Whitelisting Spam Filters

Whitelist in Trend Micro

If you're utilizing Trend Micro's services, you can whitelist KnowBe4 to allow our simulated phishing test emails and training notifications through to your end users. If you run into issues whitelisting KnowBe4 in your Trend Micro services, we recommend reaching out to Trend Micro for specific instructions. You can also contact our Support team whenever you need assistance. 

Whitelisting by Domain in Trend Micro

The whitelisting process is broken down into 5 sections. Each section has its own steps for configuration and must be completed to successfully whitelist KnowBe4. 

Note:If you are experiencing false positives, you can try to resolve the issue by whitelisting our phish link domains and our landing page domains. Please see our How to Identify and Address False Positives article for more information.

Advanced Spam Protection

  1. Navigate to the Advanced Threat Protection tab > Add.
  2. Select the policy to create based on the service:
    • Exchange
    • OneDrive
    • SharePoint
    • Box
    • Dropbox
    • Google
  3. On the left, select Advanced Spam Protection.
  4. Check the Enable Advanced Spam Protection option.
  5. Select the Approved/Blocked Sender List section.
  6. Check the box next to the Enable the approved sender list option.
  7. Enter *@knowbe4.com in the text field and click the Add > button.

  8. Select the Rules configuration section.
  9. Under the Apply to: drop-down menu, select the Incoming messages option.
  10. For Detection Level:, select the Medium option.

Malware Scanning

  1. On the left, select Malware Scanning.
  2. Select the Rules configuration section.
  3. Under the Apply to: drop-down menu, select the All messages option.
  4. Under Malware Scanning, select Scan all files and check the box next to Scan message body and Enable IntelliTrap.

  5. Select the Action configuration section.
  6. For Action:, select the Trend Micro recommend actions option from the drop-down menu.
  7. For Notification:, select the Notify option from the drop-down menu.

File Blocking

  1. On the left, select File Blocking and select Enable File Blocking. We recommend keeping File Blocking on because you cannot limit this option to KnowBe4 messages. Turning off File Blocking could allow potentially malicious attachments through to your users.

Web Reputation

  1. On the left, select Web Reputation.
  2. Check the Enable Web Reputation option.
  3. Select the Rules configuration section.
  4. Under the Apply to: drop-down menu, select the All messages option.
  5. For Security Level:, select the Medium option.

  6. Select the Approved/Blocked URL List section.
  7. Check the box next to the Enable the approved URL list option.
  8. Check the box next to the Add internal domains to the approved URL list option.
  9. Enter the phish link root domains enabled in your KSAT console. For more information, see our How to Manage Phish Link Domains article.
  10. Then, click the Add > button.
Note: You can click the Import button to import URLs in batches.

Virtual Analyzer

  1. On the left, select Virtual Analyzer.
  2. Check the Enable Virtual Analyzer option.
  3. Click the Save button.

Once all steps in each section are completed, your new policy will appear under the Advanced Threat Protection tab.

Note: After following these instructions, we recommend setting up a test phishing campaign to 1-2 users to ensure your whitelisting was successful. As a last resource, we suggest reaching out to your service provider for assistance. Visit here for an email template you can send to your service provider.

Whitelisting by Email Header in Trend Micro Security

To whitelist by email header in Trend Micro Cloud App Security (CAS), follow the steps below.

  1. Log in to your KSAT console.
  2. Click the email address in the top-right corner of the page, then select Account Settings.
  3. Navigate to Phishing > Phishing Settings.
  4. Under Phishing Email Headers, select the Enable PST Header Token check box.
  5. Copy your unique PST Token and save it somewhere you can easily access.
  6. In a separate window, log in to your Trend Micro CAS account.
  7. Navigate to ATP Policy | Exchange Online > Web Reputation.
  8. In the Approved Header Field List section, select the Enable the approved header field list check box.
  9. In the Name field, enter “X-KB4TOKEN”.
  10. In the Value field, paste your PST Token that you copied earlier.
  11. Click Add >.
  12. Click Save.

Whitelisting Trend Micro Hosted Email Security

Trend Micro Hosted Email Security does not allow emails from non-registered domains regardless of whether or not they were added to the Allowed Senders list. For more information, see this article on Trend Micro's site. If you are using Trend Micro Hosted Email Security, we recommend using Smart Hosting to allow our emails to get through to your users. See this article for instructions on how to set up Smart Hosting.

Tip: To ensure that you have whitelisted correctly, see our How to Verify You Have Whitelisted KnowBe4 Correctly article.

Can't find what you're looking for?

Contact Support