Which two steps configure Forged Email Detection? (Choose two.)
A. Configure a content dictionary with executive email addresses.
B. Configure a filter to use the Forged Email Detection rule and dictionary.
C. Configure a filter to check the Header From value against the Forged Email Detection dictionary.
D. Enable Forged Email Detection on the Security Services page.
E. Configure a content dictionary with friendly names.
While creating a content dictionary,
Enter the name of the user and not the email address. For example, enter “ Olivia Smith ” instead of “ [email protected] .”
So I guess it is B and E