The PhishER Blocklist feature integrates with your Microsoft 365 mail server to help you to prevent malicious or spam emails from reaching your users’ inboxes. After you enable the PhishER Blocklist, you will need to assign the Exchange Administrator role to the PhishER Blocklist application to authenticate it. You can assign the role in your Microsoft Entra or Microsoft Azure console.
Assigning the Role in Microsoft Entra
To assign the Exchange Administrator role to the application in Microsoft Entra, follow the steps below:
- Log in to the Microsoft Entra admin center using your admin credentials. You must have at least a Privileged Authentication Administrator role.
- Navigate to Microsoft Entra ID > Identity > Roles & admins > Roles & admins to open the Roles and administrators | All roles window.
- Click the Exchange Administrator role name to open the Exchange Administrator | Assignments window.
- Click Add assignments to open the Add assignments window.
- Under the Membership subtab’s Select member(s) section, click No member selected to open the Select a member pop-up window.
- In the pop-up window that opens, enter "PhishER Blocklist" in the search bar to display the PhishER Blocklist application.
- Select the check box next to the PhishER Blocklist application and click Select to return to the Add assignments window. The application will display under the Selected member(s) section.
Note:Depending on your version of Microsoft Entra, you may see different settings for steps 5-7. If the Add assignments pop-up window displays a search bar, enter "PhishER Blocklist" in the search bar. Select the check box next to the PhishER Blocklist application and click Add to return to the Add assignments window. Skip the remaining steps.
- Under the Setting subtab’s Assignment type section, select Active.
- Under the Maximum allowed assignment duration is permanent section, select the Permanently assigned check box.
- In the Enter justification field, enter a reason for your selected duration.
- Click Assign.
Assigning the Role in Microsoft Azure
To assign the Exchange Administrator role to the application in Microsoft Azure, follow the steps below:
- Log in to the Microsoft Portal.Azure admin center using your admin credentials. You must have at least a Privileged Authentication Administrator role.
- In the Azure Services Dashboard that opens, click Microsoft Entra ID roles and administrators to open the All roles window. If the icon is not displayed, enter "Microsoft Entra ID roles and administrators" in the search bar.
- Click the Exchange Administrator role name to open the Exchange Administrator | Assignments window.
- Click Add assignments to open the Add assignments window.
- Under the Membership subtab’s Select member(s) section, click No member selected to open the Select a member pop-up window.
- In the pop-up window that opens, enter "PhishER Blocklist" in the search bar to display the PhishER Blocklist application.
- Select the check box next to the PhishER Blocklist application and click Select to return to the Add assignments window. The application will display under the Selected member(s) section.
Note:Depending on your version of Microsoft Azure, you may see different settings for steps 5-7. If the Add assignments pop-up window displays a search bar, enter "PhishER Blocklist" in the search bar. Select the check box next to the PhishER Blocklist application and click Add to return to the Add assignments window. Skip the remaining steps.
- Under the Setting subtab’s Assignment type section, select Active.
- Under the Maximum allowed assignment duration is permanent section, select the Permanently assigned check box.
- In the Enter justification field, enter a reason for your selected duration.
- Click Assign.