What is whitelisting?
Whitelisting is a process that is configured in your email and security environment that will allow Phriendly Phishing to reliably send emails and phishing simulations to the inboxes of your employees.
Failure to do so may result in our emails being blocked or filtered out by your mail server or spam filter.
How do I whitelist?
You will need to whitelist in your email server as well as any other software that may block external messages such as:
- Mail gateways and spam filter
- Firewall
- Anti Virus
- Endpoint Security
If you require a list of all the simulation domains being used, please contact support@phriendlyphishing.com to request this list.
Whitelisting Guide
Follow the diagram to find the option (numbered and coloured) for your specific mail server structure and follow the instructions in the table.
Whitelisting Options
Options |
Description |
Instructions |
Option 1: Bypass Filter + Advanced Delivery
|
My organization's emails are sent through a secure email gateway (SEG) before being sent to our Microsoft mail server |
(Recommended) 2. Setup Microsoft's Advanced Delivery Policies Note: Ensure you have emailed support@phriendlyphishing.com with your Microsoft MX value as detailed in Step 1. |
Option 2: Mail Flow Rules |
My organization's emails are sent through a secure email gateway (SEG) before being sent to our Microsoft mail server |
|
Option 3: Microsoft Advanced Delivery |
My organization's emails are sent directly to our Microsoft mail server |
|
Option 4: SEG Whitelist + Google Workspace |
My organization's emails are sent through a secure email gateway (SEG) before being sent to our Google Workspace mail server | |
Option 5: Google Workspace |
My organization's emails are sent directly to our Google Workspace mail server | Whitelist in Google Workspace |
Other: None of these options suit me |
I'm unsure or my environment is not listed here. |
Reach out to support@phriendlyphishing.com for assistance |
FAQ
-
What is a mail gateway or spam filter?
A mail gateway or spam filter, often referred to as Secure Email Gateway (SEG) is an extra layer of email security that will block suspicious emails before it reaches your email server.
-
What is the difference between the two options for O365 with a Secure Email Gateway (SEG)?
Option 1 is recommended as Microsoft has developed a specific feature for third-party phishing email simulations and will only work if the SEG is bypassed. This option is the most reliable way to ensure your learners are receiving all emails and that Phriendly Phishing can accurately track phishing link clicks.
However, some companies may not be comfortable with allowing Phriendly Phishing to bypass their SEG, and Option 2 is the alternative whitelisting method we provide.
-
What if I don’t use O365 or Google Workspace?
While we don’t have guides on whitelisting outside of O365 and Google Workspace, you will still be able to whitelist by adding our IP’s and Domains to your office suite’s administration console which your office suite should have a guide on. If you are still unsure, you can contact support@phriendlyphishing.com for help.
- My firewall is blocking the simulation domains. Can I get a list of all the simulation domains being used?
Yes. Please email support@phriendlyphishing.com to request this list.
Comments
0 comments
Please sign in to leave a comment.