Scan to email was being caught as 'phishing' by Office 365 Defender even though it was using a relay and SPF record. We need to do the following:
Whitelist the Sender:
- To whitelist the sender, follow these steps:
1. Go to security.microsoft.com
2. Select "Threat Policies."
3. Choose "Anti-Phishing."
4. Select "Office365 AntiPhish Default (Default)."
5. Click "Edit protection settings."
6. Under "Spoof Intelligence," click "Tenant Allow/Block Lists."
7. Add the email address of the sender and the IP address.
8. Set the action to "Allow," and choose "External" as the spoof type.
Whitelist the IP Address:
- From security.microsoft.com go to "Policies and rules" > "Threat policies" > "Anti-spam policies."
- Navigate to "Connection filter policy (Default)."
- Edit the connection filter policy.
- Under "Always allow messages from the following IP addresses or address range," add the IP address of the sender and click "Save."
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article