Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Email Security policies being applied incorrectly

I have discovered that if you create an email security policy and apply it to specific users, any users that have access to those mailboxes also get that policy applied, ignoring any explicitly defined ones for that user. I discovered this by having a bypass policy in place for some shared mailboxes that we didn't want anything potentially getting caught in spam. Anyone that had access to those mailboxes started getting the less secure policy applied to them as well. Not sure if this is intended behavior?



Edited tags
[edited by: Raphael Alganes at 5:14 AM (GMT -7) on 8 Jun 2023]