This article explains how to set up Advanced Delivery in Microsoft Defender by registering Cyber Guru as an authorized phishing simulation provider.
Advanced Delivery is Microsoft’s official mechanism for managing third-party phishing simulations and is the most important configuration in the entire whitelisting process.
Prerequisites
- Access to the Microsoft Defender console with admin permissions
- List of Cyber Guru sending domains
- List of simulation URLs (landing pages)
WHERE TO FIND THE FULL LIST OF SENDING DOMAINS AND LANDING PAGES |
Step-by-step procedure
1. Log in to the Microsoft Defender console
2. Go to "Policies & rules > Threat policies > Advanced delivery".
3. Click on the "Phishing simulation" tab, then click "Edit" (or "Add" if this is your first setup).
4. Set up the "Domain" section
Enter all sending domains (available on the platform in the Help > Support - Knowledge base section)
Note: Domains must be entered exactly as provided, without wildcards or prefixes.
5. Set up the "Sending IP" section
Enter the sending IP addresses: 85.235.135.191
6. Set up the "Simulation URLs to allow" section
Enter the landing page URLs ( (available on the platform in the Help > Support - Knowledge base section) using the indicated wildcard syntax (e.g., *.domainname.ext))
7. Review and save
Check that the summary shows the correct number of domains, IPs, and URLs as indicated in the documentation you received during onboarding, then click "Save".