Whitelisting in Barracuda

This article will cover how to whitelist our Platform’s training notifications and simulated phishing emails if you are using Barracuda.

Below are instructions for several different policies you'll need to implement in the Barracuda console to allow the Platform to function correctly.

If you encounter issues whitelisting in Barracuda, we recommend contacting them directly for specific instructions. You can also contact us at support@goldphish.com.


Adding to the Allowed Senders List

You can allow specific senders by email or domain.

To add specific senders to the Allowed Senders list:
  1. Click the menu button in the top left corner > select Spear Phishing Protection.
  2. In the top right corner, click the Settings icon to access the administrative functions.
  3. Select the Allowed Senders tab.
  4. Click Add Allowed Sender.
  5. In the Sender Email or Domain section, enter one email or domain name you want to allow.
  6. Optionally, add a note in the Comment field.
  7. Click Save.
  8. Complete steps 4 through 6 for any additional senders you want to allow.

Our whitelisting technical information can be found here: Whitelisting Technical Information.

Note: The system allows you to enter only one sender at a time, rather than adding in bulk. Enter one domain or email in this field and complete the steps below. Repeat the process, as needed, for each additional email or domain.


Intent Domain Policies

Barracuda scans emails for URLs and if they are NOT in the list of approved destinations (i.e. our platform) it will scan the URL and follow it and/or rewrite the URL to a "safe" one. It is, therefore, necessary to whitelist our Security Awareness Platform in Barracuda's Intent Analysis feature to prevent the links in our phishing tests from being changed, or potentially adding bias to phishing test results.

If you are using Barracuda's Email Security Service (Cloud), follow these steps to whitelist Barracuda's Intent Analysis:

  1. Log in to your Barracuda Cloud Control
  2. Navigate to Email Security > Inbound Settings > Anti-Phishing
  3. Under the Intent section, add our Platform's domain (app.goldphish.com). Make sure the Policy drop-down is set to Ignore

If you are using Barracuda's Email Security Gateway (On-premises), follow these steps to whitelist Barracuda's Intent Analysis:

  1. Log in to your Barracuda Email Security Gateway web interface
  2. Navigate to Email Security Gateway > Basic > Spam Checking
  3. Under the Intent Analysis section, add our Platform's domain (app.goldphish.com) to the URL Exemptions: text box field

For more information, check out Barracuda's Knowledge Base

For more information, check out Barracuda's Knowledge Base:

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us