You are an IT administrator and wish to implement Advanced Threat Protection Safe attachments policies for two critical user groups, Sales and Marketing.
The requirements are: All mail should be scanned for malware.
For Marketing you want to implement a policy that delivers messages with attachments and then tracks what happens with detected malware.
For Sales you want to implement a policy that delivers messages immediately but replaces attachments with placeholders until Safe Attachments scanning is complete.
What should you implement?
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer: C
Monitor: Delivers messages with attachments and then tracks what happens with detected malware.
Delivery of safe messages might be delayed due to Safe Attachments scanning.
This would fit the requirement for Marketing.
Dynamics Delivery: Avoids message delays while protecting recipients from malicious files.
Enables recipients to preview attachments in safe mode while scanning is taking place.
This would fit the requirement for Sales.
Option A is incorrect.
This would stop mail with suspecting attachments from arriving.
Option B is incorrect.
This would remove suspecting attachments for Marketing, and for Sales delivery will not be immediate.
Option D is incorrect.
Monitor meets the requirements for Marketing but Replace is the incorrect choice for Sales.
Reference:
To know more about Safe attachments, please refer to the link below:
The correct answer is D. For Marketing, you select Monitor, and for Sales, you select Replace.
Explanation:
Advanced Threat Protection (ATP) Safe attachments is a feature of Microsoft 365 that helps protect against unknown malware and viruses in email attachments and files shared in SharePoint, OneDrive, and Microsoft Teams. Safe Attachments scans all incoming email attachments before they reach the intended recipients. If a malicious attachment is detected, it is removed, and the user receives a notification that the attachment was removed for security reasons.
To implement ATP Safe attachments policies for two critical user groups, Sales and Marketing, the following requirements need to be met:
All mail should be scanned for malware: This means that all incoming email messages, regardless of the user group, should be scanned for malware.
For Marketing, you want to implement a policy that delivers messages with attachments and then tracks what happens with detected malware: This means that Marketing users should receive email messages with attachments, but if malware is detected, the email should be monitored to see what happens to the attachment.
For Sales, you want to implement a policy that delivers messages immediately but replaces attachments with placeholders until Safe Attachments scanning is complete: This means that Sales users should receive email messages immediately, but if an attachment is detected, it should be replaced with a placeholder until Safe Attachments scanning is complete.
Based on these requirements, the correct policy settings to implement are:
For Marketing, select "Monitor": This setting allows email messages with attachments to be delivered to Marketing users, and if malware is detected, the email is monitored to see what happens to the attachment.
For Sales, select "Replace": This setting delivers email messages immediately to Sales users, but if an attachment is detected, it is replaced with a placeholder until Safe Attachments scanning is complete.
Therefore, the correct answer is D. For Marketing, you select Monitor, and for Sales, you select Replace.