Whitelisting Addresses
Situation – You are looking to whitelist address(es) on your own domain(s). You are unable to enter your domain(s) or address(es) with your domain(s) into the safe sender list. You have an outside resource that sends on your behalf that you need to safe list (e.g. external voice-mail system or docucenter). You are looking for specific instructions on setting up a whitelist/safe list filter.
Solution – Using the Filters tab to create a filter for the specific situation or need
NOTE: Whitelisting an entire domain isn’t recommended as this defeats domain spoof protection.
Use whitelist sparingly as this can open up a security issue should the whitelisted address become compromised.
Setting Up A Filter To Whitelist An Address:
1. Navigate to ‘Security Settings‘ and click > Email > Filter Policies
2. While on the Inbound tab, click New Filter.
3. Choose a name for the filter (i.e. White-listed Senders) and leave the Direction set to Inbound.
4. Click Continue.
5. In the Filter Logic section, choose the proper Scope for the filter:
- If you want the filter to be applied to everyone, leave scope = <Company>.
- If you want to target a specific individual or group of individuals, change the scope.
6. In the If section:
- First drop-down box: Select Sender Address from the dropdown list of options message elements.
- Next drop-down box: Select IS.
- Final box: Enter the full email address of the sender (e.g. external-voicemail-system@mydomain.com).
Spoofing from the entered address can be safeguarded against by adding additional IF conditions. For example: if the message subject is similar to each message, add the subject text or if messages always come form a specific server, add a condition for the specific server name in the email header.
7. In the Do section: select <Allow> from the dropdown list of actions.
8. On the right, in the Filter Details box, in the Description box, give a brief description of the filter’s purpose.
9. Click Save.
