Activating Office 365 Mail
To protect Office 365 Mail, Avanan uses Avanan Cloud Security Platform - Emails V2 enterprise application that is automatically added to your Microsoft Azure cloud platform.
As a prerequisite to activate Office 365, make sure you have these:
-
You are a user with Privileged Role Administrator role or higher permissions, or you have the credentials of such a user.
-
You have the minimum supported SaaS license. See Minimum License Requirements to Activate SaaS Applications.
-
If some mailboxes are on an on-premises Exchange server, see Appendix H: Activating Office 365 Mail in Hybrid Environments.
-
When onboarding, Avanan assumes the Exchange Administrator role. To ensure successful onboarding, do not change the default permissions assigned to the Exchange Administrator role.
Note:If you modify the default permissions of Exchange RBAC role groups or the Microsoft Entra ID role permissions assigned to the Exchange Administrator role, the system does not support onboarding, and it may fail.
- If another Avanan tenant is currently connected to your Microsoft 365 account, all security settings in the Check Point Portal override the existing tenant's settings and become the only protection for that Microsoft 365 account. If you want to manage different parts of the Microsoft 365 account from two tenants, see Connecting Multiple Portals to the Same Microsoft 365 Account.
To activate Office 365 Mail:
Now, the Office 365 Mail SaaS is enabled and monitoring begins immediately.

To scan auto-forwarded messages through Microsoft 365, contact Avanan Support.
By default, Monitor only mode is assigned for all the SaaS applications you connect to. This allows you to immediately see the value that Avanan brings as it recognizes security incidents that occurred before on your SaaS platform. To configure email protection, see Threat Detection Policy.


