Setting up image display in Outlook
Option 1: Configuration of Senders Using PowerShell
If you want SMARTFENSE emails to be displayed with their images by default and thus ensure the correct collection of the opening statistics, it is recommended to load the email addresses as safe senders in the mailboxes of the users of the organization.
This step must be done for each sender's email address of each simulation.
You should search on the SMARTFENSE platform under Predefined Content -> "Preview" for the desired simulation and copy the sender's email address. It can also be viewed from the campaign creation by clicking the "Preview" button at the bottom and taking the email address from the "Data visible by the User" section. In the example screenshot, the email address/sender is: "prime-video@amazonp.com," and place that email in the commands indicated below, replacing "email@toadd.com."
Administrators can use Exchange Online PowerShell to configure entries in the safe lists collection in mailboxes (the Safe Senders list, the Safe Recipients list, and the Blocked Senders list) for the correct display of images.
To perform the configuration, they must connect using PowerShell.
Open a Windows PowerShell console (Administrator) by right-clicking on the Windows start button.
Run the following command to configure a single email account.
Set-MailboxJunkEmailConfiguration "Account alias" -TrustedSendersAndDomains @{Add="email@toadd.com"}
To deploy the configuration in all the accounts of the organization, the following command must be run:
$All = Get-Mailbox -RecipientTypeDetails UserMailbox -ResultSize Unlimited; $All | foreach {Set-MailboxJunkEmailConfiguration $_.Name -TrustedSendersAndDomains @{Add="email@toadd.com"}}
How to know if the process was completed successfully?
Do one of the following procedures to confirm that safelist collection limits are set correctly on a mailbox:
- Replace with the name, alias, or email address of the mailbox <MailboxIdentity> and run the following command to check the property values:
Get-MailboxJunkEmailConfiguration -Identity "<MailboxIdentity>" | Format-List trusted*,contacts*,blocked*
If the value list is too long, use this syntax:
PowerShell
(Get-MailboxJunkEmailConfiguration -Identity <MailboxIdentity>).TrustedSendersAndDomains
Steps to follow when the PowerShell module is not installed
Open a Windows PowerShell console (Administrator) and right-click on the Windows 10 Start button.
If, after executing the following command:
$All = Get-Mailbox -RecipientTypeDetails UserMailbox -ResultSize Unlimited; $All | foreach {Set-MailboxJunkEmailConfiguration $_.Name -TrustedSendersAndDomains @{Add=”email@toadd.com”}}
We get the error "Get-Mailbox is not recognized..."
We need to load and/or install the Exchange Online PowerShell module. For this, we need to have Internet access and a user with Office 365 administrator permissions.
Load the Exchange Online PowerShell module
Enter in the console:
Import-Module ExchangeOnlineManagement
If it does not load, then it is not installed. It must be installed.
Install the Exchange Online PowerShell module
To allow all PowerShell scripts downloaded from the Internet to be from trusted publishers, execute the following command, which removes restrictions to enable remote access:
Set-ExecutionPolicy RemoteSigned
Press "y" for yes.
Install the Exchange Online PowerShell module
Enter in the console:
Install-Module -Name ExchangeOnlineManagement
Press the "y" key for yes to allow PowerShell to access the NuGet provider to install the module.
Allow access to this repository.
Press the "y" key for yes to allow PowerShell to access the NuGet repository to install the module.
Connect to the Exchange Online PowerShell module
Enter in the console:
Connect-ExchangeOnline -UserPrincipalName navin@contoso.onmicrosoft.com
(Here, enter the account with administrator permissions to connect to Office 365).
Enter user credentials with administrative permissions for Office 365.
You may be prompted for a verification code if you have two-factor authentication enabled.
If executed successfully:
Run command to allow the sender
$All = Get-Mailbox -RecipientTypeDetails UserMailbox -ResultSize Unlimited; $All | foreach {Set-MailboxJunkEmailConfiguration $_.Name -TrustedSendersAndDomains @{Add="email@toadd.com"}}
*To find out what "email@toadd" is, see the explanation in the "Option 1: Configuration of Senders Using PowerShell" section.
Verify that the sender has been added to the Safe Senders list
Verification by command
Do one of the following procedures to confirm that safelist collection limits are set correctly on a mailbox:
Replace with the name, alias, or email address of the mailbox <MailboxIdentity> (including <> symbols) and run the following command to check the property values. Here, we should see the domain that we added to the Safe Senders:
Get-MailboxJunkEmailConfiguration -Identity "<MailboxIdentity>" | Format-List trusted*,contacts*,blocked*
If the list of values is too long, use this syntax, also replacing <MailboxIdentity> with the name, alias, or email address of the mailbox (including the <> symbols):
(Get-MailboxJunkEmailConfiguration -Identity <MailboxIdentity>).TrustedSendersAndDomains
Email Client Verification
In Outlook, go to "Junk Email" and select "Junk Email Options."
Check that the selected sender is listed in the "Safe Senders" tab.
Outlook WEB Verification
Open and log in to Outlook Web.
Go to the three dots for more settings, Rules -> Manage rules in the Junk email section, and check if the sender appears in "Safe senders and domains."
On the SMARTFENSE platform, try to send the chosen phishing or ransomware simulation from Content Gallery > Phishing using the "Send me test" button in the selected simulation.
Run command to remove the sender
This step should be performed for each sender of each activated simulation once the simulation has concluded, and you wish to remove the sender from the email list.
Search for the sender in the platform under Predefined Content > Preview, and copy the sender that was used.
$All = Get-Mailbox -RecipientTypeDetails UserMailbox -ResultSize Unlimited; $All | foreach {Set-MailboxJunkEmailConfiguration $_.Name -TrustedSendersAndDomains @{Remove=”email@toadd.com”}}
Reset to default policies
It is recommended to then revert the policy restrictions to their default option using the following command:
Set-ExecutionPolicy Restricted
Sources
https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/configure-junk-email-settings-on-exo-mailboxes?view=o365-worldwide
https://learn.microsoft.com/en-us/powershell/exchange/connect-to-exchange-online-powershell?view=exchange-ps
https://learn.microsoft.com/en-us/powershell/exchange/exchange-online-powershell-v2?view=exchange-ps#install-and-maintain-the-exchange-online-powershell-module
Option 2: GPO Setup
For SMARTFENSE to correctly detect the opening of the emails, the end user must view the images of the emails in question.
If you want SMARTFENSE emails to be displayed with their images by default and thus ensure the correct collection of the opening statistics, it is recommended to perform the following configuration in an Outlook client:
To apply the same rule to all users in the organization, you must do it through a group policy. You can follow the steps in the following article:
For the 2016 version of Outlook, the templates are downloaded here:
https://www.microsoft.com/en-us/download/details.aspx?id=49030