Once the Outlook Web Add-in is published via the O365 Admin console, users have access to the add-in within the Outlook web portal.

• The end user clicks the  'Report a Phish' icon to report the current selected email as a phishing email.

• Alternatively, the user can select the '3 dots/ellipsis' icon (highlighted below) and click the icon from there.

• The user now needs to confirm that they are happy to report the email as a phishing email. (The text will differ depending on setting.)

• Below is a sample message that could be displayed if a user accidentally reported an email from their own company domain.
• At this point, if this was clicked in error, the customer can cancel.

• The user is then prompted with a confirmation message to confirm the successful reporting of the email.