If you're utilizing Trend Micro's services, you can whitelist KnowBe4 to allow our simulated phishing test emails and training notifications through to your end users. If you run into issues whitelisting KnowBe4 in your Trend Micro services, we recommend reaching out to Trend Micro for specific instructions. You can also contact our Support team whenever you need assistance.
Whitelisting by Domain in Trend Micro
The whitelisting process is broken down into 5 sections. Each section has its own steps for configuration and must be completed to successfully whitelist KnowBe4.
Advanced Spam Protection
- Navigate to the Advanced Threat Protection tab > Add.
- Select the policy to create based on the service:
- Exchange
- OneDrive
- SharePoint
- Box
- Dropbox
- On the left, select Advanced Spam Protection.
- Check the Enable Advanced Spam Protection option.
- Select the Approved/Blocked Sender List section.
- Check the box next to the Enable the approved sender list option.
- Enter *@knowbe4.com in the text field and click the Add > button.
- Select the Rules configuration section.
- Under the Apply to: drop-down menu, select the Incoming messages option.
- For Detection Level:, select the Medium option.
Malware Scanning
- On the left, select Malware Scanning.
- Select the Rules configuration section.
- Under the Apply to: drop-down menu, select the All messages option.
- Under Malware Scanning, select Scan all files and check the box next to Scan message body and Enable IntelliTrap.
- Select the Action configuration section.
- For Action:, select the Trend Micro recommend actions option from the drop-down menu.
- For Notification:, select the Notify option from the drop-down menu.
File Blocking
- On the left, select File Blocking and select Enable File Blocking. We recommend keeping File Blocking on because you cannot limit this option to KnowBe4 messages. Turning off File Blocking could allow potentially malicious attachments through to your users.
Web Reputation
- On the left, select Web Reputation.
- Check the Enable Web Reputation option.
- Select the Rules configuration section.
- Under the Apply to: drop-down menu, select the All messages option.
- For Security Level:, select the Medium option.
- Select the Approved/Blocked URL List section.
- Check the box next to the Enable the approved URL list option.
- Check the box next to the Add internal domains to the approved URL list option.
- Enter the phish link root domains enabled in your KSAT console. For more information, see our How to Manage Phish Link Domains article.
- Then, click the Add > button.
Virtual Analyzer
- On the left, select Virtual Analyzer.
- Check the Enable Virtual Analyzer option.
- Click the Save button.
Once all steps in each section are completed, your new policy will appear under the Advanced Threat Protection tab.
Whitelisting by Email Header in Trend Micro Security
To whitelist by email header in Trend Micro Cloud App Security (CAS), follow the steps below.
- Log in to your KSAT console.
- Click the email address in the top-right corner of the page, then select Account Settings.
- Navigate to Phishing > Phishing Settings.
- Under Phishing Email Headers, select the Enable PST Header Token check box.
- Copy your unique PST Token and save it somewhere you can easily access.
- In a separate window, log in to your Trend Micro CAS account.
- Navigate to ATP Policy | Exchange Online > Web Reputation.
- In the Approved Header Field List section, select the Enable the approved header field list check box.
- In the Name field, enter “X-KB4TOKEN”.
- In the Value field, paste your PST Token that you copied earlier.
- Click Add >.
- Click Save.
Whitelisting Trend Micro Hosted Email Security
Trend Micro Hosted Email Security does not allow emails from non-registered domains regardless of whether or not they were added to the Allowed Senders list. For more information, see the Blocked message details article from Trend Micro. If you're using Trend Micro Hosted Email Security, we recommend using smart hosting to allow our emails to get through to your users.