How to set up ATP Safe Attachments policies in Office 365

End users must be protected from unknown/unwanted threats. While there are many good antivirus systems available, the need for more than one antimalware capable of providing an additional layer of security always exists. Fortunately, Office 365 Advanced Threat Protection offers few add-ons that can ensure the protection by configuring ATP Safe Attachments Policies. When configured, the feature can help determine whether an attachment sent via an email contain a malicious link.

Configure ATP Safe Attachment Policies in Office 365

In practice, at least one ATP safe attachments policy must be defined to keep protection in place. You can set up an ATP safe attachments policy using either the Office 365 Security & Compliance Center or the Exchange admin center (EAC).

Let’s configure ATP Safe Attachment Policies using the Office 365 Security & Compliance Center.

First, visit Office Protection and sign in with your work or school account. Next, under ‘Office 365 Security & Compliance Center’, move ‘Threat management’ and select ‘Safe attachments’ option.

ATP Safe Attachment Policies in Office 365

Then, click on the ‘plus’ sign. It resembles ‘New’ button.

Specify the name, description, and settings for your policy. For instance, to set up a policy called “no delays”, you need to specify the following settings:

In the Name box, type no delays. Then, in the Description box that follows it, type a description like, Delivers messages immediately and reattaches attachments after scanning.

When done, in the response section, choose the Dynamic Delivery option.

The above safe attachment policy helps delivers everyone’s messages immediately and then reattach attach them once they’re scanned

Proceeding further, in the Redirect attachment section, select the option to enable redirect and type the email address of your Office 365 administrator or security analyst who will investigate malicious attachments.

Then, in the ‘Applied To’ section, choose ‘The recipient domain is’, and then select your domain.

Choose Add, and then choose OK. Finally hit the ‘Save’ button to complete the process.

Similar to the above attachment policy, you can set up multiple ATP safe attachments policies for your organization.

Please note that all these policies will be applied in the order they’re listed on the ATP safe attachments page. Also, after configuring a policy or editing it, wait for 30 minutes to allow the policy to take effect throughout Microsoft datacenters.

For details visit

Posted by on , in Category Office with Tags
The author Hemant Saxena is a post-graduate in bio-technology and has an immense interest in following Windows, Office and other technology developments. Quiet by nature, he is an avid Lacrosse player. Creating a System Restore Point first before installing a new software, and being careful about any third-party offers while installing freeware is recommended.

One Comment

  1. Zdzich

    You forgot to add: “The ATP safe attachments features are only available in Advanced Threat Protection, available with Office 365 Enterprise E5.”

Leave a Reply

Your email address will not be published. Required fields are marked *

8 + 6 =