Adding FAB in Exchange Online / Microsoft 365

Existing Exchange Online/Microsoft 365 and Hybrid environment customers who installed the FortiPhish Alert Button prior to the 25.2 release must update their FortiPhish Alert Button due to Microsoft phasing out legacy authentication tokens by October 2025. Complete the following steps to install the new Phish Alert Button: Remove the existing FAB add-in. Grant Microsoft Graph Permissions. Deploy the new FAB_Online.xml manifest for Exchange Online mailboxes.

Centralized Deployment is an Office 365 feature that enables Global or Exchange administrators to deploy Office add-ins tenant-wide without requiring user action. This method is available through the Integrated Apps pane in the Microsoft 365 admin center.

You must hold a Global Administrator, Exchange Administrator, or Application Administrator role. Your tenant must have an active Microsoft 365 subscription with Exchange Online.

Perform the following steps to deploy FAB.

1. Download the FAB_Online.xml file from the FortiPhish portal.

2. Sign in to the Microsoft 365 admin center for your environment:

   https://admin.microsoft.com

3. Navigate to Settings > Integrated Apps > Add-ins.

4. Click Deploy Add-in, then choose Upload Custom Apps > From file, and upload FAB_Online.xml.

5. Assign the add-in to everyone, specific users, or mail-enabled groups, and choose Fixed or Optional deployment.

Save your changes. The add-in appears for new users within 24 hours and fully propagates within 72 hours.

Granting Microsoft Graph Permissions

This step applies only to Exchange Online and hybrid deployments because the updated add-in utilizes Microsoft Graph API calls (Mail.ReadWrite, Mail.Send, User.Read). Pure on-premises environments do not require admin consent.

1. In FortiPhish portal, go to Settings > Phish Alert Button.

2. Click Grant Microsoft Graph Permissions.

3. Sign in with a global administrator account when prompted.