This article contains information on configuring Mimecast's Direct Message Injection (DMI) integration for Phishing simulations, for Mimecast Awareness Training, and Engage.
Overview
The integration with Mimecast's Direct Message Injection enables Phishing simulation emails to be delivered directly into users' inboxes, bypassing traditional email security controls.
Considerations
- This feature is only available to Mimecast Awareness Training and Engage customers for Email Security Cloud Gateway.
Prerequisites
- Mimecast Engage subscription.
- You must have one of the following roles:
- Global Sys Admin.
- Sys Admin - SD Full.
- Super Administrator.
- Full Administrator.
- Basic Administrator.
- Partner Administrator.
- Custom Role with Integrations Marketplace (Read/Write permissions must be enabled.)
- You are a Microsoft 365 or Google Administrator.
Configuring the Direct Message Injection Integration
You can configure the Engage integration with Direct Message Injection by using the following steps:
- Log in to the Mimecast Administration Console for Email Security Cloud Gateway.
-
Navigate to Integrations | Integrations Hub.
-
From the available Integrations, select Mimecast Direct Message Injection, and click on Configure New.
- Complete the Details section:
- Enter an Application Name.
- Enter a Description (optional).
- Ensure you have selected an Email Provider to specify where you want to enable Direct Message Integration.
Up to 25 connectors per integration is supported.
Microsoft Authorization Flow for Direct Message Injection
These steps continue from the previous workflow.
- Select Authorize to complete the integration process.
- You'll see the following banner: "Starting authorization flow for Mimecast Direct Message Injection. You will be redirected to an authorization flow to allow Mimecast to access Mimecast Direct Message Injection".
- Log in to your email provider as an administrator when prompted.
- Allow the permissions requested, when prompted, e.g.:
- You'll see the following banner: "Successfully authorized with Mimecast Direct Message Injection! Saving the authorization along with your Mimecast Integration...", followed by "Integration was successfully created!".
Google Authorization Flow for Direct Message Injection
For the Direct Message Injection integration using Google, you will need to configure domain-wide delegation in your Google Workspace admin console:
Delegate Domain-wide Authority to your Service Account
To access user data on a Google Workspace domain, the service account that you created needs to be granted access by a super administrator for the domain. For more information about domain-wide delegation, see Control Google Workspace API access with domain-wide delegation.
To delegate domain-wide authority to a service account:
- From your domain’s Admin console, navigate to Main menu | Security | Access and data control | API controls.
- In the Domain wide delegation pane, select Manage Domain Wide Delegation.
- Click Add new.
- In the Client ID field, enter the client ID obtained from the service account creation steps above.
- In the OAuth Scopes field, enter a comma-delimited list of the scopes required for your application.
- Use the scope https://www.googleapis.com/auth/gmail.insert.
- Click Authorize.
For more information, see: Perform Google Workspace domain-wide delegation of authority.
| Q: | What happens if there are issues completing the Direct Message Injection integration? |
| A: |
|
Comments
Please sign in to leave a comment.