Preventing Office 365 ATP From Rewriting Phish Domain Links

Follow the below steps to prevent Office 365 Advanced Threat Protection (ATP) from rewriting phish domains.

1. Get a list of our phish domains by contacting support.
2. Go to your Office 365 Admin Center (click on Admin > Exchange).
3. Click on advanced threats.
4. Click on safe links.
5. Double-click on the link policy name. Select settings.
6. Finally, add the domains to the list below Do not rewrite the following URLs: Add an asterisk (*) followed by a period (.) at the beginning of each phish domain, if it is not already there. Example: *.intranet-fi.com/*