Can someone explain the difference between protecting a custom domain and add a trusted domain. Seems like they both o
It's pretty much the difference between sender and recipient. You add trusted domains and senders so that they can bypass the anti-phish feature. The domains/users to protect on the other hand are used to designate recipients in your own tenant.