Installation of the CanIPhish Google Workspace Gmail Phish Report Add-on will allow your employees to report suspected phishing and spam material to CanIPhish. Reported emails are then viewable under the CanIPhish Reporting page, where administrators can then view and attribute the email accordingly.
To get started, please follow the steps below.
Table of Contents
- Step 1. Enable Email Reporting Functionality
- Step 2. Install The CanIPhish Email Report Add-On
- How To Use The Gmail Report Email Add-On
- Appendix A - Permissions Used By The Gmail Add-On
Step 1. Enable Email Reporting Functionality
1.1. Enable Report Email functionality by going to Reporting > Reported Emails > Advanced Settings:
1.2. Click the Enabled toggle button:
Step 2. Install The CanIPhish Email Report Add-On
2.1. Log in to your Google Workplace Admin account.
2.2. Click Apps > Google Workspace Marketplace apps > Apps list > Add app to Admin Install list. Or go directly to the Google Workspace Marketplace.
2.3. Type "caniphish-report-phish" into the search menu or go directly to the caniphish-report-phish listing.
2.4. Click on the marketplace add-on and then select to perform an "Admin install". To do this you will need to be a Google Workspace administrator as you'll be deploying the add-on across your organisation.
2.5. A notification will popup, simply click Continue and you'll be presented with the authorisation screen. As part of the add-on installation, CanIPhish will be given limited permissions to run as a gmail add-on, read emails that are actively opened and connect to our external API. The reasons we need these privileges are outlined in the Appendix below.
2.6. Select "Everyone at your organisation" or additionally just select the subset you which to deploy the app to, select that you agree to the Google terms of service and click Finish.
2.7. The add-on has now been deployed!
Congratulations!
Employees will now be able to report suspected spam and phishing content for analysis. You can view employee email reports on the Reporting page under the Reported Emails tab.
How To Use The Gmail Report Email Add-On
1. Once the CanIPhish Gmail Add-on is installed, it'll appear on the right-hand side of the Gmail webpage.
2. To use the add-on, employees simply need to open an email, click the CanIPhish Email Phish Add-on and click the Report Phish or Report Spam buttons. This will send a request to CanIPhish, and we'll populate your tenant with the report within 60 seconds.
Appendix A - Permissions Used By The Gmail Add-On
gmail.addons.execute
Provides the CanIPhish Report Phish add-on to execute within employee mailboxes..
gmail.addons.current.message.readonly
Provides the CanIPhish Report Phish add-on with the ability to read the contents of an open email.
userinfo.email
Provides the CanIPhish Report Phish add-on with the ability to read the user profile of the employee using the add-on.
script.external_request
Provides the CanIPhish Report Phish add-on with the ability to connect to the CanIPhish API for the transfer of information from Google to the CanIPhish platform.
Comments
0 comments
Please sign in to leave a comment.