Allow List
Adding senders and domains to the Allow List is a way of minimizing false positives for users. A false positive is when a user receives an email they know is clean, but has been flagged as malicious by Email Security and has had a banner applied to it. You have the option of adding individual email addresses you know to be clean, or you can add entire domains.
Important
When you add a sender's email address or a domain to the Allow List, it is not analyzed by Email Security and is delivered directly to the user's inbox. So be sure that the email or domain is from a trusted source.
The Allow List only exists on customer level. As a customer admin, you can go to Configuration > Mail Flow > Allow List to view the Allow List, add a sender to the Allow List, or add a domain to the Allow List.
Note
There is a quick action option from the MSP level to add both senders and domains to the Allow List. This can be done from the Incidents page by selecting the allow sender 
icon or the add domain 
icon from the Actions column.
Adding a Sender to the Allow List
Adding senders to the Allow List is a way of minimizing false positives for users. A false positive is when a user receives an email they know is clean, but has been flagged as malicious by Email Security and has had a banner applied to it. The Allow List only exists on customer level.
Important
When you add a sender's email address to the Allow List, it is not analyzed by Email Security and is delivered directly to the user's inbox. So be sure that the email is from a trusted source.
Go to Configuration > Mail Flow > Allow List. By default, the Allow List page opens with the Emails tab displayed. Select Allow.
The Allow Sender window opens.
In the Allow Sender window enter:
Sender email address: Enter the email address of the sender you want added to the Allow List.
Important
No Email Security Analysis will be performed on this email address once it is added to the Allow List so be sure that it is a trusted email before adding.
Comment (optional): Enter a description for the email. This might include a reason the email can be excluded from analysis.
Select Allow Sender.
The email address is displayed in your Allow List.
Adding a Domain to the Allow List
Adding domains to the Allow List is a way of minimizing false positives for users. A false positive is when a user receives an email they know is clean, but has been flagged as malicious by Email Security and has had a banner applied to it. The Allow List only exists on customer level.
When you add a domain to the Allow List, then all the sender emails using that domain bypass Email Security analysis. If you believe a domain to be clean, then this is a more efficient method then adding sender emails individually for that domain.
Important
When you add a domain to the Allow List, the email addresses using that domain are not analyzed by Email Security and are delivered directly to the user's inbox. So be sure that the domain is a trusted source.
Go to Configuration > Mail Flow > Allow List. When the Allow List page opens, select the Domains tab and then Allow.
The Allow Domain window opens.
In the Allow Domain window enter:
Sender Domain: Enter the domain address you want added to the Allow List.
Important
No Email Security Analysis will be performed on emails from this domain once it is added to the Allow List so be sure that it is a trusted domain before adding.
Comment (optional): Enter a description for the domain. This might include a reason the domain can be excluded from analysis.
Select Allow Domain.
The domain is displayed in your Allow List.
Viewing the Allow List
Go to Configuration > Mail Flow > Allow List to view and manage the Allow List.
Select the Emails tab to see the email addresses of senders in the Allow List. To see the domains in the Allow List, select Domains.
Use the search
box to search the list.Select the column
icon to display the table column names. Slide each on and off to view or hide a column. The following columns are available:Sender: In the Email list, this is the display email address of the sender that is allowed to bypass Email Security analysis and be delivered to the user's inbox. In the Domains list, you can see the domain names that are allowed to bypass Email Security analysis.
Status: Allow status means that the email or domain is on the Allow List.
Last Modified: This is the date that the email or domain was added to the Allow List. If it has been edited, as described under Actions (below), then the date automatically updates.
Comment: Optional description that was entered when the email address or domain was added to Allow List.
Actions: From the Actions column, you can edit or delete the email address or domain.
Select the edit
icon for the email address or domain you want to edit. Refer to Adding a Sender to the Allow List and Adding a Domain to the Allow List for more details.Select the delete
icon to remove the email address or domain from the Allow List. Select Delete to confirm.