Search Bluebook IT Support Website

Mimecast – Impersonation Protection Policies

Posted on | By TNGardiner

To implement an Impersonation Protection policy requires three steps:-

  1. Creating the Impersonation Protection Policy
  2. Defining a group of internal users likely to be attacked by Impersonation emails
  3.  Applying the policy to this group

Steps

  1. Creating the Impersonation Policy
    1. The policy is defined under Administration, Gateway, Policies.
    2. Then in the dropdown box under Definition – choose Impersonation Protection
    3. Then select New Definition (or amend the existing policy “SSL Impersonation Protection Policy”)
    4. Use the existing policy as a template for any new policy
    5. Save and Exit
  2. Defining a Group
    1. To create a Profile Group – go to Administration, Directory, Profile Group
      1. A new “Group” is created by clicking on the plus sign attached to the “Root” envelope. A sub-folder is created called New Folder
      2. Click on the label “New Folder”. Notice a window appear above the Root called “Edit Group” with the name New Folder in the window. You can change the folder name here to something more relevant – such as Impersonation Targets
      3. Now click on the label Impersonation Targets in the subfolder. Above the right window select Build – Add email addresses. Add the addresses of the users to be in this group. It is unlikely that all users will be targeted by impersonation emails as they are usually sent to those who can enact fund transfers. So the addresses to add here are Finance, Finance Officer, Directors, etc.
      4. After adding each email address – click Save and Exit
  3. Apply the policy
    1. To apply the recently created Impersonation Protection Policy definition, go to Administration, Gateway Policies and scroll down the left hand column under “Policy Name” to Impersonation Protection
    2. Select and then either create a New Policy or click on an existing
    3. Select in the box “Option” the policy (in the existing policy this is called “SSL Impersonation Protection Policy”)
    4. In the “Applies” to under “Email Groups” choose the group you just created “Impersonation Targets”
    5. Save and Exit
Category: Mimecast | Tag: , ,