We’re pleased to announce, all Sophos Email customers using Office 365 can now integrate directly with Office 365 for inbound and outbound email protection without the need to redirect their MX records. Read the Sophos Email Mailflow Early Access Program (EAP) announcement article here for more details and follow the instructions below to get started.
You can join the EAP by signing in to Sophos Central and following these simple steps.
Your next steps depend on your existing setup.
To set up Mailflow rules if you're already using Sophos Email, do as follows:
When your Mailflow for Office 365 protection is set up, the domain status shows a green tick. You can also do a quick test to validate your mailflow rules.
Once you have verified that your mailflow rules are functioning properly, remove the gateway setup for the domain and change the MX records back to O365.
Your mailflow rules are now up and running.
If you don't have any domains set up for Sophos Email protection, do as follows:
When your Mailflow for Office 365 protection is set up, the domain status shows a green tick. You can also run a quick test to validate your mailflow rules.Your mailflow rules are now up and running.
I’m also experiencing issues like this. I notice that emails still get delivered to quarantine in M365 due to other domain aliases such as onmicrosoft.com. I guess the solution would be to add the onmicrosoft.com domain to Sophos but since this is a default domain, I’m not sure how that affects other services microsoft relies on. I’m also noticing that emails from gmail.com will get marked as an unverified sender because the header says that gmail.com doesn’t designate our outlook domain as a sender; When Microsoft uses the outbound connector to Sophos, Sophos checks gmail.com’s spf record and since our custom outlook domain isn’t on Gmail’s SPF, we get a soft fail.
when testing the connection the test email is blocked and quarantined. any thoughts?
"you are redirected to O365 for authentication and to grant permissions"
I cannot see the EAP in my overview, only the "New macOS Endpoint Protection Features" one.
Do I need to get an invitation code for the Mail EAP?