If you utilize Trend Micro's services, Whitelist Right-Hand's domain so that our simulated phishing test emails and training alerts can reach your end-users.
If you're having trouble whitelisting Right-Hand in your Trend Micro services, we recommend contacting Trend Micro for help.
Table of contents
Trend Micro's Domain Whitelisting
The whitelisting process is divided into five stages, each with its own specific setup procedures needed to whitelist Right-Hand correctly.
Advanced Domain Protection
Navigate to the Advanced Threat Protection tab > Add.
Based on the service you use, select the policy to create:
Exchange
OneDrive
SharePoint
Google
Box
Dropbox
Select Advanced Spam Protection on the left.
Activate the Enable Advanced Spam Protection feature.
Click and expand the Approved/Blocked Sender List section.
Activate the option Enable the approved sender list.
Type *@right-hand.ai in the text field and click Add.
Click and expand the Rules configuration section.
From the "Apply to" drop-down menu, choose the Incoming messages option.
Select Detection Level = Medium.
Malware Scanning
Navigate to Malware Scanning on the left menu.
Click and expand the Rules configuration section.
Choose the All messages option from the Apply to: drop-down menu.
In the Malware Scanning section, opt for Scan all files and mark the Scan message body, and check the Enable IntelliTrap box.
Click and expand the Action configuration section.
From the Action: drop-down, select the Trend Micro recommend actions option.
From the Notification: drop-down menu, choose the Notify option.
File Blocking
Navigate to File Blocking on the left and select Enable File Blocking. Since this option can't be limited to Right-Hand messages only, we recommend keeping File Blocking on. Turning off this option could allow potentially malicious attachments through to your users' inboxes. Click Save.
Web Reputation
Navigate to Web Reputation on the left and select the Enable Web Reputation option.
Click and expand the Rules configuration section.
From the Apply to: drop-down, choose the All messages option.
Select Security Level = Medium.
Click and expand the Approved/Blocked URL List section.
Tick the box next to Enable the approved URL list to turn it on.
Select the checkbox next to Add internal domains to the approved URL list to enable this option.
Type Right-Hand phishing/training domains in the text field and then click Add.
Tip: Click the Import button to upload multiple URLs at once.
Virtual Analyzer
In the left-hand menu, click on Virtual Analyzer.
Tick the box to enable the Virtual Analyzer option.
Click the Save button to apply your changes.
After you’ve completed all the steps in each section, your new policy will be listed under the Advanced Threat Protection tab.
Note: After completing these steps, we recommend running a test phishing campaign with 1-2 users to make sure your whitelisting is working correctly. If needed, don’t hesitate to contact your service provider for help.
Whitelisting by Email Header in Trend Micro Security
Important note: You can ask for the custom header, which is associated to your company tenant in cyberready from your customer success manager. Alternatively you can mail to [email protected] to get the same. The header has the following format:
X-RHS-TID-<unique hash>
To whitelist by email header in Trend Micro Cloud App Security (CAS), follow the steps below.
Sign in to your Trend Micro CAS account.
Navigate to the ATP Policy section, then select Exchange Online, and click on Web Reputation.
In the Approved Header Field List section, check the box for Enable the approved header field list to turn it on.
In the Name field, enter “X-RHS-HEADER”.
In the Value field, paste the header value.
Click Add >.
Click Save.
Whitelisting Trend Micro Hosted Email Security
Trend Micro Hosted Email Security blocks emails from non-registered domains, even if they are on the Allowed Senders list. For more details, see Trend Micro’s Blocked Message Details article.