Anti-Phishing

The Anti-Phishing feature helps protect your users against phishing sites and phishing attempts while browsing with the SmartLink extension. It is configurable both at the organization's global level and individually for each user.

Global Configuration

Accessing extension settings

Go to Configuration → Extension Settings tab.

00.extension-settings-overview

The page gathers features related to the SmartLink browser extension. The Anti-Phishing Protection section is accessible through the dedicated menu.

01.anti-phishing-accordion

Activating Anti-Phishing protection

Click on the Anti-Phishing Protection section to expand it, then enable the Enable anti-phishing switch.

02.anti-phishing-disabled

Enable this switch to activate Anti-Phishing protection for all users

Choosing the severity level

Once the protection is activated, select the aggressiveness level from the Severity menu.

04.anti-phishing-enabled

Choose the severity level:
• 'Medium': a dismissible warning appears on unknown sites
• 'High': the warning is permanent, access to the site is blocked

Two levels are available:

Level	Behavior
Medium	When users land on a login form on an unknown site, they see a warning overlay on the form. They can easily dismiss it and proceed.
High	The warning is permanent: users cannot dismiss it and therefore cannot log in to the unknown site.

Managing the domain blacklist

The Blacklist allows explicitly referencing domains to block, regardless of the configured severity.

The blacklist lists domains to block explicitly. It is empty by default.

Enter a domain in the input field (e.g., malicious-site.com or *.malicious-site.com) then click Add to include it.

Enter a domain to blacklist (e.g., example.com or *.example.com), then click 'Add'

The domain is added to the list. Click on the 'trash can' icon to remove it.

Click on the trash can icon next to a domain to remove it from the blacklist.

User-specific Configuration

It is possible to define specific Anti-Phishing settings for a user, independently of the organization's global configuration.

Accessing a user's profile

Go to Users from the navigation bar, then click on the actions menu of a user and select Profile.

09.users-list

Extension Settings Tab

In the user's profile, click on the Extension tab.

The Anti-Phishing section displays a switch to enable settings specific to this user.

Enable this switch to use 'specific' Anti-Phishing settings for this user, independently of the global configuration

Turn on the Anti-Phishing switch to override the global configuration with settings specific to this user. The configuration is then done in the same way as for global settings: activation, severity level, and domain blacklist.

13.user-specific-anti-phishing-settings

Global Configuration​

Accessing extension settings​

Activating Anti-Phishing protection​

Choosing the severity level​

Managing the domain blacklist​

User-specific Configuration​

Accessing a user's profile​

Extension Settings Tab​