Security & compliance

Protect from malicious files

Your browser does not support video. Install Microsoft Silverlight, Adobe Flash Player, or Internet Explorer 9.
Art with text: Admin center is changing, See https://aka.ms/aboutM365Preview.

Office 365 ATP, or Advanced Threat Protection, helps protect your business against files that contain malicious content in Outlook, OneDrive, SharePoint, and Teams.

Follow these steps to set up or modify Office 365 ATP safe attachments.

  1. Go to the admin center, and select Setup.

  2. Scroll down to Increase protection from advanced threats. Select View > Manage > ATP safe attachments.

  3. Select your safe attachments rule, and then choose the Edit icon.

  4. Select settings, and then verify that Block is selected.

  5. Scroll down. Choose Enable redirect, and enter your email address or the address of the person you want to review the blocked attachments.

  6. Select applied to, and then select your domain name.

  7. Choose any additional domains you own (such as your onmicrosoft.com domain) that you would like the rule applied to. Select add > OK.

  8. Select Save.

Your ATP safe attachments rule has been updated.

Now that protection is in place, you won't be able to open a malicious file from Outlook, OneDrive, SharePoint, or Teams. Affected files will have red shields next to them. If someone attempts to open a blocked file, they'll receive a warning message.

After your policy has been in place for a while, visit the Reports page to see what has been scanned.

Office 365 ATP, or Advanced Threat Protection, helps protect your business against files that contain malicious content in Outlook, OneDrive, SharePoint, and Teams.

Let's take a look at how to set up or modify Office 365 ATP safe attachments.

From the Microsoft 365 admin center, select Setup.

Scroll down to Increase protection from advanced threats. Select View, Manage,and then ATP safe attachments.

Select your safe attachments rule, and then choose Edit.

Select settings, and verify that Block is selected.

Scroll down. Choose Enable redirect, and enter your email address or the address of the person you want to review the blocked attachments.

Select applied to, and then your domain name. Choose any additional domains you own, such as your onmicrosoft.com domain, that you would like the rule applied to.

Select add, OK, and then Save.

Your ATP safe attachments rule has been updated.

Now that protection is in place, you won't be able to open a malicious file from Outlook, OneDrive, SharePoint, or Teams. Affected files will have red shields next to them. If someone attempts to open a blocked file, they'll receive a warning message.

After your policy has been in place for a while, visit the Reports page to see what has been scanned.

Expand your Office skills
Explore training
Get new features first
Join Office Insiders

Was this information helpful?

Thank you for your feedback!

Thank you for your feedback! It sounds like it might be helpful to connect you to one of our Office support agents.

×