Skip to main content
Skip table of contents

Outlook client and server API compatibility of the Phishing Report Button

Read this article in: Deutsch

Compatibility Matrix

The Outlook add-in for the Phishing Report Button uses Exchange Web Services (EWS) or the Outlook Graph API to retrieve data from the user’s mailbox. The following sections state the availability of the APIs for all supported Exchange server/Outlook client combinations and their effect on how reported email are forwarded.

Please note: For all Exchange Online environments (including hybrid deployments) we can only support Graph API and for all Exchange On-Premise servers we can only support EWS.

Windows

Windows Outlook clients

MS 3651

Outlook 2021

Outlook
2013 - 2019

Server

Exchange Online (cloud)

Graph

Graph

Graph4

Exchange hybrid2

Graph

Graph

Graph4

Exchange on-premise

EWS

EWS 

EWS 

MacOS

MacOS Outlook clients

Office on Mac (classic UI)

Office on Mac (new UI)

Server

Exchange Online (cloud)

Graph

Graph

Exchange hybrid2

Graph

Graph

Exchange on-premise

EWS 

EWS 

Other

Outlook clients

Android

iOS

Web Browser

Mobile browser

Exchange Online

Exchange on-premise

Server

Exchange Online (cloud)

Graph

Graph

Graph

Not supported

Not supported

Exchange hybrid2

Graph

Graph

Graph

Not supported

Not supported

Exchange on-premise

Not supported

Not supported

Not supported

EWS

Not supported

Differences in the email report via EWS and Graph

It is important to understand the impact using EWS vs Graph has on the format in which reported emails are forwarded to the inbox you specify. Email reports can be provided as an .eml file or in a more parsed file format called “split mode”. Depending on the available API and the chosen configuration, the two formats will be appear differently as shown below.

via Graph

via EWS

.eml mode

  • mail.eml

  • mail.eml

    • for emails greater than 500 kB the add-in automatically switches to split mode

Split mode

  • body.html

  • headers.txt

  • All attachments as the original files 3

  • body.html

  • headers.txt

  • attachments.txt 3

    • contains information about the attachment’s name, size, type, isInline (file embedded in email vs separate attachment)


1 Microsoft Office 365 subscription

2 Connected to Exchange Online (hybrid deployment, Mailboxes synced or managed by Microsoft)

3 If the email contains attachments

4 Please note: In Outlook 2013–2019, when users open the Phishing Report button for the first time, they’ll be prompted via a pop-up to sign in to their email - this only needs to be done once. For all future uses, the same pop-up will still appear but users will be automatically signed in within a few seconds. This behaviour is due Outlook 2013–2019 not supporting Microsoft Single Sign-On (SSO).

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.