To enable the use of the Phishing button, you must deploy the appropriate add-in.
Note
Read/write mail access is required for our analysts to quarantine and remediate on your behalf.
Prerequisites
- You must be a Microsoft 365 administrator to complete this process.
-
You must first download the necessary file in Workbench, as you will need its contents to complete the setup.
- Go to Organization Settings > Your Organizations > scroll down to the Phishing tab.
- Look for the file called Manifest.zip.
Deploy Add-in Using the 365 Admin Center
- Navigate to the Microsoft 365 admin center: https://admin.microsoft.com/AdminPortal.
-
In the navigation menu on the left, expand Settings and select Integrated Apps.
-
Near the top of the page, select Add-Ins.
-
In the tab that appears, select Deploy Add-in.
-
Select Next and then select Upload custom apps.
- In the Deploy a new add-in section, do the following:
- Select I have the manifest file (.xml) on this device.
- Select Choose File.
- Find the manifest file.
-
Select the file, and then select Upload.
- In the Configure add-in section, do the following:
- Under Assign Users, decide to which users to deploy the add-in.
- Under Deployment Method, select Fixed (Default).
-
Select Deploy.
The deployment can take up to a few minutes. After it's complete, you see a success message.
After completion, you see the Expel for Phishing add-in in the list of installed add-ins. Microsoft notes that it can take up to 12 hours for the add-in to propagate to all users but if you reached this point, the installation is complete.