Outlook client and server API compatibility of the Phishing Report Button
Read this article in: Deutsch
Compatibility Matrix
The Outlook add-in for the Phishing Report Button uses Exchange Web Services (EWS) or the Outlook Graph API to retrieve data from the user’s mailbox. The following sections state the availability of the APIs for all supported Exchange server/Outlook client combinations and their effect on how reported email are forwarded.
Please note: For all Exchange Online environments (including hybrid deployments) we can only support Graph API and for all Exchange On-Premise servers we can only support EWS.
Windows
Windows Outlook clients | ||||
MS 3651 | Outlook 2021 | Outlook | ||
Server | Exchange Online (cloud) | Graph | Graph | Graph4 |
Exchange hybrid2 | Graph | Graph | Graph4 | |
Exchange on-premise | EWS | EWS | EWS |
MacOS
MacOS Outlook clients | |||
Office on Mac (classic UI) | Office on Mac (new UI) | ||
Server | Exchange Online (cloud) | Graph | Graph |
Exchange hybrid2 | Graph | Graph | |
Exchange on-premise | EWS | EWS |
Other
Outlook clients | ||||||
Android | iOS | Web Browser | Mobile browser | |||
Exchange Online | Exchange on-premise | |||||
Server | Exchange Online (cloud) | Graph | Graph | Graph | Not supported | Not supported |
Exchange hybrid2 | Graph | Graph | Graph | Not supported | Not supported | |
Exchange on-premise | Not supported | Not supported | Not supported | EWS | Not supported |
Differences in the email report via EWS and Graph
It is important to understand the impact using EWS vs Graph has on the format in which reported emails are forwarded to the inbox you specify. Email reports can be provided as an .eml file or in a more parsed file format called “split mode”. Depending on the available API and the chosen configuration, the two formats will be appear differently as shown below.
via Graph | via EWS | |
---|---|---|
.eml mode |
|
|
Split mode |
|
|
1 Microsoft Office 365 subscription
2 Connected to Exchange Online (hybrid deployment, Mailboxes synced or managed by Microsoft)
3 If the email contains attachments
4 Please note: In Outlook 2013–2019, when users open the Phishing Report button for the first time, they’ll be prompted via a pop-up to sign in to their email - this only needs to be done once. For all future uses, the same pop-up will still appear but users will be automatically signed in within a few seconds. This behaviour is due Outlook 2013–2019 not supporting Microsoft Single Sign-On (SSO).