Microsoft Security Group

Microsoft Mail-Enabled Security Group

The Dropzone platform can ingest email and phishing alerts from cross-organizational email accounts. If you wish to restrict the access of Dropzone's analysis, you can create a dedicated mail-enabled security group and create an Application Access Policy which restricts access to a finite and enumerated list of mailboxes

Create a Mail-Enabled Security Group

• Navigate to your Microsoft Exchange Admin Center

• In the left sidebar, navigate to Recipients > Groups

• Click "Add a group"

• Select "Mail-enabled security," then click "Next"

• Name the group something memorable, such as "DropzoneAllowedInboxes," then click "Next"

• Click "+ Assign Owners" and assign your desired owner from the list, then click "Add"

• Click "+ Add Members" and add your desired members. Members will receive all emails sent to this email address, and will be able to send emails to it for Dropzone to analyze

• In the "Edit Settings" section, create a memorable group email address, such as "[email protected]"

• If you want people outside of your organization to be able to send emails to the group, check the box under "Communication"

• For added security, you may check the box under "Approval" to require owner permission to join the group

• Click "Next," then click "Create Group"

See Microsoft's documentation for more information

Create an Application Access Restriction Policy

• Follow steps on the Microsoft Integrations page to create a new application in Microsoft Entra Admin Center (or use an existing application)

• Record your Client ID

• Navigate to your Exchange Admin Center

• In the upper right, click the terminal icon

• If you are not on Powershell, click "Switch to Powershell"

• Connect to Exchange Online by inputting the following code:

Connect-ExchangeOnline

• Input the following restriction policy