The instructions below will show you how to whitelist Right-Hand's simulated phishing emails and training notifications by Right-Hand IP addresses in your Google Workspace environment.
Table of contents
Add Right-Hand's IP addresses to Email Whitelist
You can follow the below instructions to set up your IP allow list for Google Workspace/Google Apps. These instructions can be verified from Email Whitelist in Google Workspace.
Log in to https://admin.google.com and navigate to Apps > Google Workspace > Gmail.
Select Spam, Phishing, and Malware.
In the Organizations section, highlight your Domain. Do not select an organizational unit (OU).
In the Email allowlist section, type our IP addresses separated by commas. For the most up-to-date list of our IP addresses, please see this article.
Click on the Save button.
Add Right-Hand's IP addresses to Inbound Gateway
In the same section, click on Inbound gateway
Configure the Inbound gateway using the settings below:
Gateway IPs: Add Right-Hand's IP addresses. For the most up-to-date list of our IP addresses, please see this article.
Leave the Reject all mail, not from gateway IPs option unchecked.
Check Require TLS for connections from the email gateways listed above
Message Tagging: Enter text for the Spam Header Tag that is unlikely to be found in a Phishing/Training email. This field is required.
Example: kzndsfgklinjvsdnfioasmnfroipdsmfsSelect the Disable Gmail spam evaluation on mail from this gateway; only use the header value option.
Click the SAVE button.
Note:
We recommend setting up a test phishing campaign for yourself or a small group after you follow the below steps to ensure your whitelisting was successful. The setting may take up to an hour to propagate to all users, so wait at least an hour before testing.
In case of a warning banner displaying within a phishing campaign, please follow the instructions mentioned in the link
Add Right-Hand IPs and custom headers in content compliance policy
To whitelist Right-Hand by IPs and email header in Google Workspace, follow the steps below:
Log into your Google Admin account and select Apps.
โSelect Google Workspace.
Navigate to the section titled "Service Status" and select "Gmail".
Within the Gmail section, select "Compliance".
Go to the Content Compliance section.
Click ADD ANOTHER RULE.
Choose the "Inbound" and "Internal - receiving" checkboxes in the "Email messages to affect" field.
Go to the Expressions tab and select the initial dropdown menu.
Opt for "If ANY of the following match the message" from the initial dropdown menu.
Click Add.
11. Modify the configurations within the "Add expressions that describe the content you want to search for in each message" section. Refer to the below screenshot and the provided list for more details on these settings.
A. Choose "Advanced content match" from the initial dropdown menu.
B. Choose "Full headers" in the Location field.
C. In the Match type field, select Contains text.
D. Under the content, add the below Right-Hand IPs and custom header
You can ask for the custom header, which is associated to your company tenant in cyberready from your customer success manager. Alternatively you can mail to [email protected] to get the same. The header has the following format:
โX-RHS-TID-<unique hash>
1) 52.74.95.172
2) 168.245.54.27
3) 149.72.49.118
E. Click SAVE.
12. Under the "If the above expressions match, do the following" field, check the box labeled "Bypass spam filter for this message" under the Spam category.
We advise initiating a test phishing campaign for yourself or a small group to ensure whitelisting is successful. Please wait up to an hour for the settings to take effect before testing.
Note: Users might see a warning banner from Google if Google detects any emails as Spam. This banner cannot be hidden. However, it wonโt appear every time as the Google algorithm is dynamic.
โ