Installing and using the Outlook add-on¶

The purpose of the Coro add-in for Microsoft 365 is to allow end users to report to their security personnel on suspicious emails in their inboxes, as well as to report on emails that have been flagged by the Coro protection and moved to the Suspected folder when the user believes that the flagging was unjustified.

The feedback provided by the end users via the add-in is communicated to the Coro administrators via the Coro Actionboard as part of the Email security tickets that require review.

After examining the ticket, the administrator may decide to adopt user feedback by approving or discarding the respective email, or allowlisting/blocklisting the sender of the email in question, or even allowlisting/blocklisting the entire email network domain of the sender.

The rest of this article describes how to:

• Install the add-in for all users in the workspace
• Use the add-in

Install the add-in for all users in the workspace¶

As a Coro administrator, you can install the add-in for all your Microsoft 365 users at once, transparently to them.

1. Make sure you are logged into Microsoft 365 with your global admin credentials.

   In your browser, go to the Coro page in the Microsoft AppSource site.

   

2. Click Get it now.

   Accept the requested permissions.

   

3. End users now see the Coro icon within their Outlook app for the web and desktops.

   

4. An instructions panel is displayed

   When the user submits a report, the Coro Console updates the Ticket Log with the request.

5. when the user clicks the Coro icon, letting users report phishing or mark emails as safe.

Use the add-in¶

The Coro add-in for Outlook lets users report:

• Purportedly malicious emails that have been missed by Coro's protection
• Emails that have been flagged by Coro but which the user believes in error

Report emails as phishing¶

1. Click the Coro button from the Outlook toolbar.

   

   The side panel opens, similar to the following:

   

   Now you can report phishing or mark emails as safe.

2. Click Report Phishing.

   

   A notification Marked as phishing appears in the email in Outlook and a ticket is generated for the administrator in their Ticket Log:

   

   The feedback provided by the users through the add-in is reflected in the Ticket Log.

Report emails as safe¶

1. Click the Coro button from the Outlook toolbar.

   

   The side panel opens, similar to the following:

   

   Now you can report phishing or mark emails as safe.

2. Click Mark As Safe.

   

   A notification Marked As safe appears in the email in Outlook and a ticket is generated for the administrator in their Ticket Log:

   

   The feedback provided by the users through the add-in is reflected in the Ticket Log.