CyberGraph 2.0 - Policy Configuration

Updated January 26, 2026 09:44

This article describes how to manage CyberGraph 2.0 Policies.

All CyberGraph policies are bi-directional.

Configuring CyberGraph Policies

When a CyberGraph account is newly added, a default policy is created and activated. This policy, called "CyberGraph Learning Mode Default Policy" silently activates the CyberGraph social graph in Learning Mode to capture user messaging interactions. Banners to end-users are not enabled. This relationship information is key to processing messages for Advanced BEC and other Mimecast Threat scanners. You can manage this policy like any other.

To configure CyberGraph policies:

Log in to the Mimecast Administration Console.
Navigate to Policies | CyberGraph Policies
Click on the Create New Policy button.
Enter a Name for the policy.
Enter an optional Description for the policy.
Then complete the options in the table as desired:

Field / Option	Description
Dynamic Banner Status	Disabled: Scanning of email attributes and content is not performed. Learning: A monitoring state where CyberGraph runs in the background, but banners are not displayed to end-users. Enabled: CyberGraph continues to learn, and end-users will see Dynamic and Text Banners appear on emails flagged by CyberGraph. Recommended practice is to enable CyberGraph in a Learning status for two weeks and then progress to an Enabled status. See the Dynamic Banners page for more information.
Trackers Status	Disabled: Scanning for trackers is not performed. Enabled: CyberGraph continues learning, and emails are sanitized of trackers. For more information, see the Trackers page.
User Reporting Status	Enabled: Allows end-users to Report or Mark as Safe from the Dynamic and Text banners displayed on an email. Disabled: Allows end-users to see Dynamic and Text banners but not Report or Mark as Safe.
Policy Override Status	Enabled: Apply this policy first unless there are more specific CyberGraph policies with an override. Disabled: This policy will not be applied first.

1. Click on the Next button.
2. Select who the policy applies to:

Field / Option	Description
Applies From/To	Everyone: Includes all email users Domain: This enables you to specify a domain name to which this policy is applied. Address Groups: This enables you to specify a directory or local group. If this option is selected, click the Select Group button to select the desired directory or local group. Email Address: This enables you to specify an email address to which this policy is applied. External sender addresses and domains are evaluated based on the message envelope address.
Add Another Rule	Click the Add Another Rule button to create additional routes using the same policy details. Example usage: You may choose to use multiple routes when you want to apply CyberGraph to specific groups rather than all end-users.

Field / Option

Description

Applies From/To

Everyone: Includes all email users
Domain: This enables you to specify a domain name to which this policy is applied.
Address Groups: This enables you to specify a directory or local group. If this option is selected, click the Select Group button to select the desired directory or local group.
Email Address: This enables you to specify an email address to which this policy is applied.

External sender addresses and domains are evaluated based on the message envelope address.

Add Another Rule

Click the Add Another Rule button to create additional routes using the same policy details.

Example usage: You may choose to use multiple routes when you want to apply CyberGraph to specific groups rather than all end-users.

Click on the Next button.
Review the Summary page.
Choose Enabled or Disabled for the Policy Status.
Choose Enabled or Disabled for the Policy Override option. Enabling this will apply this policy first unless there are more specific CyberGraph policies with an override.
Click on the Create Policy button.

Editing CyberGraph Policies

Log on to the Mimecast Administration Console.
Navigate to Policies | CyberGraph Policies
Click on the icon on the right of the policy entry.
Select Edit.
Edit the policy as required.
Click on the Save & Close button.

Deleting CyberGraph Policies

Log on to the Mimecast Administration Console.
Navigate to Policies | CyberGraph Policies
Click on the icon on the right of the policy entry.
Select Remove.
A confirmation pop-up appears.
Click on the Delete button.

Related to

Comments

2 comments

Myron Kolodiy
January 14, 2026 19:23

This article would benefit from clarifying how to enable static banners. Ideally, static/text banners would be explicitly represented in the policy configuration UI.

0
Admin - KP
January 15, 2026 03:28

Hi Myron,
Thank you for your feedback! Please take a look at our Dynamic Banners Knowledge Base article, which also contains information on Static Banners.
Thanks

0

Please sign in to leave a comment.