Enhance Email Security: How to Add and Customize External Tags in Microsoft 365

Managing external communication is critical for organizations using Microsoft 365. By adding external tags in Microsoft 365, you can enhance email security and help users easily identify messages from untrusted sources. This guide will show you how to configure external tagging and manage trusted domains with PowerShell.

Why Use External Tags?

External tags in Microsoft 365 help differentiate trusted internal communications from potentially unsafe external emails. This feature provides a clear and actionable visual cue to improve email security within your organization.

Setting Up External Tags in Microsoft 365

To configure external tags in Microsoft 365, begin by opening PowerShell ISE with administrator privileges. Use the Connect-ExchangeOnline command to establish a secure connection to Exchange Online. Be sure to log in with a global administrator account, as this level of access is required for these configurations.

Next, verify if external tagging is enabled by running the command Get-ExternalInOutlook | Format-Table. This will display the current status of external tagging. By default, the feature is disabled, which is indicated by the Enabled: False output. Additionally, the command will show whether any domains or email addresses are included in the allow list, which is typically empty when setting up for the first time.

To get the rest and see it in action make sure to check out the video below: