Learn how to define a Allow List of domains that will be excluded from Click-time URL Protection processing as well as Email Threat Isolation.

Adding a domain to the list excludes that domain from Click-time URL Protection, but not from normal Email Security Service scanning. The whitelist lets you add Punycode domain names, but not internationalized domain names. Also, note that the Email Security Service also uses a system-level Allow List to exclude commonly trusted domains from click-time protection.

To whitelist a domain for Email Threat Isolation

1. Navigate to Symantec.cloud Management Portal
2. Click on Services > Email Threat Detection and Response > Click-time URL Protection Settings > Approved Domains
3. Enter the domain name of the URL that you would like to whitelist
4. Click +
5. Click on Save

Note: Email Threat Detection and Response is an add-on service and may not be included in all Email Safeguard packages.

Using wildcards (e.g., *.domain.com) may unintentionally allow subdomains that should remain isolated.

If you believe the site is not supposed to be isolated, see Submit false positives for Email threat isolation.