<Step 1>

^{Install-Module -Name ExchangeOnlineManagement -Scope CurrentUser -Force}

<Step 2>

^{Connect-ExchangeOnline -UserPrincipalName youradmin@domain.com}

<Step 3>

• Disable external storage providers
• Enable MailTips
• Show external sender labels in Outlook
• Enable organisation-wide auditing & Enable mailbox-level auditing

<Step 4>

^{Disconnect-ExchangeOnline -Confirm:$false}

^{Set-OwaMailboxPolicy -Identity "OwaMailboxPolicy-Default" -AdditionalStorageProvidersAvailable $false}

Why?

Outlook Web App allows links to external storage services. Convenient, but messy. Files end up outside your control.

Benefit:

Everything stays within your managed environment. Less risk, more clarity.

^{Set-OrganizationConfig -MailTipsAllTipsEnabled $true ` -MailTipsExternalRecipientsTipsEnabled $true ` -MailTipsGroupMetricsEnabled $true ` -MailTipsLargeAudienceThreshold 25}

Why?

People make mistakes. Sending sensitive info externally or emailing hundreds of colleagues unintentionally? MailTips warns you before you hit “Send”.

• External recipients? You’ll get a warning.
• Large groups? You’ll see the size.
• More than 25 recipients? A prompt appears. (You can adjust this threshold, but 25 is a good balance.)

Benefit:

Employees become more aware without extra rules. The system helps prevent errors and reduces noise.

^{Set-ExternalInOutlook -Enabled $true}

Why?

Phishing emails look more convincing every day. A simple “External sender” label makes the difference between clicking and pausing.

Benefit:

Staff spot suspicious emails faster. Less stress, fewer incidents.

^{Set-OrganizationConfig -AuditDisabled $false}

Why?

Without logging, you’re blind. Auditing records actions so you can trace what happened.

Benefit:

Peace of mind and compliance. Not for control, but for clarity when questions arise.

^{Get-Mailbox -ResultSize Unlimited | ForEach-Object { Write-Host "Enable for: $($_.PrimarySmtpAddress)" Set-Mailbox -Identity $_.Identity -AuditEnabled $true}}

Why?

Sometimes you need to know what happened in one mailbox. This makes it possible.

Benefit:

Full transparency. Essential for compliance and investigations.

<How is your Exchange Online configured?>

You’ll barely notice them day-to-day, but they help employees work smarter and keep your organisation secure.