Skip to main content
All CollectionsGetting StartedStep 1: Whitelisting Right-Hand Domains & IPWhitelisting on cloud or on-premises spam filtering
How do I whitelist in Mimecast?
How do I whitelist in Mimecast?
Soumalya Mitra avatar
Written by Soumalya Mitra
Updated over 4 months ago

To Allow Right-Hand's Training Emails / Phishing Simulation emails in Mimecast, follow the below instructions for various policies that you'll add to your Mimecast console.

Please follow the below order for whitelisting.

Step 1: Anti-Spoofing Policy

Step 2: Permitted Sender's Policy

Step 3: Attachment Protection Bypass Policy

Step 4: URL Protection Bypass Policy

Step 5: Impersonation Protection Bypass Policy

Step 6: Attachment Management Bypass Policy

Step 7: Preventing Mimecast from Re-Writing Phishing Links

Step 8: DNS Authentication ByPass Policy (Optional)

Step 9: Greylisting ByPass Policy

Anti-Spoofing Policy

Follow the steps below to allow Right-Hand to send emails from Right-Hand domain.

  1. Sign in to Mimecast Administration Console.

  2. Select the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Anti-Spoofing from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click Save. Saving this policy will allow the emails from the Right-Hand domain.

Permitted Sender's Policy

A new Permitted Sender Policy should be created to allow Right-Hand's Training Emails/Phishing Simulation emails to reach the user's mailbox.

Note: Always create a new Policy. Do not edit the default one.

In the following steps, you can authorize Right-Hand to send emails on your behalf, displaying an email address of your domain.

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Permitted Sender from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click on Save. Saving this policy will allow the Training Emails/Phishing Simulation emails from the Right-Hand domain.

Attachment Protection Bypass Policy

To allow attachments from simulated Phishing campaigns, follow the below steps to successfully whitelist Right-Hand emails.

Note: Always create a new Policy. Do not edit the default one.

In the following steps, you can authorize Right-Hand to send emails on your behalf, displaying an email address of your domain.

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Attachment Protection ByPass from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, input the IP ranges for Right-Hand. You can find our IP ranges here.

  9. Click Save. Saving this policy will allow the emails with attachments from the Right-Hand domain.

URL Protection Bypass Policy

Mimecast's URL Protection service scans and checks links in all delivered emails. Follow the steps below to create a new URL protection bypass policy:

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose URL Protection ByPass from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click on Save.

Impersonation Protection Bypass Policy

This policy is used to allow whaling/phishing emails pretend to come from users/domains that look like they are internal to your organization.

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Impersonation Protection ByPass from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click Save.

Please note: In the 6th step, in the Select Option field under Options, select the impersonation protection definition you want to be bypassed. To bypass multiple definitions, you will need to create a separate Impersonation Protection Bypass Policy for each one.

Attachment Management Bypass Policy

Configuring this Attachment management ByPass policy will help you prevent attachments from being removed from your simulated phishing emails.

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Attachment Management ByPass from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click on Save.
    ​

Preventing Mimecast from Re-Writing Phishing Links

To prevent Mimecast from re-writing the links in the simulated Phishing emails, please do add Right-Hand's phish link domains as Permitted URLs.

You can find a list of Right-Hand phishing link domains. To disable link re-writing on permitted URLs, please refer here.

Please remember, it's not advisable to make an exception for this situation unless you already have established exceptions for other senders. Otherwise, any deviation from a rewritten Mimecast URL could raise concerns for users and potentially affect the accuracy of your results.

For additional details regarding the deactivation of link rewriting for approved URLs, refer to Mimecast's article titled "Targeted Threat Protection: Managed URLs."

Please follow the below steps to prevent Mimecast from Re-Writing Phishing links:

Listing Managed URLs

To view your managed URLs:

  1. Log in to the Administration Console.

  2. Go to Services > URL Protection.

  3. Select the URL Tools drop-down menu.

  4. Click on Managed URLs to display the list of managed URLs.

To add one or more URLs and/or domains to your Managed URLs list:

  1. Click Add Managed URLs.

  2. Fill out the dialog as follows:

Field / Option

Description

Override Type

This specifies the type of override to be applied to the URLs or domains. The options are:

  • Blocked: The override blocks access to the URLs and/or domains.

  • Permitted: The override allows access to the URLs and/or domains.

Disable Rewriting For This Entry

If the option is enabled, Mimecast will rewrite the URLs, and if the option is disabled, Mimecast will not rewrite the URLs. If unselected, URLs are re- written regardless of the domain or URL type.Note:This option is only available if the "Override Type" option is set to "Permitted".

Disable User Awareness

If user awareness is enabled, this option disables it for the specified URLs and/or domains. As a result, they are not checked for threats.Note:This option is unavailable if the "Disable Rewriting For This Entry" option is selected.

Match Type

This specifies the type of domain match. The options are:

  • Domain: Allows or blocks URLs from a single domain.

  • Explicit: Allows or blocks specific URLs.

URLs

Specify the URLs and / or domains to be added to the managed URLs list.

Note:If you enter a duplicate managed sender URL, a message appears asking if you would like to overwrite the existing entry.

Please add the below domains to the list:

  • right-hand.ai

  • linktologin.com

  • ssotowebsite.com

  • linktosso.com

  • inbox-login.com

  • bankng-login.com

  • verified-login.com

  • authupdate.com

  • resetlogin.com

  • account-protect.me

  • discount0ffer.com

  • grnaill.com

  • mailboxaccess.com

  • rnicrosoftlogin.com

  • linkdinapp.com

Note:The use of wildcard characters is not recommended, as it can cause a significant security risk.

Comments

Enter a comment about the Managed URL record. This is recorded in the audit log.

3. Select Save and Close.

DNS Authentication ByPass Policy (Optional)

If Right-Hand emails are sent to the spam folder, configure this additional policy. You will first have to set up the inbound definition and next create the policy.

DNS Authentication - Inbound Definition Setup

  1. Access the Mimecast Administration Console.

  2. Click on the Gateway | Policies menu.

  3. Under Definitions drop-down choose DNS Authentication - Inbound option.

  4. Choose New DNS Authentication - Inbound checks.

  5. Select the Policy Override check box.

  6. Click on Save and Exit to save all the modifications.

DNS Authentication - Inbound Policy Setup

  1. Access the Mimecast Administration Console.

  2. Click on the Gateway | Policies menu.

  3. Click on DNS Authentication - Inbound policy.

  4. Choose New Policy.

  5. Choose required policy settings as listed below.

    Options

    a ) Policy Narrative - Phishing Test

    b) Select option - No Authentication

    Emails From

    a) Addresses based on - Both

    b) Applies from - Everyone

    c) Specifically - Applies to all Senders

    Emails To

    a) Applies To - Address Groups

    b) Profile Group - Email Security Admins

  6. Provide Right-Hand IP ranges into the Source IP Ranges field.

  7. Check the Policy Override option.

  8. Click on Save and Exit to save all the modifications.

Greylisting ByPass Policy

To prevent Mimecast from preventing emails from being deferred, please add this policy. Follow the steps below instructions to add this new policy.

  1. Access the Mimecast Administration Console.

  2. Click on the Administration Toolbar button.

  3. Choose Gateway | Policies menu.

  4. Choose Greylisting from the list of policies.

  5. Click on the New Policy button.

  6. Choose the suitable policy settings under the Options, Emails From, Emails To, and Validity sections. For more detailed information on this Configuration please refer here

  7. Select the Policy Override check box.

  8. In the Source IP Ranges field, enter Right-Hand IP ranges. please refer here for our IP ranges.

  9. Click on Save and Exit to save all the modifications.

CyberGraph Policy (Optional)

If you encounter problems with Mimecast removing Right-Hand's email trackers, you can implement this policy. Mimecast's CyberGraph Policy will prevent the removal of email trackers. Follow the steps below to set up the CyberGraph policy:

  1. Access your Mimecast Administration console by logging in.

  2. Go to Services and then, CyberGraph.

  3. Select the option to Create New Policy.

  4. Name the policy, such as β€œRight-Hand CyberGraph Policy”.

  5. You may optionally describe the policy.

  6. Choose "Disabled" in the Dynamic Banners field.

  7. Choose Disabled In the Trackers field,

  8. Choose the "Disabled" option in the User Reporting field.

  9. Click Next.

  10. Within the Applies To section, configure the From field to apply to Everyone. Subsequently, set the To field to also encompass Everyone.

  11. Within the Source IP Ranges field, input Right-Hand's IP addresses.

  12. Proceed by clicking on "Next". This will direct you to the Summary page, where you can verify that your settings are accurate.

  13. Select Disabled in the Trackers field.

  14. Click on Create New Policy.
    ​

Did this answer your question?