Outlook client and server API compatibility of the Phishing Report Button

Read this article in: Deutsch

Compatibility Matrix

The Outlook add-in for the Phishing Report Button uses Exchange Web Services (EWS) or the Outlook Graph API to retrieve data from the user’s mailbox. The following sections state the availability of the APIs for all supported Exchange server/Outlook client combinations and their effect on how reported email are forwarded.

Please note: For all Exchange Online environments (including hybrid deployments) we can only support Graph API and for all Exchange On-Premise servers we can only support EWS.

Windows

MacOS

Other

Differences in the email report via EWS and Graph

It is important to understand the impact using EWS vs Graph has on the format in which reported emails are forwarded to the inbox you specify. Email reports can be provided as an .eml file or in a more parsed file format called “split mode”. Depending on the available API and the chosen configuration, the two formats will be appear differently as shown below.

¹ _{Microsoft Office 365 subscription}

² _{Connected to Exchange Online (hybrid deployment, Mailboxes synced or managed by Microsoft)}

³ _{If the email contains attachments}

_{4 Please note: In Outlook 2013–2019, when users open the Phishing Report button for the first time, they’ll be prompted via a pop-up to sign in to their email - this only needs to be done once. For all future uses, the same pop-up will still appear but users will be automatically signed in within a few seconds. This behaviour is due Outlook 2013–2019 not supporting Microsoft Single Sign-On (SSO).}