Proofpoint Essentials Allowlisting
Direct SMTP should be used with Proofpoint Essentials. Direct SMTP allows Infosec IQ to deliver email directly to your mail server. You will need to open a support ticket to get your Infosec IQ account configured. Please see the Direct SMTP article that corresponds to your email envionment:
- Direct SMTP Setup in Microsoft / Office 365
- Allowlisting in Google Workspace / G-Suite
- Direct SMTP Setup in Exchange 2013/2016
Proofpoint Enterprise Allowlisting
Organizational Safe List
In order to bypass Proofpoint’s spam filtering, you will need to add Infosec IQ’s email stack domain to the organizational safe list. To do this,
- Navigate to your Proofpoint Essentials Admin Console
- Click on Email Protection
- Expand the Spam Detection menu option on the left
- Select Organizational Safe List
- Click on Add in the top left corner
- Once the Proofpoint - Global Safe List window pops up, fill in the following:
- Filter Type: Sender Hostname
- Operator: Equals
- Value: Enter the domains listed in the Email stack section in your Infosec IQ Account Settings
- Comments (Optional): Infosec IQ Allowlist
- Click Save Changes
Adding Exceptions to URL Defense
In order to circumvent Proofpoint’s Targeted Attack Protection (TAP) from blocking and scanning the URLs in our simulated phishing templates, you will need to add our phishy domains as exceptions to the URL rewrite policy:
Note: Before completing the below steps, you will need to have our complete list of phishy domains. Please contact support if you do not have the list.
- Navigate to your Proofpoint Essentials Admin Console
- Click on Email Protection
- Expand the Targeted Attack Protection menu option on the left
- Expand URL Defense and select URL Rewrite Policies
- In the Exceptions section add our Phishy Domains
- Once the domains have been added, click on Save Changes
Once the above settings are configured, please wait a couple of minutes to allow for propagation.