Whitelisting in FortiMail

To whitelist our phishing and training emails when using FortiMail, you should add our domains to an anti-spam whitelisting list. This will allow our phishing and training emails through without issue.

The instructions below include information from FortiGate's Static URL Filter article. If you run into issues whitelisting our domains in FortiGate, we recommend reaching out to FortiGate for specific instructions.

Whitelisting by Static URL Filter

  1. Log in to your Fortinet account.
  2. Navigate to Security Profiles > Web Filter.
  3. Create a new web filter or select one to edit.
  4. Expand Static URL Filter, enable URL Filter, and select Create.
  5. Enter the URLs, without the “https”. For example, www.example.com.
    • Enter each phishing and training domain as seen in our technical information guide.

Our whitelisting technical information can be found here: Whitelisting Technical Information.

  1. Select Type: Simple
  2. Select the Action to take against matching URLs: Allow
  3. Confirm that Status is enabled.

As with all whitelisting, we recommend setting up a test campaign to yourself or a small group to ensure everything works smoothly before running organisation-wide campaigns.


Whitelisting can be complicated so if you require any further assistance, please contact our support team by clicking here, alternatively contact us through the platform Web Widget.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us