Cloud App Security Administration Guide for Office 365
- Cloud App Security
- Understanding Cloud App Security
- Configuring Cloud App Security
- Managing Quarantine for Office 365 and Microsoft 365
- Setting Up a Quarantine Mailbox for Office 365 and Microsoft 365 Email (Exchange Online)
- Setting Up a Quarantine Folder for Office 365 and Microsoft 365 OneDrive
- Setting Up a Quarantine Folder for Office 365 and Microsoft 365 SharePoint
- Using the Quarantine View for Office 365 and Microsoft 365 Email (Exchange Online)
- Using the Quarantine Page
- Using the Quarantined File Creator Dashboard
- Using the User Dashboard for Office 365 and Microsoft 365
- Managing Restore Requests
- Using the SonicWall Cloud App Security Dashboard
- Managing Security Events
- Managing Policies
- Understanding Cloud App Security Policies
- Creating New Policy Rules
- Stopping Policy Rules
- Removing Policy Rules
- Managing Office 365 and Microsoft 365 (Exchange Online) Mail-Flow Rules
- Managing Spam and Anti-Phishing
- Managing Spam
- Managing User-Reported Phishing
- Customizing Warning Messages
- Managing Nickname Impersonation
- Managing the Anti-Phishing Exceptions
- Using the Mail Explorer
- Working with Office 365 and Microsoft 365 Email Encryption
- Configuring and Using Click-Time Protection
- Using Cloud App Security Analytics
- Configuring Cloud Applications in the Cloud App Store
- Managing Security Applications in the Security App Store
- Managing Anomaly Exceptions
- Managing Security Tool Exceptions
- Using the System Log
- Managing Cloud App Security Licenses
- SonicWall Support
Understanding Post-Delivery Email Recheck
Post-Delivery Security extends the security to email messages already in the inbox. Email Recheck expands post-delivery protection, providing another layer of protection in addition to Click-Time Protection.
Post-Delivery Email Recheck is a multi-phase process:
- The Email Recheck process can be triggered by several sources, including end-users and administrators. For example: emails that were reported by the end-users as suspected phishing, clicks on malicious URLs in emails protected by Click-Time Protection, and email reclassification by the administrators.
- The email messages are examined by Cloud App Security.
- A global block action is issued, across all mailboxes protected by Cloud App Security. The block action includes all emails that match the relevant match criteria.
- All marked emails are processed by the relevant customer policy workflows. The emails are removed from the inbox and placed in quarantine, while security events are generated, and notifications sent to the users and administrators.
The security event appears as Post-delivery recheck as a detection reason in the detailed information for the email message.
Was This Article Helpful?
Help us to improve our support portal