Skip to main content

Whitelisting Guide (Microsoft)

How to allow revel8 to send Simulations without being stopped by Microsoft Defender

Updated over a week ago

🎣 1. Advanced Settings For Phishing Simulation

The advanced delivery for phishing simulations in Microsoft 365 Defender offers you the option of whitelisting for revel8.

  1. Log in to your mail server portal as an administrator and click on Security in the menu

  2. Navigate to the Policies and rules area

  3. Click on Threat policies

  4. Click on Advanced delivery

  5. Now click on Phishing-Simulation and then on Edit to add entries

  6. A window opens with the heading Edit third-party phishing simulations

    The whitelisting information can be entered in this window via the drop-down menu

  7. Move to the revel8 platform to find the Domains you need to Whitelist:

    1. Click on Integrations

    2. Move to the Whitelisting tab

    3. Copy the Domains and proceed with whitelisting them in the Microsoft Defender

  8. Enter our IPv4 addresses in the IP (x elements) will be sent field. You will find them under the Domains in the Awareness Simulator

    Copy the IP addresses and proceed with whitelisting them in the Microsoft Defender.

  9. Please enter the domains/URLs used in the phishing links in the Simulation URLs that allow (x elements) field in the following format: "~example.com~". Now click on Save

Please note that only 30 entries are permitted at this point. It is therefore also necessary to whitelist the phishing domains in Microsoft Defender.

Please note that it may take some time for the settings to take effect.

🛡️ 2. Set Up Secure Links (Microsoft Defender)

The following guide describes how to add the phishing domains used by the revel8 Phishing Simulation to a policy for Microsoft Defender for Microsoft 365, which prevents your users from seeing a warning screen in the browser.

Another reason for setting up secure links could be that e-mails are identified as junk due to the links they contain.

Please note that depending on the scope of the license you have purchased, it may not be possible to access these settings in Microsoft Defender. For more information on this topic, please contact your Microsoft support.

  1. First, please go to https://www.office.com/apps?auth=2&home=1 and switch to Security by searching for it

  2. Click on Policies and rules, then click on Threat policies. Under the threat policies, click on Secure links

  3. Click on Create to add a new policy

  4. Give the policy a name and, if necessary, a description

  5. Under the Users and domains tab, select your organization's domain as the recipient domain

  6. In the URL & click protection settings, select that URLs are rewritten, user clicks are tracked and users can click through to the original URL

On the same page, click on Manage 0-URLs

You can now define exceptions for the policy. This ensures that the revel8 websites can be accessed. To do this, enter the domains that you should have received from revel8

Final Checklist

  • Advanced Delivery configured for phishing simulations

  • revel8 domains added under third-party simulations

  • revel8 IPv4 addresses entered in allowed IP list

  • Simulation URLs added in “Allowed URLs” field

  • Secure Links policy created with revel8 domains whitelisted

  • Settings saved and verified successfully

Related Articles
Whitelisting Guide (Google)
App Reporting
Did this answer your question?