To ensure the proper functioning of the "Report Phishing" button integrated in Microsoft Outlook, the following prerequisites must be met:
-
Creation of a shared mailbox:
It is recommended to create a dedicated shared mailbox to collect reports of suspicious emails. -
Assigning necessary permissions:
The user who will configure Power Automate (detailed article here) to manage the report flow must grant themselves read, write, and send on behalf of permissions on the shared mailbox. - Access the Microsoft Defender console, proceed to: "Policies and rules > Threat policies > Advanced Delivery". In the "SecOps Mailbox" tab, click "Edit", enter the shared mailbox, and finally click "Save":