Email Configuration

Before sending phishing tests, you must properly configure the email account that will be used to send the phishing messages.

The following instructions apply to Gmail. For other providers, necessary adjustments will need to be made.

Two-Step Verification

The first step is to enable two-step verification on the email account that will be used. To do this:

  1. Open your Google Account.

  2. In the navigation panel, select Security.

  3. Under “How you sign in to Google”, click “2-Step Verification” and then click “Get Started”.

  4. Follow the on-screen instructions.

App Password

To create an app password, follow these steps:

circle-info

Two-step verification must already be enabled.

  1. Make sure you’re logged into the correct email account. In some cases, you may need to log in again.

  2. In the “App name” field, enter a name to identify the password and click “Create”.

  3. A modal will display the generated app password.

circle-info

Save this password in your password manager, as it cannot be viewed again once the modal is closed. If lost, a new one must be generated.

For more information about two-step verification and app passwords in Google, visit the Google Help Centerarrow-up-right.

Last updated

Was this helpful?