Right-Hand Cybersecurity

If your company uses Google Workspace, you can whitelist through the email header. To do this, set up a Content Compliance rule for emails with Right-Hand's email header. This ensures that our simulated phishing emails reach your users' inboxes.

To whitelist Right-Hand by email header in Google Workspace, follow the steps below:

Log into your <a href="https://admin.google.com" rel="nofollow noopener noreferrer" target="_blank">Google Admin</a> account and select Apps.

Navigate to the section titled "Service Status" and select "Gmail".

Within the Gmail section, select "Compliance".

Go to the Content Compliance section.

Choose the "Inbound" and "Internal - receiving" checkboxes in the "Email messages to affect" field.

Go to the Expressions tab and select the initial dropdown menu.

Opt for "If ANY of the following match the message" from the initial dropdown menu.

1. Log into your <a href="https://admin.google.com" rel="nofollow noopener noreferrer" target="_blank">Google Admin</a> account and select Apps.
 
 
 ​
2. Select Google Workspace.
 
 
 
 
3. Navigate to the section titled "Service Status" and select "Gmail".
 
 
 
 
4. Within the Gmail section, select "Compliance".
 
 
 
 
5. Go to the Content Compliance section.
 
 
 
 
6. Click ADD ANOTHER RULE.
 
 
 
7. Choose the "Inbound" and "Internal - receiving" checkboxes in the "Email messages to affect" field.
 
 
 
 
8. Go to the Expressions tab and select the initial dropdown menu.
 
9. Opt for "If ANY of the following match the message" from the initial dropdown menu.
 
 
 
10. Click Add.

11. Modify the configurations within the "Add expressions that describe the content you want to search for in each message" section. Refer to the below screenshot and the provided list for more details on these settings.

A. Choose "Advanced content match" from the initial dropdown menu.

B. Choose "Full headers" in the Location field.

C. In the Match type field, select Contains text.

D. Within the Content field, input the header text that is specific to your organization.

You can ask for the custom header, which is associated to your company tenant in cyberready from your customer success manager. Alternatively you can mail to <a href="mailto:support@right-hand.ai" rel="nofollow noopener noreferrer" target="_blank">support@right-hand.ai</a> to get the same. The header has the following format:

12. Under the "If the above expressions match, do the following" field, check the box labeled "Bypass spam filter for this message" under the Spam category.

We advise initiating a test phishing campaign for yourself or a small group to ensure whitelisting is successful. Please wait up to an hour for the settings to take effect before testing.

Q1. Google now allows a single security policy for the inbound Gateway. In order to get emails from Right-hand I have to disable the spam filter but I cannot do that for all incoming emails. How do I get around this problem?

Navigate to GSuite Admin Console and, from the left menu navigate to Apps → Google Workspace → Gmail.

Click on Compliance Tab and then click on Configure for Content compliance.

A new tab will open and add the following values.

1. Set <code>RHS - ByPass Spam Rule</code> as the name for the rule or name it based on your choice or convention.
2. Select `Inbound` inside Email messages to affect.
3. Click on Add to create a new rule, and a new window will open.
 1. Select <code>Advanced content match</code>.
 2. Select <code>Full Headers</code> inside the Location drop-down menu.
 3. Select Match type <code>Contains text</code> and add the following IPs
 149.72.49.118 168.245.54.27 52.74.95.172
 
 Inside the content field.
 
 
 ​
 4. Inside If the above expressions match, do the following section, select <code>Bypass the spam filter for this message</code>.
 
 5. The rule will be added.
 
 
 6. Make sure that the rule applies to all the organization units.

1. Navigate to GSuite Admin Console and, from the left menu navigate to Apps → Google Workspace → Gmail.
 
2. Click on Compliance Tab and then click on Configure for Content compliance.
 
3. A new tab will open and add the following values.
 
 1. Set <code>RHS - ByPass Spam Rule</code> as the name for the rule or name it based on your choice or convention.
 2. Select `Inbound` inside Email messages to affect.
 3. Click on Add to create a new rule, and a new window will open.
 1. Select <code>Advanced content match</code>.
 2. Select <code>Full Headers</code> inside the Location drop-down menu.
 3. Select Match type <code>Contains text</code> and add the following IPs
 149.72.49.118 168.245.54.27 52.74.95.172
 
 Inside the content field.
 
 
 ​
 4. Inside If the above expressions match, do the following section, select <code>Bypass the spam filter for this message</code>.
 
 5. The rule will be added.
 
 
 6. Make sure that the rule applies to all the organization units.

Note: Users might see a warning banner from Google if Google detects any emails as Spam. This banner cannot be hidden. However, it won’t appear every time as the Google algorithm is dynamic.

How do I whitelist by Email Header in Google Workspace?

Release Notes

Developers

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

How do I whitelist by Email Header in Google Workspace?

Frequently asked questions

Q1. Google now allows a single security policy for the inbound Gateway. In order to get emails from Right-hand I have to disable the spam filter but I cannot do that for all incoming emails. How do I get around this problem?