![decode links decode links](https://i2.wp.com/decodeingress.me/wp-content/uploads/2013/06/2014-10-01-11-57-34.jpg)
![decode links decode links](https://www.emartee.com/Images/websites/emartee.com/41671(3).jpg)
Adding users to the corresponding Azure Active Directory role in the Microsoft 365 admin center gives users the required permissions in the Microsoft 365 Defender portal and permissions for other features in Microsoft 365.For read-only access to Safe Links policies, you need to be a member of the Global Reader or Security Reader role groups.įor more information, see Permissions in the Microsoft 365 Defender portal and Permissions in Exchange Online.To create, modify, and delete Safe Links policies, you need to be a member of the Organization Management or Security Administrator role groups in the Microsoft 365 Defender portal and a member of the Organization Management role group in Exchange Online.You need to be assigned permissions before you can do the procedures in this article: To connect to standalone EOP PowerShell, see Connect to Exchange Online Protection PowerShell. To connect to Exchange Online PowerShell, see Connect to Exchange Online PowerShell. To go directly to the Safe Links page, use. You open the Microsoft 365 Defender portal at. What do you need to know before you begin? For more information, see the Use Exchange Online PowerShell or standalone EOP PowerShell to configure Safe Links policies section later in this article. In Exchange Online PowerShell or standalone EOP PowerShell, you manage the policy and the rule separately. When you remove a Safe Links policy, the safe links rule and the associated safe links policy are removed.
![decode links decode links](https://www.dxzone.com/dx32284/cw-decoder-logic.jpg)
All other settings modify the associated safe links policy. When you modify a Safe Links policy, settings related to the name, priority, enabled or disabled, and recipient filters modify the safe links rule.When you create a Safe Links policy, you're actually creating a safe links rule and the associated safe links policy at the same time using the same name for both.The difference between these two elements isn't obvious when you manage Safe Links policies in the Microsoft 365 Defender portal: The safe links rule: Specifies the priority and recipient filters (who the policy applies to).The safe links policy: Turn on Safe Links protection, turn on real-time URL scanning, specify whether to wait for real-time scanning to complete before delivering the message, turn on scanning for internal messages, specify whether to track user clicks on URLs, and specify whether to allow users to click trough to the original URL.The basic elements of a Safe Links policy are: You can configure Safe Links policies in the Microsoft 365 Defender portal or in PowerShell (Exchange Online PowerShell for eligible Microsoft 365 organizations with mailboxes in Exchange Online standalone EOP PowerShell for organizations without Exchange Online mailboxes, but with Microsoft Defender for Office 365 add-on subscriptions). This feature enables security operations (SecOps) teams to investigate potential user compromise, take corrective action, and limit costly breaches. One of the available options is to include user identifiable information in Safe Links. For instructions, see Configure global settings for Safe Links in Microsoft Defender for Office 365.Īdmins should consider the different configuration settings for Safe Links. You configure the "Block the following URLs" list in the global settings for Safe Links protection outside of Safe Links policies.