Skip to content

Set up Phish Threat for M365 environments

You can set up Phish Threat with M365 to handle your Phish Threat campaigns.

Sophos Phish Threat IP addresses and domain names must be included in the allow list to make sure that your phishing campaigns are delivered successfully.


We recommend you turn on M365 Direct Delivery. In this way, you don't have to manually add and configure the Phish Threat domains, URLs, and IP addresses to M365's allow list. To turn on M365 Direct Delivery, see M365 Direct Delivery.

For more information on setting up Phish Threat for M365, see the following pages: