Auto-forward KnowBe4 on O365 phishing emails to Radiant Security.
Overview
Radiant Security analyzes phishing emails reported by end users for malicious indicators. Each email is evaluated against a series of questions or actions that determine if an email is benign or malicious.
In order to analyze these emails, Radiant Security needs access to the original email reported by end users. We do this by forwarding emails from your dedicated in-house phishing mailbox to a mailbox on our side.
This guide will walk you through how to set up KnowBe4 to automatically forward user-reported phishing emails in O365 to Radiant Security for triage and investigation.
Prerequisites
This configuration requires that you are an administrator of the KnowBe4 account.
- In KnowBe4, navigate to Account Integrations > Phish Alert.
- Edit the PAB configuration for Send Non-Simulated Emails to: and add
alerts@report.radiantsecurity.ai - Click Save Phish Alert Settings to save the changes.
- Download the PAB manifest for Microsoft products (PhishAlertManifest.xm) manifest file.
- Edit the manifest file, incrementally change the Version number and save the file.
- Login into Microsoft 365 admin center.
- Expand … Show All > Settings > Integrated Apps
- Click on the existing Phish Alert instance and select Update add-in file.
- Select the radio button for Upload manifest file (.xml) from device and select the latest manifest file that you downloaded previously.
- Save the changes.
Note: You will need to allow some time for the new Phish Alert Button configuration to update across your user’s inboxes.
We value your opinion. Did you find this article helpful? Share your thoughts by clicking here or reach to our Product and Customer Success teams at support@radiantsecurity.ai
Last updated: 2024-08-23