Microsoft 365 Alert – Service Degradation – Exchange Online – Admins are unable to view or edit anti-phishing policies in Microsoft 365 Defender – RESOLVED

13/07/2023 08:48:00 AM (GMT)

NHSmail Reference : INC36965669

Microsoft Reference : EX626667

Issue Status : RESOLVED 

Issue Description : Admins may be unable to view or edit anti-phishing policies in Microsoft 365 Defender.

More info : Admins may use the following PowerShell cmdlets instead of going through the admin center as an alternate method of editing the anti-phishing policies:

– Get-AntiPhishPolicy
– Set-AntiPhishPolicy

Final Update : 25/07/2023 08:38:00 AM – Microsoft confirmed after doing final validations that their code fix deployment has successfully resolved the impact.

Scope of impact : This issue may impact any admin with an anti-phish policy enabled along with SpoofQuarantineTag values not matching one of the following values:

“DefaultFullAccessPolicy”
“AdminOnlyAccessPolicy”
“DefaultFullAccessWithNotificationPolicy”

Root cause : An error in the code within user interface of the anti-phishing policy is preventing admins from viewing and editing policies.

Next steps : Microsoft are reviewing this recent update to understand why it contained a code issue to improve their testing and validation cycles and prevent similar impact from reoccurring.