This article contains different polices that you may need to configure before launching your campaign.

    Anti-Spoofing Policy

1. Log on to your Mimecast Administration Console.
2. Click the Administration toolbar button.
3. Select the Gateway | Policies menu item.
4. Select Anti-Spoofing from the list of policies displayed.
5. Select the New Policy button.
6. Select the appropriate policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring an Anti-Spoofing Policy article (opens in a new window). 
7. In the Source IP Ranges field, enter our IP addresses. 

Permitted Senders Policy

You should create a new Permitted Sender policy to allow the phishing emails through to targets' inbox. Add a new permitted sender policy, and keep the default one unchanged. 

1. Log on to your Mimecast Administration Console.
2. Click the Administration toolbar button.
3. Select the Gateway | Policies menu item.
4. Select Permitted Senders from the list of policies displayed.
5. Select the New Policy button.
6. Select the appropriate policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings see Mimecast's Configuring a Permitted Senders Policy article.
7. In the Source IP Ranges field, enter our IP addresses. 

Attachment Protection Bypass Policy

for phishing emails with attachment, it's must to adjust the attachment protection policy so that we will track the targets actions.

1. Log on to your Mimecast Administration Console
2. Click the Administration toolbar button.
3. Select the Gateway | Policies menu item.
4. Select Attachment Protection Bypass from the list of policies displayed.
5. Select the New Policy button.
6. Select the appropriate policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring Attachment Protection Bypass Policies article (opens in a new window).
7. In the Source IP Ranges field, enter our IP addresses. 

URL Protection Bypass Policy

Mimecast's URL Protection service scans and checks links in emails upon delivery. This can sometimes result in false positives for your phishing security tests. Follow the steps below to create a URL Protection Bypass policy for accurate phishing security test results.

1. Log on to your Mimecast Administration Console
2. Click the Administration toolbar button.
3. Select the Gateway | Policies menu item.
4. Select URL Protection Bypass from the list of policies displayed.
5. Select the New Policy button.
6. Select the appropriate policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring a URL Protection Bypass Policy article.
7. In the Source IP Ranges field, enter our IP addresses. 

Attachment Management Bypass Policy

An Attachment Management Bypass policy allows you to bypass the following policy types: Attachment Block on Size, Attachment Link on Size, Attachment Management.

1. Log on to your Mimecast Administration Console.
2. Click the Administration toolbar button.
3. Select the Gateway | Policies menu item.
4. Select Attachment Management Bypass from the list of policies displayed.
5. Select the New Policy button.
6. Select the appropriate policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring Attachment Management Bypass Policies article. 
7. In the Source IP Ranges field, enter our IP addresses.