Automatic Forwarding to External Domains SHALL Be Disabled

Description

This control is intended to prevent bad actors from using client-side forwarding rules to exfiltrate data to external recipients.

Policy

Automatic forwarding to external domains SHALL be disabled

Licensing Considerations

Any tenant with an Exchange Online license can configure this setting.

Set Up Instructions

To disallow automatic forwarding to external domains:

Sign in to the Exchange admin center.
Select Mail flow, then Remote domains.
Select Default.
Under Email reply types, select Edit reply types.
Clear the checkbox next to Allow automatic forwarding, then click Save.

End-User Impact

Level: Low

With this setting enabled, users will be prevented from setting up any auto-forwarding rules to external domains.

Tips:

None Curently

PowerShell Scripts

Block Auto FW: https://github.com/msp4msps/Security/blob/master/Block%20Auto-FW.ps1
Block Auto FW Multi-Tenant: https://github.com/msp4msps/Security/blob/master/Block%20Auto-FW_All%20Customers.ps1

Videos

PreviousExchange NextSender Policy Framework SHALL Be Enabled

Last updated 1 year ago