If you're utilizing Trend Micro's services, you can whitelist KnowBe4 to allow our simulated phishing test emails and training notifications through to your end users. If you run into issues whitelisting KnowBe4 in your Trend Micro services, we recommend reaching out to Trend Micro for specific instructions. You can also contact our support team whenever you need assistance.

Whitelisting by Email Header in Trend Vision One Cloud Email and Collaboration Protection

To whitelist by email header in Trend Vision One Cloud Email and Collaboration Protection, follow the steps below.

1. Log in to your KSAT console.
2. Select the email address in the top-right corner of the page, then select Account Settings.
3. Navigate to Phishing > Phishing Settings.
4. Under Phishing Email Headers, select the Enable PST Header Token check box.
5. Copy your unique PST Token and save it somewhere you can easily access.

   

6. In a separate window, log in to your Trend Micro account.
7. In Cloud Email and Collaboration Protection, go to Policies → Global Settings → User-Defined Lists → Approved/Blocked Lists, and select Exchange Online.
8. In the Approved Header Field List section, select the Enable the approved header field list check box.
9. In the Name field, enter “X-KB4TOKEN”.
10. In the Value field, paste your PST Token that you copied earlier.
    Note:The Name and Value fields are case-sensitive.
11. Click Add >.
12. Click Save.

Whitelisting by IP Addresses in Trend Vision One Cloud Email Gateway Protection

Trend Vision One Cloud Email Gateway Protection does not allow emails from non-registered domains, regardless of whether or not they were added to the Allowed Senders list. For more information, see the Blocked message details article from Trend Micro. If you're using Trend Vision One Cloud Email Gateway Protection, we recommend using smart hosting to allow our emails to reach your users.

You can also permit Trend Vision One Cloud Email Gateway Protection to skip scans for incoming emails sent from third-party phishing simulation services by adding their IP addresses to the list.

Reference each instance’s IP address from our Whitelisting Guide. This guide will also tell you:

1. Whitelisting best practices
2. KnowBe4’s IP addresses, hostnames, and headers
3. Additional configurations

In order to add phishing simulators to Trend Micro’s Allowed Senders list, follow the steps below:

1. Go to Administration → Other Settings → Service Integration and select Phishing Simulation.
2. In the Trend Micro phishing simulation section, enable the Bypass scans for Trend Micro phishing simulations toggle to skip scans for incoming emails sent from Trend Micro phishing simulation IP addresses.
3. In the Third-party phishing simulation section, add the IP addresses of each service provider that you want to skip email scanning.
   1. Select Add.
   2. In the Add Phishing Simulation Settings pop-up window, select Enable for its Status to have Cloud Email Gateway Protection apply phishing simulation email scan skipping to this service provider.
   3. Specify a unique name for this service provider setting.
   4. Enter KnowBe4’s IP addresses associated with your KSAT instance.
   5. Provide a description to help identify the setting among other settings, such as “KnowBe4 phishing simulations.”
   6. Select Save.
   7. To delete the settings that are no longer needed, select the desired settings and select Delete.