Feb 23 2017 06:12 AM
Microsoft introduced the Safe Attachments feature as part of its Advanced Threat Protection (ATP) offering in 2015. ATP is an option for Exchange Online Protection (EOP). It is included in the Office 365 E5 plan and can be licensed as an add-on for $2/user per month for other Office 365 plans. Now Safe Attachments can handle dynamic delivery and the improvement is noticeable.
Feb 23 2017 06:50 AM
Feb 23 2017 12:51 PM
The answer is "it depends". Clearly, the volume of inbound traffic containing attachments that might need to be checked and the number of user accounts configured for this level of protection are contributory factors that might slow delivery. My practical assessment is that the delay ranges from a minute to three or four, depending on the time of day. Most of the time, it is around two minutes.
Mar 20 2017 11:21 PM - edited Mar 20 2017 11:22 PM
This has been our experience as well.
We've first tied "dynamic delivery", but I've reverted to "replace" because of user feedback. Current irritations with dynamic delivery are:
Mar 20 2017 11:27 PM
Mar 20 2017 11:47 PM
Mar 21 2017 11:54 AM
how likely is it that a scanned PDF is malicious?
Malicious URL within the PDF. ATP does not detect this all the time even with "Use safe attachements to scan downloadable content" is enabled. We had a few make it past with a link directly to malicious files in them.
Jan 22 2018 07:52 AM
I see internal documents even with the transport rule in place taking 40 mins for a 10 page document. Little hard to tell a users to wait 40 min to open the document. Sending the users to web interface to have to relogin every time is cumbersome and then there is no review just blank screen. Microsoft has put little if any development into this product, to make it more administratively friendly, their answer is go outside the application to control product thru transport rules.
Jan 22 2018 08:22 AM
I don't see - and have never experienced - a 40 minute wait for attachments. Two minutes is about all I ever see, and it is pretty consistent. The wait is most obvious with mobile clients as you get notification for the original message and then another when the attachment is ready. But I do not see those extended delays that you report.
Jan 22 2018 10:35 PM
Jan 27 2018 02:32 AM
Delays more in the area of minutes, but never excessive. Dual notification is indeed annoying - most users I talk to also prefer waiting bit (Replace) more rather than having 2 notifications (Dynamic) and having to wait for the 2nd one as they usually need the attachment.
Aug 16 2018 01:29 AM
@Tony Redmond Thanks for the info share.
I was a bit curious about something.
Why would I need to enable ATP safe attachment if I already have a malware filter in place?
Aug 16 2018 01:32 AM
Because Malware filters don't always catch new malware.
Aug 16 2018 03:44 AM
Thanks @Tony Redmond. I guess that makes sense.
Oct 07 2018 11:18 PM
@Ivan Unger - Hi Ivan. Are you able to share how you were able to bypass ATP Safe Attachments for documents being scanned by the MFPs. I have a requirement this. Much appreciated.
Oct 08 2018 04:14 AM