Within Darktrace, there is a built model that accounts for the phishing tests from MetaCompliance.

You can find this by navigating to the email console > Detection > Models > Allow MetaCompliance (search for this in the search bar).

This model is disabled by default, but you should be able to activate it by selecting 'Model is Active'.

• Note: Sometimes the 'Action' is set to 'Do not hold or alter', which still cause issues with the reporting; you can set this action to be 'Deliver' in this case. This is set up based on our IP ranges.

• The only included IPs currently are our European and UK Data Centre IPs.