Home > Policies > Tenant Level Policies > Pre-defined Policy Templates
Download this articleClick View templates from the left navigation to explore our pre-defined policy templates. On each policy template card, you can find the template name, description, the object types it applies to, and the number of rules included. Clicking a policy template card will open the policy template window where you can find detailed rules available for this template.
The sections below describe how to reuse a policy template and list the available tenant-level policy templates.
To reuse a policy template, select a policy template card. Click Continue to proceed to the Create policy page, where you can review and edit the template's general information, rules, and settings. Once complete, assign the policy to a scope to monitor the relevant objects.
One pre-defined policy template is available for tenant-level policies: Exchange Online Protection. The following section describes this template and lists the rules it includes.
Use this policy template to get started with our recommended rules for fully securing data within your Exchange Online.
The following table lists the rules included in this policy.
| Rule Name | Rule Description |
|---|---|
| Control Mailbox Auditing for All Users | Control whether to enable mailbox auditing for all users. |
| Rich-Text Format Restriction | Restrict the rich-text format in emails to prevent malformed emails sending to other users. |
| Control Anonymous Calendar Sharing | Control whether users are allowed to share their calendars with anonymous users outside the organization. |
| Shared Mailbox Sign-In Restriction | Control whether to allow users to sign in to the shared mailboxes by their associated user accounts. |
| Control Focused Inbox | Control whether to enable the focused inbox view for users. |
| Control Exchange Online PowerShell Access for Non-administrators | Control Exchange Online PowerShell access for non-administrators. |
| Bypass Spam Filtering Rule Restriction | Restrict users from creating the mail flow rule to skip spam filtering when receiving emails from specific domains. |
| DKIM Signature Enforcement | Sign emails with DKIM (Domain Keys Identified Mail) signatures for your domains to help recipients ensure the identities of senders. |
| Control Sending Emails from Aliases | Control whether users are allowed to send emails from aliases. |
| Automatic Forwarding Restriction | Restrict users from auto-forwarding emails. |
| Deleted Item Retention Period Enforcement | Set the retention period that permanently deleted mailbox items are kept in the Recoverable Items folder. |
| Control Plus Addressing | Control whether users can use plus addressing to quickly create custom email addresses based on their standard email addresses. |
| Legacy Email Protocols Restriction | Restrict the use of legacy email protocols, including POP, SMTP, and IMAP protocols, to prevent password spray attacks that may breach mailboxes in your tenants. |
| Message Size Restriction | Restrict the maximum size for messages sent and received by mailboxes. |
| Outlook External Email Tag Enforcement | Choose whether to add tags to external emails in Outlook to help users identify emails from external senders. |