From 7279e9dacd3a511f6015cf2d0ebfde322121a4a5 Mon Sep 17 00:00:00 2001
From: cipptesting <security+cipptesting@milesit.com>
Date: Mon, 24 Jun 2024 19:47:14 -0400
Subject: [PATCH] Updated Anti-Phishing Policy Standards for more granular
 configuration

---
 src/data/standards.json | 72 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 72 insertions(+)

diff --git a/src/data/standards.json b/src/data/standards.json
index 39f4dfef6108..b7058444da57 100644
--- a/src/data/standards.json
+++ b/src/data/standards.json
@@ -1138,6 +1138,40 @@
         "name": "standards.AntiPhishPolicy.EnableUnusualCharactersSafetyTips",
         "default": true
       },
+      {
+        "type": "Select",
+        "label": "If the message is detected as spoof by spoof intelligence",
+        "name": "standards.AntiPhishPolicy.AuthenticationFailAction",
+        "values": [
+          {
+            "label": "Move to Junk Folder",
+            "value": "MoveToJmf"
+          },
+          {
+            "label": "Quarantine the message",
+            "value": "Quarantine"
+          }
+        ]
+      },
+      {
+        "type": "Select",
+        "label": "Quarantine policy for Spoof",
+        "name": "standards.AntiPhishPolicy.SpoofQuarantineTag",
+        "values": [
+          {
+            "label": "DefaultFullAccessPolicy",
+            "value": "DefaultFullAccessPolicy"
+          },
+          {
+            "label": "DefaultFullAccessWithNotificationPolicy",
+            "value": "DefaultFullAccessWithNotificationPolicy"
+          },
+          {
+            "label": "AdminOnlyAccessPolicy",
+            "value": "AdminOnlyAccessPolicy"
+          }
+        ]
+      },
       {
         "type": "Select",
         "label": "If a message is detected as user impersonation",
@@ -1157,6 +1191,25 @@
           }
         ]
       },
+      {
+        "type": "Select",
+        "label": "Quarantine policy for user impersonation",
+        "name": "standards.AntiPhishPolicy.TargetedUserQuarantineTag",
+        "values": [
+          {
+            "label": "DefaultFullAccessPolicy",
+            "value": "DefaultFullAccessPolicy"
+          },
+          {
+            "label": "DefaultFullAccessWithNotificationPolicy",
+            "value": "DefaultFullAccessWithNotificationPolicy"
+          },
+          {
+            "label": "AdminOnlyAccessPolicy",
+            "value": "AdminOnlyAccessPolicy"
+          }
+        ]
+      },
       {
         "type": "Select",
         "label": "If a message is detected as domain impersonation",
@@ -1176,6 +1229,25 @@
           }
         ]
       },
+      {
+        "type": "Select",
+        "label": "Quarantine policy for domain impersonation",
+        "name": "standards.AntiPhishPolicy.TargetedDomainQuarantineTag",
+        "values": [
+          {
+            "label": "DefaultFullAccessPolicy",
+            "value": "DefaultFullAccessPolicy"
+          },
+          {
+            "label": "DefaultFullAccessWithNotificationPolicy",
+            "value": "DefaultFullAccessWithNotificationPolicy"
+          },
+          {
+            "label": "AdminOnlyAccessPolicy",
+            "value": "AdminOnlyAccessPolicy"
+          }
+        ]
+      },
       {
         "type": "Select",
         "label": "If Mailbox Intelligence detects an impersonated user",