The goal of this guide is to show how to modify the preset security policies of Microsoft 365 Defender to ensure that reported emails are delivered correctly, without ending up in quarantine, to the dedicated reporting mailbox (shared mailbox).
Step-by-step procedure:
1. Log in to the Microsoft Defender console
2. Go to "Email & Collaboration" and then click on "Policies & Rules":
3. Select "Threat Policies":
4. Select "Reset Security Policies":
5. Select "Add Exclusion":
6. Add the dedicated reporting shared mailbox in the "User" field:
7. Click on "Save"