This workflow template, "Remove Outlook Forwarding or Redirect Rules on Mention in Teams", is designed to enforce compliance and security within an organization's email system. Upon receiving a specific mention in Microsoft Teams that includes an email address, the workflow checks the associated mailbox for any mail forwarding or redirection rules that send emails to unapproved domains. If such rules are discovered, an Adaptive Card is presented to the user in Teams, allowing them to review and choose to delete any unauthorized mailbox rules. This automation ensures that sensitive information is not accidentally or maliciously forwarded outside of the company's permissible domains, enhancing the security posture of the organization.
Trigger
Microsoft Teams Bot
Use Cases
Identity and Access Management , Security Bots
Workflow Breakdown
Receive a mention in Teams with an email address to check
Gather all mailbox rules for the user and filter for forwardTo, forwardAsAttachmentTo, or redirectTo
Compare against the list of allowed domains
If a rule is found to be forwarding/redirecting outside of the allowed domains create Adaptive Card with details
Ask the user if any rules should be deleted on the mailbox using the Adaptive Card
If the user selected to remove a rule, remove the rule and send the user a status update on each selected rule when complete
Vendors
Utils, Microsoft Outlook, Microsoft 365, Microsoft Teams Bot
Workflow Output
Mailbox details and success/failure of rule deletion if selected.