My organization uses MessageLabs or Symantec.cloud. Can I still send phishing tests to my users?
To successfully whitelist our phishing and training related emails when using MessageLabs or Symantec.cloud, you should add our IP addresses to a global Approved Senders list. This will allow our phishing and training related emails through.
Symantec does not recommend sending phishing tests through the Email Security.cloud infrastructure. They recommend sending phishing tests directly to the receiving mail server to avoid having our simulated phishing emails blocked. You may want to consider smart hosting, which you can learn more about in this article. For more information on Symantec's position, please see their article on Phishing Assessment tests and Email Security.cloud.
To add a global Approved Sender:
- Select Services > Email Services > Anti-Spam.
- Ensure that Global Settings is selected in the domains drop-down list.
- Click the Approved Senders tab.
- Click the Add Entry option.
- The Domain/Email/IP and Description fields become editable.
- In the Domain/Email/IP field enter the IP address of our mail servers. For the most up-to-date list of our IP addresses, please see this article.
- In the Description field, enter brief details about the new entry.
- To add the entry to the list, click Update.
This new policy will allow any inbound mail flow originating from our IPs to reach your users. Be sure that all three of our sending IPs are added to this list.
After following this article, we recommend setting up a test phishing campaign to 1-2 users to ensure your whitelisting was successful. As a last resource, we suggest reaching out to your service provider for assistance. Visit here for an email template you can send to your service provider.