Whitelisting Information for Microsoft Teams Phishing Service
This information is intended for clients who are receiving a Microsoft Teams Phishing service. If you are unsure whether this information applies to your organization, please consult with your Customer Success Manager (CSM).
In order to allow the TraceSecurity ISA to approach your employees via Teams chat, you must follow the below instructions to “whitelist” the TraceSecurity social engineering domain (provided by your CSM) as an allowed sender.
-
Navigate to your organization’s Teams Admin Center.
-
Under the Users menu, select the External Access option.
-
Under Organization settings, turn on “Manage external domains for this organization” if not already on.
-
Under “Allow or block external domains”, select “Allow only specific external domains”, then select the “Add a domain” option.
-
Input the domain information supplied by your CSM, click “Add”, then “Done” to save the external domain configuration.
-
Please note it may take upwards of an hour for the changes to propagate across your Microsoft environment. We recommend building in this lead time (preferably 24 hours to propagate) before your Trace project team sends a test Teams message to your account.