Merge pull request #10799 from MicrosoftDocs/DMARCQ-chrisda

chrisda · web-flow · commit 46e27f207e4a · 2023-05-03T17:20:55.000-07:00
DMARCQ-chrisda to Main
diff --git a/exchange/exchange-ps/exchange/New-AntiPhishPolicy.md b/exchange/exchange-ps/exchange/New-AntiPhishPolicy.md
@@ -25,6 +25,8 @@ New-AntiPhishPolicy [-Name] <String>
  [-AdminDisplayName <String>]
  [-AuthenticationFailAction <SpoofAuthenticationFailAction>]
  [-Confirm]
+ [-DmarcQuarantineAction <SpoofDmarcQuarantineAction>]
+ [-DmarcRejectAction <SpoofDmarcRejectAction>]
  [-Enabled <Boolean>]
  [-EnableFirstContactSafetyTips <Boolean>]
  [-EnableMailboxIntelligence <Boolean>]
@@ -40,6 +42,7 @@ New-AntiPhishPolicy [-Name] <String>
  [-EnableViaTag <Boolean>]
  [-ExcludedDomains <MultiValuedProperty>]
  [-ExcludedSenders <MultiValuedProperty>]
+ [-HonorDmarcPolicy <Boolean>]
  [-ImpersonationProtectionState <ImpersonationProtectionState>]
  [-MailboxIntelligenceProtectionAction <ImpersonationAction>]
  [-MailboxIntelligenceProtectionActionRecipients <MultiValuedProperty>]
@@ -159,6 +162,56 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -DmarcQuarantineAction
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The DmarcQuarantineAction parameter specifies the action to take when a message fails DMARC checks and the sender's DMARC policy is `p=quarantine`. Valid values are:
+
+- MoveToJmf: Deliver the message to the recipient's mailbox, and move the message to the Junk Email folder.
+- Quarantine: This is the default value. Move the message to quarantine.
+
+This parameter is meaningful only when the HonorDmarcPolicy parameter is set to the value $true.
+
+```yaml
+Type: SpoofDmarcQuarantineAction
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -DmarcRejectAction
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The DmarcQuarantineAction parameter specifies the action to take when a message fails DMARC checks and the sender's DMARC policy is `p=reject`. Valid values are:
+
+- Quarantine: This is the default value. Move the message to quarantine.
+- Reject: Reject the message.
+
+This parameter is meaningful only when the HonorDmarcPolicy parameter is set to the value $true.
+
+```yaml
+Type: SpoofDmarcRejectAction
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -Enabled
 This parameter is reserved for internal Microsoft use.
 
@@ -487,6 +540,29 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -HonorDmarcPolicy
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The HonorDmarcPolicy enables or disables using the sender's DMARC policy to determine what to do to messages that fail DMARC checks. Valid values are:
+
+- $true: If a message fails DMARC checks and the sender's DMARC policy is `p=quarantine`, the DmarcQuarantineAction parameter specifies the action to take on the message. If a message fails DMARC checks and the sender's DMARC policy is `p=reject`, the DmarcRejectAction parameter specifies the action to take on the message.
+- $false: This is the default value. If the message fail DMARC checks, ignore the action in the sender's DMARC policy. The AuthenticationFailAction parameter specifies the action to take on the message.
+
+```yaml
+Type: Boolean
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -ImpersonationProtectionState
 This setting is part of impersonation protection and is only available in Microsoft Defender for Office 365.
 
diff --git a/exchange/exchange-ps/exchange/Set-AntiPhishPolicy.md b/exchange/exchange-ps/exchange/Set-AntiPhishPolicy.md
@@ -25,6 +25,8 @@ Set-AntiPhishPolicy -Identity <AntiPhishPolicyIdParameter>
  [-AdminDisplayName <String>]
  [-AuthenticationFailAction <SpoofAuthenticationFailAction>]
  [-Confirm]
+ [-DmarcQuarantineAction <SpoofDmarcQuarantineAction>]
+ [-DmarcRejectAction <SpoofDmarcRejectAction>]
  [-Enabled <Boolean>]
  [-EnableFirstContactSafetyTips <Boolean>]
  [-EnableMailboxIntelligence <Boolean>]
@@ -40,6 +42,7 @@ Set-AntiPhishPolicy -Identity <AntiPhishPolicyIdParameter>
  [-EnableViaTag <Boolean>]
  [-ExcludedDomains <MultiValuedProperty>]
  [-ExcludedSenders <MultiValuedProperty>]
+ [-HonorDmarcPolicy <Boolean>]
  [-ImpersonationProtectionState <ImpersonationProtectionState>]
  [-MailboxIntelligenceProtectionAction <ImpersonationAction>]
  [-MailboxIntelligenceProtectionActionRecipients <MultiValuedProperty>]
@@ -162,6 +165,56 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -DmarcQuarantineAction
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The DmarcQuarantineAction parameter specifies the action to take when a message fails DMARC checks and the sender's DMARC policy is `p=reject`. Valid values are:
+
+- MoveToJmf: Deliver the message to the recipient's mailbox, and move the message to the Junk Email folder.
+- Quarantine: This is the default value. Move the message to quarantine.
+
+This parameter is meaningful only when the HonorDmarcPolicy parameter is set to the value $true.
+
+```yaml
+Type: SpoofDmarcQuarantineAction
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -DmarcRejectAction
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The DmarcRejectAction parameter specifies the action to take when the message is detected as spoofing and the policy action value in the DMARC TXT record for the domain is `p=quarantine`. Valid values are:
+
+- Quarantine: This is the default value. Move the message to quarantine.
+- Reject: Reject the message.
+
+This parameter is meaningful only when the HonorDmarcPolicy parameter is set to the value $true.
+
+```yaml
+Type: SpoofDmarcRejectAction
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -Enabled
 This parameter is reserved for internal Microsoft use.
 
@@ -490,6 +543,29 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -HonorDmarcPolicy
+**Note**: This setting is currently in Preview.
+
+This setting is part of spoof protection.
+
+The HonorDmarcPolicy enables or disables using the sender's DMARC policy to determine what to do to messages that fail DMARC checks. Valid values are:
+
+- $true: If a message fails DMARC checks and the sender's DMARC policy is `p=quarantine`, the DmarcQuarantineAction parameter specifies the action to take on the message. If a message fails DMARC checks and the sender's DMARC policy is `p=reject`, the DmarcRejectAction parameter specifies the action to take on the message.
+- $false: This is the default value. If the message fail DMARC checks, ignore the action in the sender's DMARC policy. The AuthenticationFailAction parameter specifies the action to take on the message.
+
+```yaml
+Type: Boolean
+Parameter Sets: (All)
+Aliases:
+Applicable: Exchange Online, Exchange Online Protection
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
 ### -ImpersonationProtectionState
 This setting is part of impersonation protection and is only available in Microsoft Defender for Office 365.
 
