Whitelisting Prilock's
Domain and Email Header Instructions
IMPORTANT: Before you begin phishing and training your users, you must whitelist Prilock so your user notifications, activation codes, and simulated phish reach their inboxes and are not blocked or filtered into Spam folders.
Prilock uses special text inserted into the email headers to tell systems that the emails are safe and should be not be blocked. In addition, you should whitelist our domain Prilock.com. It is not as difficult as it looks and only takes a few minutes once you log into your Email administration account.
Whitelisting by Domain in Exchange 2013, 2016, or Office 365
Step 1:
Log into your mail server admin portal and open the Admin Centers dropdown. From there click on the Exchange tab.
Step 2:
Select mail flow on the left and then click on the + sign to add your first rule. Select “ Bypass Spam Filtering… ” from the drop-down menu. A new rule screen will open.
Step 3: Creating the Rule
- Give the rule a name, such as Bypass Clutter & Spam Filtering by Domain
- Under the dropdown menu for “ Apply this rule if… ” select “ The sender -> domain is ”
- Type Prilock.com and hit the + sign
- Click OK and Save your new rule
Whitelisting by Email Header in Exchange 2013, 2016, or Office 365
Whitelisting by headers is the most suitable way to ensure phishing test emails are delivered to your users. We will also make sure that we bypass the Clutter folder in Microsoft's Exchange Online Protection (EOP) mail filter with this rule.
Once your settings are in place, it may take some time for those settings to propagate. We recommend that you wait 1-2 hours and then set up a phishing campaign for yourself or a small group to test out your new whitelisting rule.
SECTION 1: Bypass Clutter & Spam Filtering by Email Header (Exchange 2013, 2016, and O365)
Step 1:
Go to Admin -> Admin Centers -> Exchange -> Mail Flow
Step 2:
Click the + button and select “ Bypass Spam Filtering… ” from the drop-down menu.
Step 3: Creating the Rule
- Give the rule a name, such as Bypass Clutter & Spam Filtering by Email Header.
- Under the dropdown menu for “ Apply this rule if… ” select “ A message header -> includes any of these words ” On the right side of that rule, you will see “ Enter text ” and “ Enter words... ”
- Click the blue link “ Enter text ” and type in the header “ X-PHISHTEST ” and then hit OK
- Click the blue link “ Enter words… ”, type in “ Prilock ”, click the + sign and hit OK
How to set the message header settings:
- Next, under “Do the following…” Ensure that this field is set to “ Set the spam confidence level (SCL) to… ” and “ Bypass spam filtering ” is set and underlined in blue on the right side.
- Click the “add action” button below and select “ Modify the message properties -> set a message header "
- On the right side of that rule you will see two options to enter text. Set the message header to “ X-MS-Exchange-Organization-BypassClutter ” and in the second " Enter text... " and type " true "
Hit Save. Once you have completed this setup please allow time for the new rule to propagate, and then set up a test phishing campaign for yourself or a small group, to test out your new whitelisting rule.
SECTION 2: BYPASS JUNK FOLDER (O365 mail servers ONLY)
This rule will allow only simulated phishing emails from us to bypass the Junk folder to ensure that your users are receiving simulated phishing emails in their inboxes.
Step 1:
Go to Admin -> Admin Centers -> Exchange -> Mail Flow.
Step 2:
Click the + button and select “ Create New Rule… ” from the dropdown menu.
Step 3:
- Give the rule a name, such as " Prilock - Skip Junk Filtering "
- Click on " more options " near the bottom of the window
- Under " Apply this rule if.... " select “ A message header -> includes any of these words ”
- On the right side of that rule, you will see “ Enter text ” and “ Enter words... ”
- Click the blue link “ Enter text ” and type in the header “ X-PHISHTEST ” and then hit OK
- Click the blue link “ Enter words… ”, type in “ Prilock ”, click the + sign and hit OK
Step 4:
Beneath " Do the following… ", select " Modify the message properties -> Set a Message Header "
Step 5:
Set the message header " X-Forefront-Antispam-Report " to the value " SFV:SKI; ".
Step 6:
After you click save, ensure that your rules are in the correct priority order. “Bypass Clutter & Spam Filtering by Domain” should be Priority 0, “Bypass Clutter & Spam Filtering by Email Header” should be Priority 1 and “Prilock - Skip Junk Filtering” should be Priority 2. If your rules need to be rearranged, you can select one and click on either the up or down arrows at the top of the section.
