Setting the configurations for your Microsoft Integration
Login Tracking
Enabling this setting will allow CultureAI to continuously monitor logins to Microsoft products by all your employees, detecting irregular logins and providing you an insight to the software versions within your company.
This setting contributes to the following behaviours;
Device Tracking
Enabling this setting will allow CultureAI to scan Microsoft Account Linked & Microsoft Intune device lists for devices used by employees, to detect out of date , non compliant or jailbroken devices that are in use.
This setting contributes to the following behaviours;
MFA Tracking
Enabling this setting will allow CultureAI to continuously scan Microsoft accounts with email addresses matching employees active in CultureAI, and will flag if the Microsoft account is MFA enabled, or not.
This setting will contribute to the following behaviours;
- Accounts without MFA - Click here to view
Outlook Reporting Integration
If you'd like to sync reports made via the in-built Outlook reporting button to CultureAI, enabling this setting will allow you to do so.
Once enabled, you may see a "Fix Permissions" button next to your integration. Click this, and you will be taken to the permissions confirm screen to re-confirm the permissions for CultureAI to Microsoft.
If you don't click this, your integration may stop working.
You may also need to set-up some extra settings in your MS defender;
-
Navigate to this page in Microsoft Defender https://security.microsoft.com/securitysettings/userSubmission
-
Locate "Reported message destinations" section
-
Set "Send reported messages to" to "Microsoft and my reporting mailbox"
-
Specify said mailbox in the "Add an exchange online mailbox to send reported messages to" input
-
Use an existing email inbox. You will not need to keep track of this inbox, but it will receive copies of all phishing reports of your users. It should look like the below;
