How to Whitelist ThreatCop in Mimecast

How to Whitelist ThreatCop in Mimecast

Whitelisting Threatcop in Mimecast

1. Inbound Email Policies

Step 1: Create a Permitted Senders Policy

Path:

Administration → Gateway → Policies → Permitted Senders → New Policy

Configuration:

- Policy Narrative: Threatcop – Permitted Senders

- Select Option: Permitted Sender

- Emails From: (Threatcop domain to be added)

- Emails To: Internal domain/users

- Valid From / To: As required

- Enabled: Yes


2. Create a Bypass Anti-Spoofing Policy


Path:

Administration → Gateway → Policies → Anti-Spoofing → New Policy

Configuration:

- Policy Narrative: Threatcop – Anti-Spoofing Allow

- Option: Bypass Anti-Spoofing

- Emails From: (Threatcop domain to be added)

- Emails To: Internal domain/users



3. Add Threatcop SMTP IP to Allowed IP Addresses

Path:

Administration → Gateway → Policies → Connection Handling → Gateway Policies → Allowed IP Ranges → New Entry


Add:

- Allowed IP: 168.245.74.19

- Comment: Threatcop SMTP Delivery


4. Create a Gateway – IP Range Policy (Recommended)


Path:

Administration → Gateway → Policies → IP Ranges → New Policy


Configuration:

- IP Range Policy: Threatcop SMTP IP Allow

- IP Range: 168.245.74.19

- Option: Treat as Internal / Permitted


5. Create a Header Bypass Policy

Path:
Administration → Gateway → Policies → Definitions → Header Policies

Steps:

  1. Create a new Header Policy for Threatcop headers
    This will help Mimecast to recognize and allow emails with the specified Threatcop headers.

  2. Go to:
    Administration → Gateway → Policies → Rejection Policies → New Policy

    3.    Configuration:

Field

Input/Action

Policy Name

Threatcop – Header Bypass (Custom)

Sender Header Value

X-Threatcop: This is a phishing security test from ThreatCop that has been authorized by the recipient organization.

OR

X-Threatcop-Support: In case of any queries kindly contact us at support@threatcop.com

Action

Allow / Bypass Processing

Header Type

X-Threatcop or X-Threatcop-Support

4.   Save the policy after configuring.


6. Create a URL Protection Bypass Policy


Path:

Administration → Services → URL Protection → Policies → New Policy


Configuration:

- Policy Narrative: Threatcop – URL Bypass

- Option: Disable URL Rewriting

- URLs: (Threatcop URL placeholder)

- Emails From: Threatcop sender domain

- Emails To: Internal domain


7. Create an Attachment Protection Bypass Policy


Path:

Administration → Services → Attachment Protection → Policies → New Policy


Configuration:

- Policy Narrative: Threatcop – Attachment Bypass

- Option: Bypass Inspection

- Emails From: Threatcop sender domain

- Emails To: Internal recipients


8. Test Delivery

Once domains/URLs are added:

1. Send a test simulation from Threatcop.

2. In Mimecast → Monitoring → Tracking, verify acceptance.

3. Ensure:

  - No rewriting

  - No quarantine

  - No header stripping

    • Related Articles

    • How to Whitelist Threatcop IP in Lotus Domino.

      Kindly follow the steps outlined below to whitelist the IP in LOTUS : Step 1 : Open Domino Administrator : Go to Start > Programs > Lotus Domino > Domino Administrator. Step 2 : Navigate to the Server Document : Click on the Configuration tab, then ...

    • How to Whitelist ThreatCop in Fortigate?

      To whitelist ThreatCop in Fortigate’s Static URL Filter, follow the steps given below: Step 1: Security Profiles > Web Filter Step 2: Create a new web filter or select one to edit Step 3: Expand the Static URL Filter, enable the URL Filter and then ...

    • How to Whitelist ThreatCop in Barracuda?

      To whitelist ThreatCop’s IPs inBarracuda, you will have to follow the steps given below: For Barracuda’s Email Security Service (Cloud-based Version) Step 1: Log in to your Barracuda Cloud Control. Step 2: Go to Email Security > Inbound Settings > IP ...

    • How to Whitelist ThreatCop in McAfee?

      If you are using McAfee, a cloud-based spam filtering solution, you will have to whitelist ThreatCop IPs to allow the tool to send phishing and knowledge assessment emails to your employees. Follow these steps to modify your “police-level” and allow ...

    • How to whitelist Threatcop in GSuite

      Whitelisting IP Address This process allows emails from specific IP addresses to bypass spam filtering. Step 1: Go to https://admin.google.com/ Step 2: Select Apps -> Google Workspace -> Gmail -> Spam, Phishing and Malware Step 3: Select your ...