# Whitelisting

<details>

<summary>What is Whitelisting?</summary>

Whitelisting involves allowing certain IP addresses to bypass an organization's defense systems, ensuring successful phishing simulations and awareness training. This requires adding the Lucy server IP and sender domain(s) to trusted sources in email gateways, anti-virus software, and web proxies, preventing simulated phishing emails from being blocked or marked as spam.

</details>

> The main objective of a Security Awareness program is to evaluate the recipients' awareness, not the strength of your network defenses. Ensure your defensive systems allow traffic from your Lucy server so it isn't blocked.

{% hint style="info" %}
Below are quick guides for **Microsoft 365 (O365)** and **Google Workspace**. For more detailed information, refer to our[ advanced whitelisting guides.](/guides/whitelisting-a-lucy-server.md)
{% endhint %}

**Google Workspace:**

1. Log in to `admin.google.com` and navigate to "Apps" -> "Google Workspace" -> "Gmail".
2. Under "Spam, phishing, and malware", add the Lucy IPv4 to "Email Allowlist" and save.
3. In the same menu, go to "Inbound Gateway". Add Lucy IPv4, activate Message Tagging, add a symbol set to the Regular Expression field, select "Disable Gmail spam evaluation on mail from this gateway", and save.

   <figure><img src="/files/J5TEtohzaKtGAUKeBcHj" alt="" width="360"><figcaption></figcaption></figure>

**Microsoft 365 (O365):**

1. Open the Microsoft 365 Defender portal -> `security.microsoft.com`
2. Go to Email & Collaboration > Policies & Rules > Threat Policies.
3. In Advanced Delivery, under Phishing Simulation, click "Edit" to add the sending domain, the IP of Lucy, and the simulation URL.<br>

<figure><img src="/files/HsZyHozugVLEwtqKLxAR" alt="" width="375"><figcaption></figcaption></figure>

<br>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://wiki.lucysecurity.com/guides/quick-guides/create-your-first-campaign/whitelisting.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.