appropriate email server integration:
Office 365
Exchange
Google Workspace
The integration details are:
Name
Name of the configuration
Platform
Email service name to be integrated: Exchange EWS, Office 365, or Google Workspace
An active email address is required for testing purposes
Status
Status of the configuration: (running/not running)
Date Created
Integration start date
Action
Edit/remove the integration