O365 - Creating Mail Flow Rule

We want to ensure our Phriendly Phishing simulation phishing emails are received by your staff. Most email providers will automatically catch suspicious emails; therefore, they are caught in junk and the individual never gets the email. This article will show you how to create a mail flow rule to ensure the emails are delivered to your users

Creating Mail Flow Rule

1. Access O365 Exchange admin center via https://admin.cloud.microsoft/exchange#/homepage
2. Select "Mail flow"->"Rules" and "Add a rule"
   
3. Under ‘rules’ expand the ‘+’ icon dropdown menu and select ‘Create a new rule’
   
4. Provide a name for your rule, for example: ‘Phriendly Phishing bypass’. 
   
5. Under the ‘Apply this rule if…’ drop down menu select ‘The sender…’ > ’IP address is any of these ranges or exactly matches’.
   
6. From the ‘specify IP address ranges’ popup add the following Phriendly Phishing IP addresses: 54.252.116.154, 54.153.200.195, 52.63.70.98 and 52.64.99.134
   
7. Click on 'add condition' using the '+' sign.
   
8. Select '*A message header....' drop down menu select 'includes any of these words'.
   Click '*Enter text' and enter: Received and Click ‘*Enter words’ and enter individually: launch.phriendlyphishing.com, 54.252.116.154, 54.153.200.195,52.63.70.98, 52.64.99.134 and Click ‘Save’.
   
9. Under the ‘*Do the following…’ drop down, select 'Modify the message properties' and select ‘Set the spam confidence level (SCL) to…'>‘set the spam confidence level (SCL) to -1’ (Bypass spam filtering) and Click 'Save'.
   
10. Click 'Next'->'Next' and 'Finish'. The required rule has now been created and Phriendly Phishing emails should arrive in your inbox.

Note
Microsoft mentions that it can take up to 30 minutes for the changes to take effect.