Threat Detection Policy

Threat Detection policy rules are designed to prevent malicious emails (phishing, spam, malware etc.) from getting to your end-users mailbox or alternatively prevent them from being sent by your end-users to external parties.

Detect and Remediate mode and Prevent (Inline) mode offers three separate workflows to manage malware and phishing attacks. In Detect and Remediate mode the workflow scans the emails after delivery of email to the user and in Prevent (Inline) mode, the workflow scans the emails prior to delivery to the user.

Note - Changing the policy protection mode from Detect or Detect and Remediate mode to Prevent (Inline) mode takes time to start protecting in Prevent (Inline) mode. It could take up to two hours, depending on the number of protected users in the Harmony Email & Collaboration account.

In this chapter:

Threat Detection Policy for Incoming Emails
Threat Detection Policy for Outgoing Emails
Threat Detection Policy Workflows
Notification Settings
Quarantined Emails - End-User Experience
- Customizing End-User Experience