O365 - Creating Mail Flow Rule

We want to ensure our Phriendly Phishing simulation phishing emails are received by your staff. Most email providers will automatically catch suspicious emails; therefore, they are caught in junk and the individual never gets the email. This article will show you how to create a mail flow rule to ensure the emails are delivered to your users

Creating Mail Flow Rule. 

1. Access O365 Exchange admin center via https://admin.cloud.microsoft/exchange#/homepage
2. Select "Mail flow"->"Rules" and "Add a rule"
   
3. Under ‘rules’ expand the ‘+’ icon dropdown menu and select ‘Create a new rule’
   
4. Provide a name for your rule, for example: ‘Phriendly Phishing bypass’. 
   
5. Under the ‘Apply this rule if…’ drop down menu select ‘The sender…’ > ’IP address is any of these ranges or exactly matches’.
   
6. From the ‘specify IP address ranges’ popup add the following Phriendly Phishing IP addresses: 54.252.116.154, 54.153.200.195, 52.63.70.98 and 52.64.99.134
   
7. Click on 'add condition' using the '+' sign.
   
8. Select '*A message header....' drop down menu select 'includes any of these words'.
   Click '*Enter text' and enter: Received and Click ‘*Enter words’ and enter individually: launch.phriendlyphishing.com, 54.252.116.154, 54.153.200.195,52.63.70.98, 52.64.99.134 and Click ‘Save’.
   
9. Under the ‘*Do the following…’ drop down, select 'Modify the message properties' and select ‘Set the spam confidence level (SCL) to…'>‘set the spam confidence level (SCL) to -1’ (Bypass spam filtering) and Click 'Save'.
   
10. Click 'Next'->'Next' and 'Finish'. The required rule has now been created and Phriendly Phishing emails should arrive in your inbox.

Note: Microsoft mentions that it can take up to 30 minutes for the changes to take effect.