Trustwave Trust-listing
Whitelisting is an important facility for the successful implementation and usage of the CyberRiskAware Platform. All clients of the CyberRiskAware platform MUST whitelist our mail server to allow the successful delivery of Mock Phishing and Training emails. This is a requirement for all mail service providers.
Whitelisting in Trustwave is achieved through manually creating an Allow List user group, for CRA domains, and how to use that group within a rule.
Applying the following rule should allow Cyber Risk Aware’s simulated phishing emails to arrive in the target inboxes. Emails containing attachments should also be catered for based on these policies.
Procedure:
To manually create a User Group use the following steps.
- In the Configurator or MailMarshal (SEG) 10 Management Console, expand Policy Elements | User Groups and click Add or New User Group.
- Create a MailMarshal user group.
- Type a Name (e.g., CRA Whitelisting) for the user group and optional description. Complete the user group creation.
- Navigate to the new User Group and click Add or Insert Users.
- Enter the domain name you wish to include in the User Group. Click Add or Save.
Note: Ensure each entry does not include any spaces or other excess characters, particularly if pasting.
- Continue the process until all the domain names or email addresses you want to include have been entered.
- The Allow List has now been created. New users or domain names can be added to the user group in the future, by editing the group and repeating the steps.
To create a new rule using the manually created Allow List created above, use the following steps.- In Email Policy, navigate to the Policy Group where you wish to place the new rule, and select Add or New Rule.
- On the User Matching Conditions window, ensure the rule applies to Incoming messages.
- To use the Allow List within the rule, select Where Addressed From.
- Then click on the hyperlink 'people' or 'group'.
- The User Matching Condition window is now available. Select the group from the User Groups pane and click the double arrow or drag it to add it to the Matching email addresses and user groups pane. Click Save or OK.
- Now the Rule description will show Where addressed from (your allow list group name.
- Complete the required actions (such as passing the message to the next Policy Group) and save the rule.
- The rule that has just been created will allow any email addresses contained in the allow list to bypass the other rules contained within the Policy group, and be passed to the next Policy Group.