MSP Settings Feature Guide

Go to

1. Overview

2. What do Save as Default, Apply or Save as Default and Apply Buttons Mean?

3. MSP Branding

4. Whitelisting

5. EmployeeShield Application on Suspicious and Not Yet Trusted Senders

 

1. Overview

The MSP Settings page hosts settings of various types that can be managed and configured for MSP end customers (organizations) from a central location. This reduces the overhead of MSP admin to configure different settings for each of their organizations individually. MSPs have the flexibility to configure these settings to their own liking and apply them to either all their organizations or to a subset of their organizations with just a few clicks.

This page offers the following capabilities:

  1. MSPs can apply their own brand to Graphus customer facing reports and EmployeeShield® (warning banner on emails).
  2. MSPs can whitelist their trusted domains, mail-from domains and IP addresses so that Graphus does not flag emails having these attributes. It helps with false positives reduction.
  3. MSPs can also choose to apply or not apply EmployeeShield® to emails received from un-trusted senders. These are additional EmployeeShield® application that MSPs have an option to enable aside from the Quarantine and various other types of EmployeeShield® capabilities that Graphus offers by default.

2. What Do save_as_default_button.PNG, apply_button.PNG and save_as_default_and_apply_button.PNG Buttons Mean?

Every section present on MSP Settings page has three common buttons. The first is Save as Default, the second is Apply, and the third is Save as Default and Apply.

MSP_report_branding_section.PNG

These buttons work in the following way: 

  1. Save as Default: This will save the default settings at MSP level, which will be applied to organization which MSP will onboard in future. These settings will not be applied to existing organizations until they click on the Apply button and select organizations to propagate these settings.
  2. Apply: This button is independent of the Save as defaults It will selectively apply or propagate settings to single or multiple organizations without making any changes in default settings.
  3. Save as Default and Apply: This button gives you the combined capability of the Save as Default and Apply buttons. It will save the default settings at MSP level along with the option to apply or propagate the selected features to single or multiple organizations. Any future organizations onboarding on the Graphus platform will inherit these settings by default.

Here are some example scenarios on the usage of these buttons:

  1. Scenario 1: Existing Graphus MSP, protecting organizations and configuring settings for the first time. You have two options.
    1. First option: Configure the settings and save them as default by clicking Save as Default. This will save the settings BUT will not apply them to any of your existing organizations. You can come back to the settings page at a later time and apply these settings to your existing organizations by clicking the Apply button. You will have the option of choosing a subset or all of your organizations. Save as Default will, however, apply these settings automatically to any new organizations onboarding on Graphus in future.
    2. Second option: Configure the settings, save them as default and also apply them to your organizations by clicking Save as Default and Apply. You will have the option of choosing a subset or all of your organizations. These settings will also automatically apply to any new organization onboarding on Graphus in future.
  2. Scenario 2: New Graphus MSP with no organizations under protection and configuring settings for the first time. You can only save the settings by clicking Save as Default. Since you have no organizations under protection so far, the Apply button is irrelevant. Save as Default will, however, apply these settings automatically to any new organizations onboarding on Graphus in future.
  3. Scenario 3: Existing Graphus MSP protecting organizations, already configured settings in the past and making changes now. You have two options:
    1. First option: After changes are made, you can save the settings by clicking Save as Default. The modified settings will NOT apply to any of your existing organizations, they will continue to use the old settings. You can come back to the settings page at a later time and apply the modified settings to your existing organizations by clicking on the Apply button. Save as Default will, however, apply the modified settings automatically to any new organizations onboarding on Graphus in future.
    2. Second option: After changes are made, you can save them as defaults and also apply them to your organizations by clicking Save as Default and Apply. You will have the option of choosing a subset or all of your organizations. The modified settings will also apply to any new organization onboarding on Graphus in future.

The following sections cover the various settings available on the MSP Settings page.

3. MSP Branding

The MSP Branding section is where you can apply your own brand (logo and colors) to Graphus daily and monthly reports and EmployeeShield®. If MSPs do not want to use their own brand they can continue to use the default Graphus logo and colors.

MSP_report_branding_section.PNG

Report Customization: This allows you to customize the Graphus daily and monthly reports with your logo and a color for the header and footer. MSPs can preview the report in HTML or PDF format using the respective buttons.

  1. Make sure the siem_ticketing_on_off_button.PNG button is turned on. By default, the button is turned off. The Graphus provided default logo and color will show up when the button is toggled ON for the first time.
  2. Logo: Click Choose File and upload your logo. The image file should be in jpg, jpeg, png or gif format. Make sure the resolution of the image is within 400 x 200. As soon you upload the logo, you will be able to see a preview of the logo on to the right side.
  3. Header and Footer Color: Click inside the textbox for the color palette to appear. Select a color of your choice by dragging the dot inside the square to a specific location. Also, you can drag the slider bar up or down to move between hues of different colors. Alternatively, you can manually enter the color code.
  4. Click Done. The selected color’s code appears in the textbox.
  5. previewHTMLreport_button.PNG: Click this button to preview the report in HTML format. This template will then be applied to the Daily Insights Report and Monthly Report, and this is how the reports will look like to your customers when they receive them. Samples of both default report and custom report are given below.
    graphus_HTML_report.PNG

    custom_HTML_report.PNG
  6. previewPDFreport_button.PNG Click this button to preview the report in PDF format. This is how the PDF report looks like. This is how the PDF Report will look like to your customers when they receive it. Samples of both default report and custom report are given below.
    PDFreportgraphuspage1.PNG

    PDFreportgraphuspage2.PNG

    PDFreportcanopypage1.PNG

    PDFreportcanopypage2.PNG

  7. Click Save as Default, Apply or Save as Default and Apply as the case may be.

EmployeeShield® Branding: In this section, you can customize the EmployeeShield® or warning banner look and feel.
ES-branding.PNG

  1. Make sure the siem_ticketing_on_off_button.PNG button is turned on. The Graphus provided default values will show up when the button is toggled ON for the first time.
  2. Interactivity: By default, the second radio button is selected. If you keep this selected, the banner will have only information to communicate but no links to take action from the recipient’s side. If you select the first radio button, the banner will appear with interactive links (to mark the sender as Safe and Unsafe). This option is recommended by Graphus.
  3. Logo Text: This is the organization name that will show on the top left corner of the EmployeeShiled®. MSPs can provide their own name in this box if they prefer.
  4. Background Color: Click inside the text box for the color palette to appear, and select a color of your choice by dragging the dot inside the square to a specific location.
  5. Message Color: You can select a color for your message. Select a color of your choice from the palette.
  6. Safe Link Color: You can select a color for safe link.
  7. Unsafe Link Color: You can select a color for unsafe link.
  8. Safe Link Label: This is the name to be provided for the safe link. For example, You can use any custom word to denote the same meaning. This is the link that the user or recipient has to click if the user or recipient believes the email is a false positive.
  9. Unsafe Link Label: This is the name to be provided for the unsafe link. For example, Safe. You can use any custom word to denote the same meaning. This is the link that the recipient has to click if they wish to mark the email as a phishing attack.
  10. Message: By default, the first radio button is selected. Graphus recommends this selection. The messages under this option will change depending on the type of phishing detection. Select the second radio button if you want to provide a static custom message of your own. This message will not change depending on the type of phishing detection. You can preview this custom message by clicking the Preview Sample button.
  11. Rollout: By default, the EmployeeShield® will be rolled out for all protected accounts. You can enable EmployeeShield® for selected users for an organization from the Settings page for that specific organization.
  12. Click Save as Default, Apply or Save as Default and Apply as the case may be.

Setup Flow Example:

Option 1: If you click Save as Default, you will see the following screen.

ES-branding_save_as_default.PNG

Option 2 and 3: If you click Apply or Save as Default and Apply, you will see the following screen.
ES_branding_apply_new1.PNG

You can click Select All to apply the settings to all the organizations listed below or you can click Deselect All to deselect all the organizations listed there. Alternatively, you can select the Select/Deselect button next to each organization to select or deselect the organization.

Once you have done your selections, click Next. You will see the following screen.
ES_branding_apply_new2.PNG

Review the settings being applied and click Confirm. You will see the following message.

ES-branding_flow2c.PNG

4. Whitelisting

Graphus will skip processing any inbound email with attributes that match the whitelisted parameters. This means that no Quarantine or EmployeeShield® functionalities in Graphus will be applied to such emails. There are three different types of whitelisting capabilities provided on the platform.

  1. Whitelist Sender Domain: Skip processing inbound emails whose sender email address has the configured domain.
  2. Whitelist SMTP Mail From Domain: Skip processing inbound emails whose smtp.mail from domain and the SPF value match with the configured values.
  3. Whitelist IP Address: Skip processing inbound emails whose smtp.mailfrom server IP Address match with the configured values.

When you come to the whitelisting section, none of the radio buttons will be selected.

whitelisting_section.PNG

Select one of the three options from the section. Irrespective of what option you select, you can click the View Default button and see the current default settings.

current_whitelisting_default_settings.PNG

You also have the option to remove any of the defaults here.

Toggle the Keep/Remove button next to the domain, SMTP mail from domain or IP address to remove that value. You will see Remove Default, Apply, and Remove Default and Apply buttons as shown below.
current_whitelisting_default_settings_remove1.PNG
Option 1: If you click Remove Default, you will see the following screen.

current_defaults_final_message.PNG

Option 2: If you click Apply or Remove Default and Apply, you will see the following screen.

current_whitelisting_default_settings_remove_apply_saveasdefault1.PNG

You can click Select All to apply the settings to all the organizations listed below or you can click Deselect All to deselect all the organizations listed there. Alternatively, you can select the Select/Deselect button next to each organization to select or deselect the organization.

Once you have done your selections, click Next. You will see the following screen.

current_whitelisting_default_settings_remove_apply_saveasdefault2.PNG

Click Confirm. You will see the following message.

ES-branding_flow2c.PNG

If you already have default settings and want to apply them to certain organizations, you can do so by clicking the Apply button. You will see the following screen.

default_whitelisting_to_be_added.PNG

You can click Select All to apply the settings to all the organizations listed below or you can click Deselect All to deselect all the organizations listed there. Alternatively, you can select the Select/Deselect button next to each organization to select or deselect the organization.
Once you have done your selections, click Next. You will see the following screen.

default_whitelisting_to_be_added2.PNG

Review the settings being applied and click Confirm. You will see the following confirmation message.

ES-branding_flow2c.PNG

Setup Flow Example:

You can select one of the below radio buttons and click Save as Default, Apply or Save as Default and Apply.

If you want to select Whitelist Sender Domain, do the following:

  1. Select the Whitelist Sender Domain radio button.
  2. Enter the domain in the textbox.
  3. Click Add Row to add more text boxes or click Remove Row to remove extra boxes.
  4. Click Save as Default, Apply or Save as Default and Apply as the case may be.

whitelisting_sender_domain_option.PNG

If you want to select Whitelist SMTP Mail From Domain, do the following:

  1. Select the Whitelist SMTP Mail From Domain radio button.
  2. Enter the domain in the textbox. Select an SPF value from the dropdown.
  3. Click Add Row to add more text boxes or click Remove Row to remove extra boxes. Select an SPF value from the dropdown for each domain that you add.
  4. Click Save as Default, Apply or Save as Default and Apply as the case may be.

whitelist_SMTP.PNG

If you want to select Whitelist IP Address, do the following:

  1. Select the Whitelist IP Address radio button.
  2. Enter the IP address in the textbox. The IP address has to be in the x.x.x.x format.
  3. Click Add Row to add more text boxes or click Remove Row to remove extra boxes.
  4. Click Save as Default, Apply or Save as Default and Apply as the case may be.

whitelist_IP_address.PNG

Option 1: If you select any of the three options (i.e. Whitelist Sender Domain, Whitelist SMTP Mail From Domain or Whitelist IP Address) and click Save as Default.

  1. Select any of the three options.
  2. Enter the domain name in xxxxxx.xxx format for the first two options. Enter the IP address in x.x.x.x. format for the third option.
  3. Click the Save as Default button. You will see the following screen.
    whitelisting_save_as_default_button.PNG

Option 2 and 3: If you select any of the three options (i.e. Whitelist Sender Domain, Whitelist SMTP Mail From Domain or Whitelist IP Address) and click Apply or Save as Default and Apply.

Select any of the three options, enter the domain names or IP addresses, and click Apply or Save as Default and Apply. You will see the following screen.

whitelisting_apply_button_withSPFvalue.PNG

Note: For the Whitelist Sender Domain and Whitelist IP Address options, you will not find the SPF value on the top right. Other things remain the same.

You can click Select All to apply the settings to all the organizations listed below or you can click Deselect All to deselect all the organizations listed there. Alternatively, you can select the Select/Deselect button next to each organization to select or deselect the organization.

Once you have done your selections, click Next. You will see the following screen.

whitelisting_apply_button_withSPFvalue2.PNG

Click Confirm. You will see the following message.

ES-branding_flow2c.PNG

5. EmployeeShield® Application on Suspicious and Not Yet Trusted Senders

MSPs have the option to enable additional types of EmployeeShiled® to be applied on suspicious emails received from untrusted senders. This is in addition to the Quarantine and several other types of EmplyeeShield® that Graphus applies by default.

Turning this setting ON will apply EmployeeShield® on an email that is received from either a completely new external sender or from a sender who is not a trusted sender yet in the TrustGraph. There are additional settings that can be turned ON in this section to control this at a finer level by choosing the second and third options.

ES_application_S_NYT.PNG

These settings can be enabled or disabled in three different ways:

  1. Apply EmployeeShield® when an email is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email received from such senders. If you enable this setting, then the other two settings are covered by default.
  2. Apply EmployeeShield® when an email with attachments and links is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email with attachments and links received from such senders.
  3. Apply EmployeeShield® when an email with authentication failures (SPF/DKIM/DMARC) is received from a Suspicious or a Not Yet Trusted Sender: Graphus will apply EmployeeShield® on an email with either SPF, DKIM or DMARC authentication failures received from such senders.

Setup Flow Example:

Option 1: If you switch on the first button or the other two buttons and click Save as Default, you will see the following screen.

ES_application_save_as_default_button.PNG

Option 2: If you switch on the first button or the other two buttons and click Apply or Save as Default and Apply, you will see the following screen.

ES_application_apply_button_new1.PNG

You can click Select All to apply the settings to all the organizations listed below or you can click Deselect All to deselect all the organizations listed there. Alternatively, you can select the Select/Deselect button next to each organization to select or deselect the organization.

Once you have done your selections, click Next. You will see the following screen.

ES_application_apply_button_new2.PNG

Click Confirm. You will see the following message.

ES-branding_flow2c.PNG

 

 

Was this article helpful?
1 out of 1 found this helpful
Have more questions? Contact us