Learn how to define a whitelist of domains that will be excluded from Click-time URL Protection processing as well as Email Threat Isolation.

Adding a domain to the list excludes that domain from Click-time URL Protection, but not from normal Email Security Service scanning. The whitelist lets you add Punycode domain names, but not internationalized domain names. Also, note that the Email Security Service also uses a system-level whitelist to exclude commonly trusted domains from click-time protection.

To whitelist a domain for Email Threat Isolation

1. Navigate to Symantec.cloud Management Portal
2. Click on Services > Email Services > Anti-Malware > Click-time URL Protection Settings > Whitelist Domains
3. Enter the domain name of the URL that you would like to whitelist
4. Click +
5. Click on Save

Note: When wildcard entries are used on a whitelist, there is a risk of unintentionally whitelisting certain domains.  Also, note that the Email Security Service also uses a system-level whitelist to exclude commonly trusted domains from click-time protection.

If you believe the site is not supposed to be isolated, see Submit false positives for Email threat isolation.