Email Settings
      Back to home
      1. Help Center
      2. Getting Started
      3. Email Settings

      Setting Up Allowlisting for Phin Security

      We have built this guide to make allowlisting as easy as possible for you and your team.

      To ensure training reminders and simulated phishing makes it through your email filtering process, you will need to allowlist the following Sending IPs, domains, and simulated URLs.

      Note: If you are using third-party software such as INKY, Barracuda, and others, you may need to add our IPs, domains, and simulated URLs to those platforms as well.

      Microsoft Azure Setup


      Google Workspace Setup

       

      Microsoft Azure Setup

      Manual Allowlisting

      1. Go to security.microsoft.com
      2. Select Policies and Rules from the Email & collaboration section in the menu on the left
      3. Then select Threat policies
      4. Click the Advanced Delivery in the Rules section
      5. Select the Phishing Simulation tab
      6. Click Edit to add domains, URLs, and IPs (listed below).

      Simulated URLs (9)

      Make sure to add the URLs exactly as they appear below!

      • *.betterphish.com/*
      • *.shippingalerts.com/*
      • *.amazingdealz.net/*
      • *.berrysupply.net/*
      • *.coronacouncil.org/*
      • *.couponstash.net/*
      • *.creditsafetyteam.com/*
      • *.autheticate.com/*
      • *.notificationhandler.com/*

      Sending IPs (4)

      All of our messages that are sent over SMTP are sent through the following IP:

      • Phishing emails: 198.2.177.227, 198.244.59.179, 35.237.125.73
      • Reminders: 198.2.178.214

      Sending Domains (10)

      • phinsecurity.com
      • betterphish.com
      • shippingalerts.com
      • amazingdealz.net
      • berrysupply.net
      • coronacouncil.org
      • couponstash.net
      • creditsafetyteam.com
      • autheticate.com
      • notificationhandler.com

      Automated Allowlisting (Closed Beta Feature)

      Automated allowlisting performs all the steps for you listed in manual allowlisting with the single press of a button

      📌 This is a Closed Beta Feature, which means access is invite-only. Automated Allowlisting is only available for Microsoft Azure (Entra ID) at this time.

      ⭐ Want to become a Phin Beta Tester? Sign up here!

      1. Navigate to Company > Integrations > Automated Allowlist
      2. Click Continue to Microsoft (After reviewing the necessary permissions)
      3. Log into Microsoft and grant consent for the integration
      4. Once this process is done, click the "Start Allowlist" button.
      5. Once the allowlist service is done, you'll be presented with either a success or failure message. A success message will be accompanied by an output of what was updated.
        1. If everything comes back as successful, we recommend navigating to the Advanced Delivery (step 4 of Manual allowlisting) and confirming you see the injected Sending IPs, domains, and simulated URLs listed. If you do not see them, please disconnect and re-attempt automated allowlisting or contact the Phin support team.

        2. If you receive an error message, please disconnect and re-attempt automated allowlisting or contact the Phin support team.

      In addition to allowlisting, it is encouraged that MSPs also enable the Ignore 3rd party addresses option. This does NOT replace allowlisting but also serves as an additional best practice.

      Additional Resources

      Microsoft 365 Defender Advanced Delivery Guide

      Allowlisting: Powershell Script

       

      Google Workspace

      Allowlist by sending domains:

      Follow the steps under the “Add a list of approved senders that bypass spam filters” section


      Bulk Upload the following comma-separated list of 11 domains:

      phinsecurity.com,notificationhandler.com,amazingdealz.net,coronacouncil.org,couponstash.net,creditsafetyteam.com,shippingalerts.com,intelligentbros.com,berrysupply.net,autheticate.com,betterphish.com

      Allowlist by IP:

      https://support.google.com/a/answer/60751?hl=en&ref_topic=9981578

      Our dedicated sending IPs:

      • Phishing email: 198.2.177.227, 198.244.59.179, 35.237.125.73
      • Reminders: 198.2.178.214

       

      Knowledge Base

      Phin works to update our Knowledge Base with new features with every release. You can read about the platform and its updates here: https://www.phinsec.io/knowledge.

      Thanks for using our product!

      We use all provided feedback to help drive Phin's development direction. Please keep reaching out and helping us shape the product's future! All ideas are welcome; please keep them coming!

      The Dev Team @ Phin

      Need help or have an idea for us? Click here!