How to Exclude KnowBe4's Domains From ATP URL Rewriting

If you're using Microsoft 365's Advanced Threat Protection (ATP) feature and you want to exempt KnowBe4's phish domains from being rewritten, below are steps to do so. 

Keep in mind, though, if you're not exempting any other URLs from being rewritten: Exempting only KnowBe4's phish domains will provide a red flag for your users to know when they receive simulated phishing emails.

1. First, navigate to the Phishing tab in your KnowBe4 console. Select the Domains subtab to see a list of our root phishing domains.
2. Log into your Microsoft 365 Admin Center and navigate to the Office 365 Security & Compliance page (https://protection.office.com).
3. Click on Threat management, then policy.
   
4. Click Safe Links.
   
5. Click on the name of the Link Policy that you created ("ATP Link Policy" in this example) and click Edit policy or create a new policy by clicking the Create button.
   
6. Click Settings.
   
7. Then, add the root domains you received from the KnowBe4 console to the list under Do not rewrite the following URLs:. Be sure to add each phish domain using the following format: *.<rootdomain>/*. For example, if the root domain is "knowbe4.com," you would enter *.knowbe4.com/* into the field.