This article walks you through the following sections:
- Overview
- How do the Save as Default, Apply, or Save as Default and Apply buttons work?
- MSP Branding
- Whitelisting
- EmployeeShield Application on Suspicious and Not Yet Trusted Senders
- Daily Insights Report
1. Overview
The MSP Settings page hosts settings of various types that can be managed and configured for MSP end customers (organizations) from a central location. This reduces the overhead of MSP admins configuring different settings for each of their organizations individually. MSPs can configure these settings to their liking and apply them to all their organizations or a subset of their organizations with just a few clicks.
This page offers the following capabilities:
- MSPs can apply their brand to Graphus customer-facing reports and EmployeeShield® (warning banner on emails).
- MSPs can whitelist their trusted domains, mail-from domains, and IP addresses so that Graphus does not flag emails having these attributes. It helps with false positives reduction.
- MSPs can apply or not apply EmployeeShield® to emails from unverified senders. These are additional EmployeeShield® applications that MSPs can enable aside from the Quarantine and various other types of EmployeeShield® capabilities that Graphus offers by default.
2. How do the Save as Default, Apply, and Save as Default and Apply buttons work?
Every section of the MSP Settings page has three standard buttons: Save as Default, Apply, and Save as Default and Apply.
These buttons work in the following way:
- Save as Default: This will save the default settings at the MSP level and only be applied to the future onboarded organization. These settings will only be applied to existing organizations once they click the Apply button and select organizations to propagate these settings.
- Apply: This button is independent of the Save as Default button. It will selectively apply or propagate settings to single or multiple organizations without changing default settings.
- Save as Default and Apply: This button gives you the combined capability of the Save as Default and Apply buttons. It will save the default settings at the MSP level and allow you to apply or propagate the selected features to single or multiple organizations. Any future organizations onboarding on the Graphus platform will inherit these settings by default.
Here are some example scenarios of how you can use these buttons:
-
Existing Graphus MSP protecting organizations and configuring settings for the first time. You have two options:
- Save as Default: Configure and save the settings by clicking the Save as Default button. This will save the settings but will not apply them to any of your existing organizations. You can return to the settings page later and apply these settings to your existing organizations by clicking the Apply button. You will have the option of choosing a subset or all of your organizations. Save as Default will, however, apply these settings automatically to any new organizations onboarding on Graphus in the future.
- Save as Default and Apply: Configure the settings, save them as default, and apply them to your organizations by clicking Save as Default and Apply. You will have the option of choosing a subset or all of your organizations. These settings will automatically apply to any new organization onboarding on Graphus in the future.
- New Graphus MSP with no organizations under protection and configuring settings for the first time. You can only save the settings by clicking Save as Default. Since you have no organizations under protection, the Apply button is irrelevant. Save as Default will, however, apply these settings automatically to any new organizations onboarding on Graphus in the future.
-
Existing Graphus MSP is protecting organizations, has configured settings in the past, and is making changes now. You have two options:
- Save as Default: Once changes have been made, you can save the settings by clicking Save as Default. The modified settings will NOT apply to any of your existing organizations, and they will continue using the old settings. You can return to the settings page later and apply the modified settings to your existing organizations by clicking the Apply button. However, Save as Default will automatically apply the updated settings to any future new organizations signing up for Graphus.
- Save as Default and Apply: After making changes, you can save them as defaults and apply them to your organizations by clicking Save as Default and Apply. You will have the option of choosing a subset or all of your organizations. The modified settings will also apply to any new organization onboarding on Graphus in the future.
The following sections cover the various settings available on the MSP Settings page.
3. Branding
In the MSP Branding section, you can apply your brand logo and colors to Graphus daily and monthly reports and EmployeeShield®. If MSPs do not want to use their brand logo, they can continue using the default Graphus logo and colors.
3.1 Reports Branding: Customize Daily Insights and Monthly Reports. This allows you to customize the Graphus daily and monthly reports with your logo and a color for the header and footer. MSPs can preview the report using the respective buttons in HTML or PDF format.
Ensure to enable Customize Daily Insights and Monthly Reports toggle buttons. By default, the button is toggled off. Graphus provides the default logo, and color will appear when the button is toggled on for the first time.
3.2 Logo: To upload your logo, use the Browse button or drag and drop files to attach. The image file should be in JPG, JPEG, PNG, or GIF format. An image resolution should be within 400 x 200. As soon you upload the logo, you can preview the logo on the right side.
Click Save as Default, Apply, or Save as Default and Apply.
3.3 Header and Footer Color: Click inside the textbox for the color palette to appear. Select a color by dragging the dot inside the square to a specific location. Also, you can drag the slider bar up or down to move between hues of different colors. Alternatively, you can manually enter the color code; once you click Done, the selected color’s code appears in the textbox.
3.4 Preview HTML Report: Click this button to preview the report in HTML format. This template will then be applied to the Daily Insights Report and Monthly Report, which is how the reports look to your customers when they receive them. Samples of both the default report and the custom report are given below.
3.5 Preview PDF Report: Click this button to preview the report in PDF format. Here is a quick sample look for you. The below images show you both the default and custom reports.
4. EmployeeShield® Banner
You can customize the EmployeeShield® section or warning banner look and feel:
4.1 Please make sure the button is toggled on. The default Graphus values will appear when the button is toggled on for the first time.
4.2 Interactivity: By default, the radio button is pre-selected. If you keep the pre-selected radio button, the banner will appear with the interactive links to report the email as Phishing (Unsafe) or False Positive (Safe) to the email recipients (recommended). The banner will have only information to communicate but no links to take action from the recipient’s side. If you select the second radio button, the banner will appear with information only, and there will not be any interactive links available to email recipients.
4.3 Logo Text: This is the organization name on the top left corner of the EmployeeShield®. MSPs can provide their name in this box if they prefer.
4.4 Background Color: Click inside the text box for the color palette to appear, and select a color of your choice by dragging the dot inside the square to a specific location.
4.5 Message Color: You can select a color for your message. Select a color of your choice from the palette.
4.6 Safe Link Color: You can select a color for a safe link.
4.7 Unsafe Link Color: You can select a color for an unsafe link.
4.8 Safe Link Label: You can provide a name to the safe link. For example, you can use any custom word to denote the same meaning. This is the link that the user or recipient has to click if the user or recipient believes the email is a false positive.
4.9 Unsafe Link Label: You can provide a name to the unsafe link—for example, Safe. You can use any custom word to denote the same meaning. This is the link that the recipient has to click if they wish to mark the email as a phishing attack.
4.10 Message: The first radio button is recommended for you by Graphus. The messages under this option will change depending on the type of phishing detection. Select the second radio button to provide a static custom message. This message will not vary depending on the type of phishing detection. By default, the second radio button is pre-selected. You can preview this custom message by clicking the Preview Sample button.
4.11 Rollout: By default, the EmployeeShield® will be rolled out for all protected accounts. You can enable EmployeeShield® for selected users for an organization from the Settings page for that specific organization.
4.12 Click Save as Default, Apply, or Save as Default and Apply as the case may be.
Setup Flow Example
Option 1: If you click Save as Default, you will see the following screen:
Option 2: You will see the following screen if you click Apply or Save as Default and Apply.
You can click Select All to apply the settings to all the organizations listed below or Deselect All to deselect all the organizations listed there. Alternatively, you can use the toggle button next to each organization to select or deselect the organization.
Once you have made your selections, click Next. You will see the following screen:
Review the settings that have been applied and click Confirm. You will see the following message:
5. Whitelisting
Graphus will skip processing any inbound email with attributes that match the whitelisted parameters. No Quarantine or EmployeeShield® functionalities in Graphus will be applied to such emails. There are four different types of whitelisting capabilities provided on the platform:
- Whitelist Sender Domain: The "sender domain" is the domain name of email addresses. For example, xxxx.kaseya.com is the sender's email address, and kaseya.com is the sender's domain. This option will whitelist the sender domain and skip processing inbound emails whose sender email address has the configured domain.
- Whitelist SMTP Mail From Domain: Skip processing inbound emails whose SMTP Mail from the domain and the SPF value match the configured values.
- Whitelist IP Address: The IP address is where the email has been sent. Skip processing inbound emails whose SMTP Mail from the IP Address matches the configured values.
- SMTP Mail From and Sender Domain: You can whitelist a combination of the Sender Domain and SMTP Mail from the domain and SPF value. Meaning, this is a mechanism where specific emails that are coming from mail services like salesforces, email chains, or any authorized organizations can be whitelisted. This will reduce the scope of the SMTP mail from the whitelist and skip processing inbound emails whose sender email address has the configured domain and SMTP Mail from the domain.
In the Whitelisting section, none of the toggle buttons were selected by default. Provide a domain name in the row and choose one of the four options from the area. Please note all toggle buttons are selected.
- Click the View Default button to see the default settings regardless of your selected option.
-
- You also have the option to remove any of the defaults here.
Use the toggle button next to the domain to turn on/off the Sender Domain or SMTP mail from the domain or the IP address to remove that value. The Remove Default, Apply, and Remove Default And Apply buttons will be shown below.
Option 1: If you click Remove Default, you will see the following screen:
Option 2: If you click Apply or Remove Default And Apply, you will see the following screen:
-
Click the View Default button to check the current values.
- You can click Select All to apply the settings to all the organizations listed below or Deselect All to deselect all the organizations listed there. Alternatively, you can turn the toggle button on/off next to each organization to select or deselect the organization:
Once you have made your selections, click Next. You will see the following screen:
Click Confirm. You will see the following message:
If you already have default settings and want to apply them to specific organizations, click the Apply button. You will see the following screen:
You can click Select All to apply the settings to all the organizations listed below or Deselect All to deselect all the organizations listed there. Alternatively, you can turn the toggle button on/off next to each organization to select or deselect the organization.
Once you have made your selections, click Next. You will see the following screen:
Review the applied changes and click Confirm. You will see the following confirmation message:
Setup Flow Example
You can select one of the below radio buttons and click Save as Default, Apply, or Save as Default And Apply.
If you want to Whitelist Sender Domain, do the following:
- Select the Whitelist Sender Domain radio button.
- Enter the domain in the textbox.
- Click Add Row to add more text boxes or Remove Row to remove extra boxes.
- Click Save as Default, Apply, or Save as Default and Apply as the case may be.
If you want to Whitelist SMTP Mail From Domain, do the following:
- Select the Whitelist SMTP Mail From Domain radio button.
- Enter the domain in the textbox. Select an SPF value from the drop-down menu.
- Click Add Row to add more text boxes or Remove the Row to remove extra boxes. Select an SPF value from the drop-down menu for each domain you add.
- Click Save as Default, Apply, or Save as Default and Apply as the case may be.
If you want to Whitelist IP Address, do the following:
- Select the Whitelist IP Address radio button.
- Enter the IP address in the textbox. The IP address has to be in the x.x.x.x format.
- Click Add Row to add more text boxes or Remove Row to remove extra boxes.
- Click Save as Default, Apply, or Save as Default and Apply as the case may be.
If you want to whitelist a combination of SMTP Mail From and Sender Domain, do the following:
- Select the SMTP Mail From and Sender Domain radio button.
2. Enter valid Sender Domain and SMTP Mail From Domain entries in the textbox. Select an SPF value from the drop-down menu before saving the changes, or the application will display an error message.
- Click Add Row to add more text boxes or Remove the Row to remove extra boxes. Select an SPF value from the drop-down menu for each domain you add.
- Click Save as Default, Apply, or Save as Default and Apply as the case may be.
Option 1: If you select any of the four options (i.e., Whitelist Sender Domain, Whitelist SMTP Mail From Domain, SMTP Mail From and Sender Domain, or Whitelist IP Address )and click Save as Default. Setting apply successfully and you will see the following screen:
Option 2: If you select any of the four options (i.e., Whitelist Sender Domain, Whitelist SMTP Mail From Domain, SMTP Mail From and Sender Domain or Whitelist IP Address) and click Apply or Save as Default and Apply. The changes will apply, and you will see the following screen:
Note: For the Whitelist Sender Domain and Whitelist IP Address options, you will not find the SPF value on the upper right. Other things remain the same.
You can click Select All to apply the settings to all the organizations listed below or Deselect All to deselect all the organizations listed there. Alternatively, you can select the toggle button next to each organization to turn the organization on or off.
Once you have made your selections, click Next. You will see the following screen:
Click Confirm to update the changes.
6. EmployeeShield® Application on Suspicious and Not Yet Trusted Senders
MSPs can configure whether EmployeeShield® is applied to emails from Suspicious and Not Yet Trusted senders. This is in addition to the Quarantine and several other types of EmployeeShield® that Graphus uses by default.
Turning this setting, ON will apply EmployeeShield® on an email received from either a completely new external sender or a sender not yet trusted in the TrustGraph. Additional settings can be turned ON in this section to control this at a finer level by choosing the second and third options.
These settings can be turned on or off in three different ways:
- Apply EmployeeShield® when an email is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email from such senders. If you enable this setting, the other two are covered by default.
- Apply EmployeeShield® when an email with attachments and links is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email with attachments and links received from such senders.
- Apply EmployeeShield® when an email with authentication failures (SPF/DKIM/DMARC) is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email with either SPF, DKIM, or DMARC authentication failures received from such senders.
Setup Flow Example
Option 1: You will see the following screen. If you switch on the first toggle or the other two buttons, click Save as Default.
Option 2: You will see the following screen. If you switch on the first toggle or the other two buttons, click Apply or Save as Default and Apply.
You can click Select All to apply the settings to all the organizations listed below or Deselect All to deselect all the organizations listed there. Alternatively, you can select the toggle button next to each organization to select or deselect the organization.
Once you have made your selections, click Next. You will see the following screen:
Click Confirm. You will see the following message:
7. Daily Insights Report
MSPs can get their customers' daily phishing defense report with Daily Insights Report. You can use the toggle button for all or a subset of your specific customers.
Option 1: Provide Recipient Email Addresses in the field and click Save as Default.
You will see the following screen:
Option 2: Provide Recipient Email Addresses in the field and click Apply or Save as Default And Apply.
You will see the following screen:
Once you have made your selections, click Next and Confirm your changes.