Whitelisting is an important facility for the successful implementation and usage of the CyberRiskAware Platform. All clients of the CyberRiskAware platform MUST whitelist our mail server to allow the successful delivery of Mock Phishing and Training emails. 


This is a requirement for all mail service providers.


Note: These instructions cover Outlook 365. Other mail server instructions can be made available upon request.


To successfully whitelist our mail server you must carry out two tasks.


Step 1 - Add CyberRiskAware Mail server to your allowed mail list

Step 2 - Allow CyberRiskAware mail bypass your spam filter - SENDER IPs 

Step 3 - Allow CyberRiskAware mail bypass your spam filter - SENDER DOMAINs




Step 1 - Add CyberRiskAware Mail server to your allowed mail list

  • Log onto the admin portal on your mail server. 
  • Select the Admin menu item. 
  • You will now be in the Microsoft 365 admin centre. 
  • Please expand the “… Show all” section.
  • Under the Admin Centres menu on the left, click on Security.
  • On the following screen, click on Threat Management drop down, then Policy, then click on the Anti-Spam tile.
  • You are now in your Office 365 Anti-Spam settings.
  • Click the down icon to the left of Connection filter policy (always ON).
  • An Edit Policy button will appear – click this.
  • You will see a side window open titled “Connection Filter Policy”. Give the policy a suitable name (e.g. CRA Whitelisted IPs or similar) and click on the Edit link to the right of IP Allow List under Connection Filtering.
  • Please add the following IP addresses (192.254.120.51 and 168.245.104.162). Please enter one at a time and then click the plus icon.
  • Finally, click Save.


Step 2 - Allow CyberRiskAware mail bypass your spam filter – SENDER IPs

  • Log onto the admin portal on your mail server. 
  • Select the Admin menu item. 
  • You will now be in the Microsoft 365 admin centre. 
  • Please expand the “… Show all” section.
  • Select / Click on the Exchange sub-menu item.
  • You are now in your Office 365 Exchange admin centre Dashboard.

  • Look for the "mail flow" section on your dashboard and select / click.
  • You should now be in the rules Section of your Exchange admin centre.
  • Select the plus symbol (underneath rules) and select "Bypass Spam Filtering"
  • Give the rule a suitable name by typing it in to the Name: field (e.g. CRA Spam Filter Rule). 
  • Click on the *Apply this rule if... dropdown and then select "The Sender..".
  • You will see a pop out list - please then select the "IP address is in any of these ranges or exactly matches" sub item.
  • A pop-up window will appear titled "specify IP address ranges".
  • Please add the following IP addresses "168.245.104.162" & "192.254.120.51" for this rule by entering them one at a time in the textbox and clicking the plus icon. When both are added, click on the OK button.
  • You will now see that the IPs have been added.

  • The next thing to do is to click on the Add Action button that appears underneath this.
  • From the resultant dropdown menu titled Select one, select Modify the message properties... and finally set a message header.
  • You will need to click on both instances of 'Enter Text' to set the Message Header and value properties. These appear to the right of the dropdown labelled Set the message header to this value...
  • Click on the first instance of Enter Text to set the Message Header. Please enter this exact text noting that it is case sensitive:
    X-MS-Exchange-Organization-BypassClutter
  • Click OK
    Then click on the second instance of Enter Text to set the Header  value. Please enter this exact text noting that it is case sensitive:
    true
  • Click OK
    Click on "Save".

Step 3 - Allow CyberRiskAware mail bypass your spam filter - SENDER DOMAINs

  • From the Exchange admin centre, select mail flow
  • Click the (+) button beneath Rules
  • Select Bypass spam filtering...
  • Give the rule a name, such as "CRA Spam Filter Rule with domains "
  • Click the Apply this rule if... drop-down menu and select The Sender, then select domain is….
  • Enter all of our domains (listed below), clicking the + sign after each entry, then click OK

e-messsages.com

emesssages.com
e-citrix.com
ecompliants.com
e-compliants.com
e-faax.com
eonline-shopping.com
e-outlook.com
e-owa.com
evpnn.com
e-vpnn.com
orders-processed.com
storage-limit.com
docusine.com
barclaysbanksonline.co.uk
docs-google.com
it-admingroup.com
it-companyadmin.com
it-securegroup.com
it-securemail.com

cyberriskaware.com

  • Note the section titled *Do the following... with the dropdown option of Set the spam confidence level (SCL) to... requires another rule  - but as we can't do it directly on this screen we will address this below.
  • Click Save.


 

  • Lastly, we must set our Spam Confidence Level (SCL) rule up. This was the step we bypassed above.
  • Please return to your Microsoft 365 Admin Centre and click on Exchange and then mail flow as we did at the start of Step 2 (above).
  • Click on rules, the plus icon and then Create a new rule...
  • Give the rule a suitable name e.g. CRA Spam Confidence Level (CSL) and check on the More options... link that appears towards the bottom of this pop-up window.
  • From the *Apply this rule if... dropdown select The sender is.... then IP address is in any of these ranges or exactly matches.
  • Please add the following IP addresses "168.245.104.162" & "192.254.120.51" for this rule by entering them one at a time in the box and clicking the plus icon. When both are added, click on the OK button.
  • You will see that the IPs have been added.
  • Click on the dropdown labelled *Do the following... (Select One) then click Modify the message properties...   and then set the spam confidence level (SCL) 
  • Click on the dropdown under specify SCL and select Bypass spam filtering.
  • Click Ok.
  • Finally, click Save.



Congratulations. You are now ready to create your first CyberRiskAware security evaluation and Training email Campaigns.