The purpose of the Coro add-in for Microsoft 365 is to allow end users to report to their security personnel on suspicious emails in their inboxes, as well as to report on emails that have been flagged by the Coro protection and moved to the Suspected folder when the user believes that the
flagging was unjustified.
The feedback provided by the end users via the add-in is communicated to the
Coro administrators via the Coro Actionboard as part of the Email security tickets that
require review.
After examining the ticket, the administrator may decide to adopt user feedback by approving or discarding the respective email, or allowlisting/blocklisting the sender of the email in question, or even allowlisting/blocklisting the entire email network domain of the sender.
The rest of this article describes how to:
Install the add-in for all users in the workspace
As a Coro administrator, you can install the add-in for all your Microsoft 365 users at once, transparently to them.
-
Make sure you are logged into Microsoft 365 with your global admin credentials.
In your browser, go to the Coro page in the Microsoft AppSource site.
-
Click Get it now.
Accept the requested permissions.
-
End users now see the Coro icon within their Outlook app for the web and desktops.
-
An instructions panel is displayed
When the user submits a report, the Coro Console updates the Ticket Log with the request.
-
when the user clicks the Coro icon, letting users report phishing or mark emails as safe.
Use the add-in
The Coro add-in for Outlook lets users report:
- Purportedly malicious emails that have been missed by Coro's protection
- Emails that have been flagged by Coro but which the user believes in error
Note: The rest of this page describes how the user can report these emails to you through the Coro Console. Share this information with them if they have any questions!
Report emails as phishing
- Click the Coro button from the Outlook toolbar.
The side panel opens, similar to the following:
Now, you can report phishing or mark emails as safe.
- Click Report Phishing.
A notification Marked as phishing appears in the email in Outlook and a ticket is generated for the administrator in their Ticket Log:
The feedback provided by the users through the add-in is reflected in the Ticket Log.
Report emails as safe
- Click the Coro button from the Outlook toolbar.
The side panel opens, similar to the following:
Now, you can report phishing or mark emails as safe.
- Click Mark As Safe.
A notification Mark As Safe appears in the email in Outlook and a ticket is generated for the administrator in their Ticket Log:
The feedback provided by the users through the add-in is reflected in the Ticket Log.