How to allow a trusted sender, domain or IP in Microsoft Threat Alerts Dashboard

Scenario:

There is a particular sender or domain that sends some sort of emails or email notifications and those are being detected as Phish in Microsoft 365.

Solution:

1. Login to https://security.microsoft.com, then navigate to Policies & Rules → Threat Policies → Advanced Delivery.
2. Click the Phishing Simulation tab, then click Edit to add the IP address and sending domain.
3. Use wildcards to cover the subdomains(example: *.cdnonline-1.net) if applicable
4. Finally, click the Save button.

Once you are done with the changes, wait for at least 2 to 3 hours for the changes to get reflected.