This article contains information on identifying and managing suspicious or external messages flagged by Mimecast's Impersonation Protection policies, including reporting phishing attempts, forwarding restrictions, and external message banners.
Introduction
You can see and interact with banners displayed inside a messages if:
- Your Mimecast account has Impersonation Protect enabled.
- A message has been flagged as suspicious, or contains an inbound item from an external source.
Identifying Suspicious Messages
A suspicious message banner is displayed if an Impersonation Protection policy is triggered that uses a definition with the Tag Header option enabled.
You can report a message as a phishing attempt, by clicking on the Report Phishing button.
Forwarding Suspicious Messages
An alert notification is displayed if you attempts to forward or reply to a message where an Impersonation Protection policy is triggered that uses a definition with the Tag Header option enabled:
Administrators can enable or disable users' ability to forward or reply to a suspicious message.
In the General section of Common Application Settings, select Impersonation Protection | Forward and Reply to Suspicious Messages to enable forwarding and replying to suspicious messages. See Configuring Application Settings.
Identifying External Messages
An external message banner is displayed if an Impersonation Protection policy is triggered that uses a definition with the Mark All Inbound Items as External option enabled, with the Tag Header option configured:
Comments
Please sign in to leave a comment.