Phishing - Trusted Zone in Outlook (recommended)

You can create a Group Policy Object in Active Directory to update the Trusted Zone in Outlook to allow tracking pixels to load without allowing all other phishing simulation email images to load. The steps to complete this are detailed below:

1. Navigate to your Local Group Policy Editor.

2. You will find the correct Group Policy to edit by navigating to User Configuration > Windows Settings > Administrative Templates > Windows Components > Internet Explorer > Internet Control Panel > Security Page.

3. Double-click the Site to Zone Assignment List policy to modify the policy.

4. Enable the policy by selecting the Enabled option.

5. Under the Options area, click Show.

6. From the Show Contents window, enter the phish link domain used in your test in the Value Name. You can also use wildcards in your entry to indicate a phish link subdomain.

   • For a complete list of phish link domains, navigate to the Phishing > Settings > Domains tab in the Keepnet Platform.

7.  For the Value, enter "2", which corresponds to "Trusted Zone".
8.  Click OK.
9.  Navigate to Outlook.
10.  Select Options > Trust Center > Trust Center Settings. Click the check mark to Allow downloads from Websites in this security zone: Trust Zone.

We recommend sending a phishing test campaign to yourself once these settings are saved so you can ensure opens are being tracked successfully.