Skip to main content
Skip table of contents

Whitelisting domains with safe links (Microsoft Defender)

Read this article in: Deutsch, Français, Dutch

By default, Microsoft Defender blocks certain elements, including our learning pages. To prevent that, certain domains used by SoSafe must be added to a policy in Microsoft Defender for Microsoft 365. Doing so only takes a few minutes and we have prepared a step-by-step guide to make things easy for you.


  1. Log in to your email server portal with an administrator account and select Security

  2. Select Policies & rules, followed by Threat policies. On this page, select Safe Links.

  3. Select Create to add a new policy.


  4. Give the policy a name and description so you can identify it if you need to make changes in future. Select Next to continue to the Users and domains step.

  5. Here, add your organization’s domain(s) in the input box titled Domains. Select Next to continue to the URL & click protection settings step.

  6. Make sure the checkbox On: Safe Links checks a list of known, malicious links when users click links in email. URLs are rewritten by default is active.

  7. On the same page, select Manage 0 URLs. A new dialog will open.


    You will now have to add all URLs shown under List of domains used in the phishing links in the SoSafe Manager (Settings > Whitelisting).
    Important: The format of the domain should always be like this:* (e.g.*).

    1. Select Add URLs on the Microsoft page.

    2. Enter the first URL shown in the SoSafe Manager.

    3. Select Save and repeat steps a-c until you have added all URLs.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.