Skip to content

Commit aa9e15d

Browse files
MithunRathinamMithunRathinam
authored
Update how-policies-and-protections-are-combined.md
Update.
1 parent 8bef384 commit aa9e15d

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

defender-office-365/how-policies-and-protections-are-combined.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -105,6 +105,7 @@ It's important to understand how user allows and blocks, tenant allows and block
105105
- After the filtering stack determines a verdict, only then are tenant policies and their configured actions evaluated.
106106
- If the same email address or domain exists in a user's Safe Senders list and Blocked Senders list, the Safe Senders list takes precedence.
107107
- If the same entity (email address, domain, spoofed sending infrastructure, file, or URL) exists in an allow entry and a block entry in the Tenant Allow/Block List, the block entry takes precedence.
108+
- If a file type is used in [Common attachments filter in anti-malware policies](anti-malware-protection-about.md#common-attachments-filter-in-anti-malware-policies), allowing the same file in the Tenant Allow/Block list or Exchange Transport rules does not override the verdict.
108109

109110
### User allows and blocks
110111

0 commit comments

Comments
 (0)