Email Protection For Office 365 uses multi-layer spam and anti-virus filtering engines that, besides checking against Real-time Blackhole Lists, relies on a sophisticated analysis of message headers and text to determine the potential legitimacy of an email.

Note: Email Protection for Office 365 recognizes only UserMailbox objects as chargeable.

To manage or view Email Protection settings, navigate to HostPilot > Services > Email Protection:

Email Protection

If the feature is not enabled yet, it's possible to enable it under Services > Office365 > Email Protection. For more information please refer to the following article:

Email Protection For Office 365: How To Enable

When a message meets a spam threshold, the filter can route such a message to the Junk Email folder, User Quarantine, Admin Quarantine, it can deliver the message to the Inbox folder with the tags [SPAM] or permanently delete the message depending on the options enabled. If the sender is on the safe list (Safe Senders) either for the account or for the individual mailbox, spam checks will not be performed for the messages to secure their delivery. The spam threshold can also be modified in the Email Protection settings.

Email protection provides additional options for anti-phishing and anti-spoofing filtering using multiple settings for routing the phishing messages to Quarantine, Junk, Inbox folder with the tag [POSSIBLE PHISHING] or by permanently deleting it.

Email also provides Outbound filtering which will help you to control the messages sent from users on the account to external recipients by filtering the content of the outbound emails. You can set up filtering rules by creating content filters on your Outbound Email Policy.

Note: if you are unable to locate some messages, it is possible that they have failed the basic connection checks. Please contact Support or submit a Message Tracking request to find out why the messages were not delivered.

What Are Basic Connection Checks?

The following checks are called basic and are always performed:

  • Check against RBLs (Real-time Blackhole Lists) provided by CloudmarkSpamhaus, and com
  • Check for a valid fully-qualified sender's (FROM) email address
  • Check for a valid domain in the FROM address (check for a valid A or MX record)
  • Check for valid recipient addresses within your organization

If an email message does not pass one of these checks, it is not accepted by the mail servers for delivery to recipients.

Email Protection + DLP:

 Email Protection + DLP package allows managing both Inbound and Outbound email filtering.

 Inbound email filtering service includes the following features:

  • Message Tracking: run a message trace for emails that have passed through Email Protection mail filters
  • Email Reporting: create email reports for messages that have passed through Email Protection mail filters
  • Policy Management: create additional spam policies for specific mailboxes on the account. Mailboxes, Distribution Lists, and domains will be synchronized from Office 365 to HostPilot

Every account has a Default email filtering policy and it is not possible to remove it. This policy performs email filtering for the whole account and includes the following settings:

Outbound email filtering service includes the following features:

Note: all messages processed by Email Protection receive one of the predefined primary categories. Read the Knowledge Base article about Understanding Categories for more information.

For more instructions on how to configure inbound and outbound mail flow for email protection with Office 365, refer to the following articles:

Domain-based Message Authentication, Reporting & Conformance

Important: DMARC is not supported in Intermedia environment. We do not perform DMARC DNS record check, but you can configure DKIM + SPF records to pass DMARC check when sending to other providers.

You can find some information on what DMARC is here: