Feb 15 2021 01:41 PM - edited Feb 15 2021 01:42 PM
We have Exchange 2013 CU23 on-premises. We use Knowbe4 to send phishing test to employees. Some phishing emails have Word, Excel or Powerpoint attachments. The malware gents quarantines the attachment and replaces the attachment with a text file. I have installed the Connection Filtering Agent and added Knowbe4's phishing email server ip addresses using Add-IPAllowListEntry. The only way to get the email attachment is to set the malware filter to bypass filtering to true. Knowbe4 uses a sender's email address that is not knowbe4.com. I added a sample email address to BypassSenderDomains and email attachment was quarantined.
Does Exchange 2013 on-premises have the ability to bypass the email attachment scan using a whitelist?
Thanks for all replies.
Jason M.