Jump to:navigation, search
Wiki






























De.png
En.png
Fr.png






Whitelisting for the simulated phishing emails of the Securepoint Awareness PLUS training course
Last adaption: 01.2024
New:
notempty
This article refers to a Resellerpreview
Access: manager.awareness.securepoint.cloud → Application →Mail filterTab Filter rules


Whitelisting UTM

In order for the simulated phishing mails of the Securepoint Awareness PLUS training to reach the users, a whitelisting must be configured in the mail filter of the UTM.
Otherwise, the mails might be discarded by the UTM.


Filter rules

Configuration in Securepoint UTM under → Applications →MailfilterTab Filter Rules Button Add Rule

Caption Value Description UTM v12.5.4 Anwendung Mailfilter Regel hinzufügen Awareness Whitelist-en.png
Rule name: AwarenessWhitelist Unique name
Connect criteria with and operator All criteria must apply
If an email is received:
and source host

is »203.0.113.113
IP address from which to receive simulated phishing emails.
The specific IP address differs depending on the industry package and email templates chosen.
The IP address can be found in the Awareness Manager portal under SimulationWhitelisting in the Email Server section.
and header field

Fromis »absender@securepoint.awareness.domain
Sender address of the simulated phishing mail
The specific sender address differs depending on the industry package and email templates chosen.
The sender addresses used can be found in the Awareness Manager portal under SimulationWhitelisting in the section Envelope sender addresses (technical senders)


notempty
New in the Wiki

and sender

ends with »@awareness.securepoint.de
The sender address of the simulated phishing mail ends with this.
Perform action:
Accept email
Lets the email pass
Save Saves the settings


URL Filter

Caption Value Description UTM v12.5.4.1 Anwendungen Mailfilter URL-Filter-en.png
Add Rule https://simulierte.phishing.url Emails must not be blocked based on domains included in phishing links.
The specific domains differ depending on the industry package and email templates chosen.
The domains can be found in the Awareness Manager portal under SimulationWhitelisting in the List of domains used in phishing links section.
Tab Action By default new URLs are blocked.
The action must be changed to allow.
Deletes the url filter rule


Whitelisting Mailserver

It must be ensured that the mail server does not filter emails itself.
For this purpose, please adjust the configuration of your own mail filter accordingly.


Whitelisting with Microsoft 365

There is a separate Wiki article for whitelisting in Microsoft 365.