Domains are pointed directly at EOP or enhanced filtering is configured on all default connectors.

Why This Matters

If your domains point directly at Exchange Online Protection without enhanced filtering configured on all default connectors, inbound email can bypass critical anti-spam and anti-malware inspections. Attackers can exploit this gap to deliver phishing or malicious payloads directly to user inboxes. Proper configuration ensures all inbound traffic is scanned before reaching your organization.

What Aether365 Checks

Aether365 verifies that each of your Microsoft 365 domains either points directly at Exchange Online Protection or that enhanced filtering for IP allow lists is enabled on all default inbound connectors. This check appears in your Aether365 dashboard under the microsoft-365 category.