How to Whitelist in Proofpoint
If you're utilizing Proofpoint's spam filtering, you can whitelist KnowBe4 to allow our simulated phishing test emails and training notifications through to your end users.
If you're using the Proofpoint Essentials suite of services, see the below articles instead:
- General Proofpoint Essentials Whitelisting: How to Whitelist an IP Address to Bypass Spam Filtering
- If you want to spoof your own domain using KnowBe4: Bypass Imposter Email Detection
If your phishing security test emails are bouncing with the following error message, see the How to Prevent Proofpoint from Bouncing Emails section of this article.
- "Sender address rejected: Domain not found (in reply to RCPT TO command)"
When you're ready to whitelist in Proofpoint, follow the below instructions:
- From your Proofpoint admin center, navigate to Email Firewall, then Rules.
- Be sure to select the "On" radio button for Enable, under Rule Settings.
- Name your rule ID something such as "KnowBe4 Whitelisting by IP Address," and provide a description such as "KnowBe4 Phishing and Training emails."
- In the "Condition" section you will whitelist KnowBe4 by our IP addresses using the "Add Condition" button. Below you can find our IP addresses for phishing and training emails.
IP Addresses for KnowBe4 Accounts Located At Training.KnowBe4.com
|126.96.36.199||KnowBe4 Simulated Phishing emails|
|188.8.131.52||KnowBe4 Training emails|
If you're on the EU instance of KnowBe4, the IP addresses you need to whitelist will be different. See here for more information.
- Under Dispositions, change the Delivery Method from the default selection to Deliver Now.
- Be sure to save your rule and allow time for this new setting to propagate before testing.
How to Prevent Proofpoint from Bouncing Emails
If some of your phishing security test (PST) emails are bouncing with an error message of
"Sender address rejected: Domain not found (in reply to RCPT TO command)",
follow the instructions below to resolve this issue.
- Navigate to your KnowBe4 account settings by clicking on your email address in the top-right corner and then click "Account Settings".
- Scroll down to the Phishing section and ensure that the "Disable return path header" option is not enabled (see below).
- Be sure to save this change by clicking the "Update Account Info" button at the bottom of the page.
- In order to confirm this change will prevent Proofpoint from causing your PST emails to bounce, test this change by sending a test campaign to yourself or a limited number of users before sending it to a larger group.
Still need assistance? Submit a support ticket and we can help.