Welcome to my latest blog post! Today, we delve into the world of cybersecurity with a focus on enhancing email security. Specifically, we’ll explore the implementation of a crucial Microsoft Defender Secure Score recommended action: ‘Create Safe Links policies for email messages.’ In this post, we’ll uncover the significance of Safe Links policies.  

Note: “Recommended action” Remediations as identified by “Microsoft 365 admin center Portal (https://portal.microsoft.com) \ Security \ Secure score \ Recommended actions” in a pristine baseline environment.

Rank Recommended action

88 Create Safe Links policies for email messages

Microsoft Security Score

Before Mitigation:

A black text with black letters Description automatically generated

After Mitigation:

A black text with black text Description automatically generated

Secure Score Improvement: +0.86



MDO Built-in protection policy will provide base level safe links protection for everyone by default. You could also create additional Safe Links policies for enhanced or customized Safe Links operations.

Implementation status

100% of users are affected by policies that are configured securely

  • Strict Preset Security Policy1705599897641 – 1 users (100%)



You have Microsoft Defender for Office 365 P1.

Next steps

Ensure that all users have an assigned Safe Links policy, by either updating your existing policies or creating new ones, with the following settings configured:

  • Select the action for unknown potentially malicious URLs in messages: On – URLs will be rewritten and checked against a list of known malicious links when user clicks on the link.
  • Apply Safe Links to email messages sent within the organization: Select this setting to apply the Safe Links policy to messages between internal senders and internal recipients.

For detailed implementation instructions, see:

Set up Safe Links policies in Microsoft Defender for Office 365 | Microsoft Learn

Learn more