Flag email sent from non-IU sources to help identify potential phishing attempts


To help you recognize potential phishing attempts, the IU Security Center offers a service that identifies and flags incoming email sent from outside of IU.

After you activate the external email flagging service, messages you receive that are not from an authorized sender of IU mail will have an [External] tag prepended to the Subject line. Additionally, the following warning is added to the top of the message body:

This message was sent from a non-IU address. Please exercise caution when clicking links or opening attachments from external sources.

To activate external email flagging for your IU email account:

  1. Go to External Email Flagging in the IU Security Center. If prompted, log in with your IU username and passphrase. Then confirm your identity with Duo two-step login.
  2. Under "External Email Flagging", click or tap the switch to toggle it from Off to On.
    The option to opt out won't work for aliases associated with IU accounts. To turn off external email flagging for aliases, contact the Support Center.

Allow 15 minutes for the change to take effect.

Optionally, under "Additional email security recommendations", select Outlook or Gmail to learn about client-specific rules you can use to manage and/or increase the visibility of mail sent from external sources.

Related documents

This is document arwo in the Knowledge Base.
Last modified on 2019-10-17 16:15:48.

Contact us

For help or to comment, email the UITS Support Center.