KnowBe4, O365 & INKY Integration

 

Summary

With changes in O365, simulation emails from KB4 are being quarantined by O365. The guide below creates a bypass to ensure these simulation emails are not quarantined and are processed by INKY.

 

Useful articles that user should configure before configuring the below

Advanced Delivery Policies in Microsoft Defender for Office 365

https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/configure-advanced-delivery?view=o365-worldwide&data=04%7C01%7C%7Ccd230c8e695045881d0008d93bb177dd%7C3cfadf87221245b5b7c757c1e0f21997%7C0%7C0%7C637606455672812570%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=sHT2HaGUIchv9%20khaFFHRbxdBsj8LMJS4XWofRs%20NvM%3D&reserved=0#use-the-microsoft-365-defender-portal-to-configure-third-party-phishing-simulations-in-the-advanced-delivery-policy

Steps

  1. Navigate to https://security.microsoft.com/advanceddelivery?viewid=PhishingSimulation

  2. Add KB4 IPs and the below INKY IPs and domain. After adding the IPs, your Advanced Delivery should look similar to the below screenshot:

    1. 3.231.237.226

    2. 100.24.129.5

    3. 3.132.108.44

    4. 3.132.222.232

    5. 100.21.157.149

    6. 34.210.15.192

    7. phishtest.inkyphishfence.com

3. You’ll also want to make sure your KnowBe4 DKIM Domains need to be listed on the above page and ensure DKIM is turned on within KnowBe4 here: https://training.knowbe4.com/ui/account/info#phishing

 

 

Please wait an hour for the saves to propagate before testing.

 

Â