Cloudflare Docs
Cloudflare Zero Trust
View GitHub RSS feed
Edit this page on GitHub
Set theme to dark (⇧+D)

Outlook

The Outlook integration detects a variety of data loss prevention, account misconfiguration, and user security risks in an integrated Microsoft 365 account that could leave you and your organization vulnerable.

​​ Integration prerequisites

​​ Integration permissions

Refer to Microsoft 365 integration permissions for information on which API permissions to enable.

​​ Security findings

The Outlook integration currently scans for the following findings, or security risks. Findings are grouped by category and then ordered by severity level.

To stay up-to-date with new CASB findings as they are added, bookmark this page or subscribe to its RSS feed.

​​ Calendar sharing

Get alerted when calendars in your Microsoft 365 account have their permissions changed to a less secure setting.

FindingSeverity
Calendar shared externallyLow

​​ Email administrator settings

Discover suspicious or insecure email configurations in your Microsoft domain. Missing SPF and DMARC records make it easier for bad actors to spoof email, while SPF records configured to another domain can be a potential warning sign of malicious activity.

FindingSeverity
Microsoft Domain SPF Record Allows Any IP AddressHigh
Microsoft Domain SPF Record Not PresentMedium
Microsoft Domain DMARC Record Not PresentMedium
Microsoft Domain DMARC Not EnforcedMedium
Microsoft Domain DMARC Not Enforced for SubdomainsMedium
Microsoft Domain DMARC Only Partially EnforcedMedium
Microsoft Domain Not VerifiedMedium
App Certification Expires in 90 Days or SoonerLow

​​ Email forwarding

Get alerted when users set their email to be forwarded externally. This can either be a sign of unauthorized activity, or an employee unknowingly sending potentially sensitive information to a personal email.

FindingSeverity
Active Message Rule Forwards Externally As AttachmentLow
Active Message Rule Forwards ExternallyLow
Active Message Rule Redirects ExternallyLow