Documentation Index

Fetch the complete documentation index at: https://docs.trustifi.com/llms.txt

Use this file to discover all available pages before exploring further.

Microsoft Exchange (Office365)

  • 1 minute(s) read
Prev Next

Overview

This guide explains how to integrate Trustifi inbound and outbound protection with a Microsoft Exchange (Office365) tenant using the Office365 API. The integration enables automated synchronization of O365 groups and aliases, API-based mailbox protection, mailbox threat remediation, PowerShell-based advanced actions, internal email recall, suspicious mailbox rule detection, and additional Trustifi module functionality.

Integration Capabilities

Once connected, this integration provides:

  • Automated synchronization of O365 groups and aliases for improved deliverability and accurate licensing

  • API-based protection on user mailboxes

  • Scanning of existing emails in user mailboxes and mitigation of threats through Threat Response

  • Advanced mailbox actions through PowerShell integration

  • Recall of sent emails from internal recipient mailboxes

  • Detection of suspicious mailbox rules

  • Additional Trustifi module capabilities

Step-by-Step Integration Guide

Note!
Ensure you have Global Admin permissions in your Office365 tenant before beginning setup.

Step 1: Navigating to the Microsoft Exchange Integration in Trustifi

Sign in to the Trustifi admin portal.

Navigate to the "Integrations" tab from either:

Click on the "Microsoft Exchange" section to open the integration settings.


Step 2: Signing in as Global Admin and Connecting

In the "Microsoft Exchange Integration" pop-up window, click "Connect".


Sign in using your global admin account for the Office365 tenant.

Step 3: Approving Required Permissions

After signing in, approve the access permissions requested by Trustifi.


Approval is required only once and applies to all mailboxes in the organization.

Allow 1–2 minutes for the API connection to complete.
Do not close the pop-up during this time.

A confirmation notification appears upon successful connection.

Advanced Permissions for Account Takeover Protection

Trustifi can be granted advanced permissions to support the "Account Takeover Protection" module. These permissions allow Trustifi to:

  • Monitor and notify about newly created suspicious mailbox rules (for example, forwarding rules)

  • Reset user mailbox passwords if account takeover is suspected

  • Disable user mailbox accounts if account takeover is suspected

To enable advanced permissions:

Click "Grant Advanced Permissions".


Sign in with your global admin account and approve the additional permissions.
After granting permissions, the button text changes to "Update Permissions".

Use "Update Permissions" in the future if Trustifi introduces new functionality that requires updated permissions.

Selecting a Cloud API Endpoint

You may select a specific Office365 API endpoint depending on your environment and compliance needs.

Available endpoint use-cases include:

  • Compliance with EU guidelines (EU endpoints)

  • Exchange hybrid deployments

  • Connections from US government facilities

To select an endpoint:

Click the menu under "Cloud API endpoint".
Choose your preferred endpoint from the list.