To start scanning emails using Auditor by Securly you would need to create a new journal rule in Exchange that would forward emails to the Auditor engine.
Before you begin the setup please ensure that you have an Exchange Online license.
To set up Auditor:
- Login to https://admin.microsoft.com with your Admin credentials.
- Expand the navigation menu on the left and scroll down to select ‘Exchange.’
- Navigate to Compliance management > Journal rules
- To create a new journal rule click the ‘+’ sign. This will launch a new journal rule pop-up.
- Depending upon your regional cluster use one of the following email IDs in the ‘Send journal reports to’ field. The email ID for your regional cluster will also be displayed to you on the setup screen.
US East: email@example.com
US West: firstname.lastname@example.org
EU West: email@example.com
US East2: firstname.lastname@example.org
- Input a unique name for your new journal rule in the ‘Name’ field.
- Select ‘Apply to all messages’ from the drop-down menu for the ‘If the message is sent to or received from…’ field.
- Select ‘All messages’ from the drop-down menu for the ‘Journal the following messages…’ field.
- Click Save.
This completes the technical aspect of the Auditor setup in Office 365.
The Securly setup process will then ask you to provide a ‘Notification Email’ where you would receive all the email alerts that Auditor sends for flagged activities.
As a final step, a test email with disturbing content will be sent to a test email ID you provide. This test email will be displayed on your Auditor dashboard indicating that Auditor has been installed successfully and monitoring for flagged activity has started.
Check out the installation video here.