Trust-listing is an important facility for the successful implementation and usage of the Cyber Risk Aware Platform. All clients of the Cyber Risk Aware platform MUST trust-list our mail server to allow the successful delivery of Mock Phishing and Training emails.
This is a requirement for all mail service providers.
As a Google Workspace administrator, you can help ensure that messages received from specific sending IP addresses don't get marked as spam.
Do this by adding CRA IP addresses to an email trust-list in your Google Admin console. To prevent Google banners from appearing in your user's inbox when they receive a CRA simulated phishing test add CRA IP addresses as Inbound Gateways
Please see steps for both below:
Add CRA IP addresses to your trust-list
Sign in to your Google Admin console. Sign in using an administrator account, not your current account ie [email protected]
From the Admin console dashboard, go to AppsGoogle WorkspaceGmailSpam, Phishing and Malware.
On the left, select the top-level organisation, typically your domain. Do not select an organisational unit (ou).
In the Email trust-list section Enter the IP addresses for your email trust-list: enter the Cyber Risk Aware IPs separated by commas "168.245.104.162,192.254.120.51" and click SAVE.
It can take up to an hour for any changes to take effect, so please wait at least an hour after making the change before sending out any test campaigns.
Add CRA IP addresses as Inbound Gateways
This is to prevent Google banners from appearing in a user's inbox upon receipt of a Cyber Risk Aware phishing email.
- Sign in to your Google Admin console. Sign in using an administrator account, not your current account ie [email protected]
From the Admin console dashboard, go to AppsGoogle WorkspaceGmailSpam, Phishing and Malware.
On the left, select the top-level organisation, typically your domain. Do not select an organisational unit (ou).
Scroll to the Inbound Gateway setting. Click the setting and select the Enable checkbox. This will open the Inbound Gateway screen.
Configure the Inbound Gateway using the settings below:
- Gateway IPs: Add the IP Addresses for Cyber Risk Aware. ( "168.245.104.162" & "192.254.120.51")
- Leave the Reject all mail not from gateway IPs option unchecked.
- Check Require TLS for connections from the email gateways listed above.
- Message Tagging
Enter text for the Spam Header Tag that is unlikely to be found in a phishing email. This field is required.
Example: abcdefghijklmnopqrs - Select the Disable Gmail spam evaluation on mail from this gateway; only use header value option.
- Click the SAVE button.