O365 Email Anti-Malware Policy Modification Procedure

This admin procedure will provide background information on modifying an existing anti-malware threat policy.

Anti-Malware Threat Policy

The purpose of an anti-malware policy is to prevent and address computer virus, worm, spyware, malware, and other types of malicious software. The policy is intended to help prevent damage to user applications, data, files, and hardware. Anti-malware policies control the settings and notification options for malware detections.

Procedure Scope: Administrators

Required Group Membership: Admin.EmailSecurity

Modifying an Anti-Malware Threat Policy

1. Navigate to Anti-Malware – O365 Defender, locate the policy you wish to alter.
   
2. Upon opening the policy, all the information of the policy will be displayed. 3 points of interest will be available to Edit. You can modify the sections as needed.
   1. Description: Adjust the description of the policy; a non-functional element that provides background information on the scope of what the policy is trying to accomplish.
      
   2. Users and Domains: Specifies the users, groups, or owned domains that this policy will be applied to; additionally, you can also specify exclusions if necessary.
      
   3. Protection Settings: Specifies the filters that will be applied to emails for a compliance match as well as how messages will be handled when they fail this threat policy check.
      
3. Regardless of the section alterations being made, the same procedure applies once the necessary changes have been made select Save.
   
4. Once all items have been reviewed, select Close to finalize modifications made to the policy.
   

You're Finished!