It is clear that User Quarantine gets a lot of use, because there have been plenty of questions on the subject, especially since there were https-related bugs in recent releases. I don't understand why.
The big problem with email is that every recipient has the opportunity to act on a malicious email and potentially take down the entire organization. WannaCry showed us just how serious this problem is. Most users do not understand how to read email headers to assess whether a message is fraudulent or not, so once a spam filter flags a message as high risk, I want the allow/block decision to be made by a highly trained person. Why would I delegate that decision back to the untrained user?
Does the quarantine report provide the information needed for a user to make a fully-informed decision, or does it simply present what Outlook or Webmail would show if the message had not been quarantined?
This thread was automatically locked due to age.