Get-AntiPhishPolicy

This cmdlet is available only in the cloud-based service.

Use the Get-AntiPhishPolicy cmdlet to view antiphish policies in your cloud-based organization. This cmdlet returns results only in Exchange Online PowerShell.

Note: We recommend that you use the Exchange Online PowerShell V2 module to connect to Exchange Online PowerShell. For instructions, see Connect to Exchange Online PowerShell.

For information about the parameter sets in the Syntax section below, see Exchange cmdlet syntax.

Syntax

Get-AntiPhishPolicy
   [-Identity <AntiPhishPolicyIdParameter>]
   [-Advanced]
   [-Impersonation]
   [-Spoof]
   [<CommonParameters>]

Description

You need to be assigned permissions before you can run this cmdlet. Although this topic lists all parameters for the cmdlet, you may not have access to some parameters if they're not included in the permissions assigned to you. To find the permissions required to run any cmdlet or parameter in your organization, see Find the permissions required to run any Exchange cmdlet.

Examples

Example 1

Get-AntiPhishPolicy | Format-Table Name,Enabled,IsDefault

This example shows a summary list of all antiphish policies.

Example 2

Get-AntiPhishPolicy -Identity "Office365 AntiPhish Default"

This example shows detailed information about the antiphish policy named Office 365 AntiPhish Default.

Parameters

-Advanced

The Advanced switch filters the properties that are returned to the advanced settings in the policy. For example:

  • PhishThresholdLevel
  • EnableSuspiciousSafetyTip (This value is always False, and you can't change it.)

You don't need to specify a value with this switch.

Advanced settings are only available in anti-phishing policies in Microsoft Defender for Office 365.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:Exchange Online
-Identity

The Identity parameter specifies the antiphish policy that you want to view. You can use any value that uniquely identifies the policy. For example:

  • Name
  • Distinguished name (DN)
  • GUID
Type:AntiPhishPolicyIdParameter
Position:0
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:Exchange Online, Exchange Online Protection
-Impersonation

The Impersonation switch filters the properties that are returned to the impersonation settings in the policy. For example:

  • EnableMailboxIntelligence
  • EnableMailboxIntelligenceProtection
  • EnableOrganizationDomainsProtection
  • EnableSimilarDomainsSafetyTips
  • EnableSimilarUsersSafetyTips
  • EnableTargetedDomainsProtection
  • EnableTargetedUserProtection
  • EnableUnusualCharactersSafetyTips
  • ExcludedDomains
  • ExcludedSenders
  • ImpersonationProtectionState
  • MailboxIntelligenceProtectionAction
  • MailboxIntelligenceProtectionActionRecipients
  • TargetedDomainActionRecipients
  • TargetedDomainProtectionAction
  • TargetedDomainsToProtect
  • TargetedUserActionRecipients
  • TargetedUserProtectionAction
  • TargetedUsersToProtect

You don't need to specify a value with this switch.

Impersonation settings are only available in anti-phishing policies in Microsoft Defender for Office 365.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:Exchange Online
-Spoof

The Spoof switch filters the properties that are returned to the spoof settings in the policy. For example:

  • EnableAntiSpoofEnforcement
  • EnableUnauthenticatedSender

You don't need to specify a value with this switch.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:Exchange Online, Exchange Online Protection

Inputs

Outputs