Microsoft Defender for Office 365: Evaluations in audit mode
We are adding several new capabilities to our audit mode, which is used to evaluate Defender for Office 365 through a trial or a subscription that includes Defender for Office 365 Plan 2. 1) Security Administrators can now turn on/off specific evaluation policies. 2) You can now evaluate domain and user impersonation protection in audit mode where no action on messages will be taken. 3) If your organization’s MX is pointed to a 3rd party email filtering provider and you want to evaluate spoof filtering in Defender for Office 365, you will be able to do so in audit mode where no action, such as send to junk/quarantine, on messages will be taken.