Allow Training Emails
INKY tracks Phishing Simulation emails from third party providers, such as KnowBe4, in a specific fashion in order to ensure that we’re not letting emails through inadvertently. The phishing simulation emails sent from KnowBe4, and the training emails are sent out of different infrastructure points. This means that the INKY bypass that’s in place for KnowBe4 phishing simulation emails will not automatically special handling to training emails.
If you’re receiving Red, Danger, banners showing a Spoofed Internal Sender result for KnowBe4 training emails please follow the below instructions to make the fix.
Instructions
Option 1
Follow KnowBe4’s instructions on adding their records to your organizations SPF record https://support.knowbe4.com/hc/en-us/articles/115003254328.
Option 2
Navigate to the message using the Observations - INKY page
Find the given message that’s currently marked as a Spoofed Internal Sender and click it to bring up the observation detail view. It’ll look like the below screenshot.
Use the Policy Action dropdown and select.
“Add
training.knowbe4.com
as a trusted third-party sender fordomain.com
”
Option 3
Navigate to the Trusted Third-Party Senders settings directly here: Analysis - INKY
Map your domains to
training.knowbe4.com
directly such as the example below. If my internal domain ispolvocapital.com
it would look like the below: “polvocapital.com: training.knowbe4.com
”