Microsoft Defender for Office 365: Evaluation and trials

This demo shows how to evaluate Microsoft Defender for Office 365 using real production mail flow—with minimal impact on end users. It explains why synthetic testing and journaling fall short, then introduces evaluation mode, which automatically provisions Defender for Office 365 Plan 2 licensing and creates dedicated evaluation policies for anti-phishing, Safe Attachments, and Safe Links. The walkthrough starts from the Microsoft 365 Defender trial banners and the Trials page, then sets up the trial by choosing audit-only mode or active blocking (block is recommended) and selecting which users to include (ideally all users, though you can limit the scope). After setup, it points viewers to the trial user guide and playbook, shows where to view detected threats and manage evaluation settings, and explains how to convert an audit evaluation into standard protection using recommended policy templates. It also demonstrates opening chart details in the Threat protection status report and reinforces that you can use Explorer/Threat Explorer to hunt and investigate real threats during the evaluation, then wraps with the “buy a paid subscription” path in the Microsoft 365 admin center.

We produced this as a practical product trial walkthrough: we organized the story around the few decisions that matter (audit vs block, user scope, where to read results), captured clean portal navigation with precise callouts, and edited for clarity so admins can follow the setup once and replicate it confidently. The payoff is a smooth evaluation experience that shows Defender for Office 365 working on real mail—complete with reports, hunting, and investigation tooling—while keeping your production environment calm and your conclusions defensible. Final delivery includes closed captions, audio description, and thumbnails.