Microsoft

Allow phishing environment in Microsoft Azure

The most secure and recommended way to whitelist an email address in Microsoft 365 is by creating a Mail Flow Rule.
Unlike simply bypassing spam filters, Mail Flow Rules allow you to be precise: you can whitelist senders, check authentication results, and still warn users of suspicious messages.

Steps

1. Open the Exchange Admin Center

   • Go to https://admin.exchange.microsoft.com
   • In the left-hand menu, expand Mail Flow and click Rules

2. Create a new rule

   • Click Add rule → Create a new rule
     
   • Name the rule (e.g. Allow TeamFence phishing service)
   • Under Apply this rule if…, choose:
     • The sender → domain is
     • Add each TeamFence domain:
       1. mail.live-logins.com
       2. […]
       3. [find the other domains in the Fency platform]

3. Set the action

   • Under Do the following…, select Modify the message properties
   • Choose Set the spam confidence level (SCL)
   • Set it to Bypass spam filtering

Improve security (recommended)

To reduce the risk of spoofing, add additional conditions in Apply this rule if…:

• Message header → includes any of these words
  • Enter words: dmarc=pass

These conditions ensure that only authenticated messages from the whitelisted sender are trusted.

Finalise the rule

1. Click Next
2. Set the rule mode to Enforce
3. Review your settings
4. Click Finish to create the rule