Add the MA IP addresses to Microsoft Exchange allowlists

You can use Microsoft Exchange® to allowlist the Arctic Wolf Managed Security Awareness® (MA) program IP addresses and headers, and any applicable third-party IP addresses that are used during spam filtering. For example, a static IP address or a range of IP addresses that are assigned to you by your third-party provider.

  • Access to the Microsoft Outlook® administrative portal
  • Complete Add MA to email gateway and spam filtering.
  • Obtain the MA IP addresses to allowlist.

    To see the IP addresses that you must allowlist, sign in to the Arctic Wolf Unified Portal, click Resources > Allowlist Requirements, and then view the IP addresses in the section for your product.

  • If applicable, obtain the static IP address or range of IP addresses from your third-party provider.
Complete Configure browsers to autoplay MA sessions

Allowlist the MA IP addresses in Microsoft Exchange

  1. Sign in to your Microsoft Outlook administrative portal.
  2. Click Apps > Admin.
  3. In the navigation menu, in the Admin centers section, click Exchange.
  4. In the protection section, click connection filter.
  5. Click to edit the default connection filter policy.
  6. In the sidebar, click connection filtering.
  7. In the IP Allow list section, click +.
  8. On the Add allowed IP address page, enter the Managed Security Awareness® (MA) IP addresses, one at a time.
  9. Click OK, and then click Save.
  10. Optional: Contact security@arcticwolf.com or submit a ticket in the Arctic Wolf Portal to verify that the configuration is correct.

Bypass clutter and spam filtering in Microsoft Exchange

  1. Sign in to your Microsoft Outlook administrative portal.
  2. In the Apps section, click Admin.
  3. In the navigation menu, in the Admin centers section, click Exchange.
  4. In the sidebar, click mail flow.
  5. In the rules tab, click + to expand the menu, and then click Bypass spam filtering.
  6. In the Name field, enter a name. For example, Bypass clutter and spam filtering by IP address.
  7. In the Apply this rule if menu, select The sender > IP address is any of these ranges or exactly matches.
  8. Enter the Managed Security Awareness® (MA) IP addresses, and then click OK.
  9. In the Do the following menu, click Modify the message properties > set a message header.
  10. Click Enter text to set the message header, and then enter X-ArcticWolf.
    Tip:

    This field is case-sensitive.

  11. Click OK.
  12. After to the value, click Enter text to set the value, and then enter Arctic Wolf.
  13. Click OK.
  14. Click add action.
  15. In the Do the following menu, select Modify the message properties > Set the spam confidence level (SCL) to > Bypass spam filtering.
  16. Click Save.
  17. Optional: Contact security@arcticwolf.com or submit a ticket in the Arctic Wolf Portal to verify that the configuration is correct..

Enable a bypass spam filtering policy

This step is optional.

  1. Sign in to your Microsoft Outlook administrative portal.
  2. In the Apps section, click Admin.
  3. In the navigation menu, in the Admin centers section, click Exchange.
  4. In the sidebar, click mail flow.
  5. In the rules tab, click + to expand the menu, and then click Bypass spam filtering.
  6. In the Name field, enter a name. For example, Arctic Wolf junk filter.
  7. In the Apply this rule if menu, click The Sender > IP address is any of these ranges or exactly matches.
  8. Enter the MA IP addresses, and then click OK.
  9. In the Do the following menu, select Modify the message properties > set a message header.
  10. Click Enter text to set the message header, and then enter X-ArcticWolf.
  11. Click OK.
  12. After to the value, click Enter text to set the value, and then enter Arctic Wolf.
  13. Click OK.
  14. Click Save.
  15. In the Properties of this rule section, select a Priority value.
  16. Make sure your settings work correctly. Send a test MA phishing simulation email to yourself or admins:
    1. In the MA Portal menu, click Administration Dashboard.
    2. Click the User Information tab.
    3. Click Send Test Email.
      Note:

      To preview the test email, see View MA email templates. If your test email is not received, verify the steps above, and then send another test email. If you continue to experience issues with receiving test emails, contact your Concierge Security® Team (CST) at security@arcticwolf.com for assistance.