Setting Up the Microsoft Defender for Office 365 Allow List

Configure the Microsoft Defender for Office 365 allow list settings to allow Phishing Simulation Assessment to send phishing emails to the employees in your organization.

Configure your Microsoft Defender for Office 365 phishing simulation settings.
  1. On the Trend Vision One console, locate and copy the Phishing Simulation Assessment sending domains, sending IPs, and simulation URLs by going to Phishing Simulation Assessment and clicking Edit Settings.
  2. In the Microsoft Defender for Office 365 portal, go to Email & collaboration > Policies & rules > Threat policies > Advanced delivery in the Rules section.
  3. On the Advanced delivery screen, click the Phishing simulation tab and then click Add.
  4. In the Edit third-party phishing simulation panel that opens, configure the following settings.
    • Sending domain

    • Sending IP

    • (Optional) Simulation URLs

    Your organization should now be able to receive emails from Phishing Simulation Assessment. To verify email delivery, run a test simulation.

Note:

The simulation URLs change over time. Check the list before launching the next simulation.

Important:

If your organization is still unable to receive emails from Phishing Simulation Assessment, learn how to troubleshoot the Microsoft Defender for Office 365 allow list.