How to configure O365 Advanced Delivery for phishing simulations

1. Configure Advanced Delivery

To ensure mail is successfully delivered to your users in an Office 365 environment, please follow this guide.


  • On the 'Edit third-party phishing simulation' tab that opens, configure the following settings:
    • Domain: Expand this setting, and enter the AWS domain '' for your phishing simulations. Please note: IP Address and Domain need to be added in order for Advanced Delivery to work. The IP addresses below are dedicated IPs for MetaCompliance so only emails sent from these dedicated IPs will get through.
    • Sending IP: Expand this setting, and enter the relevant IP addresses

When completed, action one of the following steps:

  • First time: Select Add, followed by Close.
  • Edit existing: Select Save, followed by Close.

After implementing these changes, send a phish to a small number of users to confirm allowlisting is working as intended.

Further information can be found in the below Microsoft Article:


2. If you have Safe Links enabled, add 'Do not rewrite URLs in email'

If you have 'Safe Links' turned on within Microsoft Defender, you will need to add our domains to the 'Do not rewrite URLs in email' within the 'URL & click protection settings' within the policy. This is can be actioned via the following steps:
  • Navigate to your existing Safe Links policy.
  • Click URL followed by Protection Settings.
  • Click Manage 0 URLs - see below.
  • Next, slick Add URLs.
  • Add any domains you will be using in the following format**
  • Lastly, click Save and then save your policy.


  • This will now stop the 'Safe Links' policy from scanning and rewriting URLs that have been added to the 'Manage 0 URLs' section. 

More information can be found in the below Microsoft Article:

Back to all articles